Symantec ESM uses policies, templates, and modules to identify and evaluate network vulnerabilities and security policy violations. Policies set the standard that Symantec ESM uses to measure the security state of agent computers. Policies contain modules. Modules contain the security checks that perform the assessments. The templates and the snapshots serve as baselines to determine what conditions should exist on agent computers.