How Lightrock Maintains the Global Security of a Growing Business

“Cybersecurity is a 24/7 game but we don’t want to spend 24 hours a day thinking about when the next attack is going to happen. If a breach occurs at 4am and we don’t find out about it until 8am, we’ve potentially already experienced an unrecoverable loss. Microsoft’s security stack combined with Softwerx secure365® gives us peace of mind that we have eyes and ears on our systems 24/7.” — Waseem Raad, Head of Information Technology, Lightrock

When Waseem Raad stepped into the role of overseeing IT at global sustainable investment business, Lightrock – the challenge was significant. Back then, as a one-person IT team, he faced the task of implementing a security solution capable of protecting a growing global business and its users – whether in the office, at home or on the road.

So where did he start and what challenges did he encounter along the way?

This was the focus of my fireside chat with Waseem, recorded live at InfoSecurity Europe. In our open and frank conversation, we explored the evolution of cybersecurity, from the days when Microsoft was dismissed as a trusted security vendor, to its transformation into a key player. We talked about why security is a team sport, the importance of a multi-vendor ecosystem in combating cybercrime and the implications of AI for the future of threat defence.

Watch my full 30-minute conversation with Waseem. It’s a candid look at the reality of a Microsoft-first approach and how he took on the challenge of securing a global organisation as a one-person team.

Evolving to Microsoft-First: Lightrock’s Security Journey

Moving from a layered approach with multiple vendors to a Microsoft-first environment was a big step for Lightrock, so why Microsoft?

“I looked at our user base and worked backwards. With 95% of our employees on Windows devices, Microsoft made sense. We wanted email, security and device management all in a single, integrated solution with one licence to cover it all,” explained Waseem.

“Back then, as a one-person IT team, managing a global rollout, simplicity and scalability were key. Microsoft gave me exactly that, making the process straightforward. Ultimately, it’s about choosing which vendor works best for your organisation and for us, going Microsoft-first was an easy decision.”

While it’s true that 10 years ago, Microsoft was not even considered a serious security player, Waseem feels that it’s all about evolution – no matter which vendor you choose.

“Security is an evolution for vendors and for businesses. As our business and user base has grown, Microsoft has given us the balance we needed to secure our network and build a tech stack to meet our evolving requirements,” he added.

Stronger Together: Sustaining a Seven Year Microsoft Partnership

Lightrock and Softwerx have been working together for seven years now but what sparked the collaboration and what’s kept it strong?

“When I first connected with the team at Softwerx, Microsoft was the main focus but what stood out was the broader support offered in building a scalable, manageable global tech stack. As a one-person IT team, I then needed solutions that were straightforward to implement and support and Softwerx delivered that without the pressure of a hard sell. Their deep knowledge of Microsoft gave me the confidence to move forward, knowing I had trusted advice tailored to my needs,” explained Waseem. “The advice Softwerx advice gave me was invaluable.”

And speaking of advice, what words of wisdom would Waseem give to anybody thinking about starting on a Microsoft-first journey?

“It’s never going to be easy. There will always be ups and downs. The key is finding what genuinely makes your life easier. It really comes down to understanding your use cases and your users. Realistically, most organisations don’t have the budget Microsoft does to invest in security. So, if you can tap into their expertise, testing and infrastructure, why not make the most of it?” offered Waseem.

There was so much more packed into our 30-minute chat so don’t miss out. Watch the full 30-minute video here to discover what’s next for Lightrock, how the company’s Copilot testing went and Waseem’s thoughts about the future of AI in cybersecurity.