Chrome for Business - any security tips?

I'll be installing Chrome for Business for some local home users with a limited user account.
I can do stuff like whitelist extensions through Group policy, which is great.

I'm not very familiar with Chrome, so I'm looking for any additional security tips to make it safe for users who don't know what they're doing (besides just the obvious settings that are visible from the main GUI).
For example, I heard about some NaCL apps and some remote desktop functionality (?)... anything I should know? Is this stuff enabled by default?

 

1. Download group policy https://support.google.com/chrome/a/answer/187202?hl=uk

2. Apply NSA Security advices http://www.nsa.gov/ia/_files/app/Deploying_and_Securing_Google_Chrome_in_a_Windows_Enterprise.pdf

3. You might want to install some add-ons, whitelist them and block all others

 

What's the difference between standard Chrome and Chrome for business? Can those templates be used on standard Chrome installation?

hqsec

 

Thanks for that PDF, Windows_Security!

@hqsec: Hmm, after a quick test I don't know if there is a substantial difference anymore, besides the corporate-friendly MSI installer. It used to be that regular Chrome would install in the Users folder, but now it seems to install inside Program Files, just like the "for Business" version. Also, the Group Policy templates do work with regular Chrome.
But I'll leave a chance that there's something left over from my "for Business" installation of Chrome which is making it behave differently.