Global Component Shortage Bulletin: Providing regular updates on global component availability and supply chain conditions. Learn more.

XMA Store

Search
X-twitter Linkedin Youtube
Home » Software

Archive

Why a “Device-Only” Strategy Fails the UK Classroom

Modern education requires more than a simple mobile device, it demands a secure, intelligent, and resilient ecosystem. Is your institution currently managing a fragmented fleet of hardware, or are you benefiting from a unified system where the hardware, silicon, and OS are designed by a single source?  

At XMA, we bridge the gap between technical innovation and the functional requirements of the UK classroom. We help schools achieve flagship performance at a sustainable cost by using integrated technology from our partner, Google. 

Download the Pixel Perfect eGuide

Why Ecosystem Integration Matters 

  • Verified Security: Google Pixel achieves a 100% score for security updates and hardware security. 
  • Identity Protection: While leading competitors often score 75% in critical security categories, Google Pixel reach 100% for identity protection and secure backups.1
  • Sustainable Lifecycles: Reduce your Total Cost of Ownership (TCO) with 7 years of guaranteed OS and security updates.2

Is your fleet ready for the “backpack environment,” or are repair costs draining your budget? Download our latest eGuide to see how XMA simplifies digital transformation through frameworks like CCS and G-Cloud. 

Download the Pixel Perfect eGuide

  1. Mobile Device Security Scorecard – 2025 Report Omdia

  2. Pixel updates for 7 years from when the device first became available on the Google Store in the US. See g.co/pixel/updates for details.

The Browser is Now the Security Perimeter

85% of the workday now takes place inside a browser*. So why is your security infrastructure still anchored to a network edge that your employees have long since left behind? This isn’t just a technical misalignment, it could be leaving UK IT leaders completely blind to the risks of a modern workforce. While the way we work has evolved, the way we secure that work has remained static, creating a significant window of opportunity for modern threats. 

Standard browsers are not designed to protect against risks like Shadow AI, where proprietary data is pasted into unapproved LLMs, or visual leaks via smartphone photos. If your security doesn’t live where your employees actually work, how can you expect to see the danger coming? 

 

Cutting the “Legacy Tax” 

Many UK organisations remain tethered to expensive VPNs and resource-heavy VDI environments just to support one or two “heritage” Windows applications. This “Legacy Tax” results in high licensing and hardware costs for a fragmented environment that is notoriously difficult to secure. 

XMA provides a unified control plane that moves security directly to the browser tab. We partner with industry leaders like Google Chrome Enterprise Premium and Cameyo to deliver this solution, allowing legacy applications to run as individual tabs within a secure browser environment. It is time to stop supporting expensive legacy anchors and start securing the modern workspace. 

 

Tangible Outcomes for UK IT Leaders 

By shifting to a browser-based approach, you can implement context-aware actions and robust data loss prevention (DLP) policies: 

  • GenAI Guardrails: Use contextual prompts to block data transfers to unapproved AI tools. 
  • Visual DLP: Protect sensitive information with dynamic watermarking and screenshot blocking. 
  • Cost Efficiency: Access a complete security solution for £6 per user per month while extending the life of your current hardware. 
  • Zero-Provisioning: Remove the need for VPNs or client-side agents on endpoints entirely. 

 

Build Your Roadmap 

Modernising your security posture does not require a “big bang” migration. XMA recommends a phased approach, starting with a 60-day Proof of Value. 

This allows you to test premium features (including deep malware scanning and URL filtering) for up to 5,000 users. There is zero cost to begin, and crucially, there is no impact on end-user productivity during the testing phase. Why remain blind to your risks when you can see the solution for yourself? 

Download our eGuide Now

*https://start.paloaltonetworks.com/Omdia-state-of-workforce-security

Forging a Decade of Digital Excellence: How SFAET Saved £40k and Pioneered AI with XMA

In the education sector, technology procurement is often reactive, fixing what is broken or refreshing devices on a rigid cycle. However, the most successful Multi-Academy Trusts treat IT as a strategic foundation for pedagogy, not just a utility. 

Our latest case study explores the 10-year partnership between XMA and the Success for All Educational Trust (SFAET), specifically focusing on Redden Court School. This relationship demonstrates how a long-term vision yields significant financial and operational returns. 

Read The Full Case Study

Practicing what we preach, we’ve used the transformative power of Google’s NotebookLM to effortlessly create an infographic based on the case study. NotebookLM also gave us the ability to make our own podcast on the subject, as well as a video! Check them out below

Listen To Our Podcast

For everything educational, rely on XMA for your next IT project. Contact us at enquiries@xma.co.uk for more.

Practicing What We Preach: A Candid Q&A on Cyber Resilience with XMA’s Head of IT Security & Compliance

In the IT channel, it is easy to talk about security in the abstract. But at XMA, we don’t just recommend security architectures, we live them. As a major IT solutions provider managing critical infrastructure for UK government bodies and large enterprises, we also must be on top of our cyber resilience.  

To be a true strategic Technology Partner, we must practice what we preach. We sat down with Charlotte King, XMA Group’s Head of IT Security & Compliance, to discuss the reality of defending a modern organisation. From the rise of AI-driven phishing to the dangers of the “silver bullet” mindset, here is the view from the inside. 

 

Section 1: The View from the Inside 

Q: As Head of InfoSec for a major IT solutions provider, you see a broad spectrum of threats. Moving beyond the buzzwords, what are the specific, high-risk trends keeping you up at night right now? 

Charlotte King: Firstly, our prevention controls – are they actually working? It’s not enough to have shiny tools, we need to constantly test and tune them to keep attackers out. This is not a “one and done” exercise. It keeps us on our toes every single day. 

Supply chain attacks are a real headache, and we have seen several big ones this year. We rely on suppliers for hardware and software, so if they’re compromised, so are we, and this affects our valued customers. Downtime or breaches in the supply chain can ripple right through our environment and soon become the critical task of the day. 

Phishing is relentless. Email remains a favourite attack vector, and the sophistication of these attacks is only increasing with AI. Finally, our staff – are we doing enough to train and support them? Are our technical teams prepared and well enough resourced to cope with the “business as usual” work and then the swerve balls that can come from suppliers, customers, or our industry partners? 

 

Q: We manage critical infrastructure for customers across the UK, including government bodies. How do we approach our own security to ensure we remain resilient against supply chain attacks? 

CK: We do a vast number of things to help with this. We certify and align to recognised security standards and frameworks. You can’t be an IT company these days without having these external validations of your policies and controls. We have just completed the re-cert for ISO 27001:2022 and have Cyber Essentials Plus next week. 

The audit cycle helps us to be continuously aware of possible weaknesses so we can fix and strengthen them. For us, security isn’t static, it’s not a goal or a destination, it’s our everyday. We’re always assessing our people, processes, and technology, reviewing how we can make it better, stronger, more resilient or efficient. We look at how these multiple layers of security can ensure that if one fails, others stand in the way. 

We have recently made big improvements to our supply chain onboarding. We don’t just trust our suppliers blindly, we vet them thoroughly. 

 

Section 2: The Human Firewall 

Q: Technology is only half the battle. How do you approach security culture at XMA to ensure staff are an active line of defence rather than a vulnerability? 

CK: Technology and processes are only half the battle. We have all sorts of people here at XMA, from technical teams to sales, and the usual back-office support staff too. We have robust staff security training, and we run ongoing simulated phishing campaigns and monthly bulletins to help keep security in everyone’s mind. 

This month our bulletin was for Black Friday and Christmas scams, helping keep our staff safe in and outside of work. I would like to think we also have an approachable security and compliance team. We make it easy for staff to ask questions and report issues. We are also looking at a Security Champions programme to help further embed security advocates in every department. 

 

Q: Phishing remains a primary trigger for security breaches. With the rise of AI-generated content, attacks are becoming harder to spot. What specific “tells” should organisations teach their staff to look for in 2026? 

CK: You’re right, and in fact, AI is making it easier for attackers to craft convincing messages. As a business, we have a strong online presence, so finding who works here isn’t difficult. So, it comes down to our staff to be careful with emails, whilst knowing much of it will be caught by our tools and filters. 

Check URLs and domains carefully. Hover before you click! Watch for odd language or tone. AI can mimic, but it’s not always colloquially perfect. Scam psychology is to provide a sense of Scarcity, Urgency, Authority, or FOMO (Fear Of Missing Out). If the email has that, you don’t recognise the sender, or it seems a bit off, use the easy reporting mechanisms we have at XMA which make it simple for staff to flag suspicious emails. 

 

Q: With the ease of using AI tools, Shadow IT is a growing governance nightmare. How can IT Directors and business owners identify unapproved applications without halting productivity? 

CK: This is always a balance: to permit staff to access tools or applications that allow them to innovate, whilst being secure and well-governed. We publish a clear applications catalogue for staff to use as a first point of call. 

If the application we already have doesn’t meet their needs, we make it easy for staff to find and request approved tools, which then goes through a due diligence process. This allows some flexibility for niche needs whilst meeting security standards. Admin rights are locked down so staff can’t install software without authorisation. 

 

Q: Many organisations have security policies that sit in a drawer and are rarely read. How can businesses create policies that employees actually follow, rather than work around? 

CK: At XMA we have one clear, concise user agreement, signed annually. Keeping it short, simple, and in plain language means staff are more likely to engage with it. We track compliance of this overarching policy, and it forms a key part of our security foundation. Generally, if a workflow is built into technology (perhaps the triage of a suspicious email) that’s better than a dusty process document. 

 

Section 3: Our Vendor-Agnostic Take 

Q: Vendors often promise a single tool will solve all security problems. Why is this mindset dangerous, and what is the reality of building a layered defence? 

CK: Every department has different needs. What works for procurement might not work for sales, so you have to create a layered defence to protect all systems, people, and physical assets. Single tools can fail. Relying on one solution is risky and not resilient. 

Layered defence is key. Using specialist tools that work together, supporting your people and processes, means you can protect your business even if one security system stops working. We’ve seen big security vendors hit by ransomware, configuration changes impacting uptime, and global hyperscalers suffering significant downtime. No security vendor is immune to some kind of failure, so we need to spread our bets insightfully across tools and technology to keep the wheels of commerce turning for our stakeholders. 

 

Q: If a customer (whether an SMB owner or a Public Sector compliance officer) could make one immediate change today to improve their security posture, what should it be? 

CK: Enable Multi-Factor Authentication (MFA) everywhere you can. It’s one of the simplest, most effective ways to block attackers. This is for all areas: social media, work applications, shopping portals. Call out suppliers that don’t have MFA on their applications. Oh, and mandate a corporate password manager too. 

 

 

Need a Strategic Partner who understands the reality of cyber threats? 

At XMA, we don’t just sell technology, we use it to secure our own business every day. Contact your XMA Account Manager or talk to us at enquiries@xma.co.uk to discuss how we can help you build a resilient, layered defence. 

Android Desktop: How does Security and Management Change with Phones as Primary Devices?

This is the fourth in a series of blog posts exploring Android Desktop. Our Head of Pre-Sales, Scott Wright, will be looking at the current state of Android Desktop, following its improvement as release approaches, examining use cases, looking at essential apps & peripherals and more. 

Picture of Scott Wright

Scott Wright

Scott is XMA’s Head of Pre-Sales. An IT industry greybeard, he believes strongly that proper planning & preparation prevents poor performance.

Something a little different for this one – I sat down with Charlotte King, XMA Group’s Head of IT Security & Compliance to discuss her thoughts on how a shift to an Android device as the primary (only) device for some users might affect security and compliance. Below are my notes from that conversation.

Charlotte King: XMA group currently has all Android devices enrolled in Intune. Although there is a security baseline in place covering encryption, patching, etc. this change in device use should trigger a review of that baseline to ensure it remains fit for purpose given the significant increase in usage and in the variety of applications used which is likely to occur.

Similarly, the IT Use Policy should not require changes but should be reviewed in the context of this new usage. Some elements will increase in priority, for example the use of unauthorised charging cables (which presents a security risk) may need additional training.

The same Smart Update process used on Windows devices, which monitors user experience to trigger a device refresh rather than arbitrary dates, should be extended to Android devices.

Remote support tools should be reviewed to ensure that the same level of ease of use and functionality in remote device access is provided for Android devices as is currently available for Windows devices and the security of those tools must be assessed.

Historically XMA has seen higher rates of breakage on mobile devices. This will need to be factored into the costings for a device use change unless it can be mitigated via device selection or accessories. This is especially significant given that it is likely that a more expensive device would be issued.
[note from Scott – I am doing some testing on devices of different specifications to see what’s needed for a good experience]

Security features would also be a key consideration for device selection with a highly effective fingerprint reader being the preferred solution after initial consideration but testing of alternative methods for rapid, secure device unlock would be called for.

MFA would also need some consideration. Currently the mobile device is used as the MFA platform deliberately to separate it from the primary device, this would not be possible where an android device is fulfilling both roles. Potentially a phone compatible token solution such as Yubikey would alleviate these concerns.

Testing of applications will need to occur, just as with the recent Windows 11 migration, with especial focus on key line of business apps.

An endpoint security solution for mobile should be considered with thought given especially to capabilities that may be missing from the current desktop endpoint security solution.

Android devices are considered to be easier to manage by the XMA IT team with less administrator intervention needed for updates and a much lower frequency of updates negatively impacting user experience.

The total number of managed devices will be reduced since the majority of likely candidates for this change in device strategy currently have both a Windows and Android device.

Auditing and certifications is expected to be faster, and therefore less expensive.

There is the potential for a saving in Microsoft Licensing given the various options that are available for devices with smaller screens.
[note from Scott – I will be raising this question with Microsoft as small devices docked with large monitors is not a scenario mentioned by the current user agreement]

 

Scott Wright: Some interesting points, I think, and a good outline of the assurance process that will likely be required for most organisations considering an introduction of Android devices as laptop replacements.

Beyond Windows 10: A Strategic Opportunity for Compliance and Modernisation

The end of official support for Windows 10 marks a strategic turning point for UK organisations. It’s a clear opportunity to move your business from a reactive footing to a proactive one. The migration to Windows 11 is a business-critical decision that allows you to secure your operations, protect your data, and build a modern, resilient technology foundation. 

 

A Strategic Path to Modern Compliance and Governance 

For large enterprises and public sector bodies, achieving compliance is essential for operational continuity. Windows 11 is built with a modern security architecture designed to help you meet these goals. 

  • Hardware-Level Security: Windows 11’s requirement for TPM 2.0 (Trusted Platform Module) provides hardware-based encryption. This is a critical component for protecting sensitive data and aligning with stringent standards like Cyber Essentials Plus. 
  • Control Data Access: The operating system delivers robust identity protection, vital for implementing zero-trust principles. This gives you granular control over who accesses sensitive data, a key part of modern governance and risk management. 
  • Invest in a Modern Platform: Migrating to Windows 11 is an investment in a platform that receives continuous security innovation. This protects your organisation from emerging threats and demonstrates a clear commitment to security best practices. 

 

For the Growth-Focused Business Owner 

If you are a Small or Medium Business (SMB) owner, your focus is on reliability and growth, not IT problems. You need technology that works, protects you, and stays out of the way. The move to Windows 11 directly supports these needs. 

  • Protect Your Business: A cyber-attack can cause serious disruption. Windows 11’s improved security baseline provides a much stronger defence against ransomware and data theft, protecting your operations and your reputation. 
  • Focus on Your Business, Not IT: Running an unsupported OS, often on older hardware, can lead to system failures and lost productivity. A modern OS and hardware mean reliable performance. This reduces time spent on IT issues and allows your team to focus on serving your customers. 

The end of Windows 10 support is a catalyst for positive change. It’s the right time to assess your environment and develop a migration plan. XMA can help you manage this transition efficiently, ensuring you achieve a more secure and compliant organisation with minimal disruption. Contact us at enquiries@xma.co.uk or take our Quiz to see how XMA can help you maximise your journey to Windows 11

Take The Quiz

Is Your Hardware Ready for the AI-Driven Workplace?

Artificial Intelligence (AI) is fundamentally changing how we work. As organisations adopt AI-powered tools to improve productivity, a critical question arises: can your current computers handle the demand, or are they becoming a blocker to innovation?

For years, the hardware replacement cycle has often been reactive: When a device fails, it gets replaced. However, the shift to AI requires a more strategic, proactive approach to your device strategy. This is where Copilot+ PCs, running on Windows 11 Pro, represent a necessary evolution.

 

What Makes a Copilot+ PC Different?

Copilot+ PCs are the first generation of computers built specifically for the era of AI. Their key differentiator is the inclusion of a Neural Processing Unit (NPU), a dedicated processor designed to run AI tasks efficiently directly on the device.

This new architecture provides critical business advantages:

  • Performance: These are the fastest Windows PCs ever built. The powerful, 40+ TOPS NPU frees up the main processor (CPU) and graphics card (GPU), resulting in better overall system speed and responsiveness. In benchmark tests, Copilot+ PCs perform up to 5X faster than 5-year-old Windows PCs1.
  • Security: Copilot+ PCs provide the most powerful Windows security by default. Rather than relying on a single feature, they integrate hardware-based protection, including Secured-core PC safeguards and the Microsoft Pluton security processor. This layered approach is estimated to block 70% of typical breach vectors2.
  • Efficiency: The NPU enables new AI capabilities to run with high efficiency. For a hybrid workforce, this translates to tangible benefits like all-day battery life, with devices offering up to 22 hours of local video playback or 15 hours of web browsing on a single charge3.

 

Addressing Key Business Challenges for Every Organisation

This new category of hardware is designed to solve distinct challenges for organisations of all sizes.

For the Enterprise IT Director: A Strategic Approach to Innovation and Risk

For large organisations, AI adoption introduces significant questions around security, compliance, and total cost of ownership. Copilot+ PCs allow you to build a refresh strategy that is both innovative and responsible.

  • Mitigate AI Data Risk: For specific features like the new Recall (preview) function, AI processing occurs locally on the device. All snapshots are securely encrypted and stored on the PC, helping you meet governance and compliance obligations. IT administrators retain granular policy control to disable or manage these features.
  • Future-Proof Your Investment: Adopting AI-ready hardware ensures your device estate is prepared for the applications of the next three to five years. This maximises the long-term value of your technology investments and aligns with a projected substantial ROI over three years.2
  • Strengthen Operational Resilience: Use the advanced, hardware-based security features of Windows 11 Pro, specifically Secured-core PC protection and Microsoft Pluton, to build a stronger defence against new AI-powered cyber threats.

For the Growth-Focused Business Owner: Productivity and Peace of Mind

For a small or medium-sized business, technology must be a reliable tool that supports growth, not a source of frustration. Copilot+ PCs provide access to capabilities that directly address your main concerns.

  • Increase Staff Productivity: Provide your team with faster PCs and new AI features that automate repetitive work. This delivers real-world results, with an expected time-saving of up to five hours per employee each week.2
  • Protect Your Business Data: The built-in, hardware-level security of Copilot+ PCs defends against common threats. This approach is validated by IT leaders, as 96% say that hardware-based protection provides a more secure environment.4
  • Control Your IT Costs: The fear of large, unexpected IT bills is a major concern. Our Device Management as a Service (DMaaS) model provides new Copilot+ PCs, plus all security and support, for a single, predictable monthly fee, removing the risk of surprise costs.

 

Build Your Strategy with an Expert Partner: XMA

New technology is only valuable if it can be implemented effectively and if your team can use it from day one.

Moving to Copilot+ PCs doesn’t have to be a complex or disruptive process. XMA provides the practical support and technical expertise to help you build a clear, costed, and compliant strategy for your upgrade to Copilot+.

Is your organisation ready for the next wave of AI-driven productivity?

Contact us today at enquiries@xma.co.uk to arrange a Copilot+ PC Readiness Assessment, and we’ll provide a clear, data-driven plan for your migration.

 

1. Based on Cinebench 24 Multi-Core benchmark. Learn More

2. New Tech: The Projected Total Economic Impact™ of Microsoft Copilot+ PCs. Microsoft-commissioned study by Forrester Consulting, July  2025. Projected benefits for a single composite organization that has US$1 billion annual revenue and 2,000 employees with 80% using Copilot+ PCs. In comparison to a mixed environment of conventional Windows 11 and Windows 10 PCs.

3. Battery life varies significantly by device and with settings, usage and other factors. See Copilot+ PCs claims.

4. Understanding Employee Productivity and Satisfaction Benefits of Next-Generation AI PCs as You Plan Your Next Refresh, IDC in partnership with Microsoft, August 2024.

Android Desktop: Where Is It At Today?

This is the third in a series of blog posts exploring Android Desktop. Our Head of Pre-Sales, Scott Wright, will be looking at the current state of Android Desktop, following its improvement as release approaches, examining use cases, looking at essential apps & peripherals and more. 

Picture of Scott Wright

Scott Wright

Scott is XMA’s Head of Pre-Sales. An IT industry greybeard, as well as an Android fanboy he is also a military history & technology nerd so would love one of the unobtainable Samsung Tactical Editions.

Android Desktop: Where is it at today? 

Today I’m going to talk about the current state of Android Desktop and some of the key productivity applications. Despite being in a surprisingly complete state there is still definitely work to be done on Android Desktop and a lot of apps will need feature improvements to deliver in this significantly changed use case. 

A big update has just dropped on 10th Oct which brings Desktop Experience to regular (non-Beta) Android. If you’ve got a device that has had its Android 16 update you can now enable Desktop Experience via developer options without needing to enrol in the Beta program. There seems to be improvements in this version which are not in the current Beta version so I will be switching to that and re-writing this post.  

 

So where is Android Desktop itself at? 

The core functionality is here – apps in movable, resizable windows, a taskbar, etc. Android has always been quite good at interface scaling and many apps have a tablet mode that makes them work at least adequately well on a monitor. There are, however, a whole variety of niggles that will need attention (and do remember that this is a pre-release version of the software): 

  • You can’t unlock the device via mouse and keyboard, you have to unlock via the phone 
  • The phone screen has to be kept on. If you hit the power button to turn off the display (as you might do when listening to music, for example) the monitor will also be disconnected This is more than an annoyance as many phones (including this Pixel 9 Pro) will get quite hot after keeping the display active for a prolonged period of time (will this get fixed or will phone stands with fans become a thing?) 
  • Font scaling and smoothing could do with some improvement, smaller text can be slightly fuzzy  
  • Dual monitor support (with a docking monitor and a second monitor connected via DisplayPort pass-through) is not present. This limitation also exists in Samsung DeX (multi-monitor support is just out) but Motor Ready does support multiple displays (apparently, I haven’t tested this). This is going to be the subject of more testing – does a dock with multiple video ports work? USB-HDMI adaptors connected to the dock? 

What about the M365 suite?

Top of most organisations’ list of apps is the M365 suite and support for these will be key to acceptance of Android Desktop as a laptop alternative.

Outlook, Teams, Word, Excel, PowerPoint, Yammer, Bookings and more are available as Android apps with the M365 Copilot app being a hub for all of these.

The email side of Outlook works quite well, not quite as slick as desktop version but perfectly functional. The calendar doesn’t work as well – in particular the list of shared calendars needs to be better optimised to take advantage of the additional display real estate.

Teams works well for chat with my only niggle being that you can’t hover over someone with the red status dot to see if they are on a call or just busy, something I do frequently in Windows (big difference between someone having something in their calendar at the moment and someone actually being in a call). There is a substantial issue with Teams for conferencing though – it will not use USB devices connected to the docking station such as cameras, speakers, microphones, etc. This is new functionality that Microsoft will need to implement, currently there isn’t even a devices page in the settings menu to allow you to try and configure external audio and video devices.

Word, Excel and PowerPoint all work quite well and have the core functionality (this blog post was written on Word for Android). There are some missing elements of functionality that might be an issue for some users, for example you cannot embed a file into a Word document, but the core functionality is good and works well (this is something that you can evaluate without using Android Desktop).

Can’t we just use the M365 web apps?

Yes and no. The web apps refuse to work on Chrome for Phones. Chromium for Desktop does work on Android phones and provides a variety of browser functionality that Chrome for Phones does not, including support for extensions. Some of the read only web apps work on Chromium but when you try to switch to write mode you are directed to the Android application where there is one and don’t get to try using the full web app. I will be speaking to Microsoft regarding workarounds for testing this and, if I can share them, their plans for improving support for Android Desktop.

For some apps, for example Visio which does not have an Android app, it simply doesn’t work, telling you to go and use a real device. This isn’t helped by office.com redirecting you to the M365 Copilot application (which does not have a Visio app).

In summary then, there are definitely some gaps at the moment. Some of these are for Google to fix, some for Microsoft and others. The ability to use two monitors (Samsung and Motorola are ahead of the game here) and for the Teams app to use external video and audio devices would be top of my personal list – without those it just isn’t a serious desktop/laptop replacement.

As I edit this summary one more time I am yet again irritated by the inability to click-drag to highlight text so that’s got to be added to my list!

Don’t Let Legacy Applications Block Your Windows 11 Migration

The October 14, 2025, end-of-support date for Windows 10 is compelling organisations to plan their migration to Windows 11. The move is a critical step towards stronger security and improved productivity. However, one of the most common and significant concerns delaying these upgrades is the uncertainty around legacy applications.

For many organisations, business-critical software (such as older accounting platforms, bespoke CRM systems, or other line-of-business applications) is the operational backbone. The fear that this essential software will not work after an operating system upgrade is a primary reason for delaying the transition, creating a roadblock to modernisation.

The Compatibility Challenge

While Microsoft data shows that 99.7% of applications are compatible with Windows 11, the remaining fraction often includes the custom-built or legacy systems that are most integral to an organisation’s operations. Delaying an OS upgrade to protect these applications creates long-term risk. Without purchasing Extended Security Updates (ESU), organisations will no longer receive security updates, leaving them vulnerable to security risks. Read more about this here: The Hidden Risks and Rising Costs of Relying on Windows 10 Extended Security Updates (ESU) | XMA

A major worry for any business is whether essential software will work after an upgrade. Simply hoping for the best is not a viable strategy. A structured approach is required to test and validate these applications to ensure they do not hinder your migration to Windows 11.

How XMA Mitigates Application Risk

At XMA, we address the challenge of legacy applications head-on. Our services are designed to help you find proactive solutions that mitigate issues with legacy applications, ensuring they do not stand in the way of a secure and seamless migration.

Our approach includes:

  • Windows 11 Application Analysis: We accelerate your application analysis by effectively consolidating and standardising your application estate, ensuring a consistent and secure service delivery. We rationalise your software landscape by focusing on proactive management, license consolidation, and service efficiency. By utilising crowd-sourced application compatibility data, enhanced by a Confidence Score, we help you make informed decisions with greater confidence.
  • Secure Legacy Applications: Containerise your applications to securely run legacy applications on your modern device estate. Containers provide a secure way to run legacy applications by blocking inbound traffic and reducing potential vulnerabilities, helping you achieve Cyber Essentials Plus. Run any application without modification on Any OS. Anywhere.
  • Application Lifecycle Management: Obtain low touch deployment of applications and updates to Windows (and macOS) Apps through a powerful automation engine. Gain a unified, dynamic, adaptive, and contextual workspace for organisations and users. Automatically keep all applications updated and patched in real time, and cut application packaging and testing time by as much as 90%.

Legacy applications are a valid concern, but they should not be a barrier to modernising your IT estate. By taking a proactive and structured approach, you can ensure your essential software continues to support your operations on a secure, modern platform.

Contact an XMA consultant today at enquiries@xma.co.uk to build a migration plan that addresses your specific application compatibility needs.

Share with your network
WhatsApp
X
LinkedIn

When It Comes To Windows 10 End-of-Support: Don’t Replace, Refresh Your Device Strategy

When It Comes To Windows 10 End-of-Support: Don’t Replace, Refresh Your Device Strategy

The final day of support for Windows 10, October 14, 2025, is now just weeks away. For many organisations, the initial reaction is to focus on the operating system upgrade itself. However, the move to Windows 11 presents a more fundamental challenge that an OS update alone cannot solve: hardware compatibility.

A significant portion of existing device estates simply do not meet the hardware requirements for Windows 11. This reality is forcing a difficult and often unplanned conversation about a large-scale device replacement. For many, this will feel like a reactive and expensive problem.

But it doesn’t have to be. This deadline should not trigger a panic-buy. Instead, it should be the catalyst for a more strategic, data-driven approach to your entire device estate. It’s time to move from a reactive replacement cycle to a SMART Device Refresh.

The Cost of Inaction and Unplanned Refresh Cycles

Organisations still running on Windows 10 after the deadline will be required to purchase Extended Security Updates (ESUs) for every non-compliant device to avoid exposure to cyber threats. This is a significant financial drain with no return on investment. The cost escalates dramatically, doubling in the second year and doubling again in the third, creating a recurring budget item spent only to maintain an obsolete OS.

Furthermore, many organisations are already caught in a cycle of reacting to device failures and budget availability rather than making informed, data-driven refresh decisions. This approach often leads to overspending on devices that are not suited to user needs, while leaving other areas with inadequate technology that hinders productivity and impacts employee morale.

A Strategic Approach: The XMA SMART Device Refresh

XMA’s SMART Device Refresh service provides a structured, data-driven plan to navigate the Windows 11 transition and optimise your entire device estate for the long term. We help you balance performance, user experience, and cost-efficiency.

Our approach is built on providing actionable insights to make smarter investment decisions. We help you avoid overspending and extend device lifecycles where appropriate, without compromising on security.

How We Help:

  1. Insightful Hardware Assessment: Our first step is a fast-track assessment of your entire hardware estate. We identify which devices are compatible with Windows 11, which ones are not, and which can be redeployed to other roles extending their useful life. This gives you a clear, data-driven baseline for your migration plan, as well as a more sustainable approach to your IT assets.
  2. Data-Driven Procurement: For devices that require replacement, we provide a streamlined procurement service. Our advice is based on a deep understanding of user needs, ensuring you invest in hardware that is powerful enough for the job but affordable enough for your budget. For example, we use insights on application usage to ensure a designer gets the right GPU and a data analyst gets the right CPU, avoiding unnecessary expense while improving productivity.
  3. Flexible Procurement and Lifecycle Management: We understand the pressure on capital budgets. We offer flexible procurement options through public sector frameworks, including financing and as-a-service models that can shift expenditure from CapEx to a predictable operational cost. For a complete solution, our Device Management as a Service (DMaaS) can handle the entire device lifecycle, from procurement and deployment to ongoing support and secure disposal, reducing the burden on your internal IT team.

The Windows 10 end-of-support deadline is a chance to break the reactive cycle of device management and implement a cost-effective, long-term plan that aligns with your organisation’s goals.

Don’t pay the price for delay. Contact XMA today at enquiries@xma.co.uk to build a SMART device refresh strategy for your transition to Windows 11.

Share with your network
WhatsApp
X
LinkedIn

XMA Store

Search
X-twitter Linkedin Youtube
  • EUC
  • AV & Collaboration
  • Infrastructure

Frameworks

Partners

ESG

Events

News & Blogs

XMA Careers

Drop Your Message

Fill in the Form to Download the Case Study

Fill in the Form to Download the Case Study

Fill in the Form to Download the Case Study

Skip to content
Monitoring by Hotjar Monitoring by Hotjar