There is a clear need for expressive and powerful software technology that allows companies to detect and describe potential security problems in their systems based on certain sequences or certain collections of “business events”. These can be any type of event (messages sent, RFID scans,… ) for which a digital avatar exits. Once detected, certain accompanying “business actions” need to be executed (message send, SMS send, …). SPICES proposes to conceive these sequences and CEP) language. Such a language allows for a declarative description of the patterns without having to resort on low level implementation technology.