There’s an interesting article over at CSO titled 5 Tips for Managing Security in a Recession. It has some good advice for people trying to maintain security and audit-ability on a restricted budget.
The final paragraph talks about the value of outsourcing being cost-cutting but warns of the security risk. We thought about that a lot last year during our planning meetings for SIMON. Ultimately, we concluded that we could put out a solution that recovers budget without introducing security risk by implementing an appliance-based approach on-site that is managed by experts. You outsource the pain, but not the data. The data stays safe at home.