Zen 2.0

Ron Lepofsky from ERE Information Security had a great article, CFO responsibility to fund log analysis for Sarbanes-Oxley compliance, on SC Magazine.
Here’s a summary SC Magazine provided:
Corporations responsible for complying with Sarbanes-Oxley, face great hurdles with a basic compliance objective: analysis of their (server and security device) event logs. Some do not for lack of [...]

Much ink has been spilled all over the web and in print writing about log management and analysis. Google returned over 640,000 hits for the search ‘“log management” OR “log analysis”‘.
A whole technology segment has been created just for this purpose. IDC and Gartner both predicted that the log management space will be over $500M [...]

Someone googled for “how to calculate firewall log size requirement” and found this blog. Since google only pointed to my main site and not the specific article, here’s it is:
Five Factors to Consider When Building Your Logging Infrastructure

Techworld has an article on this topic. Unfortunately, Larry Lunetta made it sound like the whole SEM space is about IDS alerts reduction. It would be really sad if that’s all SEM products do.
I think SEM is probably the wrong name for this space anyway. Most of the vendors mentioned in the article are pure [...]

Rainer Gerhards announced the initial beta release of the rsyslog package, an alternate syslogd implementation.

Rsyslog has been forked from the sysklogd package. It currently shares
its base design but includes many important enhancements. Most
importantly it supports
- fully configurable output formats, including
* high precision timestamps with year
* access to each of the [...]

The two pieces I wrote on pros and cons of MSSPs are now on Computerworld.
The pros and cons of MSSPs
Part 1: 10 reasons to outsource security
Part 2: Reasons to be wary. Seven shortfalls of outsourcing security

According to this article, EU reconsiders new data retention laws, from Computerworld:

Under draft legislation proposed by the UK, Ireland, Sweden and France in April, operators would have to keep for at least 12 months all data concerning the source, routing, destination, time, date and duration of communications as well as the location of the telecom [...]

Information Week has a small blurb on
What factors should we consider in selecting security-log-auditing software?
I have also written here before on Five Factors of Logging Infrastructure.

Last week we went over some of the Pros of Outsourcing to MSSPs, today we will go over some of the Cons in more details.
Here are the reasons why you should think twice before outsourcing.
1. Device control Once you outsource your security infrastructure such as firewalls and IDS, you may lose some or all control [...]