Security is always top of mind of IT professionals. You want to do everything you can to reduce the attack surface of possible threats. Today server software contains built-in security capabilities but often times they are an option vs default. When software and hardware defenses cooperate you get a tighter defense especially with capabilities like TPM and UEFI.
According the the Microsoft Windows Server Blog:
Secure boot and TPM are capabilities that I have not used in the past. Secure boot is used to ensure a device boots using trusted software from the OEM. While Trusted Platform Module (TPM) is a secure processor. Adding these two capabilities to Windows Server is a good start in keeping these systems secure.
This may also push folks to update their server operating systems sooner to take advantage of these features.
Do you struggle with server security? Are you taking advantage of the latest Windows Server operating system? Let me know on Twitter if this is something you are looking forward to.