What was the goal of the Gibson Energy modernization program?

The program was designed to move Gibson Energy from legacy endpoint management to a cloud-first, Zero Trust operating model with stronger security, faster provisioning, and a better hybrid-work experience.

Which Microsoft technologies were central to the Gibson Energy deployment?

The engagement centered on Microsoft Entra ID, Conditional Access, Intune, Windows Autopilot, Windows Hello for Business, FIDO2, Windows Defender Application Control, Microsoft Defender for Endpoint, Apple Business Manager, and Samsung Knox.

What business results did Gibson Energy see?

Gibson Energy reduced provisioning time and support overhead by approximately 70 percent while improving endpoint security, compliance visibility, and the user experience across Windows and mobile devices.

Gibson Energy Case Study

Modernizing Endpoint Infrastructure for a Zero Trust Future

Gibson Energy partnered with Veles IT Solutions to redesign endpoint management around Microsoft cloud services, stronger security controls, and a lower-friction user experience for hybrid work.

Book a Discovery Call Explore Services

Energy infrastructure operations
Zero Trust endpoint modernization
Microsoft cloud-first management
Hybrid-ready delivery model

Impact at a glance

The engagement reduced operational drag while improving security posture, user experience, and control across the endpoint estate.

70%

Less provisioning and support overhead

Zero Trust

Endpoint operating model

Passwordless

Experience across Windows and mobile

Why Gibson needed a different endpoint operating model

Gibson Energy was managing a growing endpoint estate with legacy, heavily on-premises tooling that made provisioning, policy enforcement, and user support harder than it needed to be.

The business needed a cloud-first architecture that could reduce risk, improve device lifecycle management, and support secure remote and hybrid work without increasing operational complexity.

Legacy tooling

Provisioning and support were too manual

Traditional endpoint management workflows were creating repetitive setup effort, slower deployment cycles, and too much dependency on hands-on IT intervention.

Security

Zero Trust controls needed to be real, not theoretical

Identity, access, device compliance, and application control needed to work together as one enforceable security model rather than a collection of disconnected settings.

Device diversity

Windows and mobile management needed one strategy

Executives, knowledge workers, and mobile users needed a consistent experience across Windows, Apple, and Samsung-managed devices.

Hybrid delivery

Remote onboarding had to be secure and scalable

The organization needed a more efficient way to provision, govern, and support endpoints for remote and hybrid teams without sacrificing compliance.

The modernization program was built around four priorities: reduce friction, strengthen control, improve visibility, and make endpoint delivery easier to scale.

Solution pillars across the endpoint modernization program

Veles designed the transformation as one coordinated Microsoft architecture rather than a series of isolated improvements.

Identity and Conditional Access

Microsoft Entra ID and Conditional Access policies aligned authentication, device trust, and access decisions to a modern Zero Trust baseline.

Intune compliance and remediation

Microsoft Intune became the cloud-first management layer for endpoint policy, compliance enforcement, and proactive remediation workflows.

Application control with WDAC

Windows Defender Application Control policies limited execution to approved applications, browsers, and add-ins to reduce endpoint risk.

Migration from SCCM to Intune

Legacy endpoint administration was transitioned toward a more scalable Microsoft cloud model that reduced operational drag and improved manageability.

Passwordless authentication

Temporary Access Pass, Windows Hello for Business, and FIDO2 security keys delivered stronger security with less login friction for users and administrators.

Zero-touch provisioning and lifecycle automation

Windows Autopilot, Apple Business Manager, Samsung Knox, and automated notifications streamlined onboarding, policy enforcement, and ongoing device administration.

What changed after the rollout

The endpoint program delivered measurable operational improvement, but the bigger shift was strategic: Gibson Energy moved from a legacy device-management posture to a modern security and lifecycle model built to support growth.

"Partnering with Veles Software was instrumental in transforming our endpoint infrastructure to a modern, secure environment that supports our ambitious business objectives."

Basim Abdalla, Director, IS, Gibson Energy

Efficiency

Provisioning became dramatically faster

Modern provisioning and workflow automation reduced manual setup effort and repetitive support work by approximately 70 percent.

Control

Security posture became more enforceable

Identity, compliance, and application control were aligned to a more consistent Zero Trust operating model across managed endpoints.

Experience

Access became smoother for users and administrators

Passwordless sign-in, self-service delivery, and more predictable device behavior improved usability without weakening security.

Visibility

Compliance and remediation became easier to manage

Real-time endpoint visibility, automated enforcement, and remediation workflows helped the team respond faster and operate with more confidence.

Microsoft technologies deployed across the engagement

The program combined identity, provisioning, security, and automation capabilities into a cohesive endpoint architecture tailored to Gibson Energy’s operational needs.

Identity and access

Microsoft Entra ID, Conditional Access, FIDO2 security keys, and Windows Hello for Business.

Provisioning and lifecycle

Microsoft Intune, Windows Autopilot, Apple Business Manager, Samsung Knox, and Company Portal workflows.

Security and endpoint control

Windows Defender Application Control, Microsoft Defender for Endpoint, Microsoft Security Baselines, and CIS benchmark policy alignment.

Automation and reporting

Intune proactive remediations, Power Automate, Power BI, Power Apps, and Microsoft 365 operational integrations.

Case Study FAQ

Common questions about the Gibson Energy engagement

How did Veles apply Zero Trust principles in this case study?

Zero Trust was applied through identity-driven access controls, device compliance requirements, application control, passwordless authentication, and continuous remediation workflows that reduced reliance on static trust assumptions.

Did the Gibson Energy rollout support remote and hybrid users?

Yes. Cloud-native provisioning, Windows Autopilot, passwordless access, and mobile management helped Gibson Energy support remote and hybrid users more securely and with far less manual effort.

Was this only a Windows project?

No. While Windows endpoints were central, the program also incorporated Apple Business Manager and Samsung Knox to improve lifecycle management and policy coverage across a broader device estate.

What replaced Gibson Energy’s legacy endpoint management model?

The environment moved away from heavily on-premises, SCCM-led administration toward a cloud-led Microsoft Intune and Entra ID operating model with stronger automation and compliance control.

Why was passwordless access important in the engagement?

Passwordless methods such as Temporary Access Pass, Windows Hello for Business, and FIDO2 improved both security and usability by reducing friction for end users while strengthening authentication for administrators and high-value workflows.

Planning a similar endpoint modernization program?

We help enterprise teams redesign endpoint operations around stronger security, better visibility, and a lower-friction user experience across Microsoft environments.

Book a Discovery Call Contact Us