Skip to main content
Modern 42 Logo
All case studies
Federal Government01

Transforming Identity and Cyber Capability for a Federal Government Department

A large Australian Government department partnered with Modern 42 to overhaul its identity infrastructure and strengthen its cyber security posture.

Industry

Federal Government

Sector

Government Services

Engagement Type

Strategic Advisory, Architecture and Design, Engineering

Technologies

Microsoft Entra ID, Apporetum, CyberArk

Frameworks

ASD Essential Eight, ASD ISM, Zero Trust Architecture

Duration

Multi-year (ongoing)

Federal GovernmentIAM StrategyPrivileged Access ManagementZero TrustCloud IAMEntra IDEssential EightDevOpsEvent-Driven Architecture

The Situation

This department delivers essential services to a broad Australian community. Its identity and access management (IAM) environment had grown organically over many years, creating a complex web of legacy systems, fragmented processes and inconsistent access controls. The department recognised that a comprehensive evaluation of its IAM capability was essential. Without a clear understanding of its current posture, it could not chart a path toward a modern, cloud-native identity platform. At the same time, the department was establishing new shared infrastructure and needed assurance that its privileged access controls met the required security standards. Internal reviews had identified gaps in how privileged access was being governed, adding urgency to the initiative.

What We Did

Strategy and Architecture

We conducted a thorough current state analysis, benchmarking IAM maturity against our proprietary IAM Capability Model. From this assessment, we developed the IAM Strategy, Roadmap, Target Architecture and High-Level Design, giving the department a clear, sequenced plan for transformation.

Privileged Access Management

We designed the PAM Blueprint, defined use cases and delivered a prioritised implementation plan, directly addressing review findings and securing the shared infrastructure environment.

Zero Trust and Network Security

We led a Zero Trust Network Architecture Proof of Concept, validating the approach for integration into the department's broader security posture.

Platform Engineering

We designed and built a new cloud-native Identity and Access Management platform to replace the legacy Microsoft Identity Manager. This included deploying Apporetum Access Manager into production and transitioning it into service. The new platform leverages event-driven architecture with microservices, with all deployments managed through DevOps CI/CD pipelines.

Additional Deliverables

Stabilisation of critical legacy Active Directory infrastructure. Security advisory for privileged access in response to internal review findings. Security classification uplift for the department's network. Uplift of Microsoft Entra capabilities to reduce reliance on on-premises Active Directory.

The Outcome

The department now operates a contemporary cloud-based identity solution built on Microsoft Entra ID, supported by automated provisioning, modern access governance, and a fully defined service design. Identity data remediation and migration activities are actively progressing. What began as a strategic advisory engagement has evolved into a deep, multi-year partnership spanning strategy through to engineering, with Modern 42 continuing to deliver across the department's IAM and Cyber Uplift program.

Key Wins

  • Delivered end-to-end IAM Strategy, Architecture and Roadmap aligned to ASD ISM and Essential Eight
  • Addressed privileged access findings with a comprehensive PAM Blueprint and implementation plan
  • Successfully deployed and transitioned a cloud-native identity platform into production
  • Validated Zero Trust Network Architecture through a successful Proof of Concept
  • Supported security classification uplift for the department's network
  • Automated IAM capabilities across multiple environments and Azure tenants using CI/CD pipelines

Ready to move forward? Pick your path.

Whether you need a quick conversation, a structured assessment, or hands-on engineering — we’ve got an engagement that fits.

Start a conversation

30 minutes. No commitment. Let’s understand your environment and discuss where identity security can add the most value.

Book a call

Get an assessment

Identity maturity assessment, gap analysis, or architecture review. Walk away with a clear picture and a prioritised roadmap.

Explore advisory

Engage our engineers

PAM migration, identity modernisation, CIAM build, or platform uplift. Our specialist engineers deliver what your team needs.

Explore engineering

We use cookies

We use cookies and similar technologies to help personalise content, measure the performance of our site, and provide a better experience. By clicking Accept, you consent to the use of all cookies.
Learn more.