RSA Archer GRC Platform 5.

5
User Guide
May 2014
Contact Information
Go to the RSA corporate web site for regional Customer Support telephone and fax numbers:
http://www.emc.com/support/rsa/index.htm.

Trademarks
RSA, the RSA Logo, RSA Archer, RSA Archer Logo, and EMC are either registered trademarks or trademarks of EMC
Corporation ("EMC") in the United States and/or other countries. All other trademarks used herein are the property of their
respective owners. For a list of RSA trademarks, go to www.rsa.com/legal/trademarks_list.pdf.

License agreement
This software and the associated documentation are proprietary and confidential to EMC, are furnished under license, and may
be used and copied only in accordance with the terms of such license and with the inclusion of the copyright notice below. This
software and the documentation, and any copies thereof, may not be provided or otherwise made available to any other person.
No title to or ownership of the software or documentation or any intellectual property rights thereto is hereby transferred. Any
unauthorized use or reproduction of this software and the documentation may be subject to civil and/or criminal liability.
This software is subject to change without notice and should not be construed as a commitment by EMC.

Note on encryption technologies

This product may contain encryption technology. Many countries prohibit or restrict the use, import, or export of encryption
technologies, and current use, import, and export regulations should be followed when using, importing or exporting this
product.

Distribution
Use, copying, and distribution of any EMC software described in this publication requires an applicable software license.
EMC believes the information in this publication is accurate as of its publication date. The information is subject to change
without notice.
THE INFORMATION IN THIS PUBLICATION IS PROVIDED "AS IS." EMC CORPORATION MAKES NO
REPRESENTATIONS OR WARRANTIES OF ANY KIND WITH RESPECT TO THE INFORMATION IN THIS
PUBLICATION, AND SPECIFICALLY DISCLAIMS IMPLIED WARRANTIES OF MERCHANTABILITY OR
FITNESS FOR A PARTICULAR PURPOSE.

Copyright © 2010-2014 EMC Corporation All Rights Reserved. Published in the USA.
RSA Archer GRC Platform User Guide

Contents

Preface 5
About This Guide 5
RSA Archer Documentation 5
Support and Service 5
Chapter 1: RSA Archer 6
RSA Archer 6
RSA Archer Components 6
RSA Archer GRC Platform Overview 6
Customizing RSA Archer 7
Chapter 2: Applications and Solutions 8
Applications 8
On-Demand Applications 8
Solutions 8
RSA Archer Core Solutions 8
Custom-Built Solution 9
RSA Archer Focused Solutions 9
Chapter 3: RSA Archer User Interface 10
Components of the User Interface 10
Quick Links Menu 10
Navigation Menu 11
Expand or Collapse the Navigation Menu 12
Workspaces, Dashboards, and iViews 12
Workspaces 12
Dashboards 13
iViews 13
Quick Reference Bar 14
Chapter 4: Setting Up 15
User Profile 15
Update Your User Profile 15
Setting Up Your Workspace, Dashboard, and iViews 15
Select Workspaces to Display 16
Update a Personal Dashboard Display 16
Update an iView Display 17
Chapter 5: Working with Records 18
Records 18
Working with Records 18
User Rights for Working with Records 18
Add a Record 19
Copy a Record 19
Edit a Record 19
Email a Record Link 20
Managing Workflow 20

3
RSA Archer GRC Platform User Guide

Accept, Reject, or Reassign a Record 20

Chapter 6: Managing Tasks 22
Tasks 22
Task Management Application 22
Managing Tasks 22
Create and Assign a Task 23
Display Your Tasks 23
Change the Status of a Task 23
Complete a Task 24
Chapter 7: Running Searches, Reports, and Charts 25
Searches 25
Quick Search 25
Run a Quick Search 25
Search Records 26
Search by Keyword 26
Keyword Search Operators 27
Keyword Search Operators Examples 28
Search Across Multiple Applications 28
Run a Statistics Search 29
Reports 30
Report Types 30
Add a Report 30
Update a Report 30
Run a Report 31
Delete a Report 31
Charts 31
Chart Types 32
Charting Toolbar Options 34
Create a Chart 37
Index 38

4
RSA Archer GRC Platform User Guide

Preface

About This Guide

This guide contains information to help an RSA Archer user get started using the
product. It is designed to be used with the RSA Archer Help.

RSA Archer Documentation

You can access the RSA Archer documentation from the RSA Archer Exchange
and RSA Archer Community.

Documentation Location

Platform Downloads tab on the Archer Community at

https://community.archer-tech.com

Solutions, Content tab on the RSA Archer Exchange at

Applications, https://community.emc.com/community/connect/grc_ecosystem/rsa_
and Content archer_exchange/content

RSA continues to assess and improve the documentation. Check the RSA Archer
Community and RSA Archer Exchange for the latest documentation.

Support and Service

Customer Support Information http://rsa.com/node.aspx?id=1356

Archer Community https://community.archer-tech.com

Archer Exchange https://exchange.archer-tech.com

The Archer Community enables collaboration among GRC clients, partners, and
product experts. Members actively share ideas, vote for product enhancements, and
discuss trends that help guide the RSA Archer product roadmap.
The Archer Exchange is an online marketplace dedicated to supporting GRC
initiatives. The Exchange brings together on-demand applications along with
service, content, and integration providers to fuel the success of RSA Archer
clients.

5 Preface
RSA Archer GRC Platform User Guide

Chapter 1: RSA Archer

l RSA Archer
l RSA Archer Components
l Customizing RSA Archer

RSA Archer
RSA Archer enables you to build an efficient, collaborative enterprise governance,
risk and compliance program across IT, finance, operations and legal domains.
With RSA Archer, you can manage risks, demonstrate compliance, automate
business processes, and gain visibility into corporate risk and security controls.
Because our out-of-the-box solutions are built on the RSA Archer Platform,
business users can configure the solutions and integrate them with multiple data
sources without custom coding.
Global organizations rely on RSA Archer solutions to:
l Manage the lifecycle of corporate policies and their expectations
l Comply with regulations in the most efficient way possible
l Visualize and communicate risk at all levels of the business
l Investigate and resolve cyber and physical incidents
l Centralize business continuity and disaster recovery planning
l Enable risk-based, business-aligned internal audit

RSA Archer Components

RSA Archer has two main components:
l Platform. See Platform for more information.
l Solutions. See Solutions for more information.

RSA Archer GRC Platform Overview

The RSA Archer GRC Platform provides a simple, yet powerful way, to design,
build, and manage applications that can evolve right along with your business. You
can create your own enterprise-class, security-assured applications, package them
into comprehensive solutions, and deploy them in a way that works for your
organization.
The applications and solutions that you can build with the GRC Platform are limited
only by your imagination. Through drag-and-drop functionality, you can build
anything from project management applications to trouble-ticketing systems to
customer relationship management solutions.

Chapter 1: RSA Archer 6

RSA Archer GRC Platform User Guide

The GRC Platform puts control into the hands of your business people, providing a
secure way to manage and automate processes.

Customizing RSA Archer

Your RSA Archer Platform administrator can customize the look and feel of every
element of RSA Archer user interface across the entire product according to your
corporate design standards, terminology, and workflows. In addition, your system
administrator can customize the fields in the database and calculations.
The RSA Archer documentation is written based on the as-shipped version of the
product.

7 Chapter 1: RSA Archer

RSA Archer GRC Platform User Guide

Chapter 2: Applications and Solutions

l Applications
l Solutions

Applications
An application is a database that stores a specific type of data record, such as
incidents, controls, policies, or assets. Platform adminstrators create and manage
applications. Depending on your access rights, you may be able to view, create,
update, and delete records in an application.

On-Demand Applications
On-demand applications (ODA) are applications built by RSA Archer or by you
that are outside of the core RSA Archer solution set.
RSA Archer certified on-demand applications are available for download on the
RSA Archer Exchange on the Content tab at
https://community.emc.com/community.

Solutions
A solution is a grouping of applications that work together to solve a particular
business need. An example of a solution is Policy Management, which includes the
Policies, Baselines, Control Standards, and Authoritative Sources applications.

RSA Archer Core Solutions

RSA Archer delivers and licenses its core solutions. Business users can configure
the core solutions and integrate them with multiple data sources without custom
coding.
RSA is continuously delivering new core solutions. The following are some of the
currently available core solutions:
l Audit Management
l Business Continuity Management
l Compliance Management
l Enterprise Management
l Incident Management
l Policy Management
l Risk Management
l Security Operations Management

Chapter 2: Applications and Solutions 8

RSA Archer GRC Platform User Guide

l Threat Management
l Vendor Management
l Vulnerability Risk Management

For information on the core solutions, access the Content tab on the RSA Archer
Exchange at https://community.emc.com/community/connect/grc_ecosystem/rsa_
archer_exchange/content.

Custom-Built Solution
RSA Archer provides wizards and intuitive administration pages that enable you to
model and automate your unique business processes. RSA Archer can create a
custom-built solution to automate any manual business process that involves storing,
managing, and maintaining information. Some examples include:
l PCI self-assessments
l Internal employee surveys
l Physical security incident tracking
l Project management
l Document repositories

RSA Archer Focused Solutions

RSA Archer builds focused solutions to solve a particular use-case-driven business
need.
RSA is continually delivering new focused solutions. The following are some of the
currently available focused solutions:
l RSA Archer ISMS Foundation. Know your critical assets, manage risk and
implement a world-class security management framework that enables
continuous improvement.
l PCI Compliance Management. Perform SAQ assessments and create a Report of
Compliance of PCI 2.0 requirements.
l Code of Federal Regulations. Implement a systematic and repeatable process for
consuming and maintaining compliance to the U.S. code of Federal Regulations.
l Key and Certificate Management. Manage key and certificate renewal request,
revocation, and expiration process from a centralized location.

RSA Archer focused solutions are available for download from the Applications tab
on the RSA Archer Exchange at https://community.emc.com/community.

9 Chapter 2: Applications and Solutions

RSA Archer GRC Platform User Guide

Chapter 3: RSA Archer User Interface

l Components of the User Interface
l Quick Links Menu
l Navigation Menu
l Workspaces, Dashboards, and iViews
l Quick Reference Bar

Components of the User Interface

1 Quick Links bar

2 Workspace

3 Quick Reference bar

4 Navigation Menu

5 Dashboard

6 iView

Quick Links Menu

Chapter 3: RSA Archer User Interface 10

RSA Archer GRC Platform User Guide

Preferences Opens user preferences.

Reports Opens the Master Report Listing

Help Opens the Help TOC

Logout Logs you out of the GRC Platform.

Quick Search Finds specific information.

Navigation Menu
The Navigation Menu, an accordion-type menu located in the left frame, is the
primary navigational tool for RSA Archer. The hierarchy of the Navigation Menu
enables you to drill down into a solution to reveal the list of related applications,
and into an application to reveal its tree structure.
What you see in the Navigation Menu depends on the active workspace, as
configured by Platform administrators. For example, if the active workspace is Risk
Management, you might see the Risk Management and Risk Assessments solutions.
If the active workspace is Policy Management, you might see only the Policy
Management solution.
The following example shows an expanded solution node, several collapsed
application nodes, and the tree structure of an expanded application node.

11 Chapter 3: RSA Archer User Interface

RSA Archer GRC Platform User Guide

Expand or Collapse the Navigation Menu

Procedure
Do one of the following:

l To expand the Navigation Menu, click or click anywhere in the collapsed

menu, as shown in the following figure.

l To collapse the Navigation Menu, click , as shown in the following figure.

Workspaces, Dashboards, and iViews

The workspaces, dashboards, and iViews provide users with quick access to
information and tools related to their job functions.

Workspaces
A workspace is a page that contains one or more dashboards, accessed from a tab
in the workspace tab strip. If a workspace has more than one dashboard, users can
select a dashboard from the Dashboard list in the page toolbar.
The following example shows a workspace tab and its associated workspace.

Chapter 3: RSA Archer User Interface 12

RSA Archer GRC Platform User Guide

Dashboards
A dashboard is a container for one or more iViews, typically for the purpose of
grouping related content. Platform administrators build global dashboards that
enable users to build personal dashboards. Users who have permission can display
global dashboards. Users cannot display the personal dashboards of other users.
Users who have permission to create personal dashboards and iViews can add them
to workspaces, change the layouts of dashboards, and resize iViews.

iViews
An iView is a window that can display a report, a chart, links to internal pages and
external websites, an embedded web page, and custom content such as a Flash
presentation or graphic. iViews provide users with the information they need to
make decisions, complete tasks, and stay up to date. iViews are embedded within a
workspace.
The following are examples of practical uses of iViews:
l Links to security policies
l Links to industry or regulatory sites
l Content review queues
l Embedded web pages
l Recent vulnerability alerts
l Company financial information
l Technology-related links and news

13 Chapter 3: RSA Archer User Interface

RSA Archer GRC Platform User Guide

l Logon information
l Security questions and answers

Quick Reference Bar

The Quick Reference Bar is a collection of links that appears below the workspace
tab strip. Workspace administrators can configure the bar to display links to
functions, internal pages, reports and external web sites. By displaying a Quick
Reference Bar at the top of a workspace, administrators can provide users with
easy access to the information and tools they need.
The following is a example of a Quick Reference Bar.

Chapter 3: RSA Archer User Interface 14

RSA Archer GRC Platform User Guide

Chapter 4: Setting Up
l User Profile
l Setting Up Your Workspace, Dashboard, and iViews

User Profile
Your user profile is the collection of user account properties that enables you to log
on and to interact with the product. A user profile contains the following
information:
l General information
l Contact information
l Password
l Localization settings, such as time zones, language (override the default native
language of the instance), and locales. You must have user permissions to
change these settings in your profile.
l Account notes

Update Your User Profile

Procedure
1. On the title bar menu, click Preferences.
2. Click View Your User Profile.
3. Make the necessary changes on the window.
4. Click Apply.

Setting Up Your Workspace, Dashboard, and iViews

You can set up your own work displays.
l Customize your workspace tab strip to show only the workspaces that you use.
You can also remove workspaces that you no longer want to view. See Select
Workspaces to Display
l Add a new personal dashboard to a workspace. You can also modify the iView
content and layout of existing personal dashboards, and remove personal
dashboards from a workspace. You can configure personal dashboards only if
you have been granted access by your GRC Platform administrator. See Update
a Personal Dashboard Display
l Set options for an iView (this depends on the type of iView that you are viewing
and your access rights). See Update an iView Display

15 Chapter 4: Setting Up
RSA Archer GRC Platform User Guide

Select Workspaces to Display

You can customize your workspace tab strip to show only the workspaces that you
use.

Procedure
1. Click Preferences in the menu in the top frame.
2. Select Update Your Workspace Display.
3. In the Select Workspaces section, select each workspace that you want to
displayor clear the checkboxes of workspaces that you want to remove from
display.
4. Click OK.

Update a Personal Dashboard Display

Note: You can configure personal dashboards only if you have been granted access
by your GRC Platform administrator.

Procedure
1. Click the workspace to which you want to add a personal dashboard.
2. Do one of the following:
l To add a new personal dashboard to the workspace, from the Options list in
the page toolbar, select Add New Personal Dashboard.
l To edit an existing personal dashboard, from the Options list in the page
toolbar, select Edit Personal Dashboard Properties.
3. Complete the Manage Dashboards window.
4. Click OK.
5. If you are adding a new personal dashboard to the workspace and want to
update the iView content, do the following:
a. On the iView Type Selection page, from the Name list, select the iViews
that you want to display in your personal dashboard.
b. Click OK.
6. If you are editing an existing dashboard and want to update the iView content,
do the following:
a. From the Options list in the page toolbar, select Add iView Content.
b. On the iView Type Selection page, from the Name list, select the iViews
that you want to display in your personal dashboard.
c. Click OK.

Chapter 4: Setting Up 16
RSA Archer GRC Platform User Guide

Update an iView Display

Procedure

1. In the iView title bar, click .

2. Select an option from the menu and update the iView display as desired (the list
of available menu options depends on the type of iView that you are viewing
and the access rights assigned to you by your administrator).
3. (Optional) To resize the iView, click, hold and drag the down arrow in the
bottom corner of the iView.
4. (Optional) To to move the iView, click and hold the title bar of the iView and
drag and drop the iView to the new location.

17 Chapter 4: Setting Up
RSA Archer GRC Platform User Guide

Chapter 5: Working with Records

l Records
l Working with Records
l User Rights for Working with Records
l Add a New Record
l Copy an Existing Record
l Edit an Existing Record
l Email a Record Link
l Managing Workflow

Records
A record in RSA Archer consists of related fields of data. For example, vendor
information is stored in a vendor record.

Working with Records

The process of working with records is the same for all applications in
RSA Archer.
l If any icons of a task are not available for selection, you do not have access
rights to perform the associated task.
l If the application contains a Record Permissions field, you may not have access
rights to every record in the application.
l If the application contains private fields for which you do not have access rights,
you cannot view or edit those fields.

User Rights for Working with Records

Before you can work with records, your system administrator must set up specific
user rights for you at the application, record, and field level.
l Application Level. On an application-by-application basis, administrators can
assign create, read, update, and delete permissions to you through your access
roles, which determine whether you can view, add, edit, delete, and search
records within an application. If you do not have any permissions to an
application, the application does not appear in the Navigation Menu for you, and
you cannot access it in any way.

Chapter 5: Working with Records 18

RSA Archer GRC Platform User Guide

l Record Level. If an application contains a Record Permissions field, you can

only access the fields to which you have permissions in the application.
l Field Level. Administrators can configure individual fields in an application as
either public or private. Public fields are available to all users who have create,
read, update, and delete permissions to an application. Private fields are only
available to selected users who can view and enter data in those fields. Private
fields can also be "read only" for any user, which allows the user to view the
field but not to add, edit, or delete its data.

Add a Record
Procedure
1. Click New Record on the Navigation menu of an application, or in an existing
record click in the page toolbar.
2. Complete the window with the necessary information for the new record.
3. Click Save.

Copy a Record
Procedure
1. From an existing record in either view or edit mode, click in the page toolbar.
2. Complete the window with the necessary information for the new record.
3. Click Save.

Edit a Record
Procedure
1. View an existing record.
2. Click in the page toolbar.
3. Make the necessary changes to the record.
4. Either:
a. Click Apply to update the record and continue working in the record.
b. Click Save to update and exit the record.

19 Chapter 5: Working with Records

RSA Archer GRC Platform User Guide

Email a Record Link

Procedure
1. View or edit a record in an application.
2. Click in the page toolbar.
Complete the window with the recipient's information. RSA Archer sends an
email with a link to the record in the body of the message. You can send this
email to whomever you choose, but only users who can be authenticated by the
system and who have read access to the record can view it.

Managing Workflow
The Workflow feature enables an organization to define a process for moving a
record through stages for review and validation before publishing it to end users.
Administrators can create unique workflow processes for any application, any level
in a leveled application, or any questionnaire in the GRC Platform for which they
have been assigned ownership rights. Defining a workflow process involves the
following:
l Establishing review and validation stages
l Determining the order to route content
l Assigning designated personnel to each stage
l Configuring content review assignment notifications

After a formal workflow process is defined for an application, records that are
subsequently added or edited are routed through the process. As records move
through content review stages, a detailed history of all content modifications is
electronically maintained by person, date and time. By default, this history is
configured to retain all fields indefinitely. If this history log is configured to purge
its contents, the workflow information could be lost along with other historical
information. Other history log fields could be placed in the application as well.

Accept, Reject, or Reassign a Record

Procedure
1. In the Navigation menu, click the application.
2. Click My ApplicationName Assignments.
3. Click the record that you want to review.

Chapter 5: Working with Records 20

RSA Archer GRC Platform User Guide

4. Review the record

5. Click the appropriate option in the Workflow toolbar:
l Accept - to accept the record and move it to the next stage in the Workflow
process.
l Reject - to reject the record and demote it to the previous stage in the
Workflow process.
l Comment - to reject the record and leave a comment describing your
decision.
l Reassign - to reassign the record to another user or group.
l History - to view a history of the record in the Workflow process.

21 Chapter 5: Working with Records

RSA Archer GRC Platform User Guide

Chapter 6: Managing Tasks

l Tasks
l Task Management Application
l Managing Tasks
l Create and Assign a Task
l Display Your Tasks
l Change the Status of a Task
l Complete a Task

Tasks
You create and manage task through the Task Management application. Use this
application to remediate activities.

Task Management Application

Use the Task Management application to create, assign, track, and manage open
and completed activities associated with specific content records. End users and
administrators can view detailed reports describing the status of open tasks and a
history of completed tasks.
You can access the Task Management application from an application that has been
enabled with task management capabilities. For example, if you are reviewing a
Password Requirements record in the Policy Exception application and task
management capabilities have been enabled, you can click Add New in the Open
Tasks/Activities field to create and assign a task associated for that specific content
record.

Managing Tasks
When task management capabilities are enabled for an application, tasks related to
content records in that application are tracked and logged in a Related Records field
called Open Tasks/Activities. In addition to viewing tasks in a content record, your
administrator also can enable the My Tasks iView. This Report iView enables you
to select reports detailing tasks that have been assigned to you.
For example, using Task Management, a risk manager can create assignments to
correct an assessment finding. The assigned individual can view all assigned
remediation tasks in the My Tasks iView. As the remediation progresses, the
original risk manager can track the completion status of all remediation tasks by
viewing a single content record or running a search on a group of findings.

Chapter 6: Managing Tasks 22

RSA Archer GRC Platform User Guide

Create and Assign a Task

Procedure
1. Open a content record in an application that has been enabled with task
management capabilities.
2. In the application's content record, click Add New in the Open Tasks/Activities
field to open a new Task Management record.
3. Complete the window as necessary.
4. Click Save.

Display Your Tasks

Procedure
1. Navigate to a workspace that displays the My Tasks iView.
2. In the My Tasks iView, select one of the available reports from the Display list.
3. From the report, select the task that you want to display.

Change the Status of a Task

Complete this task to track the completion status of tasks stored in one application
against records in another application. For example, you could track whether
security controls found in one application have been implemented for assets found
in another application.
From the Maintain [CAST Field Name] page, you can change the completion status
of a task from one application for an individual record in another application. You
can record notes about the status change.

Procedure
1. Open the record for which you want to track the completion status of a task.
2. Locate the Cross-Application Status Tracking (CAST) field and click View/Edit
Related Application Name.
The following example shows a CAST field related to the Vulnerabilities
application:

2. Click the linked task whose status you want to change.

3. Locate the CAST field in the record and click the linked status.
The following example shows the CAST field Implementation Status.

23 Chapter 6: Managing Tasks

RSA Archer GRC Platform User Guide

4. From the Status list, select the appropriate status for the task.
5. Optionally, enter notes about the status change in the Notes field.
6. Click Save.

Complete a Task
Procedure
1. Do one of the following to open a task record:
l If Task Management is enabled for an application, select the record that
contains the task and from the Open Tasks/Activities, Related Records field,
select the desired task.
l In the My Tasks iView, select Current Tasks from the Display list and select
the desired task.
2. Click to edit the record.
3. From the Status list, select Complete or Deferred to close the task.
4. In the Completion Date field, enter the date the task was finished, or select the
date by clicking .

5. If the task was deferred to another user, click in the Delegates field to
select that user.
6. In the Resolution field, enter a detailed description of how the task was
resolved.
7. Click Save. The task is displayed in the Activity History field on the related
content record.

Chapter 6: Managing Tasks 24

RSA Archer GRC Platform User Guide

Chapter 7: Running Searches, Reports, and Charts

l Searches
l Quick Search
l Search Records
l Keyword Search Operators
l Reports
l Charts

Searches
The Search feature provides a variety of options for searching records and
generating real-time reports. From searching with simple keywords to complex,
multi-application searches using multiple filter options, you can locate data relevant
to your business needs. Narrow your search results using keyword operators, such
as Or and Not.
There are two methods for searching:
l Quick Search (from the top frame)
l Search Records (from the Navigation Menu)

After you complete running a search, you can save the search criteria as a
report.You can share reports with other users and incorporate them into a system
dashboard for easy access to the latest data.

Quick Search
Use the Quick Search feature (located in the title bar menu) to run a keyword
search across all applications in a single solution.
The Quick Search Results page lists the results of a Quick Search by relevance.
The records that are most relevant for your keyword search string appear at the top
of the search results, and those that are least relevant appear at the bottom. Each
record also has a relevancy ranking. The Quick Search Results page enables you to
filter the records by application. By default, records from all of the applications in
the selected solution are intermixed in the search results.Click an application link in
the Results filter bar to view records for one application at a time.

Run a Quick Search

Procedure
1. In the Quick Search field, in the title bar menu, type the term or phrase for
which you want to search.

25 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Optionally, use one or more of the Keyword Search Operators.

2. Click to the right of the search field and select the solution in which you
want to run the keyword search.

3. Click .

Search Records
Use the Search Records feature to search for records in a single application or
search for records across all related applications.
With record searches, you can configure the appearance of the search results by:
l Selecting the fields of data to display
l Specifying the sort order
l Selecting a search results format, for example, column, row, or summary

You can use the following options for finding the records you want in search
results:
l Specify terms for a keyword search.
l Define the fields to display in the search results.
l Configure the relationships for applications included in the search parameters.
l Filter the records based on stored values.
l Determine the sort order for records in the search results.
l Format the display of your search results,

Search by Keyword

Procedure
1. From the Navigation menu, expand the application in which you want to search
and click Search Records.
2. In the Keyword Search field, type the term or phrase for which you want to
search.
3. Click Search.

Chapter 7: Running Searches, Reports, and Charts 26

RSA Archer GRC Platform User Guide

Keyword Search Operators

Use keyword search operators to narrow search results.

Search Type Example Description

Single Term document Returns all records that contain the term
"document."

Phrase "important document" Returns all records that contain the phrase
“important document.” Enclose your
phrase in quotation marks. If you do not,
your search returns all records that contain
the term “important” or the term
“document.”

Wildcard Search a?ert Returns all records that contain the terms
“alert,” “avert” and so on. The question
mark (?) is a single-character wildcard,
meaning that it can represent any letter of
the alphabet within your search term. The
question mark cannot serve as the first
character in the search term. It can replace
any other character in the term, however,
and it also can be placed after the term, for
example, alert?.

AND Operator important AND Returns all records that contain both the
document term “important” and the term "document.”
Capitalize the AND operator. You can use
the && symbol in place of the AND
operator, for example, important &&
document.

OR Operator important OR Returns all records that contain one or

document both of the terms “important” and
"document.” Capitalize the OR operator.
You can use the || symbol in place of the
OR operator, for example, important ||
document.

NOT Operator important NOT Returns all records that contain the term
document “important,” but do not contain the term
“document.” Capitalize the NOT operator.
You can use an exclamation point (!) in
place of the NOT operator, for example,
important ! document.

27 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

You cannot search on terms that contain decimal points, for example, 10.5. In this
case, the system translates the decimal point as "AND" and returns records that
contain both the number 10 and the number 5. You cannot do a keyword search on
dates, for example, 12/01/2011.

Keyword Search Operators Examples

The following search string examples show how you can combine several query
types to produce complex keyword searches.

Example 1: ("method starting"~10) AND token

Results: Returns records that contain the terms "method" and "starting"
within 10 words of each other and also contain the term "token".

Example 2: "buffer overflow" AND NOT (remote OR local)

Results: Returns records that contain the exact phrase "buffer overflow"
only if the records do not contain either the terms "remote" or "local."

Example 3: (document AND urgent) OR alert*

Results: Returns records that contain the terms "document" and "urgent"
or contain the terms "alert", "alerts", "alerting", and so on.

Search Across Multiple Applications

Complete this task to search across multiple applications when the applications are
related by a Cross-Reference, Related Record, CAST or CAST Scorecard field
type that connect two or more applications.

Procedure
1. From the Navigation menu, expand the application in which you want to search
and click Search Records.
2. In the Keyword Search field, type the term or phrase for which you want to
search.
3. On the Search page, complete the following in the Fields to Display section:
a. In the Available list, click Add New Relationship.
b. Select the related application that you want to include in the search.
c. In the Available list, find the list of fields for the related application and
select the fields that are to be included in the search.
d. Continue adding fields and related applications as needed.

Chapter 7: Running Searches, Reports, and Charts 28

RSA Archer GRC Platform User Guide

4. (Optional) Complete any of the following tasks.

Task Action

Specify that the search results contain a. Click Configure Relationships.

only records that form a relationship
b. For each associated application or
between the associated applications or
data level that you want included in
data levels.
the search results, select Enforce
Relationships.
c. Click OK.

Specify that the search results contain a. Click Configure Relationships.

higher levels of directly matched records The Search Records Configuration
from secondary applications. With this dialog box opens.
option, during the building of the search
results, lower-level records that meet the b. For each associated application or
search criteria are included even if they data level you want included in the
do not have a primary application that search results, select Enforce
meets the search criteria. Additionally, Relationships and click Add Higher
primary application records are included Levels To Record Lookup.
in the results if they contain lower-level c. Click OK.
records that match the search criteria.

5. Click Search.

Run a Statistics Search

Note: To create a donut, funnel, gauge, or pie chart, run a statistical search with
one Group by function and one aggregate function.

Procedure
1. From the Navigation menu, expand the application in which you want to search
and click Search Records.
2. Expand the Fields to Display section and select Statistics Mode.
3. From the Available list, select the fields to which you want to apply grouping
and aggregate functions. (You can add the same field to the Selected list
multiple times to apply different functions to the same field.)
4. In the Selected list, click the drop-down arrow to the left of each field name to
select the grouping or aggregate function that you want to apply.

Note: The order of the fields determines the relationship among multiple groups.
For example, if you apply the Group by function to two or more fields, the
second Group by field in the list becomes nested beneath the first field.

5. Click Search.

29 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Reports
A report is a group of records that meet saved search criteria. After you run a
search, you can save the search criteria as a report.

Report Types
There are two types of reports:
l Personal report. Accessible only by the person who created it.
l Global report. Accessible to all users in an application or to selected users and
user groups. Can be incorporated into a system dashboard for easy access to the
latest data.

Add a Report

Procedure
1. Click Reports in the menu in the top frame.
2. Click Add New.
3. Select the application that you want to run the report against and click OK.
4. Enter your search criteria and click Search.
5. Click Save.

Update a Report

Procedure
1. Click Reports in the title bar menu.
2. Click the report that you want to modify.
3. Click Modify in the record toolbar.
4. Enter updated search criteria on the Search Records page and click Search.
5. Do one of the following:
l Click Save.
l Select Save as New Report from the list displayed to save a separate report
with your changes.
l Select Save Report Changes from the list displayed to save the changes to
the existing report.

Chapter 7: Running Searches, Reports, and Charts 30

RSA Archer GRC Platform User Guide

6. Complete the Report Information section.

7. In the Report Type section, select whether the report is a personal report or a
global report. If you selected Global Report assign user and groups access rights
for the report.
8. In the iView Caching section, define the caching behavior and duration for the
report. If caching is enabled, the refresh rate is disabled.
9. From the Refresh Rate list, select how often you want the report to refresh. If a
refresh rate is set, iView caching is disabled.
10. Click Apply.
11. If you changed the cache duration from one time range to another, open and
refresh the Report iView to complete the change.

Run a Report

Procedure
1. Click Reports in the menu in the top frame.
2. Use the Grouping and Filter toolbars to filter and sort the list as needed to locate
the report that you want to view.
3. Click the report.

Delete a Report

Procedure
1. Click Reports in the menu in the top frame.

2. Click in the row of the report that you want to delete.

3. Click OK.

Charts
When running a statistics search, you can display your search results as a chart
rather than text. The charting functionality is designed for you to grasp the full
scope of data without paging through hundreds or thousands of records. Charts can
provide a snapshot of your business or can sum up large amounts of data. You can
share charts by exporting them to embed into presentations, by emailing them, or
printing them for paper distribution.
You can display the search results in different chart types. The system's drill-down
capabilities enable you to click on a data element of a chart to view details of the
underlying data.

31 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Chart Types

Chart Type Description Example

Vertical Bar Renders a single-series chart or

multi-series chart. The height of the
rectangular bars are proportional to
the values they represents.

Horizontal Renders single-series or multi-series

Bar charts. The length of the rectangular
bars are proportional to the values
they represents.

Pie Renders single-series charts. The data

points for each series are plotted as
slices (wedges). Each slice of the pie
is measured by its size.

Donut Renders single-series charts. The data

points for each series are plotted as
slices (wedges). Each slice of the
donut is measured by the size of the
slice.

Gauge Renders single-series charts. Each

data point is represented by an indi-
vidual gauge. Gauge charts do not
support multi-series charting.

Funnel Renders single-series charts. The

funnel represents a value of 100
percent, with each data point in the
stack representing a portion of the
total percentage.

Chapter 7: Running Searches, Reports, and Charts 32

RSA Archer GRC Platform User Guide

Chart Type Description Example

Line Highlights trends by drawing con-

necting lines between data points.

Radar Compares the aggregate values of

several data points. This chart type
displays single-series or multi-series
data in the form of a 2D chart of
three or more data elements
represented on axes starting from the
same point. A line connects the data
points of each element until all
elements are connected, forming a
complete shape.

Bubble Shows the relationships between the

plotted data points that have three
numerical values. The values that are
displayed on a bubble chart indicate
their size, as well as their relative
positions with respect to the value of
each data point and their numeric
axis. The size of the bubble is indic-
ated by the third value, which is a
numeric data element.

Heat Map - Shows data in a tabular format with Standard

user-defined color ranges, for
example, low, average, and high.
This chart type displays series values
in a matrix of two categories.

Risk (Summary)

33 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Chart Type Description Example

Risk (Scatter Overlay)

Scatter Shows the relationships among the 1 Group by (not Tracking ID

numeric values in several data series, field) and 2 aggregate functions
or plots two groups of numbers as
one series of XY coordinates.

1 Group by on Tracking ID field

and 2 aggregate functions

2 Group by and 2 aggregate

functions

See the RSA Archer online Help for more information on each chart type.

Charting Toolbar Options

Based on the combination of the number of Group by functions and aggregate
functions, the Charting toolbar appears at the top of the Search Results page for a
statistics search.
The toolbar provides controls for selecting the type of chart that you want to view
and for configuring the properties of the selected chart type. These controls include
the color palette, transparency, shading, and labeling of charts.

Chapter 7: Running Searches, Reports, and Charts 34

RSA Archer GRC Platform User Guide

To review a description of a particular option in the toolbar, click the toolbar option
in the following figure.

The following table describes the options available for configuring a chart.

Icon Description

Report Format Enables you to choose the format in which the resulting
statistical data is displayed. Available options include:
l Chart and Data. Displays both the chart and data results from
the statistical search.
l Chart Only. Displays only the rendered chart as a result from
the statistical search.
l Data Only. Displays only the rendered data as a result from
the statistical search. No charts are rendered or displayed when
you select this option. Also, this option is the only available
option if the statistical query cannot be rendered as a chart.

Chart Type Enables you to choose the chart that represents the results of a
statistical search data. Selecting a different chart causes the Search
Results page to refresh and display the new chart type.
Depending on the number of series in the statistical search, only
certain charts can be rendered.

3D Mode Enables you to toggle to 3D for the currently displayed chart, if

the chart type supports this option. When you select the 3D
option, the chart is redrawn in a 3-dimensional format. When you
clear the check box, the chart reverts to a 2-dimensional format.

Note: The gauge, radar, heat maps, and scatter chart types do not
support 3D rendering.

Chart Options Allows you to select specific display variation available for the
currently displayed chart.
The purpose of these variations is to enhance the visual look and
feel of the chart, as well as to offer more clarity to the data being
presented. Any time that you change a chart type, the Chart
Options list dynamically updates with the available options for
the selected chart type.

Colors Dialog Allows you to customize the colors for the following elements of
a chart:
l Data Series. Allows you to select from predefined color
palettes (that is, themed collections of colors) or select a

35 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Icon Description

specific color for each data series.

l Legend. Allows you to select the background and border
colors for charts that support these features. This option is not
available for gauge charts.
l Plot Area. Allows you to select the background and border
colors for charts that support these features. This option is not
available for gauge charts.

Note: For heat map - standard charts, you can define one or more
color thresholds. For heat map - risk (summary and scatter
overlay), you can select the color for each section.

Transparency Level Allows you to select from various levels of transparency for the
currently displayed chart. By default, charts do not have any
transparency applied.

Chart Effects Allows you to set the following features of the currently
displayed chart:
l Shading. Allows you to select a shading effect that is applied
to a series based on the currently selected chart type.
l Smart Breaks. Allows you to create a break in a chart to
remove empty space between two data points that have a
percentage of difference between them. The vertical bar,
horizontal bar, and line chart types support the smart break
option. This option is not available for bar charts when
displayed in 3D, or when markers are enabled.
l Threshold Markers. Allows you to configure one or more
visual threshold marker or range for a chart. These markers
indicate when a certain benchmark has been reached or the
progress of a particular item. By default, no threshold markers
or ranges are configured. Markers are available on vertical bar,
horizontal bar, and gauge charts. Ranges are only available on
gauge charts.
l Heat Map Display Properties. Allows you to define the
number of sections of a heat map - risk (scatter overlay) chart
and its thresholds.

Value Labels Allows you to configure the following features of the currently
displayed chart:
l Position of the chart legend
l Display of value labels relative to series data points

Chapter 7: Running Searches, Reports, and Charts 36

RSA Archer GRC Platform User Guide

Icon Description

l Display of the data labels in the chart representing the values.

l Display of X axis or Y axis value labels.

With heat map charts, you can only configure the axis labels.
This option is not available for gauge charts.

Create a Chart
Note: To create a donut, funnel, gauge, or pie chart, run a statistical search with
one Group by function and one aggregate function

Procedure
1. Run a Statistics Search.
2. On the Search Results page, select either Chart and Data or Chart Only in the
Charting toolbar.

3. Click and select the chart type.

4. Click Save.
5. (Optional) Click a data element to execute a search for that record in the
associated application. (The administrator must set up drill-down options to
enable this functionality.)
6. (Optional) Configure the chart using the Charting toolbar.

37 Chapter 7: Running Searches, Reports, and Charts

RSA Archer GRC Platform User Guide

Index
A
application 8
Archer 6

C
charting
toolbar options 34
charts 37
components 6
Cross-Application Status Tracking (CAST) fields 23
custom built solution 9
customizing 7

D
dashboard 12-13

E
email record 20

F
focused solution 9

G
global report 30

I
iView 12-13

O
ODA 8
on-demand application 8

P
personal report 30

Q
quick search 25

R
records 18-20

Index 38
RSA Archer GRC Platform User Guide

report 30-31
report types 30
RSA Archer 6-7

S
solution 8-9

T
task 22-24
task management 22
toolbar, charting 34

U
updating
user profile 15
user profile, updating 15
user rights 18

W
workflow 20
workspace 12-13

39 Index