I read a blog post recently advocating end-users to have full admin rights to their work computers and have the ability to install softwares for efficiency and productivity. I agree that end-users (of which I am also) need to be provided the tools required to do our jobs, which includes researching new technologies. These tools include the software we need installed on our desktop that may not be provided by IT. I hear and read frustrations from end-users who seem to constantly hear “no” from IT when a request for a software or service is requested. I feel the same way sometimes. However,those software on the desktop are useless when the network or some other critical services used by the entire organization (e.g. email, student information systems) are not available as a result of disruptions caused by malicious software. I will admit that there have been a couple of times when I have had to re-image my personal machine because of a virus that I had unknowingly downloaded from an infected site. My point in sharing my experience is that even the most careful end-user with the best intention can still introduce malicious code to the network.