The built in security in Windows 10 is spot on, SUA, SRP, Anti-Exploit and more. However this is a Kaspersky thread so my comment was regarding Kaspersky. I'm the type of user who could get away with not running any security software and I think that it's good practice for everyone to learn how to lock Windows down using it's built in security tweaking WD via GPE. Windows 10 built in secuirty is so good that most users don't need third party security software, but, as you said Kaspersky is conveient and even more so to the average user. I've got my main Windows 10 install completely locked down from an SUA, SRP, I've disabled unneeded services, closed unneeded ports and lots more. But, on my other Windows 10 machine I just use Kaspersky Security cloud paid, tweak it for maximum security then change a couple of Windows settings and I'm away. You're spot on - Security software such as KIS is just convenient if we lock Windows 10 down using the built in features then we don't need to add anything. I think as Windows 10 development moves on there's going to be less and less need for even the average user to use third party security software which is an amazing feat by Microsoft. The only thin I'd add to the built in Windows 10 security is a VPN and I also like to modify my hosts file and that's it really.