This can definitely be done. Your best bet is to script the use of MBSA on computer login and then use the information MBSA provides to know if the computer meets the current security standard.
Microsoft has released an excellent document on how they do exactly what you are trying to do:
Related Q&A from Rod Trent
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.