Segmented networks that implement scanning

What is claimed is: 1. A system comprising: a memory for storing executable instructions; one or more processors executing the instructions; a plurality of segmented environments, each of the plurality of segmented environments comprising an enforcement point comprising an active probe device, and a plurality of workloads each implementing at least one service component, the plurality of segmented environments collectively providing a service, each of the plurality of segmented environments providing a portion of the service, the plurality of workloads controlled with a host server that coordinates the operations of distributed service components to provide the service; and a data center server coupled with the plurality of segmented environments over a network, the data center server comprising: a security controller providing, via the one or more processors, a security policy to each of the plurality of segmented environments, the security policy being configured using the service; and an active probe controller requesting, via the one or more processors, each active probe device of the plurality of segmented environments to perform a respective scan of a plurality of scans, wherein the active probe controller causes the active probe device to execute the respective scan when a triggering event is detected by the security controller, the respective scan is a vulnerability scan and the active probe controller implements a remediation scheme in addition to the respective scan by the active probe device, the plurality of scans including packet insertion and/or modification, the plurality of scans performed on the plurality of segmented environments collectively providing the service, the plurality of scans occurring in parallel on the plurality of workloads implementing the at least one service component. 2. The system according to claim 1 , wherein the security policy comprises a firewall that implements a firewall policy and the respective scan occurs within each of the plurality of segmented environments without traversing the network or passing through the firewall. 3. The system according to claim 1 , wherein the active probe device is configured to execute the respective scan according to a predetermined schedule. 4. The system according to claim 1 , wherein the plurality of scans are at least one of a vulnerability scan, a file scan, and a service scan. 5. The system according to claim 1 , wherein the remediation scheme comprises isolating an affected segmented environment from communicating with other segmented environments or communicating over the network. 6. The system according to claim 1 , wherein the remediation scheme comprises the security controller implementing a heightened security policy for an affected segmented environment. 7. The system according to claim 1 , wherein the remediation scheme comprises identifying an affected segmented environment for further evaluation by a security administrator. 8. A method comprising: establishing a plurality of segmented environments within a data center, each of the plurality of segmented environments comprising an enforcement point comprising an active probe device, and a plurality of workloads each implementing at least one service component, the plurality of segmented environments collectively providing a service, each of the plurality of segmented environments providing a portion of the service, the plurality of workloads controlled with a host server that coordinates operations of distributed service components to provide the service; provisioning each of the plurality of segmented environments with a security policy, the security policy being configured using the service; performing a scan on each of the plurality of segmented environments using a respective active probe device, the scans performed when a triggering event is detected, the scans including packet insertion and/or modification, the scans performed on the plurality of segmented environments collectively providing the service, the scans occurring in parallel on the plurality of workloads implementing the at least one service component, the active probe device identifying an affected segmented environment; and executing a remediation scheme in addition to the scans when malicious behavior within one or more of the plurality of segmented environments is detected, wherein the scans are vulnerability scans. 9. The method according to claim 8 , wherein the security policy comprises a firewall or virus scanning policy. 10. The method according to claim 9 , wherein the performance of the scans occur in its entirety without crossing the firewall. 11. The method according to claim 8 further comprising transmitting to the active probe device instructions to execute the scan. 12. The method according to claim 8 , wherein the active probe device is pre-provisioned to execute the scan according to a predetermined schedule. 13. The method according to claim 8 , wherein the plurality of segmented environments execute the scans synchronously without affecting performance of a network established between the data center and the plurality of segmented environments. 14. The method according to claim 8 , wherein the scans are at least one of a vulnerability scan, a file scan, and a service scan. 15. The method according to claim 8 , wherein the remediation scheme comprises isolating the affected segmented environment from communicating with other segmented environments or communicating over a network. 16. The method according to claim 8 , wherein the remediation scheme comprises a security controller implementing a heightened security policy for the affected segmented environment. 17. The method according to claim 8 , wherein the remediation scheme comprises identifying the affected segmented environment for further evaluation by a security administrator.