Case Study: Apple IT Security & NIST Compliance

Industry: Communications

Size: 25 – 50 staff


  • Azure Active Directory
  • Apple Business Manager
  • NIST practices
  • Data Classification
  • Data Loss Prevention
  • IT Management

Can Be Compliant With:

  • NIST
  • SOC2
Apple IT Security for NIST case study cover

The Challenge

Our client faced a new type of vendor security screening in order to retain Client X, their largest client and a global leader.

In the past, Client X only required self assessed IT security questionnaires from everyone they do business with.

Due to rising cyber threats across the globe, Client X now requires all channel partners to pass a formal IT security audit.

Primary Issues

  • Freelancers using personal devices
  • Apple computers with no centralized security tools
  • No device management tools
  • No central cloud security tools
  • No data security tools
  • A need to prioritize Microsoft apps and file security to meet client requirements


To help our client create a secure environment and to meet NIST best practices, we used Azure Active Directory as the framework for connecting users, computers and cloud applications. We paired it with Apple Business Manager to control device provisioning, and extensive data loss prevention policies with Microsoft Enterprise mobility and Security E5.

Azure Active Directory (AAD) is Microsoft’s multi-tenant, cloud-based directory and identity management service. Azure AD combines core directory services, advanced identity governance, and application access management.

Apple Business Manager connected to Azure AD and Microsoft InTune is used to bind Mac devices, applications, and managed Apple ID’s, allowing us to grant or deny access to company data hosted in the cloud. In addition, advanced compliance controls are necessary for this audit.

The result is a secure network and stringent company wide policies that can meet and exceed any compliance audit they may face from existing and new data security conscious clients.


IT systems that support revenue growth.


Mandatory encryption on computers and mobile devices.

Data Labelling

Enforcement of data labelling policies to classify files that may contain sensitive information and apply security controls to those file (i.e. tag a file as "confidential" or "Client X", which will encrypt it, water mark it, prevent it from being shared, forwarded, printed etc).

Data Retention

Retention labels to maintain specific time frames for automated deletion of Client X’s files.

Data Logging

Data logging for any activity against any service, on any device, that may access Client X’s data.


Azure Sentinel is the SIEM - a repository for all log files generated from all devices and connected cloud services. Log files are kept for a specific length of time to investigate potential data breaches.

Cloud App Security

Microsoft Cloud App Security (CASB) is used for anomalous activity detection for connected computers and cloud services. These log files are also stored in Azure Sentinel. CASB generates security alerts and notifications with severity levels, which are actioned by TUCU.


IT systems that support revenue growth.

NIST Compliance

Secure and poised to grow in the ever more cyber secure aware market place.

Data Security

The Data Security and Digital Loss Prevention strategies in place give their clients confidence.

IT + Cloud Security

With Endpoint and Identity Management, users are verified, and access is restricted. With CASBE, all cloud apps are monitored as well.

Reduced Risk

Their resilience to ransomware and cyber threats has increased significantly with IT security best practices.

vCIO Support

With TUCU's vCIO services and IT documentation, all IT Screenings and audits are a breeze.

Focused Growth

With TUCU's Managed IT Services, everything is taken care of. The client can focus on expansion.

Client Testimonials

What people say about us

"With TUCU for 4 months already, all experiences are A++, moving our IT support to them is the best decision in 2016."
Kelly L.
"We really appreciate working with you guys, and are glad we found you. You, and the techs we’ve worked with, are professional, competent, and friendly... – which has been a huge stress reliever to us. Thanks again. "
Training Services
“TUCU is there when you need them. They fix all problems large and small with minimal stress so that you can keep working.”
Katherine B.
HR Consulting

Schedule A Consultation