Skip to main content
Modern 42 Logo
Our Services

Identity security, engineered for outcomes.

Advisory defines your target state. Engineering delivers it. Managed services keep it running. Three connected disciplines, one specialist consultancy.

Discuss your identity challenge About us
Advisory & Strategy

Start with clarity,
not a product recommendation.

CEO-led advisory engagements that begin with a rigorous understanding of your current state, business objectives, and constraints. We help you understand where you are, define where you need to be, and build a roadmap grounded in your environment.

IAM & PAM Strategy & Roadmap

Pragmatic roadmaps aligned to business objectives and your existing technology investment. No unnecessary licence recommendations.

Architecture Advisory

Entra ID, BeyondTrust, and Azure architecture design and technical review for complex, multi-tenant environments.

Conditional Access Review

Technical review and gap analysis of your Microsoft Entra Conditional Access framework against current attack patterns.

BeyondTrust Assessment

Comprehensive assessment of your BeyondTrust PAM environment, identifying configuration gaps, hardening opportunities, and alignment to best practice.

Application Governance Assessment

Assess your workload identities, app registrations, and agentic AI permissions. Quantify over-permissions, map risk, and build governance frameworks for non-human identities.

CIAM Migration Readiness Assessment

Fixed-scope assessment covering B2C tenant inventory, migration approach, risk register, and implementation roadmap. A structured entry point for your CIAM migration programme.

Explore all advisory services
Engineering & Delivery

Specialist Engineers
that know the platforms inside out.

From BeyondTrust PAM deployments to complex Entra ID migrations, our engineers are brought in when the standard implementation approach falls short. We bring in the right tools to test, gain observability, and deliver data-driven decisions.

Secure Microsoft Entra ID

Conditional Access frameworks, application governance, and continuous monitoring. Strengthen your identity foundation with proven design and deployment expertise.

Privileged Access Management

BeyondTrust Password Safe, EPM, and PRA implementations for Australian enterprise. Full onboarding of privileged accounts and assets.

MIM Replacement to Entra ID

Migrate from legacy Microsoft Identity Manager to Entra ID Governance and Lifecycle Workflows with minimal disruption.

Azure B2C to Entra External ID

CIAM platform migration with JIT password migration and custom policy rebuild for external identity scenarios.

Workforce IAM & IGA

Identity lifecycle, access governance, and IGA for the enterprise workforce. HR-driven provisioning, access reviews, and role management.

Identity Observability

Deploy and configure Apporetum for continuous visibility across your identity and privilege controls. Available on Azure Marketplace.

SSO Application Migration

Consolidate and modernise federation across your application estate. Migrate legacy SSO configurations to Entra ID.

Outbound Collaboration

Secure external collaboration through properly governed guest access, B2B direct connect, and cross-tenant access policies.

Explore all engineering services
Managed Services

Your identity platform, managed by the team that understands it.

Ongoing operations, monitoring, and staff augmentation delivered by the same engineers who build and configure these platforms. Not a generic operations centre.

Managed PAM

Ongoing operations for your BeyondTrust Password Safe, EPM, and PRA environment. Includes credential rotation oversight, account onboarding, policy management, patching, and health checks.

Managed Identity Observability

Continuous monitoring and management of your Apporetum deployment. Dashboard maintenance, alert tuning, anomaly investigation, and monthly posture reports.

Staff Augmentation

Embed our IAM and PAM engineers directly into your team. For organisations with an established identity programme that need specialist capacity for specific initiatives.

Access Reviews

Automated access reviews and recertification campaigns operated on your behalf, ensuring access remains appropriate and audit-ready.

Coming soon

Managed IGA

Identity governance operations for organisations using Microsoft Entra ID Governance. Access review management, lifecycle workflow operations, role management, and governance reporting.

Explore managed services
Case Studies

Proven delivery across major sectors

A sample of our engagements, delivering measurable outcomes for Australia's most demanding organisations.

Federal Government01

IAM Transformation for a Federal Department

Partnered with a large Australian Government department to overhaul its identity infrastructure, delivering IAM strategy, architecture, PAM blueprint, Zero Trust PoC, and a cloud-native identity platform built on Entra ID and Apporetum.

Multi-year partnershipCloud-native platform deployedStrategy through engineering
Global Financial Services02

Entra Security Review & Ongoing Partnership

Conducted independent security assessments across Entra ID and the full M365 suite for a global financial services group. Designed a Conditional Access framework, remediated AD findings, and evolved into an embedded blended team partnership.

Entra ID + M365 assessedCA framework deliveredOngoing blended team
Higher Education03

Building a Modern IAM Practice for a Leading University

Multi-year partnership establishing a world-class IAM capability, from strategy and architecture through to cloud migration, PAM deployment, MFA rollout, and AD FS decommission across faculty and students.

Multi-year transformationMFA across faculty & studentsAD FS decommissioned
View all case studies
How We Like To Work

Our preferred engagement approach

Every organisation is different, but this is the approach we find delivers the best outcomes. We adapt it to your needs, constraints, and pace.

01

Discovery & Assessment

We start by listening. Our consultants map your current identity environment, interview stakeholders, and identify gaps against frameworks like the Essential Eight, NIST, and your internal policies.

02

Architecture & Design

We design a target-state architecture tailored to your organisation, covering IAM, PAM, Entra ID, Conditional Access, lifecycle workflows, and integration with your existing ecosystem.

03

Build & Implement

Our engineers build and configure your identity platform using our proven blueprints and SOPs. We adapt our existing IP to your environment. You don't pay us to reinvent the wheel.

04

Test & Validate

Every deployment undergoes rigorous validation: functional testing, security review, and user acceptance. We verify that policies enforce correctly and access flows work as designed.

05

Knowledge Transfer & Uplift

We train your team to own and evolve the platform independently. Documentation, runbooks, and hands-on workshops ensure you're never dependent on us to run your IAM environment.

06

Ongoing Support & Advisory

Post go-live, we offer flexible support retainers, from break-fix to strategic advisory. As your environment evolves, we help you adapt and continuously improve.

Azure Marketplace

Fixed-cost identity engagements. No surprises.

Not every identity challenge requires a six-month programme. Our Azure Marketplace offerings are scoped, priced, and ready to go. Purchase through your existing Microsoft billing and count it toward your MACC.

Microsoft Identity Observability

Single pane of glass insights into your end-to-end identity ecosystem. Correlate data across HR, AD, Entra ID, and disconnected systems in a rapid assessment.

MIM Migration to Entra ID

Structured migration path from Microsoft Identity Manager to cloud-native Entra ID lifecycle workflows, provisioning, and governance.

Conditional Access Framework Review

In-depth review of your Conditional Access policies to identify gaps, misconfigurations, and opportunities to strengthen your zero-trust posture.

Customer IAM Current State Review

End-to-end assessment of your customer identity environment, covering authentication flows, federation, and alignment to best practice.

Entra ID SSO Application Migration

Migrate legacy application authentication to Entra ID single sign-on, reducing credential sprawl and improving your security posture.

View all Marketplace offerings
M42 Labs — Security Research Division

Building secure IAM & PAM by day. Testing their boundaries by night.

M42 Labs is where we go beyond the brief. Our security research team hunts for vulnerabilities in the enterprise identity platforms we work with daily and responsibly discloses them to make our clients and the broader community safer. Explore our CVEs, deep-dives, and original research.

Enter M42 Labs View Our CVEs
FAQ

Common questions about our services

We deliver three types of engagements: advisory (strategy, assessments, architecture reviews), engineering (IAM, PAM, and CIAM implementations, migrations, and platform builds), and managed services (ongoing operations, monitoring, and staff augmentation). Most clients start with an advisory engagement to establish clarity before moving into engineering delivery.
These are the platforms we specialise in because they represent the dominant identity and privilege security stack for Australian enterprise. We occasionally advise on migrations from other platforms (Okta, CyberArk, Ping) to this stack, but we don't implement or support those products directly.
Usually with a conversation. We'll ask about your current environment, recent pain points, and upcoming pressures such as audits, projects, or incidents. From there we scope an initial engagement, typically starting with an assessment or advisory workshop.
Absolutely. Our goal is not to be ever-present in your business. We believe the best outcome is when your team can own and evolve the platform independently. Knowledge transfer, documentation, runbooks, and hands-on workshops are a standard part of every engagement. We want to leave your organisation stronger than we found it, not create a dependency on us.
Yes. Most of our engagements are collaborative. We work alongside internal security and IT teams, not instead of them. Whether that means pairing with your engineers during implementation or running workshops to build internal capability, we adapt to how your team operates.
Yes. We offer managed services for BeyondTrust PAM, Apporetum identity observability, and Access Reviews, as well as staff augmentation for organisations that need specialist capacity. Post-project, we also provide configuration management and architecture review services.
Yes. We are available through several government procurement vehicles. Contact us to discuss which arrangement suits your organisation.
No. We focus on maximising the value of the systems you already own. If your existing platform can do what you need, we will help you get there without recommending additional licences. We only suggest new tooling when there is a genuine gap that cannot be addressed with your current investment.
Yes. We don't like to reinvent the wheel. Where we have existing intellectual property that caters for your needs, whether that's assessment frameworks, architecture blueprints, or delivery templates, we use it and the price reflects that. We would rather start from a proven foundation than waste time rebuilding the same artefact from scratch.
We work across federal, state, and local government, banking and financial services, healthcare, pharmaceutical, transport and infrastructure, education, and retail. Our engineers hold active security clearances and understand the regulatory and compliance requirements specific to each sector.

Start with a conversation

Tell us about your identity challenge. We'll outline a specific approach.

Discuss your environment

We use cookies

We use cookies and similar technologies to help personalise content, measure the performance of our site, and provide a better experience. By clicking Accept, you consent to the use of all cookies.
Learn more.