Skip to main content
HomeTopicsSecurity Controls

Security Controls

Cybersecurity statistics about security controls

Showing 1-17 of 17 results

Only 7% of organizations believe their controls would prevent a compromised agent from operating.

Akeyless5/27/2026
Risk ManagementIdentity Security

The majority of businesses and charities have implemented basic technical controls, such as updated malware protection (81% businesses and 63% charities), backing up data securely via a cloud service (74% businesses and 57% charities), password policies (74% businesses and 56% charities), network firewalls (74% businesses and 45% charities) and restricted admin rights (73% businesses and 65% charities).

Department for Science, Innovation & Technology5/27/2026
UKSecurity controls

Adoption of more advanced controls like two-factor authentication (47% businesses and 38% charities), a virtual private network for staff connecting remotely (36% businesses and 17% charities) and user monitoring (30% businesses and 31% charities) remain lower than other measures.

Department for Science, Innovation & Technology5/27/2026
UKSecurity controls

Only 21% of organizations enforce protections like cooldown periods.

Endor Labs5/27/2026
Open SourceCooldown Period

32% of SMBs perform penetration testing.

VikingCloud5/27/2026
SMBsPenetration Testing

63% of SMBs have antivirus or antimalware tools.

VikingCloud5/27/2026
SMBsAntivirus

58% of SMBs have firewalls.

VikingCloud5/27/2026
SMBsFirewalls

34% of SMBs have vulnerability scanning.

VikingCloud5/27/2026
SMBsVulnerability Scanning

67% of SMBs have real-time threat monitoring or intrusion detection/prevention systems.

VikingCloud5/27/2026
SMBsThreat Monitoring

45% of organizations reported that their cyber insurance policy could be voided if required security controls were not in place.

Delinea11/22/2025
Cyber insuranceSecurity controls

54% of firms in the financial services industry still rely on spreadsheets or in-house systems to track security controls.

Omega Systems11/16/2025
Financial ServicesSecurity controls

84% of CISOs expressed concern over whether their cyber defenses could withstand an attack from a sophisticated threat actor

Cymulate4/23/2025

One in five attacks in 2024 displayed some form of evasive technique designed to evade traditional network and endpoint-based security controls

Menlo Security3/19/2025
Security controlsSecurity incident

None of the nearly 93,000 threats analysed in Red Canary's 2025 Threat Detection Report were prevented by customers' expansive security controls.

Red Canary3/18/2025
Cyber threatSecurity controls

Critical security controls were found to be either non-compliant with internal security and risk policies or missing from devices 15 percent of the time in the analysed healthcare PCs.

Absolute Security3/3/2025
HealthcareSecurity controls

12% of enterprises are waiting for security controls to be ready before deploying AI.

Wallarm1/1/2025
AIEnterprise

48% of enterprises report implementing specific security controls for AI deployments.

Wallarm1/1/2025
AIEnterprise