Case Study: St Luke’s Health System achieves centralized mission-critical data and faster decision-making with RSA Security’s Archer

St Luke’s Health System unites mission-critical data and boosts organizational efficiency with RSA Archer

St. Luke’s Health System, Idaho’s largest private employer and only not‑for‑profit health system, faced fragmented IT and compliance data—lists of servers, endpoints, applications and periodic risk assessment results were scattered across spreadsheets, SharePoint and Word documents—making it difficult to connect information, track findings or produce defensible compliance metrics such as HIPAA posture.

St. Luke’s implemented RSA Archer (Enterprise Management, Policy and Risk Management modules) to centralize data, generate a risk register, assign owners, run assessments and map NIST controls to HIPAA. The result: self‑service access to a single source of record, elimination of bottlenecks and data‑chasing, faster decision‑making, measurable compliance percentages and gap analyses, and a flexible platform that improved efficiency, morale and continuous improvement.

St Luke’s Health System

Reid Stephan

Director of It Security