Audit Agent Compliance evidence & audit prep Operations Agent M365 operations & CIS benchmarks CyberAware Training Security awareness & phishing sims Remote Support Start a secure support session All Customer Tools Portals, admin consoles & more
Preview Your Audit
Preview Your Audit
Secure

Managed Device Rental

Pre-configured, manufacturer-direct devices that eliminate supply chain risk and simplify ISO 27001 asset management.

Your perimeter extends to every endpoint. Unmanaged device procurement introduces supply chain risk that most organisations never quantify: tampered firmware, missing encryption, unpatched images, and devices that arrive with no identity in your tenant. When an ISO 27001 auditor demands proof of hardware integrity before it touches your network, “we trust the reseller” is not an answer. Manufacturer-direct procurement with pre-configured enrolment ensures every device is a secured, compliant asset from purchase order to first boot.

Foundation (Plan 1)

  • Manufacturer-Direct Supply — Devices sourced directly from Lenovo and Dell, eliminating intermediary supply chain risk and ensuring hardware integrity from factory to desk
  • Intune Auto-Enrolment — Devices arrive pre-configured for Windows Autopilot and Intune enrolment, automatically joining your tenant with your specific security policies and identity management applied before first boot
  • BitLocker Pre-Encryption — Full-disk encryption enabled before the device leaves the staging environment, ensuring data-at-rest protection from day one
  • Asset Tagging and Registration — Every device is tagged with a unique asset identifier and registered in your CMDB before dispatch, providing complete chain of custody
  • Standardised Security Baseline — Devices are deployed with a GMS-hardened baseline aligned to CIS benchmarks and your actual tenant configuration: Defender for Endpoint, attack surface reduction rules, and application control policies — monitored for drift
  • Flexible Rental Terms — Monthly rental model that converts capital expenditure to operational expenditure, with refresh cycles aligned to your hardware lifecycle policy

Added in Lifecycle Management (Plan 2)

  • Scheduled Refresh Cycles — Proactive device replacement at 36 or 48 months, ensuring hardware remains within warranty and within your risk appetite for component failure
  • Secure Decommissioning — End-of-life devices undergo certified data destruction (NIST 800-88 compliant wipe) with a certificate of destruction provided for your audit evidence
  • ITAD Compliance — IT Asset Disposition managed through certified recycling partners, with full chain-of-custody documentation from return to destruction
  • Break-Fix and Advance Replacement — Failed devices replaced within SLA, with the returned device securely wiped and deregistered from your tenant before entering the repair cycle
  • ROI Reporting — Quarterly reporting on device fleet health, refresh forecasting, and total cost of ownership versus outright purchase, demonstrating ongoing value to finance and procurement stakeholders

What you receive

Delivery PackageDurationStakeholdersKey Deliverables
Device Procurement and Staging3–10 daysIT Admin, ProcurementAutopilot registration; Intune enrolment configuration; BitLocker policy; security baseline deployment; asset register entries
Lifecycle Management Setup2–5 daysCISO, FinanceRefresh cycle policy; decommissioning procedures; ITAD partner onboarding; certificate of destruction template; ROI baseline report

ISO 27001 controls covered