The Client

An international pharmaceutical company (Europe) with approximately 80,000 identities and a hybrid environment with a strong focus on security and regulatory compliance.

The challenge

The client had a mature identity architecture based primarily on on-premises solutions (custom IdP, ADFS, private cloud) while also using Microsoft 365. As architectural changes and the number of integrations increased, a competency gap emerged in the area of operational management of Microsoft Entra ID. The lack of a dedicated expert increased operational and security risks and made further development of the environment more difficult.

The solution

Our consultants joined the client’s team under a staff augmentation model as full members of the team. We provided expert Entra ID support covering:

• day-to-day operations (App Registrations, Service Principals, roles and permissions),
• maintenance and review of Conditional Access policies,
• security monitoring and analysis of sign-in logs,
• collaboration with on-premises teams (ADFS, migration to Keycloak) in the areas of SSO and federation,
• support for compliance with identity governance policies and standards such as NIST.

The conclusions

• Stable and secure operation of Entra ID in a hybrid environment.
• Reduced risk of configuration errors and identity-related incidents.
• Reduced workload for the client’s internal team without losing control over the security-first architecture.
• Rapid access to key expertise without costly and time-consuming market recruitment.