StormShield Security Suite 5.1
Strengths: Comprehensive offering. Price performance attractive
Weaknesses: No AD integration but did have IP discovery
Verdict: Very nice offering, provides a lot of security at the endpoint for the price. This is the complete package
StormShield Security Suite 5.1 offers integrated system control, system protection and data security in a single, lightweight client that requires low overhead on endpoints and networks during deployment. Support for device control, encryption, application control firewall, HIPS, anti-malware (anti-virus), network access control and wireless security and control provides for a comprehensive endpoint offering. It provides protection in all four endpoint protection categories.
The server installation went well. The product did require a database backend but it did ship with an integrated MSDE that we used as part of our test load.
Just like the other solutions we tested, once we loaded the server we began managing the agent side. Agent management did take some time. We were surprised to see that there was no Active Directory integration but were then pleased to find that the IP discovery tool worked well enough to compensate for this.
The application security and HIPS capabilities were some of the best we reviewed and included options for preventing key loggers, protection against memory overflows, CPU over-use, privilege escalation and blocking of copy/paste functionality. The port and device management included anything on the endpoint device.
The management dashboard provides real-time security posture reporting over all the managed endpoints. The dashboard was not as intuitive as we would have liked, but it worked well and we quickly got used to it. Reporting is very good and includes server, agent, device and security-related default reports. Centralised logging is very detailed and alerting is available. We were unable to test the alerting as part of our review.
Standard support is included for 18 per cent of the licence fee. Additional support options are available. Documentation was complete and very detailed.
This is a great solution for an organisation that wants to cover all aspects of endpoint security. You can find better point solutions but this one has the complete integrated package and wins our Recommended award this month.