McAfee's vulnerability management product finished a close second, as readers noted its ample scalability, strong workflow and return on investment.
In addition to its baseline features, such as priority-based audit and remediation, discovery of unmanaged devices and its varied reporting options, version 6.5 of Foundstone Enterprise offers new scan management that enables scans to be run without selecting a specific scan engine. The latest edition can also import data from LDAP or Active Directory servers to more quickly identify IP addresses for scan configurations.
Perhaps most notable are numerous new policy audit features, such as Windows and UNIX host-scanning for predefined policy violations. The product also offers policy templates to help organizations check their compliance status against major industry mandates like SOX, GLBA, PCI DSS and FISMA, among others.
Current Analysis' Andrew Braunberg says McAfee wasn't quick to take advantage of Foundstone's technology following the 2004 acquisition, but that he's impressed by its new direction. "They were really a company that couldn't focus, but now they have this broad risk management play, and Foundstone was the start of that."