In November, we brought together IT decision-makers from UK law firms in a virtual room, from boutique practices to firms of up to 2,000 people; they were all attending a focused webinar on Azure Virtual Desktop. The session was built specifically for the legal sector, with insight from a senior technology leader who has overseen many such migrations first-hand. We ran it in partnership with Nerdio, kept the agenda tight, and made space for honest conversation.
We didn’t expect the response we got.
People stayed for the full session and asked sharp and specific questions, and several of the conversations that followed have already moved into proof-of-concept discussions and active migration planning.
For a webinar on a technical subject, that level of sustained engagement told us the topic was hitting closer to home than most. Here’s what we took away from it.
Why Was This a Specifically Legal-Focused Event?
Law firms sit at an interesting inflection point. Many are running Citrix or VMware environments that made complete sense five years ago but are now approaching renewal windows with a very different set of questions. VMware pricing has climbed sharply since the Broadcom acquisition, which often underpins Citrix session hosts, and so has Citrix pricing following the merger with TIBCO Software to form Cloud Software Group. Renewal conversations that were once straightforward are now prompting a harder look at the alternatives.
At the same time, the way legal teams work has fundamentally shifted. Partners, associates, and support staff expect to work securely from anywhere, not through a cumbersome VPN and a clunky remote session, but through a seamless experience that doesn’t require a six-page IT guide to set up. The infrastructure supporting that expectation has, in many firms, not kept pace, especially in a post-COVID world where even traditionally office-bound sectors like legal have become more flexible about remote working, leading to potential vulnerabilities in data security and compliance with regulations.
And then there’s the compliance layer. SRA requirements, GDPR, client due diligence, auditor scrutiny, and the rising cost and complexity of cyber insurance have all raised the bar on what a defensible security posture looks like. Legacy environments weren’t built with that pressure in mind and don’t have the agility to quickly adapt.
The Questions That Came Up and What We Suggested
The best part of running a focused sector session is that the questions get specific fast. Here are a few that stood out.
“We use iManage, Proclaim, and a couple of dictation tools. Will AVD actually support them properly, or are we trading one headache for another?”
This is the right question to ask first, and we were glad it came up. AVD runs your existing applications natively within the virtual desktop environment. iManage, Proclaim, case management platforms, and dictation tools all operate within AVD in the same way they’d run on a physical desktop. The difference is that the compute sits in Azure, not on a device under someone’s desk. For firms worried about UX and latency, which was one of the most consistently cited frustrations in the room, AVD with Nerdio’s intelligent auto-scaling actively manages performance based on real-time demand, so the experience for the person using it improves rather than degrades under load, as long as there is a reliable internet connection.
“Our Entra ID and Intune deployment is still in progress. Are we too early for this conversation?”
Not at all. This is actually the ideal time to have it. AVD is built natively on Entra ID and managed through Intune, so a firm that is actively building out that foundation is building strategically towards AVD readiness. Conditional Access policies and MFA baselines that you configure for your Microsoft 365 environment extend naturally into the AVD environment. You’re not starting from scratch on security governance; you’re extending what you’re already putting in place.
“What about DLP, auditing, and data residency? We have strict requirements around where data lives and how it’s handled.”
This is where the native Microsoft ecosystem integration genuinely makes its case, and then some. Data residency can be configured to specific Azure regions, UK South and UK West, or any other specific location the client chooses. So data never leaves the geography you need it in.
Your DLP policies in Microsoft Purview follow users into their AVD sessions automatically. No complex bridge software, no separate policy set to maintain, unlike third-party VDI platforms that require additional configuration to get your security policies talking to each other. Audit logs land in the same place they always do. For most firms, that consistency is exactly what their auditors and compliance teams want to see.
It’s also worth noting that the risks don’t stop at the network boundary. When users are working outside the confines of the office, the risk of data loss increases, and one of the hardest scenarios to prevent is someone simply using their phone to photograph screen contents. AVD addresses this too, with unintrusive watermarking and screen capture protection that travel with the session, keeping your data covered regardless of where your people are working from.
“We’re worried about downtime during migration. Our partners cannot afford to lose a working day.”
We hear this in every sector, and it’s a genuine concern for any business where lost time is lost revenue. Our Advise, Design, Deploy, Operate, and Optimise framework, the methodology we bring to every engagement, is built specifically to prevent ‘Big Bang’ type failures.
We use a sprint-based, progressive approach that starts with a structured pilot. This allows us to test how your applications and workflows actually perform in the new environment, long before a single production workload moves.
Migration happens in stages, ensuring the old environment remains available as a safety net. Your team won’t face a high-stakes cutover day. Instead, they experience a seamless, validated transition where, by the time users are fully on the new platform, it’s already been proven against their real working day. In a people-focused firm, the best migration is the one the users barely notice happening.
“We’ve looked at Azure before, and it felt complex. We don’t want to end up dependent on a platform none of our team understands.”
This is where Nerdio changes the conversation. By sitting directly on top of Azure Virtual Desktop, it provides a single, intuitive management interface.
Your existing IT team can handle day-to-day operations, like user support and session management, through simple role-based access, without the Azure expertise that would otherwise take years to build in-house. You retain total control and visibility of your environment, without the steep learning curve that Azure complexity typically brings.
And for the ongoing advisory layer, that’s where Syntura sits, so you’re not navigating this alone.
A Note on Windows 10 and the Organisations Not Quite Ready to Commit
Not every firm we spoke to was ready for a full migration. Some were in the middle of other projects. Some were watching the budget cycle. For those organisations, there’s a practical middle ground worth knowing about.
Windows 10 reached end of support in October 2025. For firms that aren’t yet in a position to complete a full Windows 11 device refresh, AVD offers a controlled bridge, running Windows 11 sessions in Azure while legacy devices remain in service, buying the organisation time to plan the wider transition without the security exposure of running unsupported endpoints. It’s not a permanent solution, but as a short-term bridge that also moves you towards a more strategic platform, it’s a sensible option for firms where timing and budget constraints are real.
It’s Not Just Legal
The themes from the room, such as legacy VDI costs rising, remote access that’s either insecure or painful to use, compliance pressure mounting, and in-house skills stretched thin, are not unique to law firms.
Architecture practices face many of the same pressures, and then some. Large-format CAD files and BIM models don’t travel well over conventional remote access. Collaboration across multiple contractors, consultants, and clients creates data governance complexity. And document retention obligations in architecture are considerable. Approved plans and structural drawings are required to be retained for the life of the building, meaning storage, accessibility, and security aren’t short-term problems. AVD gives architectural teams a centralised, high-performance environment with GPU acceleration, where large files are processed in Azure, close to the storage, rather than pushed across a network connection to a local machine. The data stays where it should and the experience improves noticeably.
The same logic applies to accountancy practices managing audit trails across multiple client environments, financial services firms navigating FCA record-keeping requirements, and consulting businesses with distributed teams working across client sites.
Every professional services firm carries its own version of these pressures. The specifics differ; the underlying challenge of making distributed, compliance-sensitive work feel effortless rarely does.
So, Where Are We Now?
The session in November opened a set of conversations we’re now actively progressing. Several firms have moved into proof-of-concept territory, mapping their existing VDI environment, identifying application dependencies, and building a migration plan that accounts for their specific processes and workflows. The goal in every case is the same: a transition that is methodical, low-friction, and leaves the organisation on a platform that genuinely connects their tools, their security posture, and their Microsoft investment.
If your organisation is somewhere on that journey, whether you’re actively evaluating, watching a Citrix or VMware renewal approach, or simply asking whether there’s a better way, we’d be glad to have that conversation.