Case Study — Modern Workspace, Identity and Zero-Trust

Modern Workspace, Identity and Zero Trust

A major Commonwealth institution needed to modernise remote access, endpoint management, and identity controls across a highly distributed environment supporting parliamentary operations and five agencies.

What we did

EmberPoint led a whole-of-environment modern workplace and Zero Trust uplift during and after the COVID-19 response period. The work included modern device management across Windows, macOS, iOS and Android, rollout of MFA and conditional access, migration to cloud-native collaboration platforms, and implementation of secure remote access patterns aligned to Zero Trust principles.

The team designed and implemented hybrid connectivity using ExpressRoute, VPN and ZTNA patterns, alongside a transition to Secure Access Service Edge (SASE) architecture. EmberPoint also coordinated Intune and PatchMyPC deployment to improve endpoint compliance, application lifecycle management, and Essential Eight-aligned patching across a diverse fleet operating outside traditional trusted network boundaries.

Architectural governance, delivery oversight, and cyber assurance were integrated throughout the program to ensure security uplift could occur without disrupting parliamentary operations.

What it delivered

The organisation established secure remote work capability for more than 5,500 users across approximately 270 locations while maintaining continuity of parliamentary services during periods of significant operational disruption.

The environment achieved Essential Eight Maturity Level 2 and PSPF Maturity Level 3 across managed ICT services. Legacy secure internet gateway and data centre dependencies were reduced through adoption of cloud-native identity, endpoint and secure access controls, contributing to more than $1 million annually in avoided infrastructure and connectivity costs.

The uplift also improved endpoint visibility, patch compliance, user mobility, and operational resilience across multiple agencies and security domains.

Why it matters

Zero Trust programs fail when identity, endpoint, networking, cloud and operational delivery are treated separately. EmberPoint integrated architecture, cyber and delivery leadership into a single transformation effort, allowing the organisation to modernise securely while continuing to operate under sustained parliamentary, operational and cyber scrutiny.