A method for desktop enterprise security management that addresses the multiple network and desktop security needs of an enterprise, facilitates the development, implementation, and enforcement of the enterprise's desktop security policies and procedures, and provides for review and revision of those policies and procedures. The method is based on a four-stage approach to desktop network security management. The first stage lays the foundation for the enterprise's network security policy. The second stage validates users and desktop devices according to the enterprise's desktop security policies, gathers data, and provides feedback to users regarding their compliance with the enterprise's desktop security policies. The third stage enforces the enterprise's desktop security policies by blocking access by desktop devices and/or users that do not comply with the enterprise's desktop security policies. The fourth stage includes periodic review of the enterprise's needs so that new desktop security support teams can be identified and the enterprise's desktop security policies implemented with the new teams.