Re: EMET was always the wrong end of the problem.
EMET is a sensible thing to pursue - it makes exploits harder to achieve. I note that other OSs have subsequently implemented a number of the technologies introduced in that toolset.
The other end of the problem is also important as in code quality and secure by design - and Microsoft are leading the field in that - a massive reduction in number of vulnerabilities in the last decade - and Microsoft now have much lower vulnerability counts versus all of the following direct competitors such as OS-X and enterprise Linux flavours in the OS space, Chrome versus IE in the browser space, Oracle and MySQL versus MS SQL in the database space, .Net versus Java in the CLR space, IIS versus Apache in the Webserver space, Windows Phone versus Blackberry, Android and IOS in the mobile space, etc, etc.
Microsoft's IIS recently become the most popular webserver by market share - largely because it has a consistent record for a good number of years now of much less likely to be successfully remotely hacked than most competing options.