# Modern 42 > Modern 42 is Australia's specialist IAM, PAM and Zero Trust engineering consultancy, delivering identity and privilege programmes for federal and state government, banking, healthcare, education, transport, and ASX-listed enterprise. ## Company Overview Modern 42 Pty Ltd (ABN 55 638 183 650), formerly Modern Methodologies Pty Ltd, is a 100% Australian-owned cybersecurity consultancy headquartered in Canberra, ACT. We specialise in Identity and Access Management (IAM), Privileged Access Management (PAM), Customer Identity (CIAM) and Zero Trust architecture. Our team of 16 to 30 security-cleared engineers delivers sovereign, end-to-end identity solutions across Australia's most regulated industries. - BeyondTrust Advanced Delivery Partner and Technical Excellence Partner of the Year 2024 - Microsoft Solutions Partner for Security with the Identity and Access Management specialisation - Microsoft End Customer Investment Funds (ECIF) approved partner - One of the Microsoft-recommended Australian partners for Azure AD B2C → Microsoft Entra External ID migrations, and the only fully Australian-owned and sovereign partner in that group - Partial owner of Apporetum, an identity observability platform listed on the Azure Marketplace ("Built by Modern 42") - 100+ identity and privilege projects delivered across 11 industry sectors - 100% sovereign delivery: Australian Government security-cleared engineers, no offshore involvement - M42 Labs security research division discloses CVEs in Microsoft and BeyondTrust identity platforms - Available through the BuyICT Panel arrangements in the Cyber Security category ## Where We Operate Headquartered in Canberra, ACT, with presence in Sydney, and engagements delivered nationally across Melbourne, Brisbane and other capital cities. All delivery is sovereign — no offshore resourcing — with Australian Government security-cleared engineers. ## Technology Expertise - **Microsoft Entra ID** (formerly Azure Active Directory): SSO, Conditional Access, Identity Protection, Application Governance, lifecycle workflows, and migration from legacy identity providers to Entra ID. - **Microsoft Entra External ID** (formerly Azure AD B2C): Customer identity (CIAM), migration from Azure AD B2C, invite-only sign-ups, custom authentication flows, passwordless and passkeys. - **BeyondTrust**: Privileged Access Management — Password Safe, Endpoint Privilege Management (EPM), Privileged Remote Access (PRA), Remote Support. Migration from legacy PAM platforms including CyberArk and Delinea. - **Microsoft Identity Manager (MIM)**: Replacement and modernisation projects, migrating MIM Sync engines to Microsoft Entra ID Governance and Entra Cloud Sync. - **Conditional Access**: Policy design, review and remediation, compliance posture assessment, phishing-resistant MFA enforcement, device trust, risk-based access. - **Identity Governance & Administration (IGA)**: Lifecycle management, access reviews, entitlement management, Microsoft Entra ID Governance. - **Privileged Identity Management (PIM)**: Just-in-time access, approval workflows, role activation, time-bound privilege elevation. - **SSO Application Migration**: ADFS, Okta, Ping and legacy protocol migration to Microsoft Entra ID SSO. - **Zero Trust Architecture**: Assessment, roadmap design, and implementation aligned to ASD Essential Eight and NIST Zero Trust frameworks. - **Application Governance**: Monitoring and reporting on application consent, permissions, and OAuth grant sprawl within Entra ID tenants. - **Apporetum** (M42-built product): Identity observability platform on the Azure Marketplace. Single pane of glass across HR, AD, Entra ID, Entra External ID and disconnected systems. ## M42 Labs M42 Labs is our security research division. The team discovers and responsibly discloses vulnerabilities in Microsoft Entra ID, Microsoft Intune, and related identity platforms. Research areas include Conditional Access bypass, MFA resilience, Entra ID token security, Intune and MAM policy enforcement, and identity attack vectors. Research is published at [https://www.modern42.com/labs/research](https://www.modern42.com/labs/research) and CVEs are catalogued at [https://www.modern42.com/labs/vectors](https://www.modern42.com/labs/vectors). ## Key Pages - [Homepage](https://www.modern42.com/) - [About Us](https://www.modern42.com/about-us) - [Contact Us](https://www.modern42.com/contact-us) - [All Services](https://www.modern42.com/services) - [Microsoft Entra Consulting Australia](https://www.modern42.com/microsoft-entra-consulting-australia) - [Case Studies](https://www.modern42.com/case-studies) - [Blog](https://www.modern42.com/blog) - [Careers](https://www.modern42.com/open-jobs) - [M42 Labs](https://www.modern42.com/labs) - [M42 Labs Research](https://www.modern42.com/labs/research) - [M42 Labs Disclosed Vulnerabilities](https://www.modern42.com/labs/vectors) ## Advisory Services - [Advisory Services Overview](https://www.modern42.com/services/advisory) - [IAM & PAM Strategy](https://www.modern42.com/services/advisory/iam-pam-strategy): Strategic roadmap for identity and privilege platforms - [Architecture Advisory](https://www.modern42.com/services/advisory/architecture-advisory): Design reviews and reference architecture for Entra ID, BeyondTrust and hybrid environments - [Conditional Access Review](https://www.modern42.com/services/advisory/conditional-access-review): Policy audit, gap analysis, remediation - [Application Governance Assessment](https://www.modern42.com/services/advisory/application-governance-assessment): Application consent, permissions and OAuth grant assessment - [BeyondTrust Assessment](https://www.modern42.com/services/advisory/beyondtrust-assessment): Health check and optimisation for BeyondTrust PAM environments - [CIAM Migration Readiness Assessment](https://www.modern42.com/services/advisory/ciam-migration-readiness-assessment): Azure AD B2C to Entra External ID readiness ## Engineering Services - [Engineering Services Overview](https://www.modern42.com/services/engineering) - [Modern PAM-as-a-Service](https://www.modern42.com/services/engineering/privileged-access-management): BeyondTrust Password Safe, EPM, PRA, and migration from CyberArk and Delinea - [Secure Microsoft Entra ID](https://www.modern42.com/services/engineering/secure-entra-id): Conditional Access frameworks, lifecycle workflows, application governance - [Azure AD B2C to Entra External ID Migration](https://www.modern42.com/services/engineering/azure-b2c-to-entra-external-id): Microsoft-recommended Australian partner for B2C → External ID - [MIM Replacement](https://www.modern42.com/services/engineering/mim-replacement): Replacing Microsoft Identity Manager with Entra ID Governance and Cloud Sync - [Workforce IAM & IGA](https://www.modern42.com/services/engineering/workforce-iam-iga): Joiner-mover-leaver automation, access reviews, entitlement management - [SSO Application Migration](https://www.modern42.com/services/engineering/sso-application-migration): ADFS, Okta, Ping migration to Microsoft Entra ID SSO - [Identity Observability](https://www.modern42.com/services/engineering/identity-observability): Apporetum platform for real-time IAM/PAM control effectiveness measurement ## Managed Services - [Managed Services Overview](https://www.modern42.com/services/managed-services) - [Staff Augmentation](https://www.modern42.com/services/managed-services/staff-augmentation): Embedded identity engineers for client teams ## Marketplace & Products - [Azure Marketplace & ECIF Offerings](https://www.modern42.com/services/marketplace) - [ECIF Approved Partner](https://www.modern42.com/services/marketplace/ecif) ## Industry Expertise - [Government](https://www.modern42.com/industries/government): Federal and state government, Essential Eight, IRAP, ISM, PSPF - [Banking & Financial Services](https://www.modern42.com/industries/banking): APRA CPS 234, PCI DSS, critical infrastructure identity - [Healthcare](https://www.modern42.com/industries/healthcare): Patient data protection, My Health Record, clinical identity - [Transport & Infrastructure](https://www.modern42.com/industries/transport): SOCI Act compliance, OT/IT privilege separation - [Education](https://www.modern42.com/industries/education): Student and staff identity, multi-tenant Entra environments ## City Landing Pages - [Canberra](https://www.modern42.com/iam-consulting-canberra) - [Sydney](https://www.modern42.com/iam-consulting-sydney) - [Melbourne](https://www.modern42.com/iam-consulting-melbourne) - [Brisbane](https://www.modern42.com/iam-consulting-brisbane) - [Newcastle](https://www.modern42.com/iam-consulting-newcastle) ## Optional - [Microsoft Recommends Modern 42 for Azure AD B2C → Entra External ID Migrations (Press)](https://www.modern42.com/blog/microsoft-recommends-modern-42-for-azure-ad-b2c-entra-external-id-migrations-australia) - [BeyondTrust Partner of the Year 2024 Technical Excellence Award (Press)](https://www.modern42.com/blog/modern-42-beyondtrust-partner-2024-2025-technical-excellence-award) - [Conditional Access Pen Testing Tool](https://www.modern42.com/labs/conditional-access-pen-testing) - [Machine-readable services catalogue](https://www.modern42.com/services.json) - [Full content index](https://www.modern42.com/llms-full.txt) ## Contact - Address: Office 1, Level 4, 1 Moore Street, Canberra ACT 2601, Australia - Email: hello@modern42.com - Website: https://www.modern42.com - LinkedIn: https://www.linkedin.com/company/modern42 - ABN: 55 638 183 650 - BuyICT supplier profile: https://buy.nsw.gov.au/supplier/profile/7542 ## Last updated 2026-05-21