SoftwareOne case study

Central Platform for Cloud, Security, and Governance at Materna

Materna is a global IT service provider with substantial technical and regulatory responsibilities. The company was challenged to reorient a traditionally developed IT landscape for the future. Multiple Microsoft tenants, hybrid infrastructures, and varying governance and security levels increased complexity, while demands for security, transparency, and manageability continued to grow.

With SoftwareOne, Materna chose a holistic transformation approach. The cloud platform, identity, security architecture, and governance were to be developed as an integrated, long-term, sustainable platform.

Governance & Security
Unified identity and security governance established across all tenants
Future-Ready Platform
Integrated cloud, security and AI architecture combine in managed operations
Security Operations
Security is fused as a fully managed service

Client: Materna Information & Communications SE
Industry: Information technology
Services: Cloud Advisory, Security Operations & Governance
Country: Germany

Download PDF

Growing Complexity

Materna was undergoing extensive structural development of its IT environment. The evolving IT landscape was functionally capable, but increasingly complex. It encompassed multiple Microsoft tenants and hybrid infrastructures with thousands of virtual machines, each with varying governance and security models. Several strategic initiatives were running in parallel. Projects spanned cloud modernization architectures, to enhanced Security Operations, to winding down Microsoft Enterprise Agreements. Materna’s central challenge was aligning these workstreams in a coordinated, strategic way, grounded in common goals — without jeopardizing ongoing operations or the ability to innovate.

materna-cloud-security-governance-adobe-387954110-blog-hero

An integrated platform approach

Materna collaborated with SoftwareOne to choose an integrated platform approach that unites identity, security, governance, and operations on a shared strategic foundation.

A structured Entra ID Review formed a foundation for unified, group-wide identity and security governance. A comprehensive review of existing security configurations - including MFA, Conditional Access, and privileged roles - was assessed, harmonized, and aligned with best practices. On this basis, global, group-wide policies for identity and access management were established to promote transparency, reduce exceptions, and consistently uphold the principle of “Least Privilege.”

Building on this, the security architecture was consolidated and professionalized. Using Microsoft Defender and Microsoft Sentinel, an integrated security platform was developed to enable centralized visibility into security-relevant events. This architecture is complemented by a Managed Detection & Response model operated entirely by SoftwareOne. SoftwareOne assumes operational responsibility for security monitoring, alert triage, incident response, threat hunting, and the continuous optimization of detection logic.

In addition, SoftwareOne supports Materna in ongoing strategic development of its Azure platform. Through a flexible architecture and advisory model (Azure Expert on Demand), Materna can continuously access SoftwareOne’s senior cloud expertise. This sustainably supports architecture decisions, platform optimization, and ongoing transformation initiatives. SoftwareOne also supports Materna through the Microsoft Advisory Services (MAS) framework, addressing strategic questions in platform governance, investment planning, and the preparation of future licensing and contract models.

Periodically, a structured phishing simulation and awareness program helps test the system. Based on Microsoft Defender for Office 365, quarterly campaigns are run, user behavior is analyzed, and targeted awareness training is assigned automatically.

Our previous SOC contract was expiring, and we had to set up a new solution within a very short time. SoftwareOne took over MDR operations within a week and ensured a seamless transition in monitoring. For us, this was clear proof that fast action and professional security management fit together very well.

Dennis Krafczyk

Security Engineer, Materna Information & Communications SE

Could you benefit from a similar service? or Can we do this for you?

Get in touch with our experts now.

Contact us

Could you benefit from a similar service? or Can we do this for you?

Get in touch with our experts now.

Cloud Services
SoftwareOne Cloud Services ensure your cloud migration and application modernization initiatives succeed.
Read more

Scalable and future-ready

Today, Materna has a consolidated, secure, and governance-compliant platform that reliably supports ongoing operations and anticipates future requirements. Unified identity and security structures ensure transparency, manageability, and regulatory compliance. Security is no longer managed on a point-by-point basis but rather as a permanent, professionally run service.

Materna deliberately pursues a technology-open approach that enables evaluation and enhancement of cloud and AI ecosystems alongside the established Azure platform.

Plans for further expansion of information protection and governance include gradually extending Microsoft Purview, expanding Data Loss Prevention concepts, and further developing an AI governance framework to enable future AI scenarios securely, compliantly, and at scale.