What happens when an organization needs to rebuild its entire IT and security environment, without disrupting daily operations?

That was the reality for What’s Cooking Group, an innovative food company focused on delivering high-quality, ready-to-eat meals. Following the carve-out of its Savoury business, the organization continued as an independent entity, and took the opportunity to rethink its entire digital foundation.

“After the carve-out, we had to rebuild our IT and security environment from the ground up,” they explain. “We saw it as a chance to create a modern, secure foundation that supports our future growth.”

A complex transformation under pressure

The challenge was significant. The organization needed to separate systems, identities and access structures, while ensuring business continuity at all times.

“We were in a phase where continuity, scalability and security all had to come together,” they explain. “That meant building an environment that could evolve with us, without disrupting our daily operations.”

Identity played a central role in this transformation. Migrating all users, accounts and access rights into a new environment, while dealing with legacy systems, required a structured and phased approach.

At the same time, secure access management became a priority, especially for external users and partners, and with future compliance requirements such as NIS2 in mind.

Identity-first, powered by Microsoft Security

Together with Resilient Security, What’s Cooking defined a clear roadmap, starting with identity as the foundation.

“We began by creating full visibility on all identities and structuring them correctly in the new environment,” explains the Resilient team. “From there, we built a strong and scalable security baseline.”

That foundation was built on Microsoft Security technologies, including:

• Microsoft Entra ID for identity and access management
• Active Directory for hybrid identity integration
• Security capabilities to enforce access control, visibility and governance

In parallel, Privileged Access Management (PAM) was implemented using Delinea, ensuring that privileged access, including external IT support, was controlled, temporary and fully traceable from day one.

This phased approach (identity first, then security baselines, followed by privileged access) ensured a robust and future-proof environment.

From implementation to continuous protection

Security doesn’t stop after implementation. To ensure long-term resilience, What’s Cooking relies on Resilient PROTECT, the managed security service by Resilient Security.

Through this approach, the organization benefits from:

• Continuous monitoring and support of their Microsoft security environment
• Proactive guidance and optimization
• Ongoing alignment with evolving risks and compliance requirements

“We don’t just support the environment technically,” explains the Resilient team. “We continuously help the customer improve their security posture and adapt to new challenges.”

A partnership beyond the project

Resilient Security supported the entire trajectory end-to-end: from architecture design and identity migration to coordination with other partners.

“What made the difference is that they didn’t just implement, they acted as a trusted advisor,” the team explains. “They understood our context and helped guide the full journey.”

Today, What’s Cooking operates in a modern, secure IT environment with:

• Full visibility on identities and access
• Centralized control over permissions
• A scalable foundation ready for future compliance

“We’ve moved from a legacy-driven setup to a future-proof digital environment that supports our growth.”

Ready for what’s next

With evolving regulations such as NIS2 and increasing security demands, the journey continues.

“We’re still at the beginning of our security roadmap,” they conclude. “But we now have a strong foundation — and a partner that helps us move forward with confidence.”

Key takeaway

This case shows that cybersecurity is not just about deploying tools.

It’s about building a strong identity foundation, leveraging the right platforms, such as Microsoft Security, and ensuring continuous improvement through managed services like Resilient PROTECT.

Because resilience isn’t built once. It’s built, and maintained, over time.

Do you also want to build a smarter, more secure future or are you looking for Microsoft expertise? Contact us today to learn how we can help!