There's also massive amounts of variation between the companies in that group. Some are prohibited from taking source code off a computer located on premises (employees' take-home machines are "dumb" to the extreme in that they basically connect directly to their computers at work); others encourage their employees to use pre-production and internal products for personal use. As you can guess, they have dramatically different models for how to approach corporate security.