Please share with the community what you think needs improvement with McAfee Network Security Platform.
What are its weaknesses? What would you like to see changed in a future version?
Integration with Global Thereat Intelligence could be better. Also, I think management solutions are end of life now at McAfee. Network threat analyzer may be used for endpoint quarantines. Integration between these sides, as well as endpoint APO, will help you quarantine the risky endpoints. Maybe they should add a feature to block all high severity threats. You cannot block all of them now. I would like to select them all and block then in one action. In crunch data situations, you need to go through every attack one at a time and change the action.
The solution needs to improve the graphical interface. They had a limitation in some of the sensor modems as well. You probably need to buy a big model to get the solution in line. They don't give you the big model by default. During deployment, since everything goes down, all the traffic will be down. You have high variability compared to others. You need to deploy a lot of sensors and figure out the best practices. This may cost you a lot. I think they should have a correlation of the IA deployment or IA policies. They should improve their policies to get the correlation and the variables from one policy.
I would like the ability to apply more filters or better customize reports in order to display information in a readable way. That would be nice.