Neil Roiter has a piece over at Search MidMarket Security about assessing managed and SaaS SIEM solutions.

“It’s critical that they understand your vertical — setting up SIEM in a healthcare environment is different than retail,” said Diana Kelley, partner and co-founder at consultancy Security Curve. “They’ve learned something over time about what’s going on in that kind of organization and can reuse some of those correlation rules and give that benefit.”

I’ll be doing the keynote for the TechTarget eMail Saas security seminars this month. If you’re in any of these cities – please consider registering for the free half-day seminar.

Thanks!

Chicago, IL
Tuesday, February 16, 2010
Hyatt Regency O’Hare

Boston, MA
Thursday, February 18, 2010
Sheraton Needham Hotel

Toronto, ON
Tuesday, February 23, 2010
Hilton Suites –
Toronto / Markham Conference Centre and Spa

Houston, TX
Thursday, February 25, 2010
The Magnolia Houston

Wow, wow, and double-wow! This post really cuts to the heart of the matter on outsourced development. Like Einstein’s search for the unified theory of physics, this is the “unified theory of software development.” In a concise and targeted way, Mr. Shapiro makes a fantastic case for rearchitecting software patents, improving software security, and otherwise changing the economics of software development. Hats off to a brilliant argument.

In this article, Outsmarting Outsourcers, tha author details how a former EDS outsourcer went to work for the company EDS was providing services for. Course having been inside EDS he knows how to negotiate a good contract with them.

Basing payment on performance isn’t a bad idea. But having worked for KPMG, I can see both sides of the argument. A lot of outsourcers make bids based on the information the client provides and then get into the company and realize the project is bigger/more complex than anticipated. Caveat Emptor all ’round.