Blogs
Essential Eight is Evolving
The Australian Signals Directorate has announced changes to the Essential Eight framework will be phased in over the next two years. Our latest blog breaks down what partners need to know now.
As published on CRN Australia and Asia
As AI moves from experimentation into everyday operations, the nature of risk changes. When tools like Copilot are used to surface insights, drive recommendations and automate tasks, they move from providing productivity assistance to influencing decisions, workflows and outcomes.
At that point, the question for organisations is no longer whether AI works, but whether the right data is being used at the right time, by the right people to get the best results for individual users, and for the broader business.
AI systems rely on data that is reused repeatedly across prompts, reports and automated processes. As that reuse increases, so does the need to prove where data came from, how it is accessed and whether it remains compliant with policy and regulation. Transparency on these matters underpins confidence in AI technology and builds trust in its performance.
This is why data protection and governance are becoming fundamental to AI at scale. Trust is no longer implied. It must be demonstrated.
Early AI use cases tend to be low risk. Summarising meetings or drafting content rarely triggers deep scrutiny. But as AI becomes embedded in operational and strategic decision‑making, organisations face a higher bar.
Leaders need to understand how AI arrived at an outcome. Auditors need visibility into data access and usage. Compliance teams need assurance that information is handled appropriately, particularly as data crosses boundaries between teams, environments and geographies.
These pressures are compounded by scale. As corporate data is used to generate Copilot reasoning and responses, small gaps in governance can have outsized impact. What begins as an isolated oversight can quickly affect trust across the entire AI estate. In fact, Microsoft Data Security Index 2026 highlights the extent of this challenge, showing that fewer than half of organisations have implemented specific security controls for generative AI workloads — a gap that becomes increasingly visible as AI moves from experimentation into decision‑making.
In this context, security and governance are no longer defensive measures. They are the foundations that allow AI to be adopted with confidence and accountability.
In the previous article, data was described as the flywheel that powers AI. That flywheel only delivers value if it remains accurate and business relevant.
Keeping data clean means securing, classifying, retaining and auditing data end‑to‑end — across signals, content and access. It requires consistent controls that follow data wherever it is used, rather than static policies applied after the fact. Gartner reinforces the importance of this foundation, reporting in their AI Hype Cycle & Data Readiness paper that 57% of organisations do not yet consider their data AI‑ready — a limitation that directly affects their ability to scale AI reliably across the business.
Microsoft Purview provides the governance layer, enabling organisations to classify data, control access and maintain auditability across structured and unstructured information. This is where Microsoft’s security and governance capabilities come into play. Microsoft XDR helps protect identities, endpoints and signals across environments, reducing exposure as AI workloads expand. Together, they create a control plane that supports AI reuse without sacrificing compliance or resilience. AI can scale because data remains protected, policies remain enforceable and outcomes remain explainable.
Crucially, this approach embeds security into the AI lifecycle rather than treating it as a separate activity. Governance becomes continuous, not periodic. Protection becomes an enabler, not an obstacle.
For partners, this shift creates a clear opportunity. Microsoft’s Frontier narrative reinforces security‑by‑design as part of AI adoption, encouraging organisations to prove, govern and protect AI initiatives as they mature. Azure Accelerate extends that principle into delivery by embedding security into Azure modernisation and AI workloads from the outset.
In hybrid cloud environments, Microsoft Datacenter Optimization (DCO) creates a natural moment to address governance and protection. Optimisation initiatives surface data risk, access gaps and control issues — providing a clear rationale to attach protection and governance workstreams alongside performance improvements.
Supported by incentives and co‑op funding, partners can build repeatable security and governance engagements that help customers move from AI that is safe to test, to AI that is safe to scale.
As AI becomes more central to business operations, trust becomes the differentiator. Secured, governed data ensures AI remains compliant, ethical and resilient as it is reused across the organisation.
Find out more at https://apac.crayonchannel.com/vendors/microsoft/
Blogs
The Australian Signals Directorate has announced changes to the Essential Eight framework will be phased in over the next two years. Our latest blog breaks down what partners need to know now.
Press Release
Crayon has been named a finalist in two categories at the 2026 TechPartner News Impact Awards, recognising its strong performance and impact in the IT channel.
Blogs
Copilot Cowork reached general availability today. Here are five concrete actions Microsoft partners should take now
Blogs
From July 1, Microsoft's new SMB Copilot pricing creates a bigger partner opportunity. Here's what's changed and how to turn it into more sales.
Blogs
Does the investment in Security SPD attainment stack up against the potential for partners to make a strong commercial return? Michael Brooke explores the economics in the last in this three-part series.
Blogs
In the second article in our Security SPD series, Michael Brooke offers tips to help partners gain the insight track from start to finish.
Blogs
In the first of a 3-part series, Michael Brooke explains why the buying signals from the market make Security SPD attainment worth a close look for partners.
Press Release
Crayon’s Mathew Howard named in 2026 CRN Australia Channel Chiefs list for driving partner success, innovation, and growth in ANZ IT channels.
Blogs
Learn how Microsoft’s strategic Copilot for All framework combines with Crayon’s inhouse AI expertise to drive practice development and revenue growth for partners.
On Demand Webinars
Watch the on‑demand webinar on turning data risk into revenue. Learn how partners use data protection maturity models to drive recurring revenue and customer trust.
On Demand Webinars
Join our team for a business and technical deep dive into the Microsoft Security SPD and why attaining it is great for business.
Business
AvePoint Partner onboarding content packs are now available from Crayon to help fast track confidence and success for your team.
On Demand Webinars
Our latest On-Demand webinar provides a practical, execution focused walk through the full Copilot partner journey, from early adoption to advanced scenarios.
Blogs
Fragmented data protection systems and processes create compliance proof-gaps for SMB customers. Scott Hagenus, Director, Cybersecurity here at Crayon explains.
Insights
Data Protection priorities are shifting for SMBs. Ramp up your ability to respond with curated insights, articles and resources to help you guide every customer conversation with confidence.
Insights
All the latest insights, articles and resources on M365 Copilot, curated into one place.
Guides and eBooks
The Microsoft Fabric Partner Guide curates our recent articles, videos and resources to accelerate Crayon partner learning.
Insights
Crayon's Tech for Good program brings partners, non-profits and NGOs together to focus on serving the greater good.
Insights
Through Crayon's social impact program, Tech for Good, our partners make a real difference to the work of over 1,000 NGOs across Asia Pacific.
MSPs and CSPs
Discover how Crayon's partner ONGC helped Ability First to secure its mission to transition young people with disabilities out of unsuitable care settings.
MSPs and CSPs
Crayon's partner, OPC worked with Ronald McDonald House to reduce its cybersecurity risk and focus internal teams on delivering happiness to seriously ill kids.
MSPs and CSPs
Explore how Crayon's partner, HumanIT worked with WEstjustice on a transformational program to support vital legal services for the community.

Connect Data Protection to strategic objectives via this Whitepaper

What are the most critical business objectives and solution adoption priorities for SMBs in our region? Download the latest Forrester study to find out!

Our APAC channel business is now part of a global organisation. That means there is a whole new world of value on offer for our partners. We can help you to tap into all of it.