Unsung was engaged to build a new Issuing CA and orchestrate the transition of all people, systems, and services from an existing certificate service approaching expiry, maintaining zero business or operational impact. The engagement was driven by the imminent expiry of the existing Issuing CA certificate.

The client environment featured an expansive and technically diverse user base spanning multiple project teams, each with unique technology stacks and certificate usage requirements.

Unsung delivered an accelerated build and transition programme that successfully migrated all services:

Within three weeks, Unsung delivered a production-ready Issuing CA. Communications and support strategies derived from user acceptance testing enabled clear stakeholder communication and extensive risk management.

Certificate consumers were batched into transition cohorts based on risk assessment and service criticality. Beyond the core CA replacement, the new Issuing CA combined with bespoke signing scripts increased signing throughput tenfold per hour.

Compressed timelines combined with extensive customer requirements necessitated rapid build and deployment. Supporting an expansive and technically diverse user base required providing assistance to multiple project teams across varied technology stacks.

Unsung addressed these support challenges through deployment of consultants with broad technical expertise and establishment of escalation procedures enabling rapid engagement of specialist expertise.