Building a security infrastructure is a constant exercise in revision. Externally, these revisions are driven by a tightly organized, well-funded, and highly intelligent criminal element that is highly focused on specific targets. Regulatory compliance is a worldwide issue that requires accurate oversight. Internal threats are also an issue as authorized account holders (e.g., employees, customers, partners, and suppliers) engage in behavior that ranges from mischievous to malicious. Detecting and managing these incidents and events requires a hybrid approach that incorporates security products, managed services, and professional services.