© 2008 - 2026 AppSphere Consultants. All Rights Reserved.
Asyym Technology Ltd Trading as AppSphere Consultants.
Lillingston Bloodstock is a leading bloodstock operation operating across several trading identities. When a long-standing team member departed, it exposed a fragmented infrastructure: lost access to critical systems, undocumented third-party dependencies, and legacy email with shared passwords and no security controls. AppSphere investigated the full picture, mapped every stakeholder and system, and applied one guiding principle: ownership before optimisation. From that foundation, we delivered a phased project covering Microsoft 365 migration, hardware setup, historic email migration, MFA, and email authentication across all domains. The project laid the groundwork for the next phase: deliverability and email security across critical communication channels.
A long-standing team member's departure prompted a review of the business's digital infrastructure. That review exposed a far deeper problem than a single gap. Critical parts of the business's foundation, including its primary domain, email systems, and hardware, were spread across multiple third parties with no central documentation and no internal oversight. No one inside the business had a complete picture of who held access to what. Email ran on a legacy system with a shared password across all mailboxes and no MFA. Three trading identities operated in parallel with no unified system, no formal handover from any of the external parties involved, and no way for the business to act independently if something went wrong.
Before any technical work could begin, we needed to understand the full landscape. AppSphere conducted a structured investigation: identifying every system in use, mapping the stakeholders and third parties involved, and establishing who held access to what across domains, email, and hardware. Only once that picture was clear did we build a sequenced plan. The principle was simple: control had to be recovered before anything could be improved. Attempting to migrate without first establishing ownership of the underlying infrastructure would have introduced serious risk. We also identified that the three trading identities could be consolidated into a single Microsoft 365 tenant, and that years on legacy mail infrastructure had degraded the domains' sender reputation, an issue that would need to be addressed as part of delivery.
Working from the investigation findings, AppSphere structured the engagement in phases. The first priority was recovering control of the primary domain and confirming ownership of all critical infrastructure assets, using historical records and direct engagement with the relevant third parties. With that foundation in place, we moved into Phase 1: consolidating all three trading identities into a single Microsoft 365 tenant, configuring primary mailboxes and cross-domain aliases for each user, and setting up fresh mailboxes for new team members. Historic email was migrated for key users with zero data loss. MFA was enforced across all accounts, and SPF, DKIM, and DMARC were configured and validated across all domains. Hardware was also addressed as part of this phase to ensure the team had the right setup to work from. During final security testing, we identified that the standard Microsoft 365 plan restricts custom DKIM and DMARC management and that the domains carried low sender reputation scores from years on legacy infrastructure. We recommended adding Microsoft Defender for Office 365 Plan 1 to resolve this, enabling full DKIM signing, DMARC policy management, real-time outbound health monitoring, and advanced anti-spoofing protections. The result was a secure, fully documented foundation, with all access centralised and all critical communication channels delivering reliably.
Every case study started with a conversation. In just 30 minutes, at no cost, we can establish whether our approach is right for your challenges. No pressure, no pitch, just an honest discussion.