If you were to ask a room full of developers what are TLS versions or TLS ciphers and which ones should be disabled? You'd be luckly if any of them raise their hands.
Consider an old organization with hundreds of old systems, that can be fairly critical. Nobody understand or is willing to do the work. To their credit, TLS and cryptography is really difficult.
So don't be surprised that things will be fixed... after they're noticeably broken.
Im of a three person team that completed a similar but smaller company (~30 ish sites,400 heads) and it was just short of a nightmare to even get buy in from devs and maintainers. And even after flipping the switch we found issues, soft killed site wide connectivity a couple times, it was not a pleasant experience. However I dont recall a time in ~11 years in which Id learned more quite as fast as I did.
Consider an old organization with hundreds of old systems, that can be fairly critical. Nobody understand or is willing to do the work. To their credit, TLS and cryptography is really difficult.
So don't be surprised that things will be fixed... after they're noticeably broken.