Not easily, needs vpn clients on the devices etc. Talk talk didn't do it right, imagine if it was a dvr installed by 'insert name' at an employees home....
A security providers kit being the weakness used would be an issue to the provider.
I've said before tsi gets hundreds of attempts a day, but its patched, dynamic IP provides some protection but then ddns is used undoing some of that protection. I wonder how long till its in the news that a security system, not patched for over 5 yrs etc, is used as the attack point?