75% Of Organisations Have Gaps In Core Security Controls, Research Finds
IT Security Guru, Thursday, January 29th, 2026
Despite strong vulnerability scores, majority of organisations have gaps in core security controls like MFA, endpoint detection and policy management, creating overlapping exposure across enterprise environments.
New research by Nagomi Security has revealed an alarming disconnect between how secure organisations think they are, compared to where real exposure exists. This overconfidence, as explored in Nagomi's The Illusion of Maturity: 2026 Enterprise Exposure Snapshot, means that organisations are facing overlapping exposure within their networks, potentially putting them at significant risk.
Notably, incomplete multi-factor authentication (MFA), missing or misconfigured endpoint detection and response (EDR) and weakened endpoint policies appear in more than 75% of organisations, often affecting the same systems at the same time.