The amount of effort apparently required to satisfy all the checkboxes around "a cheap PC and Microsoft 365" is astounding. My Fortune 250 laptop runs 3 different security "endpoint" products, and literally dozens of scripts fire each day/hour to make sure that things are "correct" according to every suggestion any consultant ever made towards our senior IT staff. And they replace the entire fleet every 3 years. I believe that starting with longer lived hardware with an inherently more secure environment that didn't need to be groomed like this would be a net savings, but I don't have the numbers to prove it.