Symantec ESM comes with default policies that check significant and potentially problematic security areas on a system. These predefined policies correspond to the different levels of security possible in computing environments. You can edit a policy (or create a new policy) to match your organization's written security policy by adding or removing modules. You can also edit the modules in a policy.