Case Study

Buro Happold

Buro Happold is an international, integrated consultancy of engineers, consultants, and advisers. Operating in 26 locations worldwide and with over 1,900 employees, Buro Happold has built a world-class reputation for delivering creative, value-led solutions for an ever-challenging world. As innovative leaders with a focus on cutting-edge solutions, Buro Happold has embraced cloud services to transform how they work.

As part of this transformation, Buro Happold recognised the need to evolve their cyber security and worked with Chorus to develop an appropriate best-practice Zero Trust cyber security strategy using Microsoft 365.

Challenges

  • Staying ahead of evolving security risks and modernising cyber security for a remote working world and increased cloud service consumption
  • Using Microsoft 365 but unsure if getting the most from the security capabilities

Goals

  • Ensure a strong security posture with a modern Zero Trust security model
  • Make best use of Microsoft 365 licensing with a clear implementation roadmap
  • Have an agile security strategy that stays ahead of emerging security risks

Solutions

  • Microsoft 365 discovery workshop
  • Zero Trust security assessment and roadmap
  • Cyber security consultancy and strategy

We wanted to understand what security technologies and features we weren’t using as part of Microsoft 365 so that so we could take full advantage of the licensing we have. As part of this engagement, Chorus reviewed our setup and use of Microsoft 365 and outlined a roadmap to adopt all the solutions that were available to us.

Buro HappoldGlobal IT Director

Embracing cloud service

As part of Buro Happold’s sustained growth and commitment to using technology to transform experiences, they are adopting a cloud-first IT strategy. Through Microsoft 365, Buro Happold is delivering an intuitive and modern user experience to their employees so that their teams can securely collaborate and access their data wherever they are working.

With Microsoft 365 being integral to their digital transformation, Buro Happold engaged with Chorus to carry out a Microsoft 365 discovery workshop to maximise the value of what they had access to.

We wanted to understand what security technologies and features we weren’t using as part of Microsoft 365 so that so we could take full advantage of the licensing we have. As part of this engagement, Chorus reviewed our setup and use of Microsoft 365 and outlined a roadmap to adopt all the solutions that were available to us.

Jason Kane, Global IT Director at Buro Happold

Zero Trust cyber security

With the security capabilities being a key driver for the adoption of Microsoft 365, Buro Happold also wanted to have an external review of their overall security posture to identify any risks, vulnerabilities, and recommendations for using Microsoft 365 to enhance their protective measures.

Our increased consumption of cloud services and the shift to remote working has put security into even greater focus.

Jason Kane, Global IT Director at Buro Happold

We want to securely transform with cloud services, which is why we are adopting a best-practice Zero Trust security model using Microsoft. While confident in our security measures and configuration, we wanted a security partner to review our overall posture, validate our current configurations and then work with us to develop a forward-thinking security strategy.

Jason Kane, Global IT Director at Buro Happold

Through a security assessment, Chorus reviewed Buro Happold’s security posture against a best-practice zero trust model, covering: identity, devices, applications, network, infrastructure, and data. This analysed current measures, identified potential risks and vulnerabilities, and highlighted short-term and long-term recommendations to further elevate the security posture.

Our recommendations are given not just based on remediating against known attack vectors, but also with a view to reduce the impact of a breach and to make best use of Zero Trust tools, such as policy-based adaptive access, micro-segmentation, automation and strong authentication. We also understand how time-pressured IT and Security teams are, which is why our reports have a clear break down of recommendations by effort and priority with remediation steps. This provided Buro Happold with a clear security roadmap, a prioritised backlog and focuses on making best use of the Microsoft 365 technologies available to them.

Mark Jones, Principal Security Architect at Chorus

Building a long-term security vision

Thanks to the continued investment and focus on cyber security, Buro Happold already had a very strong security posture with regular penetration testing, industry benchmarking, cyber risk ratings and Cyber Essentials Plus accreditation.

Following the security audit, Buro Happold implemented the quick-wins and prioritised remediations to elevate their posture even further. They now have a long-term view of proactive transformation and continuous improvement with security and cloud transformation going hand in hand.

As we are confident in our security policies and controls, our focus is on staying ahead of emerging security risks and remaining agile with our security strategy. By working with Chorus as our strategic security partner, we feel confident that we are making best use of Microsoft technologies with a Zero Trust security model. Our partnership gives us greater peace of mind and means we can call upon their expertise whenever needed to enhance our technical capabilities.

Jason Kane, Global IT Director at Buro Happold

By working with Chorus as our strategic security partner, we feel confident that we are making best use of Microsoft technologies with a Zero Trust security model.

Buro HappoldGlobal IT Director

Featured case studies