‹ Back to Diagnose

Diagnose / detail

ACME Corp
high

EDR missing on 12 endpoints

Twelve unmanaged endpoints with no detection coverage — blind spots for detect + monitoring.

SOC 2 →NIST CSF → Open — CrowdStrike reports 12 unmanaged devices

Root cause

Twelve endpoints — mostly contractor laptops — have no EDR agent reporting. They fell outside the MDM enrollment policy.

Business impact

Unmonitored endpoints are blind spots: no detection, no response, no evidence. They weaken both the detect function and the SOC 2 monitoring criteria.

Mapped controls

NIST DE.CM-01
Fails while this gap is open
SOC 2 CC7.1
Fails while this gap is open
CIS 10.1
Fails while this gap is open