A global space services company, PIF approved, operates across satellite communications, geospatial services, and Positioning, Navigation and Timing (PNT). As a regulated and security sensitive operator with a globally distributed workforce, the organisation depends on a robust identity fabric. This fabric enables least privilege access, governance, and Zero Trust controls across its environment.
The organisation operated with significant manual identity processes and incomplete modern identity controls, limiting both operational efficiency and security posture in a regulated environment. Manual user onboarding, offboarding, and role assignments resulted in delayed access and inconsistent identity lifecycle management, with joiner, mover, and leaver actions handled through tickets rather than automated workflows.
Conditional Access and real time risk evaluation were not fully implemented, and hybrid Self Service Password Reset was not enabled. There was no identity governance in place, with Privileged Identity Management, Access Reviews, and governed external collaboration absent, leaving limited oversight of privileged role usage and external guest access. Role based access control relied on manual group membership management, creating drift and audit complexity. Zero Trust capability for secure remote access to private applications was also limited.
Oreta implemented end to end identity security and lifecycle automation on Microsoft Entra ID. HR driven identity lifecycle automation was configured to deliver joiner, mover, and leaver workflows with dynamic role based access and automated provisioning and deprovisioning, replacing the previous ticket driven model.
A Zero Trust Conditional Access baseline was deployed with MFA enforcement, legacy authentication blocking, and location and compliant device controls, alongside hybrid Self Service Password Reset for user self service recovery. Identity governance was enabled through Privileged Identity Management for just in time privileged access, Access Reviews for recurring entitlement validation, and entitlement access packages for external collaboration.
Entra Private Access and Entra Internet Access were configured for traffic logging, policy monitoring, and web category filtering, providing secure private access to domain resources without reliance on legacy VPN infrastructure.
• 85% reduction in IT dependencies through identity lifecycle automation in Microsoft Entra ID.
• Full Microsoft Entra ID coverage including lifecycle, Conditional Access, Privileged Identity Management, and Access Reviews.
• Stronger alignment with ISO and ASD standards for identity and access control.
• Zero Trust remote access to private applications without legacy VPN dependency.
We empower businesses to thrive by delivering tailored cloud, security, network, and telco solutions. Through advisory, delivery, and managed services, we partner with our customers to innovate, connect, and achieve lasting impact.
Level 7, Tower 2
727 Collins Street
Melbourne, VIC 3000
The Offices 5, Level 3,
Office 303,
One Central Dubai
World Trade Centre
Dubai, United Arab Emirates
