Day to Day System Management
This is another area in which StormShield does a good job. Instead of administrators being continuously beleaguered by users demanding access with handheld devices or other emerging technology, they can approve connection of specific device types--and brands and models within those types--as they are vetted. Further, organizations can control which file types can be copied to or from certain devices. For example, an administrator might allow iPods to connect, with only .MP3, .WAV, or .JPG allowed to be copied to them.
StormShield also integrates into Active Directory, allowing administrators to apply use policies via AD group membership. And users can have multiple policies. For instance, one policy might apply when the user establishes a remote connection with another invoked when locally connected.
As I wrote earlier, the management console interface is easy to use and intuitive. Daily management of this integrated set of security solutions won't overtask the security team.
The only problem I had with system management was the lack of a large set of pre-defined business policies. Yes, there are behavioral definitions. But I don't believe that out-of-the-box functionality is robust enough to quickly take advantage of the full functionality of the suite. Set up and testing time might be extended because of this, although SkyRecon engineers assured me they have a huge library of user-defined templates available at no charge. That's nice, but I would rather have them loaded in the product for my review and implementation rather than asking each time I run into a snag.