The way I think of security systems when helping my own clients, friends & family, is think about their needs, what their day to day tasks are, then on top of this if they're tech savvy enough you can advise more comprehensive protection and even enter into App Whitelisting is this is something that oneself prefers.
How I approach security setups for my own personal system is different compared to clientele, friend or family. For myself I go for the lightest possible, but making sure I don't miss out on crucial protection. Webroot is the lightest AV I've used, but I have found their fundamental floor is detection, hence why I've paired this with Binisoft Firewall Control, fairly light too. The attack surfaces I have covered are as follows below:
Binisoft Firewall Control ~ Keyloggers, Botnets, Certain Ransomware with C&C's, anything malicious making an outbound connection
Webroot ~ General Malware
Syshardener ~ Firewall Rules, Lockdown on OS, Exploits
Windows Defender
MBAM/Zam Free ~ On demand scanners
NVT Connections Viewer ~ Looking at all connection from a UDP and TCP level, with IPs
PatchMyPC ~ Keeping all software up to date
Everything for me is covered without going completely overkill on anything, whilst not getting in the way of my daily tasks, having knowledge of the notifications that come through via Binisoft and knowing what to allow and what to disallow.
~LDogg