A cyber-security firm Avecto found that a system administrator could mitigate 94% of all critical vulnerabilities Microsoft patched during the past year. The same 100% threshold also stands for Office 2016, showing the large number of security threats a system admin could mitigate just by a proper user management policy. Most companies and users would be able to avoid malware infections and network compromises if they’d only follow the example of Linux users and avoid using admin accounts as their primary profiles. The study was carried out by the same firm for the second year in a row, after, at the same time last year, it discovered that a.sysadmin could mitigate 86% of critical vulnerabilities.
Source: https://www.bleepingcomputer.com/news/microsoft/removing-user-admin-rights-mitigates-94-percent-of-all-critical-microsoft-vulnerabilities/