There is a complementary product to ProxySG, called Web Security Service (WSS), which is a cloud based implementation of ProxySG, offering the same features as ProxySG as a cloud service.
This gives you the ability to block malware and restrict sites regardless of the network the user is connecting with. You can implement WSS using either a unified agent, Symantec Endpoint Protection (SEP), or other methods (including PAC files, etc).
Ask your channel sales rep for more information on WSS.