It is the argument that access should be via remote desktop for administrators and the laptop being a bland install with no tools. Enables the security team to lock the account or bar the latop connection as soon as they become aware.