Customer overvieew
A trusted name in financial planning and wealth management for over 30 years, this UK-based firm supports individuals, families, and businesses with expert advice and services.
Operating in a tightly regulated industry, they needed a secure, modern, and scalable mobile strategy to align with their cloud-first ambitions – without compromising usability or compliance.
The challenge
Mobile access is essential in today’s financial world – but only if it’s secure.
The firm had been relying on VMWare Workspace ONE to manage a mixed fleet of iOS and Android devices. But as the organisation embraced a modern Microsoft 365 and cloud-first strategy, the legacy system became a roadblock.
Key issues included:
- Limited integration with Entra ID (formerly Azure AD)
- Friction in managing app protection and compliance
- Inability to support a secure Bring Your Own Device (BYOD) programme
- Delays to Exchange Online migration and wider digital transformation goals
Most critically, the legacy platform was preventing them from enforcing modern security frameworks like the CIS (Center for Internet Security) – a must for safeguarding client data in a high-trust environment.
The solution
The 848 Group designed and delivered a cloud-native mobile management solution using Microsoft Intune – enhancing security, user experience, and future scalability. Key actions included:
Discovery Workshops
Engaging cross-functional stakeholders across IT, compliance, and security to understand goals, constraints, and user personas.
Dual devices strategy
To manage company-owned devices (full device and app management) and BYOD (app-level protection only – keeping work data secure while respecting personal privacy).
Security alignment
Integrating Microsoft Defender for Endpoint to meet CIS security benchmarks and enable real-time threat protection.
Cloud-ready architecture
Built with scalability and repeatability in mind, including integration with Apple Business Manager, Conditional Access policies, and custom compliance rules.
Phased rollout
Delivered through a three-phase model (Enable – Secure – Enhance), allowing early testing, user feedback, and risk mitigation.
Support materials delivered:
- Admin guides and user documentation
- End-user communications pack
- Migration playbook for IT teams
The outcome
The organisation now operates a modern, secure mobile experience across both corporate and personal devices – aligned with its Microsoft 365 strategy and ready for continued transformation.
Stronger security posture: Enabled zero-trust access, reduced attack surface, and aligned with cis security benchmarks.
Better user experience: Staff now enjoy secure access from anywhere – without compromising usability or privacy.
Operational efficiency: Reduced it admin workload through automation, policy consistency, and app lifecycle improvements.
Future-ready foundation: With technical debt removed, the firm is now progressing confidently with its exchange online rollout and wider cloud adoption goals.
Why it matters
In a sector where trust, security, and access are everything, this solution didn’t just modernise mobile management – it gave the business the confidence to grow without fear of compromise.
