But seriously
Surely any credible securidee system would start by disabling all Windows 10 installs?
The first fruits of Microsoft's 2015 acquisition of Adallom are ripening with Redmond announcing its Cloud App Security offering is now generally available. The idea of Cloud App Security is to cover off the data loss danger in “shadow IT” – the use of cloud apps that people have contracted using the departmental credit card, …
Perhaps IT departments would be better off determining why staff go looking for unofficial solutions.
Sometimes it's cost - why pay IT X times what a third party charges for what appears to be the same thing?
Sometimes it's time - why wait N months for IT to do the job when a third party will deliver on demand?
IT need to get better at demonstrating the added value they deliver, the risk mitigation that their "slow" processed provide, and the hidden costs that the third party price tags never show.
I know of no business where “80 per cent” or even one percent of staff can install and run their own software. So basically Microsoft invokes an imaginary bogeyman to induce companies to install a Microsoft auditing system that will allow Microsoft to identify, control and eventually eliminate, third party applications.