Is there any reason not to implement a global blacklist? We see a global whitelist, so we are just curious. For all our users, we normally block the typical non-business stuff like porn. It seems better than having to do it 10 times in URL Filtering Rulesets that are mapped to AD groups.
No reason not to, a lot of customers implement it themselves. There is one in the ruleset library I believe.