Mobile access is essential in today’s financial world – but only if it’s secure. 

The firm had been relying on VMWare Workspace ONE to manage a mixed fleet of iOS and Android devices. But as the organisation embraced a modern Microsoft 365 and cloud-first strategy, the legacy system became a roadblock.  

Key issues included: 

• Limited integration with Entra ID (formerly Azure AD) 

• Friction in managing app protection and compliance 

• Inability to support a secure Bring Your Own Device (BYOD) programme 

• Delays to Exchange Online migration and wider digital transformation goals 

Most critically, the legacy platform was preventing them from enforcing modern security frameworks like the CIS (Center for Internet Security) – a must for safeguarding client data in a high-trust environment.

The 848 Group designed and delivered a cloud-native mobile management solution using Microsoft Intune – enhancing security, user experience, and future scalability.

Discovery Workshops 

• Engaged cross-functional stakeholders across IT, compliance, and security to understand goals, constraints, and user personas.

Dual devices strategy 

• Company-owned devices: Full device and app management. 

• BYOD (personal devices): App-level protection only – keeping work data secure while respecting personal privacy. 

Security alignment 

• Integrated Microsoft Defender for Endpoint to meet CIS security benchmarks and enable real-time threat protection. 

Cloud-ready architecture 

• Built with scalability and repeatability in mind, including integration with Apple Business Manager, Conditional Access policies, and custom compliance rules.

Phased rollout 

• Adopted a three-phase model (Enable – Secure – Enhance), allowing early testing, user feedback, and risk mitigation.

• Admin guides and user documentation 

• End-user communications pack 

• Migration playbook for IT teams 

The organisation now operates a modern, secure mobile experience across both corporate and personal devices – aligned with its Microsoft 365 strategy and ready for continued transformation. 

Stronger security posture 

• Enabled zero-trust access, reduced attack surface, and aligned with cis security benchmarks. 

Better user experience 

• Staff now enjoy secure access from anywhere – without compromising usability or privacy.  

Operational efficiency 

• Reduced it admin workload through automation, policy consistency, and app lifecycle improvements.

Future-ready foundation 

• With technical debt removed, the firm is now progressing confidently with its exchange online rollout and wider cloud adoption goals.