Case Study: Molokai Capital Secures their businesses with Secure365 

Introduction

Molokai Capital is a global investment firm focused on delivering tax efficient investment solutions across multiple jurisdictions. From inception, the firm was designed to operate as a multi-entity group with international regulatory considerations.

The Challenge

As a newly established firm, Molokai Capital needed to build its technology environment while simultaneously preparing for growth, regulatory scrutiny, and client trust. Early decisions around systems and security would have long term consequences.

Key challenges included:

• Protecting sensitive client and company data

• Supporting financial services licensing in multiple countries

• Avoiding unnecessary software complexity and licence sprawl

• Aligning teams with different technology preferences

• Securing thirdparty platforms with varying native security controls

Security Approach

Molokai Capital engaged B.Tech relatively early following their inception, giving us the opportunity to design security and governance into the business rather than retrofitting it later. Our focus was on creating a secure, scalable foundation that supported both compliance and day-to-day productivity. 

Our approach centred on: 

• Consolidating tools around Microsoft 365 to simplify operations 

• Using Microsoft identity as the central security authority 

• Extending enterprise grade security to third-party platforms via Single Sign On (SSO) 

• Designing controls aligned to real operational and regulatory requirements 

This ensured strong protection without slowing the business down. 

Implementation

Once the technology framework was agreed, B.Tech implemented its standard Microsoft 365 security baseline and expanded protections across the wider environment. All controls were configured collaboratively and refined as the business evolved. 

This included deploying over 70 tailored security and governance policies, covering: 

• Multifactor authentication and identity hardening 

• Advanced email, phishing, and impersonation protection 

• Data classification and Data Loss Prevention (DLP) controls 

• Conditional Access policies and least privileged access 

• Secure collaboration settings across Teams, SharePoint, and OneDrive 

Results

The impact of embedding security from the outset was both immediate and measurable, significantly reducing risk during Molokai Capital’s early growth phase. 

Key outcomes included: 

• Secure Score improved from 44% to 75%, exceeding industry benchmarks 

• Zero cybersecurity incidents recorded throughout 2025 and into 2026 

• A reduced attack surface during the firm’s most vulnerable stage 

• A security posture aligned with financial services regulatory expectations 

• A scalable, cost-efficient technology foundation for future growth 

Molokai Capital launched and scaled with confidence, supported by a secure, regulator ready technology environment. B.Tech delivered more than cybersecurity controls. We provided a long term foundation that enables growth, protects reputation, and builds trust with clients and regulators alike. 

This article was originally written and published by Jordan Gall, Head of Cybersecurity at B.TECH, as part of his ongoing insights on cybersecurity and business resilience. You can read the original post on his LinkedIn.