What is missing for me is, what is the threat? What is needing to be secured, and against whom?
I think I've followed a rational migration to computer parts that support mobility when mobility is urgent. I think of that episode in "Weeds" where Nancy Botwin has 20 minutes to vacate her So-Cal suburban home as a wildfire advances toward her neighborhood. So my backup disks for all systems (and my server -- which backs up all . . ) are 2.5" hot-swap units.
20 or 30 years ago, you could worry a lot about home-invasion and computer theft, and that could still be a worry. You wouldn't want some South-LA gang accessing your bank-account data. But since we spend most of our time at home, the only security gap remaining is the absence of a good pump-action shot-gun. [Supposedly, just hearing the gun being racked is enough to scare the bejeesus out of anyone familiar with the sound.]
Some may think I'm a bit retrograde, but I don't implement the security features of the newer motherboards, and I don't use any special encryption of my data HDDs (or any other). I've seen too many folks struggling with BIOS misconfigurations (and Secure-Boot) or accessing encrypted disks. I think I've seen people who get into trouble with BitLocker, but someone can correct me if they think I'm mistaken or confused about it.
Secure-Boot may only be peripheral to this issue, but I had encountered problems when a system becomes unstable and somehow resets the BIOS -- or the BIOS is reset by some other accident. The motherboard default has Secure-Boot Enabled, and one needs to reconfigure the BIOS to disable it before the boot disk is again bootable.
Now -- if someone wants to place a million-dollar defense contract at my feet with certain "requirements," I'll be glad to do that. But for my personal retiree-existence, I'm not inclined to it.