One of the key ways to determine how deep your risk is from outside hacker attack is to have your information assurance (IA) team setup a HoneyPot.

They are a lot of work but the details you can get from them may help you protect your information systems considerably in the future.

There is a new CDROM version available that might fit the bill: http://www.honeynet.org/tools/cdrom/.