I’m an internal product manager at a medium sized business (4k ish employees) that’s in a non-regulated industry. I’m new to GRC/risk/archer and part of my role is understand how we’re using in house applications.
I’m starting to realize that we don’t do anything risk related really in Archer. They manage incidents, claims, safety compliance, insurance compliance, vendor compliance etc… but they don’t actually report out or get audited to a 3rd party. They don’t even do anything actionable with the data. They seem to essentially be using archer as a glorified ticketing/archive/documentation solution.
Archer is increasing by 20% at renewal and we have an expensive archer developer to maintain our custom environment.
Can someone tell me why we can’t just use SNOW (we already license it for IT) or Appsheet (we’re a Google suite company).