Home Capabilities How We Work M365 E7 Partnering About Contact
CAPABILITIES
Northforge / Capabilities
What we deliver

From SECRET on-prem
to sovereign cloud —
the full spectrum.

Our capability spans the complete lifecycle of secure Defence digital environments — grounded in real classified-environment experience and delivered through deep Microsoft platform specialisation.

full lifecycle
Core capabilities
On-premises & classified environment capability
Before cloud, there was classified. Northforge’s team has delivered SECRET-level on-premises Defence environments — air-gapped networks, hardened infrastructure, mission-critical systems under the most demanding security requirements in Australia. This experience is the foundation of everything we do in cloud.
Secure cloud platforms
Landing zones · Sovereign hosting
ISM-aligned Azure landing zones, hub-spoke architecture, identity-first security, private endpoints and PROTECTED workload hosting.
AzureISMPROTECTEDLanding zone
Identity & access management
Zero Trust · Privileged access
Entra ID architecture, Conditional Access, Privileged Identity Management and Zero Trust — the same identity discipline applied at SECRET, delivered in cloud.
Entra IDZero TrustPIMEssential 8
Endpoint security
Intune · Defender · Hardening
Intune and Defender for Endpoint, ACSC hardening baselines, automated compliance enforcement and SOC integration on managed and distributed mission endpoints.
IntuneDefenderACSCHardening
Secure collaboration
M365 · Teams · Copilot
M365 for classified workloads — sensitivity labels, DLP, Teams governance, SharePoint architecture. Copilot for M365 within sovereign data boundaries and ISM controls.
M365TeamsPurviewCopilot
Governance & risk
Frameworks · Policies · Uplift
ISM, PSPF and DSPF-aligned governance frameworks, policy uplift, risk management and ongoing assurance reporting for senior leadership.
ISMPSPFDSPFAssurance
IRAP assessment support
Preparation · Artefacts · Remediation
End-to-end IRAP preparation — SSPS, SRA, risk register, SoA and control evidence. Pre-assessment gap analysis. Accreditation built in, not bolted on.
IRAPSSPSSRAGap analysis
Microsoft specialisation
AzureMicrosoft 365Entra IDIntuneDefenderPurviewSentinelCopilot for M365TeamsSharePoint
engagement models
How capabilities are delivered
01
Programme embedding
Northforge architects and engineers embedded within existing Defence programme teams — including within prime contractor consortia.
02
Standalone delivery
Northforge leads end-to-end capability delivery from assess through to operate — scoped, owned and delivered by our sovereign Australian team.
03
Advisory & uplift
Architecture reviews, accreditation preparation, governance uplift and on-prem to cloud transition planning.

Need a specific capability scoped?

Engage Northforge to scope your programme requirements.

Start a conversation →