wta306 (6/24/2011)
[We implement] very basic auditing into our solutions that only gets reviewed in the event of an issue...so 100% reactionary.
My group is similar.
Note there are other groups here (security and platform people) watching various stuff and sometimes that causes a proactive review. Also we have an IPS which is proactive - but you can't credit my group with that.
That's the 'general' answer - there are applications that get much more attention.
Mostly our 'general' way of doing business is driven by the customer's budget.