I have never understood why American companies seem to insist on hiring foreign workers for their IT security issues. It makes no sense. Those foreign workers have no sense of loyalty to that company, no vested interest in protecting the security of that company and like a revolving door of employees, come and go without ever having put down roots. That equates to the least efficiency in employee productiveness, in my book of logic.
One of the energy companies where I worked hired nothing but outsourced (foreign) IT guys. You wouldn't believe the amount of porn I found stored ON THEIR SERVERS after about a year. Enough that the company could have been sued out the wazoo for allowing such "stuff" to be accessible on their network.
Again, foreign outsourced workers have no reason to NOT do such things. They'll just go on to another consultant company if caught and fired.