SecurityExpressions is a comprehensive audit and compliance software tool which is easy to deploy and usable in most computing environments. It can audit systems either with or without agents deployed on the target machines.
There are benefits to both approaches, and the administrator can set preferences according to available bandwidth and other parameters. In any event, having a choice of fundamental approaches is a commendable feature.
SecurityExpressions is rule-based, and a variety of predefined rules are supplied which can be used as they are or customized to suit the organization. The supplied rules (from NIST, Microsoft and others) are fairly comprehensive and worth experimenting with.
Alternatively, you can create rules from scratch, and a useful 168-page guide explains the process. A getting started guide is also supplied in PDF format (although we always prefer printed manuals), and the help files, while not extensive, are useful and carefully considered.
The pane-based user interface, while not fancy, is intuitive and clear – just what the admin needs. Having selected a rules policy and run an audit, the results are displayed clearly with an "OK" or "not OK" against each rule.
Clicking on an item displays further details in a lower, sizeable pane, including a priority level and suggested fix. There is also the option to display a preamble, which gives an overview on the rules policy currently being used.
On clicking the "fix" link, the fix is performed automatically and the result updated in the audit. This is a logical approach that will work well for many of the predefined rules. There is also a comprehensive reports section for configuring custom reports quickly and easily – a key feature.
SecurityExpressions can also be used for benchmarking and subsequent compliance testing, as well as patch management. It is a potentially versatile product that will prove invaluable in many scenarios. It is also an easy tool for the administrator to become familiar with. As familiarity and experience increase, a more in-depth approach can be taken which will realize even more powerful functionality.
SecurityExpressions is a well-conceived auditing tool, fast to deploy within a majority of contemporary organizations. It is both intuitive and flexible, providing scope for fine tuning according to requirements.
Clear, intuitive interface, flexibility.
Documentation could be a little better.
A comprehensive and easily deployed auditing tool.