Addressing Modern Security Challenges
Windows 10 is considered the most robust Windows operating system so far; therefore, it's little surprise
that countless organizations trust in Microsoft's cloud-based modern management approach to facilitate
heightened security and agile IT capabilities.
But mobile device management solutions mean that employees must have administrator rights to do their
jobs on a daily basis — a potential security risk. So, while Microsoft is enabling organizations to deploy
Windows 10 support and adopt modern management more easily, it's important that businesses
understand that the operating system alone is unable to protect businesses from evolving threats.
To protect their organizations, CSOs, CISOs, and other IT security professionals need to think more
strategically when migrating to Windows 10.
For example, in a survey of 500 global IT and cybersecurity professionals last year, vulnerable endpoints
were the top security concern of migrating from Windows 7 to Windows 10 for 40% of respondents.
Meanwhile, for all regions except the United Arab Emirates (UAE), the biggest challenge for securing
remote workers and employees that leverage bring your own device (BYOD) on Windows 10 was
ensuring that endpoints were secure. UAE respondents were most concerned with malware attacks.
These concerns are not misplaced, with many breaches arising due to employees working remotely and
enjoying access to data from their own devices. To help mitigate this threat, CISOs should remove admin
rights wherever possible and implement a thorough training program to ensure that employees
understand why this is happening, along with the correct steps that must be taken to continually mitigate
the threat of exposed endpoints.
Privilege or No Privilege?
There have been two main types of account — administrator and standard user — in every version of
Windows to date, and Windows 10 is no exception. But with the knowledge that removing admin rights
could mitigate 80% of all critical Microsoft vulnerabilities reported in 2017, the specific security threat that
overprivileged admin users pose to their businesses is clear.
Fortunately, the removal of admin privileges from employees is relatively simple on Windows 10.
However, although this process does result in improved security, it can present some usability
challenges. Because many day-to-day tasks and applications require admin rights, their loss can hamper
a workforce's efficiency in carrying out their responsibilities.
This is a conundrum for businesses, which must aim for maximum security but also avoid locking too
many users out of the systems they need. IT and security leaders must weigh this balancing act on a