Managed Security Providers
As I wrote in a recent posting, even for large intranet operators it is too difficult to properly protect their network.
Many firewall admins are actually belonging to the biological species called "Bradypus variegatus". They manage to wear T-shirts and old jeans, but you can spot them from their long beard and bad smell.
It is time to get real pros monitoring the firewall and other critical points in an intranet. Bruce Schneier made a lot of money with Managed Security Services and for good reason. It does not make economic sense to replicate these highly specialised skills in thousands of instances, when the best expertise should be concentrated at one point. Also, the knowledge gained by monitoring breakin and exfiltration attempts should definitely be collected at a central point.