I am looking for a 100% outsourced (hosted, managed, etc.) intrusion detection and prevention system vendor for use in the payment card industry. They should be able to demonstrate recognition of and compliance with PCI security parameters. Does anyone have any qualified recommendations based on experience with particular vendors? If you have contact information for a particular vendor that you could share, that would be even better.
Also, does anyone have any guidelines against which to evaluate an intrusion detection and prevention system vendor - either for a hosted or in-house system?