A new study shows that the sprawl of new management and security tools can end up leaving some endpoints unprotected. Credit: Gorodenkoff / Shutterstock Enterprises that use endpoint security and management technologies face a problem of growing marketplace “sprawl,” as new tools proliferate and options multiply, according to a study released today by the Enterprise Services Group.Between the ongoing influence of remote work and IoT, the number and diversity of devices that have to be managed by endpoint security tools is on the rise. As a consequence, the number of available tools to manage them has also risen.An ESG survey of 380 security professionals in North America, commissioned by cybersecurity company Syxsense, showed that companies using larger numbers of different tools to manage their endpoints had larger proportions of unmanaged endpoints, compared to those with fewer. Put simply, the complexity of the current-day device environment is leading to worse security, according to the research.Diversity of devices increaseDevice diversity, in particular, has increased sharply of late. While Windows PCs were still the most common devices under management, with 65% of survey respondents saying they were managing one or more such devices, IoT devices were the second-most common, at 61% for general purpose devices and 54% for specialized gadgets. Chromebooks, Android devices, and phones and tablets running iOS were also common devices under management. Overall, however, respondents said that the task of keeping their devices managed has gotten easier in the past two years. Over half — 56% — said that endpoint security is either “somewhat” or “much” easier to handle today as compared to two years ago, while 58% said the same about endpoint management.Roughly a third of organizations said that they had experienced multiple endpoint-related security incidents. Of those, 54% said that more than 20% of their overall endpoints were unmanaged, while 83% put that figure at between 11% and 20%. More unmanaged endpoints, in short, appear to lead to a greater likelihood of a cyberattack. Implementing dedicated endpoint protection solutions has a correspondingly positive effect on security, as 44% of respondents said that they discovered unsecured systems when putting such products into production, and 40% said that they found sensitive data in places where it should not be.The biggest individual challenges in endpoint management, according to ESG’s data, center on patch management. Over a third — or 34% — of respondents said that a major challenge in this area was aligning IT and security priorities for patching, while a similar number said that tracking specific vulnerabilities and patch management were the most serious issue. Unpatchable vulnerabilities were rated as highly difficult by 31%, while automating the endpoint management workflow was cited by 30%. Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe