The Security Client uses security policies to determine security enforcement on endpoint devices.
You can create security policies for your entire organization, specific groups, or individual users or machines. A security policy can allow full employee productivity while securing the endpoint, or it can restrict employees to running only certain applications and having only authorized hardware available to them.