So who pays for this in the outsourced world?
So, the monkey in the room is who pays for all this? With companies under pressure to reduce costs, paying for a bunch of sophisticated and well trained guys (and gals!) to sit around monitoring logs and looking for threats is where on the priority list?
This all sounds awesome, but it's hard enough getting them to buy firewalls, but asking them for a central logging infrastructure and the software to collate, sort and mine this for threats is going to be tough tough tough. Or it will get just tossed at the regular IT staff as another one of the multitude of things on their plate.
Unless it's made part of PCI, or the insurance or regulators require this stuff, it ain't going to happen except in cindarella circumstances.