Cyber threats are evolving at an alarming rate, presenting a never-ending barrage of challenges to organisations worldwide. It’s no longer enough to just have a solid defence—you need to think bigger. You need to build cyber resilience to adapt, respond, and recover, no matter what comes your way.
At its core, cyber resilience is about staying operational—even when you’re under attack. It extends beyond traditional protection measures, probing an organisation’s ability to adapt to, respond to, and recover from cyber threats. It’s a holistic approach integrating cyber security, business continuity, and enterprise resilience. The objective is not just to thwart attacks, but to ensure that you can continue to keep your organisation running smoothly even when under siege.
Measuring cyber resilience involves assessing how well your organisation can anticipate, withstand, and recover from cyber threats. A robust measurement framework would look beyond conventional security metrics and include elements of recovery and adaptability. Consider:
1. Maturity Models:
There are several maturity models designed to help organisations assess their cybersecurity strength and resilience. These models, such as the Cybersecurity Infrastructure Security Agency (CISA) Zero Trust Model, Essential Eight or the National Institute of Standards and Technology (NIST) Cybersecurity Framework, offer a set of criteria for gauging your current capabilities. Organisations will often use aspects from each model to categorise their maturity, or readiness, into levels – from initial (least mature) to optimised (most mature), so that it’s easier to then identify areas for improvement.
2. Benchmarking:
If you’re looking for effective ways to measure and enhance your cybersecurity posture while comparing yourself to industry standards and peers, tools like Microsoft Secure Score and CIS CSAT (Critical Security Controls Self-Assessment Tool) are excellent options to consider.
Here’s why:
Using both tools gives you a well-rounded understanding of your cybersecurity strengths and areas for improvement. They don’t just tell you where you stand—they help you take actionable steps to build a stronger, more resilient security posture.
3. Resilience Metrics:
Want to see measurable results? Start tracking things like:
4. Continuous Assessment:
Cyber resilience is not a one-off exercise. Regularly scheduled reviews and updates to the resilience plan ensure that an organisation remains prepared as new threats emerge. This also includes continuously training staff and updating them on new threats and best practices.
Improving your cyber resilience and maturity level involves a strategic approach integrating processes, technologies, and people. It requires commitment from all levels of the organisation, from executive leadership to individual team members. Key steps include:
Here’s the thing: threats aren’t going to slow down. That’s why it’s so important to regularly assess your security maturity – it’s crucial to strengthening your resilience. Regular assessments will illuminate current security posture, identify vulnerabilities, and provide actionable insights for continuous improvement. It’s like taking your car in for a service—you might not think you need it until it’s too late.
Working with experts can make a big difference here. They’ll bring fresh eyes to your challenges, ask the tough questions, mitigate the influence of organisational bias and help you spot gaps you might not even realise exist. (Shameless plug for my Security Resilience Assessment Workshop I’ve developed with Cisco here.)
Using the updated CISA Zero Trust Model that we mentioned earlier, we can focus on four critical pillars of cybersecurity resilience: Zero Trust, Secure Network, Extended Detection and Response (XDR), and Security Operations. Let’s delve into how each contributes to fortifying an organisation’s cyber resilience.
With today’s constantly evolving threats, adopting a cyber resilience framework is not just beneficial; it’s a necessity. That’s why, Data#3, a Cisco Master Security Specialised Partner, has collaborated with Cisco to develop a Security Resilience Assessment Workshop. This is a free to attend, hands-on session where you’ll assess your organisation’s security posture with guidance from experienced experts.
Want to learn more? Consider participating in a Security Resilience Assessment Workshop or reach out to your account manager today. Let’s build your resilience together.
Some organisations are already humming along having already migrated their entire fleet to Windows 11. Yet others are continuing to ignore the pending deadline, just beginning to weigh up a move, or perhaps aren’t even aware it’s coming. But it is! Windows 10 end-of-life is now fast approaching, which means no more updates, security patches, or support from Microsoft.
And here’s the rub – Windows 10 EOL is not like OS upgrades of the past. Organisations must migrate to its successor operating system, Windows 11, or there will be unavoidable consequences – from security vulnerabilities to unsupported systems.
Windows 11 delivers advanced security, smoother performance, and plenty of AI-powered tools. It’s an OS built to keep your organisation running efficiently and securely for years to come.
Let’s explore what makes this transition so different, and why so many of our customers are viewing it as a strategic opportunity to position their organisation for what’s coming next.
Microsoft announced that support for its most successful operating system release ever, Windows 10, will officially end on 14 October 2025. Beyond this date – while devices running Windows 10 will continue to function – they’ll no longer receive essential monthly security patches or quality updates. This is significant – staying on Windows 10 post-support carries huge security risks and compliance concerns. It’s also worth noting that in their bid to nudge organisations towards the secure, up-to-date environment offered by Windows 11, Microsoft has also halted new sales of Windows 10 PCs. The clock is indeed ticking.
You may be hoping that Microsoft will extend the support deadline for Windows 10, but there’s no indication of this happening. Microsoft has been clear that support will end on the current deadline, and relying on a possible extension is a risky strategy – especially given Microsoft is actively pushing adoption of Windows 11.
Know the security and compliance implications of staying put
If you’re still on the fence about migrating or pushing timelines back, remember that Windows 10 end-of-life is more than just a routine update. When support ends, real security and compliance issues begin:
Preparing for a timely upgrade to Windows 11 is the safest way to avoid security vulnerabilities.
For security reasons alone, migrating to Windows 11 has to happen. But it’s actually an opportunity to rethink and refresh your entire setup. Windows 10 end-of-life is becoming the push many organisations need to address a backlog of outdated tech, rationalising technical debt and moving towards efficient, modern device management that will support teams well into the future. For many, it’s the start of a broader journey to upgrade systems, tools and devices.
Many organisations are still using on-premises Active Directory, legacy applications, and outdated deployment tools like Configuration Manager – tools that create barriers to implementing the more efficient, cloud-based solutions that today’s IT environments demand.
Moving to Windows 11 provides a clean slate to adopt a modern management approach that utilises tools like Microsoft Intune and Azure AD, and introduces capabilities like remote, cloud-based provisioning, streamlined updates, stronger security, and improved support for hybrid work – all aligned perfectly with the needs of a modern workforce.
Here’s just a few scenarios where we see this shift play out.
In both scenarios, the conversation around how devices are deployed, managed, and secured naturally leads to the bigger piece – moving to a modern management approach supported by a migration to Windows 11.
This shift in device management also impacts the overall device strategy. Virtual Desktop Infrastructure (VDI) options are being reconsidered (it is so easy now with Azure Virtual Desktop), and unrelated but still part of future-proofing strategies, the availability of ARM-based, AI-ready devices change how a fleet needs to be managed. This is about ensuring that the hardware and software invested in today can handle the AI-driven and cloud-based applications of tomorrow. Microsoft’s Copilot is of course a staple in this, and we expect it to play a much larger role in changing how we work and the associated productivity benefits.
This is where proactive planning comes in – by assessing device compatibility early they can roll out Windows 11 across compatible hardware, while gradually replacing older devices. For more on how this shift can work for your organisation, read our in-depth device strategy blog.
The Windows 10 EOL opportunity is clear. We encourage customers to stop seeing it as just another deadline to meet, and instead consider it as a moment to set up a modern management strategy that’s truly built for the future.
Let Data#3 guide you through a seamless Windows 11 migration, tailored to fit your organisation’s needs. Our team of Microsoft experts can help with:
In cyber security, change is constant, but some challenges remain stubbornly familiar. Do you remember the Anna Kournikova virus from over two decades ago? It spread rapidly by tricking users into opening a seemingly harmless email attachment. Fast forward to today, and it’s no surprise that email remains the number one attack vector. The only difference is that the stakes are higher, and as technology evolves, the threats grow more sophisticated.
In our latest Security Minutes video series, with Mimecast, Data#3’s National Practice Manager for Security, Richard Dornhart, and Mimecast’s Senior Sales Engineer, Matt Youman, discuss the critical challenges organisations face and how they can stay ahead. From polished phishing attacks to overlooked attack vectors such as collaboration tools, here are the key insights you can’t afford to miss.
Cyber criminals are leveraging artificial intelligence (AI) tools to revolutionise their tactics. In the first episode, Youman highlights the rapid rise of AI-driven phishing attacks:
With tools capable of learning, adapting, and automating attacks at scale, organisations can no longer rely on traditional defences alone.
While cyber criminals use AI to evade detection, it’s imperative to remember that AI is also a powerful ally for defenders. Youman explores how Mimecast uses natural language processing and social graphing to identify behavioural patterns to help you catch threats that static tools miss.
When Youman reviewed 2,000 emails that bypassed standard security tools, the results were staggering: payroll switch scams and other business email compromise threats had slipped through unnoticed.
Relying on static rules and limited keyword scans is no longer enough. Utilising AI-driven solutions can help you think like attackers, making it easier for your organisation to fight back
It’s not just email. Collaboration tools, essential to everyday business operations, are also becoming an increasingly popular target for attackers. Yet they’re often overlooked in security strategies. Youman shares how Mimecast addresses this blind spot by integrating collaboration platforms into its centralised security solution, enhancing visibility and simplifying management.
Are your collaboration tools secure? If not, attackers may already be exploiting the gap.
Even with advanced technology, people remain the final safeguard. Roles such as those in C-suite, IT, HR, and finance are prime targets due to their access to sensitive data. Youman emphasises that understanding and addressing human risk is vital to any security strategy.
Did you know that Mimecast’s 30-day Email Threat Scanner not only uncovers risks but also identifies patterns of human error? Making it a great tool for helping you tailor training to individual roles.
When was the last time you tested your human defences?
No single tool or strategy can eliminate cyber risk. Reflecting on recent incidents, Youman highlights the critical need to look beyond email when protecting your organisation from cyber criminals.
That’s why Data#3 and Mimecast advocate for a defence-in-depth approach. By layering advanced detection, automation, and human-centric strategies, organisations can:
The final episode showcases Mimecast’s Email Threat Scanner in action. This free tool provides a powerful way to uncover email-borne risks that have bypassed your existing defences. With access to the Mimecast console, you can:
With everything we’ve learned so far, it’s easy to see that the evolving cyber threat landscape requires more than just traditional security measures. The rise of AI-driven attacks, sophisticated phishing campaigns and overlooked vulnerabilities in collaboration tools reveal critical security blind spots that many organisations still miss. Relying solely on static defences alone is no longer enough to stay ahead of cyber criminals.
A comprehensive, defence-in-depth approach is necessary to safeguard your organisation against emerging threats. Don’t delay, each day leaves your organisation open to more attacks. With Data#3 and Mimecast, you’ll take proactive steps to identify and address potential risks that will help protect your organisation.
Mimecast’s Email Threat Scanner Report will give you actionable insights into your current security posture, helping you stay one step ahead of cyber criminals. Don’t leave your organisation’s security to chance—ensure you’re fully prepared for the threats ahead.
Contact your Data#3 Security Specialist today to request your Email Threat Scanner Report and uncover hidden threats before they become a problem.
Every organisation deals with technical debt—the accumulation of outdated systems, legacy apps, and workarounds. It builds up as businesses grow and technology evolves, creating a backlog of issues that eventually need addressing. While it may start as a minor inconvenience, this debt becomes a real barrier to progress over time, adding risk, complexity and cost to every upgrade.
With Windows 10 support coming to an end, this technical debt is now front and centre for organisations aiming to transition to Windows 11. The new operating system (OS) makes it obvious where legacy hardware, older apps, or outdated security protocols hold you back. For many, Windows 11’s stricter system requirements mean that it’s a call to rethink outdated hardware and software, refresh ageing devices, and establish a solid transition strategy rather than simply kicking the problems further down the road.
Let’s start by explaining what we mean by technical debt in the Windows 11 context. In many organisations, tech debt manifests as legacy systems like on-premises file servers , older configuration management tools like Microsoft Configuration Manager (SCCM), and even unsupported operating systems.
Here’s a quick summary of the most common forms of tech debt we see impacting Windows 11 migration:
These large-scale hardware replacements carry budget and resource implications. IT teams will need to work closely with finance to plan for these costs and may need to stagger replacements to avoid significant outlay and workforce disruption. Managing device upgrades or retirements will also require logistical planning, including end-of-life disposal.
Once devices slated for retirement have been identified, selecting replacements will require more strategic thought than typical fleet refreshes. While all new Microsoft devices are Windows 11 compatible, considerations around specific use cases, such as the AI -power and features of ARM-based devices, adds a new dimension to these decisions.
Paying down tech debt solves more than just past problems. It also delivers tangible benefits, such as simplifying device management, boosting security, and building a foundation for future tech shifts without adding to the debt balance.
It requires a clear roadmap, however, that prioritises the most impactful areas, aligns with your Windows 11 migration timeline, and incorporates cloud-based solutions. Not all tech debt is the same. Some aspects directly impact business continuity and security, while others, like legacy applications, may not be as urgent but still require a plan. Starting with the issues that carry the most risk, such as outdated security protocols or unsupported operating systems, allows you to close the most critical gaps first.
Timing is another consideration. Aligning tech debt reduction with your Windows 11 migration timeline can streamline both processes, turning a potentially disruptive upgrade into a coordinated transformation effort. Simply put, it’s about prioritisation – keep what you can, update what you need, and replace when you must. This also helps keep users on track with minimal disruption, as they’re guided through phased upgrades that ultimately create a seamless transition to the new OS.
Finally, integrating cloud-based solutions like Microsoft Intune, Windows 365, and Azure Virtual Desktop will create a future-ready IT environment. Windows 11 is optimised for cloud-centric management, making this the perfect time to adopt solutions that support remote provisioning, secure remote access, and streamline policy enforcement across devices. By moving to the cloud, you’re preparing for a smoother Windows 11 experience and equipping your organisation with the scalability and flexibility needed to adapt to future demands.
A successful Windows 11 migration begins with a clear ‘valuation’ of existing tech debt. Our approach provides a structured assessment to identify potential roadblocks and opportunities. Here’s how we approach it:
Once we’ve assessed your tech debt, we deliver targeted remediation services to address specific challenges as we ready your organisation to transition to Windows 11. The focus is on building a modern, resilient IT environment that supports your business goals:
With a solid modernisation plan, it’s possible to reverse the cycle of tech debt growth. Data#3 is here to guide you through a full assessment, prioritisation, and remediation process so you have the support needed to address your existing investments and put your organisation on the path to a modernised setup.
A partnership that has been in existence since 1994, Data#3 holds the highest level of partner accreditations across the Microsoft ecosystem – from the network and cloud, to the datacentre and workforce. Our expert team can guide and advise on the best technologies for your business.
Azure VMware Solution (AVS) is a comprehensive, hosted VMware server virtualisation service on dedicated Azure infrastructure. Jointly engineered by VMware and Microsoft, AVS is built and managed by Microsoft.
AVS offers a seamless way to migrate or extend VMware environments to the cloud, preserving existing skills and tools while opening doors to Azure-native modernisation. AVS provides organisations with a fully managed, flexible infrastructure, supporting both immediate migration needs and long-term modernisation goals.
Facing rising VMware costs and aging on-premises hardware, a government department worked with Data#3 to evaluate their migration options. After comparing AVS with the cost of repurchasing and maintaining on-premises data centre infrastructure, they found AVS offered substantial savings and flexibility.
With Azure’s 3-year locked pricing model and extended support for legacy systems (Windows/SQL 2012), the department realised cost savings from reduced infrastructure spend. They also secured significant Microsoft funding for Data#3 deployment and migration services, which further supported the transition. Now established in Azure, they’re set to drive operational improvements and prepare for gradual application modernisation.
Easily lift and shift vSphere workloads to Azure, preserving existing environments with no hypervisor changes. AVS enables non-disruptive, scalable transitions with automation and high availability.
Adjust capacity on demand with AVS, optimising costs for peak periods or short-term needs without long-term infrastructure investments.
Establish a secure, on-demand DR site with VMware on Azure, ensuring business continuity without added physical DR infrastructure.
Migrate quickly to AVS, then modernise applications over time by tapping into Azure-native services to enhance capabilities and reduce technical debt.
AVS offers a compelling combination of cost savings, reduced management overhead, and seamless migration, making it an ideal choice for VMware customers looking to modernise at their own pace.
Learn how Data#3’s ‘AVS Solution Workshop’ delivers a clear, cost-effective roadmap to cloud migration, offering an in-depth assessment and migration plan tailored to your organisation.
Data#3 brings extensive experience in delivering datacentre solutions, from procurement and deployment to seamless migration. As a leading Microsoft cloud provider and Azure Expert Managed Service Provider (MSP), Data#3 leverages its deep partnership with both Broadcom and Microsoft to offer clients robust, integrated solutions that simplify and optimise their IT infrastructure.
You may have heard that AI is the best thing since the invention of computers, or that it is costly and confusing. Both of those things can be true, and it all depends on your approach. The potential rewards of Microsoft’s flagship AI offering, Copilot, are phenomenal, but reaping them doesn’t happen by chance.
If you want the reported productivity gains and profitability boosts, there is definitely an easy way and a hard way. The planning and implementation of Copilot are critical stages, and so too is the ongoing assessment and management, which is where the recently launched Copilot Analytics comes in. Copilot Analytics is a powerful new tool designed to help organisations measure the adoption and business impact of AI-powered assistants like Copilot. This exciting development will help to safeguard AI investment and to tap into greater potential.
Copilot Analytics is part of the new Copilot Control System, which gives IT and business leaders the tools they need to confidently adopt Copilot and agents. Available through the Microsoft 365 admin centre, the Copilot Dashboard, and Viva Insights, the newcomer lets you tailor Copilot reports with your business data or create custom reports with organisational attributes and longer usage data sets.
Copilot Analytics gives more granular controls, so that you can drill down into data by department, user type, or job function, for example. This allows organisations to identify where they are getting best value from their Copilot licenses, where users need extra help, and which licenses can be reallocated. The license includes access to Viva Insights Premium at no additional charge for those who purchase Microsoft 365 Copilot licenses.
Our Copilot experts have been working hard on a solution that helps Data#3 customers to make the most of these new capabilities. We’ve developed custom reports and dashboards that are ready to go, so you can quickly analyse and track your organisation’s adoption of, and benefits achieved, using Copilot, without having to start from scratch. You can:
We were very fortunate to participate in Microsoft’s Early Access Program (EAP) for Copilot, giving us the chance to get a head start – and this extra experience has given us first-hand understanding of common challenges such as limited toolset capabilities, aggregate data reporting, lack of granularity, and time constraints. We wanted our solution to come with the expert support needed to make Copilot really deliver on its promise.
To do this, we developed custom reports and dashboards, so you can track the deployment of Copilot across your organisation, understand how usage metrics translate into potential time and cost savings, and identify areas for further deployment.
Much as AI is an exciting technology, there will inevitably be some users who embrace the opportunity eagerly, while others will be more reticent or lack confidence. Using the custom reports developed by our Copilot team, you can evaluate the effectiveness of training initiatives, identifying low adoption areas, and designating top users as Copilot champions.
According to McKinsey, generative AI could increase corporate profits by a massive US$4.4 trillion per year, thanks to productivity and efficiency gains. Copilot Analytics is an essential tool to help your organisation to unlock those gains, and to establish yourself firmly in the AI wins column. For more information on Copilot Analytics, M365 Copilot or any of Microsoft’s AI solutions, please contact our AI experts today.
This year’s APJC leg of Cisco Live drew an eager crowd of thousands to Melbourne to hear about Cisco’s latest innovations. As always, there was an incredible buzz in the expo hall and the 4-day agenda was packed with announcements, leaving no doubt about the AI-powered direction the industry is heading.
Here are the standout announcements that captured my attention:
First up, and deservedly so, is HyperFabric – a prime example of Cisco using a single solution to address two major data centre challenges – cabling complexity and the configuration of advanced network architectures.
I recently had the opportunity to meet with Cisco’s product lead and experience the end-to-end process of designing and deploying switches with HyperFabric. I can confidently say this platform would have saved me countless weeks – if not months – of stress back in my engineering days!
Cabling is a common pain point in data centres, and I didn’t expect Cisco to tackle it, but they have. With an easy click-and-drag interface to design your data centre switch fabric, HyperFabric generates the necessary cabling plan and highlights any errors as you connect the switches. Even junior engineers will be able to instantly identify and fix misconnected cables.
Once everything is correctly connected, switches are automatically configured into stacks, and connectivity is optimised. Cable diagrams are auto-generated, making patching straightforward for anyone, and eliminating many hours of troubleshooting.
Even better, Cisco has embedded much of the value of its Application Centric Infrastructure (ACI) software fabric into an AI-driven workflow. While engineers still assign traditional VLANs through an intuitive graphical interface, HyperFabric works behind the scenes to construct a robust fabric switching architecture.
This architecture sets the stage for upcoming enhancements such as micro-segmentation and identity-based access. While customers appreciated the promise of Cisco ACI, many customers found its complexity daunting due to the skills and resources required. HyperFabric simplifies this entirely, creating a foundation for data centre networks that are more secure, higher performing, and far easier to manage.
Innovative solutions can redefine the game, and the newly launched HyperShield is no exception. With organisations navigating emerging vulnerabilities, tighter patch windows, and complex change management, it’s no surprise that Cisco’s HyperShield has quickly gained the attention of leading players in finance, retail, and government sectors.
HyperShield’s standout feature is its ability to embed traffic filtering directly into the network fabric, potentially reducing or eliminating the reliance on standalone firewalls. For example, in a scenario where a critical vulnerability emerges, HyperShield allows organisations to mitigate threats by leveraging server firmware and enhanced switch capabilities, even before a patch can be deployed.
For those wary of network updates, HyperShield’s dual data plane provides peace of mind. It enables automated testing and seamless upgrades while ensuring any unforeseen issues can be rolled back without disruption. By simplifying these traditionally risky processes, HyperShield helps organisations maintain uptime while staying secure.
In essence, HyperShield will give your organisation more proactive threat mitigation, streamline updates, and provide a network architecture designed to adapt to modern security challenges.
This was an update many have been waiting for – how Cisco will be integrating Splunk into its portfolio. This integration combines Splunk’s powerful data analytics and security tools with Cisco’s networking and telemetry expertise, giving customers a unified view of their networks, applications, and security systems.
With Splunk’s analytics combined with Cisco’s data and telemetry, organisations can detect and resolve issues significantly faster – sometimes in minutes rather than hours or days. Machine learning further enhances this by predicting potential problems before they occur, reducing downtime and improving the overall user experience.
Cisco has further enhanced its security offerings by integrating Splunk with its Extended Detection and Response (XDR) platform. In this case, it delivers advanced threat detection and faster response times, bolstering overall security. Additionally, the integration of Splunk with Cisco ThousandEyes enhances observability across networks and applications, providing organisations with comprehensive insights into network performance and user experience. In short, customers will experience faster and more effective issue resolution, even in complex environments.
Cisco and Splunk have clearly shown the power of a strong strategic partnership, combining technologies to deliver a more robust data platform that converts raw information into practical, data-driven insights.
As people return to offices, the need to seamlessly merge the digital and physical worlds has become increasingly relevant. Cisco Spaces isn’t new, but with Jeetu Patel now driving Cisco’s product strategy, integrations seem to be happening at an impressive pace.
Given Cisco’s huge range of video devices, handsets, wireless access points, and environmental monitors, they’re effectively one of the biggest sensor companies on the planet. Cisco Spaces has taken this to the next level by adding digital intelligence to physical workplaces.
From what I’ve seen, facility managers can really leverage this data to fine-tune office layouts, keep an eye on occupancy levels, and even save on energy costs by tweaking lighting and temperature based on actual usage. Employees and visitors get perks like indoor navigation, alerts when a workspace frees up, and friction-free setups for meetings and collaborations.
Safety and well-being are also front and centre. Cisco Spaces monitors factors such as air quality and noise levels, which goes a long way toward making the office a more pleasant place to be. This focus on blending operational efficiency with user comfort is perhaps what truly differentiates Cisco Spaces from other platforms.
By bridging the gap between physical spaces and digital insights, Cisco Spaces is again transforming workplaces into environments that boost productivity, collaboration, and employee comfort.
What struck me most at Cisco Live this year wasn’t just the technology itself— although it was, at times, quite impressive. Rather, it was the way Cisco is tackling real-life problems with simplicity and pragmatism. Whether it’s making data centres less painful to manage, securing networks without adding complexity, or turning office buildings into intelligent, responsive environments, the focus was squarely on technology that fits into how people and businesses actually operate. It’s an exciting time to be part of this industry!
If you want to know more about Cisco’s AI advancements, check out our Security Minutes videos with Cisco – AI Edition. Richard Dornhart, Data#3’s Security Practice Manager, sits down with Carl Solder, Cisco’s Chief Technology Officer ANZ, to discuss the role of AI in cyber security – from Cisco’s latest AI-powered solutions to the challenges of adversarial AI.
Acquisitions inevitably bring change. And Broadcom’s acquisition of VMware – a leading global provider of on-premises virtualisation solutions, has certainly shaken things up.
Since acquiring VMware, Broadcom has restructured its business, spinning off units like Carbon Black (security) and Horizon (desktop virtualisation). It has shifted the remaining products from perpetual to subscription-only models and reduced the total number of licensable products by bundling them.
While this bundling simplifies procurement, it has led to higher costs if the included products aren’t all relevant to your needs. The shift to subscription licensing has resulted in noticeable increases in renewal prices for some – with some businesses experiencing hikes of 100%, 300%, or even 500%.
These price uplifts are presenting an interesting opportunity with many reconsidering their infrastructure strategies and assessing competing technologies. Instead of continuing with VMware on-premises, they’re exploring alternatives, such as switching to different hypervisors (e.g., Azure Stack HCI, Nutanix) or migrating to the cloud.
If, like many, you’re considering other options, you have no doubt already considered one, or all of the below:
Microsoft’s Azure VMware Solution (AVS) offers some elegant answers to these considerations, addressing interoperability, flexibility, ease of integration and, perhaps surprisingly, cost.
AVS offers a comprehensive, hosted VMware service on dedicated Azure infrastructure. Jointly engineered by VMware and Microsoft, AVS is built and managed by Microsoft – recently named a Leader in 2024 Gartner® Magic Quadrant™ for Strategic Cloud Platform Services (SCPS) – with flexible pricing models that make it an attractive alternative to traditional on-premises setups.
Let’s explore AVS in more detail, starting with its portfolio of Software-Defined Data Center (SDDC) clusters:
AVS is deployed in clusters with a minimum of three hosts, including both storage and networking. It provides a quick, seamless path to the cloud for businesses running multiple VMware virtual machines. Use cases range from datacentre expansion, reduction, or retirement to disaster recovery, business continuity, and application modernisation. Its flexible disaster recovery options also support seamless integration from on-premises to AVS, between AVS clusters, or directly to Azure services.
AVS is particularly appealing to businesses already considering a cloud journey but not yet ready to modernise their entire application stack. After all, re-factoring or modernising applications during migration can be time-consuming and costly.
By comparison, AVS offers a ‘migrate to modernise’ approach, enabling businesses to migrate first, realise immediate cost savings that can be diverted to fund their application modernisation, and then gradually modernise. Once on Azure, companies can tap into a range of native services to accelerate application development.
AVS can integrate with your on-premises vSphere environment. But perhaps the biggest advantage of AVS is its seamless integration within the Azure ecosystem. Businesses can continue running their virtual machines on VMware while gradually modernising applications on Azure, all within a connected environment. By incorporating Azure services for security, backup, and monitoring, AVS effectively streamlines operations and reduces the need for on-premises servers, storage, and hardware. Given these services often make up a large share of compute resources, this approach can significantly lower capacity requirements. With less IT overhead, teams can focus on higher-value activities, easing the shift from traditional VMware setups by allowing businesses to re-group and migrate workloads at their own pace.
Migration from on-premises VMware to hosted VMware on Azure is seamless, with minimal disruption. AVS uses the same VMware virtualisation platform, allowing workloads to move easily and quickly without the need for refactoring. With HCX vMotion technology, you can extend your on-premises VMware networks to AVS, enabling virtual machines to migrate without reallocating IP addresses.
Another significant benefit of AVS is that it eliminates the need to re-skill employees or introduce new tools. Businesses can continue using the same skills and personnel that manage their on-premises VMware environment. IT administrators access familiar tools for configuration and management, reducing the learning curve and maintaining the level of control they have come to expect with VMware.
When you migrate your VMware with AVS, Microsoft serves as your single point of contact for all issues. Furthermore, if VMware’s involvement is needed, Microsoft manages that on your behalf. Microsoft also handles the underlying platform and infrastructure, freeing up your operational staff to focus on higher-value activities and reducing overall support demands.
Microsoft’s scale and negotiating power means they can offer VMware licensing at very favourable prices compared to on-premises VMware. AVS offers flexible pricing options, allowing customers to choose pay-per-hour usage or reserve capacity for one, three, or five years. Instead of investing in and managing their own servers, businesses can lease VMware environments from Microsoft, benefiting from predictable and affordable pricing. Customers can also lock in discounted rates for longer terms, with reserved instances that can convert to Azure IaaS.
AVS offers a compelling combination of cost savings, reduced management overhead, and seamless migration, making it an ideal choice for VMware customers looking to modernise at their own pace.
As always, a thorough evaluation and total cost of ownership (TCO) analysis are essential to determine the best-fit solution – whether that’s AVS or an alternative approach. Some potential limitations of migrating to AVS include:
Data#3 can help determine if AVS is the right fit for your business through a comprehensive solution assessment involving:
Your organisation may be eligible to access Microsoft funding to undertake this assessment, providing a risk-free way for you to explore the benefits of migrating to AVS. Contact our team using the form below to find out if you qualify.
Click here to read how a Government department cut costs and future-proofed their operations with a Azure VMware Solution from Data#3.
Data#3 brings extensive experience in delivering datacentre solutions, from procurement and deployment to seamless migration. As a leading Microsoft cloud provider and Azure Expert Managed Service Provider (MSP), Data#3 leverages its deep partnership with both Broadcom and Microsoft to offer clients robust, integrated solutions that simplify and optimise their IT infrastructure.
A new device without some variety of embedded AI barely qualifies as a product launch these days. At least the team behind Microsoft Surface thinks so because the latest Surface Copilot+ devices to hit the shelves come packed with AI-driven capabilities. But before we look at the devices themselves, we need to talk a little about the new processors.
First integrated into Surface devices with the release of Windows 11 in 2023, Copilot was part of Microsoft’s broader push to embed AI-powered tools directly into their ecosystem, starting with the Office suite and expanding into Windows.
But in the AI era, that’s old news. This latest round of Surface devices has AI capabilities right down to the core, or rather, in their new ARM-based processors and Neural Processing Units (NPUs). It’s what Microsoft calls “high-octane AI acceleration”.
The ARM chips powering these devices (Qualcomm Snapdragon®️ X Elite and Plus processors) represent a significant change from traditional Intel-based chips. Thanks to their Reduced Instruction Set Computing (RISC) design, ARM chips are faster and more energy-efficient than x86 processors from Intel and AMD.
This has led to around 99% of the premium smartphone market being powered by ARM*. However, compatibility issues with legacy software and hardware have prevented ARM from gaining widespread adoption in the desktop and laptop market. This gap is narrowing, though, as ARM-native applications and app-emulation tools advance. Microsoft is undoubtedly betting on ARM’s success, buoyed by Qualcomm’s benchmarks, which have surpassed the performance of both Apple’s M2 and Intel’s Core Ultra 7 chips, which leads us back to the launch of these two new devices.
A powerful combination of AI and processing power makes the Surface Laptop 7th Edition (available in 13.8-inch and 15-inch versions) an excellent choice for enterprises looking to boost productivity and enhance collaboration.
Processing power | Features robust on-device AI capabilities, thanks to the Snapdragon®️ X Elite and Plus processors (86% faster than Surface Laptop 5!) and integrated NPU.
Battery life and portability | The mind-boggling 22 hours of battery life on the 15-inch and 20 hours on the 13.8-inch (based on local video playback use) ensure uninterrupted performance, while fast charging ensures quick re-fuelling, so users stay in flow.
Connectivity | Featuring Wi-Fi 7 along with dual USB-C /USB 4 ports, allowing you to connect multiple peripherals or external displays.
Display | Near-edgeless 15-inch and 13.8-inch PixelSense Flow touchscreens feature adaptive colour, contrast, and HDR for a bright and responsive display under dim or bright lights.
Keyboard and touchpad | The laptop includes an improved silent keyboard experience with a dedicated Copilot key for quick access to AI-powered Copilot features. It also has a large haptic precision touchpad.
Camera | The HD 1080p Surface Studio Camera, combined with Windows Studio Effects driven by AI, gives virtual meetings a professional look and feel, while AI-driven features like background blur and voice clarity make communications clear.
Sustainability | Made from a minimum of 67.2% recycled materials, this device will appeal to environmentally conscious businesses.
A versatile tablet-to-laptop ARM-based device with unbeatable upgrades in processing power, AI capabilities, and enterprise-ready features, including security and repairability.
Processing power | Features robust on-device AI capabilities, thanks to the Snapdragon®️ X Elite and Plus processors (86% faster than Surface Laptop 5!) and integrated NPU.
Battery life and portability | ARM processors consume less power, so it’s no surprise users can expect up to 14 hours of battery life for Wi-Fi-only models. This is fantastic news for employees who work remotely, in the field, or have travel-heavy roles. And if power runs low, there’s fast charging to get those bars up quickly.
Connectivity | With Wi-Fi 7 and 5G support, users get faster, more reliable connectivity along with NFC for secure authentication, which is essential for remote work, video conferencing, and accessing cloud apps. The dual USB-C / USB 4 allows multiple peripherals or external displays to be connected, allowing you to configure your workspace to best suit your needs.
Display: Optional 13″ OLED display with HDR technology, adaptive colour, and high contrast and brightness for a clear viewing experience in any light conditions.
Keyboard and Pen | Users will enjoy a satisfyingly silent typing experience with the Surface Pro Flex detachable keyboard with Precision Haptic touchpad and Surface Slim Pen – which handily charges right on the keyboard.
Camera | Video conferencing is a breeze with an ultrawide camera paired with AI-driven enhancements through Windows Studio Effects.
Sustainability | Align with your organisation’s environmental responsibility. Pro 11th Edition uses at least 72% recycled materials in the enclosure.
On-device AI features | Beyond the handy Copilot key, both devices share a few notable on-device AI capabilities driven by the NPU.
Repairability | Like other Surface devices, both editions have Microsoft’s simplified repair process with replaceable components so they can be quickly repaired and returned to service.
Security | Advanced security measures like Windows Hello plus Microsoft Pluton technology which provides chip-to-cloud protection. The ability to manage risks directly from the device adds an extra layer of trust.
It’s important to note that these devices are not generational replacements for the respective Surface 6th and 10th editions; they are available in parallel. This is because they’re fundamentally consumer-focused devices, but their specs and affordability still make them suitable for specific roles in the enterprise. While features like the ability to transform simple sketches into refined designs add appeal, it is creative and AI-driven environments that will realise the device’s actual value, making them more suited for companies looking to develop specialised applications tailored to their needs rather than for general enterprise use.
To fully unlock the AI-powered capabilities of these devices, it’s important to understand the difference between the free, public version of Copilot and the licensed enterprise version. The free version offers basic functionalities, like web searches, while the licensed enterprise version provides advanced features, such as internal resource searching within company documents and databases. You will need the licensed version to access these deeper, business-critical AI features and get the most out of these devices. Data#3’s Copilot for M365 Readiness Assessment helps you prepare for deployment so that you’re ready to leverage its full potential.
Another essential consideration is remembering that these are ARM-based devices, not Intel. This may have incompatibility repercussions for businesses that rely on specific networking, management and security software, device drivers and legacy applications built for intel-based devices.
If you’re considering adding either of these devices to your fleet, you must assess your current infrastructure for compatibility. Our ARM readiness assessment evaluates your hardware, software and peripherals to determine whether your current systems can support ARM-based devices. For example, you will need Windows 11 as part of your SOE. Our assessment will give you a clear picture of the potential adjustments or upgrades required to integrate these ARM devices into your workflow fully.
Learn more about Data#3’s ARM readiness assessment >
In this new Surface lineup, Microsoft is betting on the future of AI-accelerated computing with ARM, positioning these devices as forward-thinking choices for businesses that are going all-in on AI technologies.
But take note: these devices are primarily aimed at organisations that have already—or plan to—adopt AI-powered solutions and tools within their operations.
This makes these devices an ideal fit if:
Your users value the ability to perform on-device AI tasks without relying on the internet
You want to introduce and test devices that are able to support emerging AI trends
Your company wants to explore custom-built AI models tailored to specific tasks
However, businesses must assess their environment for compatibility, especially regarding device drivers and app readiness. You can also test drive these devices by requesting a trial unit, and experience their AI-powered features first hand.
With over 15 years’ experience improving device fulfilment and implementation for our clients Data#3 will help you end the frustrations associated with device sourcing, deployment and warranties. We even offer training and adoption services to upskill your people on their new devices, to ensure the greatest return from your investment.
We were also recently named Microsoft Surface PC Reseller Worldwide Partner of the Year, Microsoft Surface Reseller of the Year for Asia, and the Microsoft Surface+ Worldwide Partner of the Year.
This isn’t another “what is zero-trust” article – I think we can all agree that we’ve moved beyond that as we know it isn’t a product, it’s not a replacement for firewalls or VPNs, and it’s not something you do and then move on.
However, it is essential and appears in some form on virtually every government department’s cybersecurity strategic plan. Some departments and agencies have made progress and implemented elements of the zero-trust model within their environment, but not at a broad enough level to provide the promised levels of protection. Hence, despite the plan, they’re still vulnerable to a cyber-attack.
If zero trust is essential and part of a plan, why are government departments and agencies struggling to implement it? This post will explore that question.
The imperative to adopt zero-trust security has never been clearer for government departments and agencies. In an era of remote work, cloud-based services, and increasingly sophisticated cyber threats, zero-trust is an additional, identity-based layer that reduces the reliance on increasingly ineffective perimeter defences.
Driven by mandates from federal, state, and local authorities (such as the new Cyber Security Bill 2024), and the recognition that a new security model is needed, government entities are eager to embrace the principles – but reality on the ground tells a different story. Despite the strategic importance of zero trust, many government entities are struggling to turn that vision into tangible action for a number of reasons.
As a result, many government organisations find themselves stuck in a paradoxical situation. They know zero trust is where we all need to be, but the path remains elusive. Instead of bold action, their security roadmaps remain tactical and address the next pressing need rather than being a strategic, long-term plan that is continuously checked and aligned to.
In a recent discussion with a financial industry CISO, they revealed that these pitfalls are all too common. Despite an acknowledgement of the need for zero trust in their cybersecurity plan, and a multi-million dollar investment, they also:
Breaking free of this paradox requires a fundamental shift in mindset and approach. Rather than viewing zero trust as a product- or tool-based, all-or-nothing proposition, government agencies must embrace a more strategic, process-driven incremental path forward. They can chart a course towards zero trust success by focusing on their most critical assets, prioritising use cases, and partnering with experienced advisors who take this process-driven approach.
Without trivialising the difficulties of implementing zero trust, there are some principles to consider:
While tools and solutions are a component of the zero-trust model, they too often become the focus of government security teams looking for tangible ways to move forward. While tools can provide valuable data points, implementing zero trust effectively requires a more holistic, process-driven approach. Simply relying on a tool to assess one’s zero-trust posture is insufficient.
That’s why working with experienced advisors like Data#3 and Business Aspect, who can guide you through a comprehensive readiness assessment and the development of a practical zero-trust roadmap, is critical. This process-oriented approach, rather than a tool-centric one, can ensure that government entities have a clear understanding of their current state, their priorities, and the steps needed to achieve their zero trust goals.
This includes:
The final factor is understanding the vendor landscape. Vendor solutions are a critical implementation component, and aligning the right vendor solution is easier for a partner like Data#3, with its extensive vendor relationships and accreditations.
For example, government entities that have made significant investments in Cisco networking could use Data#3’s 25+ year relationship with Cisco to access their extensive security portfolio and zero-trust capabilities.
Implementing zero trust is a marathon, not a sprint. Government entities can chart a course toward a more secure, adaptable, and future-proof security architecture by taking a phased, strategic approach—identifying critical assets, assessing current capabilities, and partnering with experienced advisors. If you would like to discuss further please reach out to me using the contact button below or contact your account manager.
Data#3, in partnership with Cisco, will be hosting Security Resilience Assessment Workshops in 2025. These workshops will guide you through a self-assessment of your security posture using the updated CISA Zero Trust Model.
Register your details below to receive an invitation.