@corlin One of the things I always stress when giving teaching lessons to our newer employees about cybersecurity is that if a security measure negatively affects the ability for authorized users to do their jobs to the point that the measure must be bypassed to accomplish any work, that measure is too restrictive.
I look forward to reading this!