I measure security as "is my shizz secure??" If yes, then it's secure. if no, then it's not secure. security is like death. you can't be mostly dead or somewhat dead.
Jezus, nothing is perfectly secure. It's a process.
That adage gets repeated all the time because it's absolutely true.
(BTW these days you'd be looking at a 6800 not a 6500 unless buying used, and the Nexus only if you've got some majorly complex things going on in the server room. Also we gave up on paying the cisco premium on the edge a while back, and have never looked back. While Cisco has been fiddling with SLA, other folks have made much cheaper alternate edge switches with fully adequate feature sets.)
You are mixing network gear vendors (HP Procurves, Netgear ?).
The one most important factor is reacting to change. Flexibility is crucial. For example, even though individual machines with drive arrays work well, moving to a SAN in the data center [2] is a necessary move for most applications. Similar with moving from racks of physical hardware to a VM infrastructure [3]. Network-wise, the future will be about dealing with edge devices (IoT stuff), and perhaps even having a separate WAN that is shared among companies that uses leased lines so that business transactions run on a separate network than the Internet.
Doesn't this require a decent sized company to begin with (+1000 users) or one with a specific need.
A SAN and virtual infrastructure isn't exactly cheap.
Make sure your code does nothing gracefully.