OneTrust GRC vs RSA Archer comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

OneTrust GRC
Ranking in GRC
4th
Ranking in IT Vendor Risk Management
2nd
Average Rating
8.0
Number of Reviews
10
Ranking in other categories
No ranking in other categories
RSA Archer
Ranking in GRC
1st
Ranking in IT Vendor Risk Management
1st
Average Rating
8.0
Number of Reviews
38
Ranking in other categories
IT Governance (1st)
 

Mindshare comparison

As of June 2024, in the GRC category, the mindshare of OneTrust GRC is 7.7%, down from 8.6% compared to the previous year. The mindshare of RSA Archer is 17.9%, down from 21.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
GRC
Unique Categories:
IT Vendor Risk Management
11.7%
IT Governance
32.9%
 

Featured Reviews

KE
Feb 13, 2023
Effective privacy management, but the technical support could improve, and it is difficult to implement
We use OneTrust GRC to evaluate internal and external projects for risk It does help in the automation of our privacy impact assessments. The product itself, and perhaps most importantly, is not truly designed to fit the way people and users do their work. There are limitations to customized…
Fabricio Oliveira Nascimento - PeerSpot reviewer
Mar 13, 2023
Great support, easy to deploy, and scalable
We use RSA Archer to connect to the purchasing department so that vendors can sell new projects, and we can connect these sales to our project management. This solution connects both areas to develop demand and activities, allowing us to control technical resources and manage hours. RSA Archer also…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We receive notifications or cases and prioritize them accordingly, which helps us address issues promptly."
"The most valuable feature of the solution is that it already has visibility about all the data protection regulations or other cybersecurity regulations related to several countries"
"OneTrust GRC offers policy management, including documentation, distribution, attestation, and policy management."
"It does help in the automation of our privacy impact assessments."
"We have data from Jira regarding addiction related to Europe as well as California. Additionally, we have data related to the Indian Data Protection Bill. Therefore, GDPR compliance is highly beneficial."
"The product helps us streamline audit and incident management processes."
"One of the valuable features of this solution is it has the ability to review fourth and fifth parties to the nth degree."
"As a solution for IT risks, it is a very good product."
"Makes auditing much more convenient."
"This solution helped us with the centralization of our governance data, so we could house all of our controls in one place. We could use that central repository of all our controls to build our risk management strategy and our policy and governance. So we could use controls as a central library and build policy, and then build risk management around it."
"The solution has helped our organization manage our internal and external activities."
"Enables development of any application, automation of any workflow including the GRC work processes."
"The most valuable feature is the enterprise module, which provides the capability of having all of the information stored and linked with everything else."
"It has various valuable features. For example, showing us if a control aligns with specific standards or frameworks helps us understand it better and verify its compliance."
"Good dashboards and reporting features; it's easy to gather reports quickly."
"It is enterprise-wide accessible. So, it is very helpful for all the employees in our bank. They can log in and do their risk management activities. It has a few inbuilt modules that are helpful for doing risk management activities, such as issue management, risk identification, risk assessment, and policy exception management. It also has some inbuilt workflows inside these modules. They are also helpful."
 

Cons

"OneTrust GRC's workflows aren't automated and need to be manually driven."
"They could improve by offering free help. A solution, a lot of times, is not just the use of the solution. For example, it is the overall engagement, how well do they support the system, what is their SLA, and how long their response time is to an issue. It would be beneficial if they had some type of professional services where they offer the first five hours of professional services a year for free. That would be a substantial benefit rather than having to buy professional services or professional services packages."
"The product is not that easy to set up."
"The platform was not built in a way that allowed multinational entities to use it seamlessly."
"The Vendor Risk dashboard is quite basic today and not interactive, but improvements are in coming the next releases."
"There are limitations to customized workflow automation, and they need to increase both the available automation and the customized workflow."
"I haven't seen any return on investment using the solution. If I had the opportunity, I would use a different solution."
"There are several areas for improvement. One is the integration capability. Connecting various DSAR systems can be time-consuming if a single integration takes months to complete."
"The solution can be a little slow due to the Silverlight feature."
"The financial area of RSA Archer has room for improvement."
"RSA Archer might be a bit expensive for small companies because it's a vast tool."
"Archer could be improved by having more customization. I'm not sure if the backend processes have API calls and those kinds of seamless integrations, but from the front, some of the solutions are very out-of-the-box. It's not customizable, so that could be a little problematic since you have to use their features. In terms of the backend structure, I'm not too sure because I'm not a developer—I was an end user and product owner of Archer—and I don't quite know the backend and developmental features. But since it's an out-of-the-box solution, sometimes customization was challenging and support was a little problematic because we had to reach out to them all the time."
"There are some issues with the interface for version 6.5 but these may already be repaired and simplified in the new versions that have been released."
"Some of the error reporting isn't very clear. When you're looking for information on error codes, you got to do a lot of digging."
"Slow turnaround time from support team."
"The technology's a little outdated."
 

Pricing and Cost Advice

"The solution is expensive."
"OneTrust GRC's licensing costs about $15,000 per module."
"The platform is expensive."
"I found the pricing and setup cost very reasonable."
"OneTrust GRC is an expensive solution."
"On a scale from one to ten, where one is cheap, and ten is too expensive, I rate the solution a seven since it falls under the pricey side."
"As I am a developer and responsible for providing production support, I do not have personal knowledge of the pricing. However, my colleagues claim that it is very expensive in comparison with other tools."
"Fairly highly-priced, especially for smaller companies."
"I am not 100% familiar with that, especially with their new model. I just know that the way they've licensed per user to scale is good."
"RSA Archer's price is justifiable and not as expensive, compared to ServiceNow. I have heard that the licensing for ServiceNow is much more expensive. I'm unaware whether there are any additional costs after licensing fees."
"The solution's price should be reduced. You only have to pay the license and there are no additional fees."
"At the higher end of the price scale, but provides better, more accessible functionality and customization than cheaper products."
"I am not sure about other companies, but it's quite expensive."
"The price of RSA Archer is good. The price isn't too high considering it is a leading tool in the market."
report
Use our free recommendation engine to learn which GRC solutions are best for your needs.
789,577 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Computer Software Company
11%
Government
7%
Manufacturing Company
6%
Educational Organization
46%
Financial Services Firm
14%
Computer Software Company
5%
Manufacturing Company
4%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about OneTrust GRC?
We have data from Jira regarding addiction related to Europe as well as California. Additionally, we have data related to the Indian Data Protection Bill. Therefore, GDPR compliance is highly benef...
What is your experience regarding pricing and costs for OneTrust GRC?
If we use a particular module and find it very beneficial, then it is a good value for the price. There have been instances where we haven't used some modules despite paying for them last year. The...
What needs improvement with OneTrust GRC?
There are several areas for improvement. One is the integration capability. Connecting various DSAR systems can be time-consuming if a single integration takes months to complete. This integration ...
What do you like most about RSA Archer?
It has various valuable features. For example, showing us if a control aligns with specific standards or frameworks helps us understand it better and verify its compliance.
What needs improvement with RSA Archer?
The user interface needs work. There are many small text boxes, like credit card size's boxes, where we need to input a lot of text. You can't see what you're typing beyond the tiny window, so you ...
What is your primary use case for RSA Archer?
We primarily use the system control module and specific IT control models for ongoing risk assessment activities. We use it on a day-to-day basis.
 

Also Known As

OneTrust Vendor Risk Management
Archer
 

Learn More

 

Overview

 

Sample Customers

randstand, into, halfbrick
T-Systems, Bridge Point, Equifax, First Data, Global Imaging Company, Manulife Financial
Find out what your peers are saying about OneTrust GRC vs. RSA Archer and other solutions. Updated: June 2024.
789,577 professionals have used our research since 2012.