What is achieved with GPOs and agents is compliance, not security.

In other words, company issued devices don’t protect the data, but they ensure conformity with relevant regulations and standards. Which is what most organisations actually care about.

Many good IT people really do care about actual information security, but not those in charge.

The result are devices that hinder some people’s work but provide questionable actual security.

Im all for privacy and obviously working where you want to but like really? Your unwilling to take a position if the desktop/laptop you use only for work doesn’t have an OS that’s acceptable? Regardless of pay/perks/etc you wouldn’t take a position where everything is perfect except you have to use their specified OS? This is genuine curiosity hopefully this doesn’t come accross as me trying to say I doubt you or your not entitled to your opinions but I just don’t get it, curious to understand why. What industry do you work in? It makes sense if a certain OS could make your job harder but I would be more worried about being able to use software that I want rather than OS at least at my current position.

What if their OS choices aren’t insane?

If an organisations’ security relies on the end device configuration there is no security.

For the user or the company? Assuming the user isn’t a moron with computers?

Edit: guess im out of the loop as a contractor who generally only does BYOD with my linux machine