Relying on end users for security is difficult, but securing enterprise systems doesn’t have to be. For a system to be valuable, it must be accessible and beneficial to end users. Organizations have improved security awareness training for employees, but the training has limited value until the underlying systems are secured. The full life cycle of the system is from when it’s turned on until it’s powered off and securely disposed. The goal is to reduce the risk and give end users the best chance at thwarting attackers.”]
Source: https://www.darkreading.com/cloud/secure-the-system-help-the-user