There are four basic disciplines of security management that provide the broad coverage necessary to protect any enterprise computing environment:

Identity Management (12 o'clock) - Identity Management is the practice of managing users and their corresponding user accounts. This discipline provides a basic level of control over who has access to the various networks and platforms in an enterprise. The flagship product category for Identity Management is user provisioning with web access control as the workhorse.

Vulnerability Management (6 o'clock) - Vulnerability Management is the security professional's strategic defense. This discipline focuses on identifying and remediating vulnerabilities or weaknesses in the components of any computing environment. The flagship product for Vulnerability Management is vulnerability assessment, with firewalls as the workhorse.

Threat Management (3 o'clock) - Threat Management is how we catch the bad guys. This discipline focuses on identifying and responding to anamolous and malicious events that occur throughout the network. The flagship product for Threat Management is security event management, with antivirus and intrusion detection as workhorses.

Trust Management (9 o'clock) - Trust Management is the practice of protecting and enabling activities that are of high risk to the enterprise. This discipline centers around encryption and access control techniques to create a secure process for authorized individuals. The flagship of Trust Management is Public Key Infrastructure (PKI), with Virtual Private Networks (VPNs) as the workhorse.