The Rainforest Alliance is a global non-profit organization with 750 users and 700 endpoints, operating in a fully cloud-native environment built on Azure, Intune, and Entra ID. With teams distributed globally, the organization relies heavily on modern cloud infrastructure to support its mission. 

Despite its advanced environment, The Rainforest Alliance’s IT organization didn’t have a unified way to understand and manage its cyber asset estate. Without a shared, reliable data foundation to operate from, the organization was exposed to hidden risks across a fragmented IT landscape.

“Does Lansweeper tick all the boxes I need it for now and for the foreseeable future? Absolutely.”

Martin Ashberry

Technology Director, The Rainforest Alliance

By implementing Lansweeper, The Rainforest Alliance transformed its cybersecurity posture to support faster remediation and stronger alignment, while significantly reducing risk across a fully cloud-native environment.

The Challenge: Establishing a Cloud-Native Foundation Without a Unified View

When Martin Ashberry, the Rainforest Alliance’s Technology Director, joined in mid-2025, he discovered a critical gap: there was no single source of truth for asset visibility or vulnerability exposure. While tools such as Nessus were in place, they only covered servers, leaving endpoints mostly unmonitored. And, while native Microsoft tools generated data, that data wasn’t actionable or easy to report on. As a result, the IT and Security teams faced several challenges: 

• Software installations overlapped
• There was no hardware lifecycle tracking in place
• They had no baseline for its newly launched ISO 27001 initiative
• Leadership lacked visibility into the true level of risk
• It was difficult to prioritize and coordinate work

The turning point came when Lansweeper data revealed an average of 112 vulnerabilities per endpoint. There was no denying the scale of exposure and the urgency to take action.

Why Lansweeper?

Lansweeper stood out for its ability to deliver accurate, consolidated reporting across a cloud-first environment, particularly where native Microsoft tools fell short in providing clear, actionable insights. Additionally, Ashberry brought firsthand experience from two prior roles, where he had relied on Lansweeper for a combined 12 years.

With confidence in the platform’s outputs and its ability to scale with future needs, the decision was straightforward: choose a proven solution that could establish a trusted foundation from day one.

“We needed a single pane of glass for reporting across endpoints, particularly vulnerabilities, and Lansweeper gave us that.”

Martin Ashberry

Technology Director

The Solution: A Trusted, Continuously Validated Source of Asset Intelligence

The Rainforest Alliance used Lansweeper to establish a structured and repeatable approach to vulnerability management. The team generated weekly reports that highlighted the top 10 most prevalent vulnerabilities, the most critical risks, and the most vulnerable devices across the environment. They used this consistent cadence to prioritize and execute targeted remediation campaigns, ensuring that the highest-risk issues were addressed first.

At the same time, the organization strengthened its operational control by tracking OS lifecycle compliance across Windows, macOS, and Azure virtual machines. 

Lansweeper replaced manual, inconsistent reporting from native Microsoft tools with a reliable, centralized view of patching and build status, giving the IT and Security teams confidence that systems were up-to-date and compliant with standards. 

Additionally, by identifying redundant and overlapping applications, they consolidated tools into an approved software list, reducing licensing overhead while dramatically shrinking the organization’s attack surface.

Lansweeper equips The Rainforest Alliance with a single, unified view across all devices and cloud infrastructure, giving stakeholders consistent, data-driven insights into its security posture. This single pane of glass makes it easier to track and report on progress, as well as drive accountability across IT and Security.

The Result: Reduced Risk at Scale Through Coordinated, Data-Driven Action

With a continuously validated asset intelligence foundation in place, The Rainforest Alliance has improved its security posture. Within approximately 10 weeks, the organization reduced total vulnerabilities from 85,000 to 25,000 – a 70% reduction across 700 endpoints.

A significant portion of this progress came from eliminating unnecessary software. This action alone eliminated 15,000 vulnerabilities while reducing the overall attack surface. At the same time, Lansweeper data enabled the team to clearly communicate risk to executive leadership, securing immediate buy-in and investment in cybersecurity initiatives.

The Rainforest Alliance now operates with a measurable, continuously updated view of coverage and exposure. Lansweeper has helped the team establish a strong baseline for ISO 27001 certification and implement more proactive, coordinated remediation. Now, IT and Security are aligned around a shared source of truth, which helps them move faster, minimize friction, and make informed, data-driven decisions.

“We’re fulfilling a need the business didn’t know it had.”

Martin Ashberry

Technology Director

What’s Next: Scale Asset Intelligence Across Operations and Workflows

Building on this foundation, The Rainforest Alliance is expanding its use of Lansweeper to include hardware lifecycle management, deeper integration with ticketing systems like Jira, and automating report distribution to teams via Slack and email using Flow Builder. The organization is also prioritizing Lansweeper expertise as a requirement for new security operations roles.