Is all security destined to be outsourced? Is that really the future? Analyst firms adore big loud statements and this one qualifies: “All Big Companies Will Outsource Security By 2010″.
The justification is a classic “security isn’t a core competency” for most companies, thus they need to outsource.
There are also some minor bits that will get folks worried, such as this one: “application code review … simply can’t be done cost effectively in North America.”