echmain wrote: ↑
Fri Jun 08, 2018 8:06 pm
I couldn’t log on because ONE specific Windows 7 security patch K123xyz hadn’t been installed.
The 123xyz patch is very important: You can tell by its numbering.
At some point, reputation and protection from liability through negligence understandably become more important than productivity. This is good because the resulting inefficiency allows smaller companies to produce a disruptive innovation and become market leaders. In particular, the Raspberry Pi was not developed by IBM, Apple or Xerox.
Although each case is likely different, my suspicion is that many companies take extreme security measures with all computers because they have not properly segmented their network topology, data or operating practices. Once an organisation becomes big enough, it must operate in a way that does not tie important data and decisions to the unimportant.
A possible way of constructing such a structure is through the principle of subsidiarity
--each decision is made by the most local competent authority. In a corporate setting such a policy naturally segregates data and provides robustness that prevents a security breach from taking over the entire organisation. The classic example of the resiliency of such a structure is provided by the Catholic Church, which has survived multiple catastrophies through thousands of years.