I suspect the issue is more a case of being responded to by those of us who
have had a lot more to do with ensuring compliance and performance in difficult security situations, and thus we're a little more pragmatic and knowledgeable about the issues involved.
I know of one educational facility that has multiple campuses in the one city. They decided it was cheaper and easier to have dedicated lines from the smaller campuses that did all their storage and log on through the servers at the main campus. A guy with a backhoe ripped up the comms lines that included their dedicated lines and for two days there was no computer based services or capabilities at the small campus concerned. Until the line was fixed and checked the campus was closed as no one could log on to any computers and some of the high security buildings wouldn't open due to not being able to verify the access codes with the main campus server. The cost to the campus in lost time and services etc was over a hundred times the cost of having the servers duplicated on site - that issue was remedied on all external campuses within a month. These sort of incidents are rare, but in many work areas they are the sort of incident that can't be allowed to happen even once.
