PFH Office of the CTO Newsletter - Issue 4 - December 2024
PFH Technology Group
a Ricoh Company, PFH is Ireland's largest ICT services and solutions provider with 800+ employees (600+ technical).
Welcome to the December issue of the PFH Office of the CTO Newsletter. This month, we highlight changes Broadcom have made to how they license VMware, announce the availability of the Ricoh Global Security Operations Centre (GSOC) to PFH customers, and flag the Windows 365 Link announcement that Microsoft made at their 2024 Ignite Conference.
Before diving in, we want to acknowledge the one-year anniversary of PFH joining the Ricoh Group. The anniversary was actually in June, but this final newsletter of the year is a good place to highlight the milestone. Having access to the resources and global talent across the Ricoh group means that PFH can deliver better services and technologies to our current and future clients in Ireland. The Ricoh GSOC outlined in this newsletter is a perfect example of what being in the Ricoh Group brings to the table for 2025 and beyond — onwards and upwards, as the saying goes.
Careful What You Ask For - The Return of VMware vSphere Enterprise Plus
By Stephen O'Herlihy - Chief Technology Officer at PFH Technology Group.
When Broadcom acquired VMware, there was widespread concern about the future of VMware's licensing model and product portfolio. For months, customers and partners—including myself—lobbied for the return of VMware vSphere Enterprise Plus. This long-requested option disappeared amidst VMware's strategic push for broader cloud solutions like VMware Cloud Foundation (VCF). Broadcom listened and reintroduced Enterprise Plus alongside vSphere Standard, providing standalone options for compute virtualisation.
But now that it's here, I can't help but ask: Is the return of vSphere Enterprise Plus truly a good thing?
What Does Enterprise Plus Bring to the Table?
The return of Enterprise Plus is undeniably a response to customer and partner feedback. It simplifies VMware's licensing model by providing a clear-cut option for organisations that want high-performance compute virtualisation without committing to a full-stack cloud solution.
At first glance, it's an appealing move. For customers wary of full-stack solutions, this standalone offering gives old-school comfort and avoids the need to build an expansive cloud infrastructure.
However, that's precisely where my concern lies.
The Changing Landscape: Beyond Compute Virtualisation
The IT landscape has evolved significantly, and so have the demands on virtualisation platforms. Organisations increasingly expect modern infrastructure solutions to go beyond compute virtualisation to incorporate the following:
Standalone compute virtualisation solutions like vSphere Enterprise Plus risk appearing outdated in a world where cloud-like characteristics have become standard for modern IT.
Broadcom’s Vision: VCF 9.0
Ironically, while I was one of the voices calling for the return of Enterprise Plus, I'm now questioning its value, especially given Broadcom's ambitious roadmap for VMware Cloud Foundation 9.0.
One of the most compelling aspects of VCF 9.0 is its promise to enable customers to import their existing VMware infrastructure and seamlessly transform it into a fully integrated cloud stack. By delivering a comprehensive solution that combines compute, storage, networking, and management under one umbrella, VCF 9.0 addresses the modern IT challenges Enterprise Plus alone cannot solve.
If Broadcom executes on their vision, VCF 9.0 could be a game-changer, offering a true hybrid cloud experience with operational simplicity and enterprise-grade features.
The Distraction Factor
Here's the dilemma: The reintroduction of Enterprise Plus risks distracting customers from Broadcom's broader vision. Customers might opt for what feels like the safer, more familiar choice of Enterprise Plus without fully considering the benefits of an integrated cloud solution.
This is especially concerning for partners and customers who are currently transitioning to modern IT practices. Enterprise Plus might inadvertently anchor organisations to outdated approaches, delaying their journey to a cloud-like operating model.
Be Careful What You Ask For
Broadcom deserves credit for listening to its customers and delivering what they asked for. But as the saying goes, "Be careful what you ask for—you just might get it."
The return of vSphere Enterprise Plus might be the immediate answer to customer demands, but it risks being a short-sighted solution in a market that increasingly demands more. Instead of focusing solely on compute virtualisation, organisations should look to solutions that deliver cloud-era benefits like automation, simplicity, and integrated management.
The real opportunity is not to revive past models but to drive the adoption of forward-looking solutions like VMware Cloud Foundation 9.0.
The Ricoh GSOC—Your Global Security Partner
By Ian O'Callaghan - Security Division Lead at PFH Technology Group.
I recently had the opportunity to visit Ricoh's new Global Security Operations Centre (GSOC) in the heart of Warsaw. This state-of-the-art facility protects businesses from evolving cyber threats, providing round-the-clock monitoring and a highly efficient incident response system. The growing sophistication of cyber threats, coupled with advancing technology and changing organisational needs, requires a robust and proactive approach to security operations. This section explores how the Ricoh GSOC offers a compelling solution to these challenges.
GSOC services are now available to PFH customers in Ireland who are looking to have access to a 24x7 SOC staffed with skilled cybersecurity professionals with global experience without having to build and maintain such a facility themselves. Doing so is a capitally expensive and ongoing management burden. One that you can now outsource via PFH to get cyber protection and predictable costs. As noted by Gartner, "Scaling up a security operations centre with only internal staff is difficult, if not impossible, for most organisations."
Let's outline what the Ricoh GSOG provides, and the benefits that using it delivers.
The Services Available from PFH via the Ricoh GSOC
The Ricoh GSOC offers a tiered service approach through four service levels (S1-S4) designed to provide comprehensive security coverage.
Core Services
The Security Monitoring and Alert Management Service (S1) forms the foundation, using Microsoft XDR/SIEM technologies to provide continuous security monitoring. This service includes asset onboarding, log collection, security monitoring, and alert management, all enhanced by real-time threat intelligence for sector-specific threats.
Working in tandem with S1, the Security Triage and Mitigation service (S2) handles alert assessment and response. SOC Level 1 and 2 teams work together to investigate alerts, manage tickets, and implement necessary mitigation actions. This integrated approach ensures efficient handling of security incidents while maintaining clear service level agreements.
Optional Services
The Threat Management service (S3) proactively identifies and manages emerging cybersecurity threats. It delivers strategic threat intelligence and actionable protective measures, keeping GSOC clients informed about critical vulnerabilities and emerging threats.
领英推荐
The Incident Response and Remediation service (S4) manages high-severity security incidents, focusing on both immediate resolution and long-term cyber resilience. This service can include third-party forensic analysis and specialised crisis management capabilities.
Ricoh GSOC services are available in three tailored packages:
Managed XDR Basic targets small to medium-sized companies without cloud-based resources. It provides essential S1 and S2 GSOC services for endpoints, servers, and on-premise Active Directory.
Managed XDR Advance extends the Basic package to include cloud asset coverage (Azure, O365, IaaS, SaaS), which is ideal for organisations utilising cloud-based resources.
Managed SIEM delivers comprehensive security monitoring, including all services in XDR Advance plus infrastructure protection and additional APIs/Logs coverage. It is suitable for medium to large organisations requiring extensive security monitoring.
These services are shown in Figure 1.
Why Choose Ricoh's GSOC?
Ricoh's GSOC stands out in several key areas that make it an ideal partner for organisations seeking robust security operations. Especially for PFH customers in Ireland who get to have a strong relationship with a trusted partner and access to the global talent in the GSOC. Benefits include:
Global Reach, Local Expertise - With 300 cyber teams across EMEA, Ricoh combines vast threat intelligence and expertise with local support. This extensive network ensures comprehensive security coverage while maintaining responsive local service delivery.
Advanced Technology Integration - The GSOC leverages cutting-edge AI and automation tools for enhanced threat detection and response capabilities, ensuring faster and more accurate security operations.
Tailored Service Delivery - Services are customised to meet specific client needs, including support in local languages and adherence to regional compliance requirements.
Client Partnership Approach - Ricoh is a strategic partner rather than simply providing security services. It helps clients address immediate security concerns while developing long-term cybersecurity roadmaps.
Security Guardian Role - The GSOC acts as a vigilant guardian of clients' digital assets and infrastructure, maintaining constant readiness to respond to security incidents.
Established Heritage - With an 88-year corporate history and extensive experience in cybersecurity, Ricoh brings stability and reliability to security operations, underpinned by the Ricoh Way philosophy of continuous improvement via customer-centric solutions.
Through PFH in Ireland, organisations gain access to this global security powerhouse while maintaining local support and expertise. This combination of global capability and local delivery makes the Ricoh GSOC an ideal partner for organisations seeking to enhance their security posture without the burden of maintaining an internal SOC.
Microsoft Ignite Announcements
By Cormac Long - Digital Workspace Specialist at PFH Technology Group.
Microsoft announced many things at its recent 2024 Ignite Conference. Over the next few newsletters (and in blogs and posts), we'll cover interesting and relevant digital workspace items. This month, I want to highlight one of the more significant hardware announcements -?Windows 365 Link, the first Cloud PC device for Windows 365. This device aims to make it easier for organisations to adopt Microsoft 365 services to boost user productivity, enhance security, increase IT efficiency, and advance sustainability.?
What is Windows 365 Link?
he Windows 365 Link is Microsoft's first purpose-built mini PC for Windows 365, designed to provide seamless access to cloud-based Windows desktops. It is a thin client device designed to connect to Windows 365 Cloud PCs and stream a fully virtualised Windows 11 experience from the cloud. Compact and fanless, Microsoft targets the device at businesses adopting a cloud-centric endpoint strategy, enabling secure, high-performance computing for desk-based workers.
What Are the Benefits?
Windows 365 Link devices deliver the following benefits for organisations using virtualised Windows 365 Cloud PCs:
Cloud-Powered Performance - Microsoft has optimised the Windows 365 Link for speed and productivity. It boots in seconds, wakes instantly from sleep, and offers high-performance local processing for activities such as Microsoft Teams video conferencing. The device supports dual 4K monitors and a variety of wired and wireless peripherals through multiple USB ports, HDMI, DisplayPort, Wi-Fi 6E, and Bluetooth 5.3. Relying on the cloud for computing power eliminates latency issues often associated with virtualisation, creating a smooth and responsive user experience.
Secure by Design - Security is integral to the Windows 365 Link. Its locked-down operating system has no local apps, data, or administrative privileges, minimising vulnerabilities. Built-in features such as Secure Boot, Trusted Platform Module (TPM), BitLocker encryption, and Microsoft Defender ensure robust endpoint protection. Additionally, passwordless authentication using Microsoft Entra ID enables secure sign-in options, such as QR codes, FIDO USB keys, or the Microsoft Authenticator app.
Simplified IT Management - Designed to streamline IT operations, the devices integrate easily with Microsoft Intune for centralised management and configuration, using familiar tools and policies. Automatic updates occur during off-hours, reducing downtime. The device's lightweight design makes it easy to deploy directly to users, simplifying logistics. This plug-and-play simplicity allows users to set up and connect within minutes, increasing operational efficiency.
Climate-Friendly Device - Microsoft has prioritised sustainability in the design of the Windows 365 Link. Key green credentials include:
These measures align with corporate sustainability goals, supporting organisations seeking to minimise their environmental impact.
Find Out More About Windows 365 Link
To learn more about the Windows 365 Link, visit the official Microsoft Windows IT Pro Blog.?
Businesses considering how this innovative device can enhance their Microsoft 365 strategy should contact the PFH Digital Workspace team. The Windows 365 Link ships in the first half of 2025, making now the perfect time to explore its potential for your organisation.
Final Thoughts
We welcome your feedback on the topics in this newsletter and our blogs, posts, and videos. Contact us if you would like to provide feedback or ask us a question. Our next newsletter will be out in early January.?
| PFH Office Of The CTO|