How to Switch IT Providers as a Melbourne Law Firm (Without Disrupting Practice)

Switching IT providers is something Melbourne law firms do less often than they probably should. The decision to stay with an underperforming IT company is often driven by the fear of what could go wrong during the transition — a LEAP integration breaking at the wrong time, Microsoft 365 access being disrupted, or the new provider inheriting an environment they don’t understand.

That fear is understandable. A poorly managed IT provider transition can cause exactly those problems. But a well-managed one causes almost none of them — and the outcome on the other side is a technology environment that actually supports the practice instead of creating ongoing frustration.

This article covers why Melbourne law firms switch IT providers, what the transition process should look like, and how to protect yourself during the changeover.

Why Melbourne Law Firms Switch IT Providers

The reasons are usually one or more of the following:

Slow Response Times That Affect Client Matters

IT issues in law firms aren’t just inconveniences — a LEAP outage during a settlement, a conveyancer unable to access PEXA, or email down on the morning of an urgent filing date are professional liability risks. A general business IT provider might consider a four-hour response time acceptable. For a law firm handling time-critical matters, it isn’t.

No Knowledge of Legal Software

Most general IT providers support hundreds of different software products across dozens of industries. They know Windows and Microsoft 365 well. They do not necessarily know that Smokeball has a specific Outlook integration architecture that breaks in a particular way when MFA policies change, or that LEAP’s SQL database requires specific maintenance for performance, or that PEXA connectivity issues often manifest as workstation configuration problems rather than network faults.

When the IT provider’s response to every LEAP issue is “have you tried restarting your computer,” or when they escalate directly to LEAP support for every issue (passing the problem rather than solving it), the firm is paying for support that doesn’t actually support its operations.

Security Gaps That Create Insurance and Compliance Risk

Many Melbourne law firms have stayed with long-term IT providers who have not kept pace with the security requirements that LIV auditors, PI insurers, and cyber insurers now expect. MFA isn’t consistently enforced. DMARC is in monitoring mode. Backups haven’t been tested. Windows 10 machines that should have been upgraded are still in service.

The firm knows there are issues. The provider knows there are issues. Nothing gets done. A new provider with a fresh mandate to address the backlog can resolve years of deferred security work in the first 30–60 days.

Accumulated Technical Debt

Every IT environment accumulates technical debt over time — old servers that nobody wants to decommission because something might depend on them, security exceptions that were “temporary” three years ago and are still in place, network configurations that date from the last office fit-out and nobody understands anymore.

A long-tenured IT provider often knows where the bodies are buried but has no incentive to dig them up. A new provider inherits a clear mandate to document the environment properly and resolve issues that have been accumulating.

What You Own

Before starting any provider transition, it’s worth being clear about what assets belong to your firm and cannot be withheld by an outgoing provider.

You own your domain name. Your .com.au domain is registered in your name (or it should be). If your current IT provider registered it under their own account, this needs to be transferred to your own registrar account before or during the transition.

You own your Microsoft 365 tenant. Your Microsoft 365 subscription is tied to your domain and your organisation. A provider administers it on your behalf — they do not own it. Access to your Microsoft 365 admin portal should always be held by someone within your firm, not just by the provider.

You own your data. Client files, LEAP/Smokeball databases, email — this is all yours. An outgoing IT provider has no right to restrict your access to your own data during or after a transition.

You own your hardware. Servers, workstations, and network equipment that you purchased belong to your firm. If a provider supplied hardware on a lease or rental arrangement, clarify the ownership terms before starting a transition.

In practice, most IT provider transitions are professionally handled and these rights aren’t disputed. But knowing your position means you are not negotiating from a position of uncertainty.

The Transition Process

A well-managed law firm IT provider transition has five phases:

Phase 1: Documentation (Weeks 1–2)

Before the new provider touches anything, they need to understand your environment completely. This means:

• Full network documentation — all devices, IP addresses, VLANs, firewall rules
• Microsoft 365 tenant inventory — all accounts, licences, admin roles, connected applications
• Practice management software documentation — LEAP/Smokeball/Actionstep versions, SQL server configuration (if on-premises), integration configuration (PEXA, InfoTrack, Xero, etc.)
• Backup configuration — what’s being backed up, where, retention periods, last test date
• DNS records — all records including the ones that are easy to forget (SPF, DKIM, DMARC, mail exchange records)
• All active third-party IT vendor accounts — domain registrar, internet service provider, line-of-business software vendors

This documentation exercise often reveals issues that the firm didn’t know existed — DNS records pointing at old infrastructure, accounts with expired licences, integrations that stopped working months ago and nobody noticed.

Phase 2: Security Baseline (Weeks 2–4)

With documentation in hand, the new provider runs a security assessment against the current environment and addresses the most significant gaps. Priorities for a Melbourne law firm typically include:

• MFA audit — ensure all Microsoft 365 accounts have MFA enrolled and enforced
• DMARC configuration — assess current status and move toward p=reject if not already there
• EDR deployment — Sophos Intercept X or equivalent on all workstations and servers
• Patching audit — identify devices running end-of-life or unpatched software
• Admin privilege review — identify accounts with unnecessary administrative privileges

This phase addresses the security risks that represent immediate exposure, rather than deferring them to a long-term roadmap.

Phase 3: Stabilise (Weeks 3–5)

With documentation done and security baseline addressed, the new provider’s focus shifts to resolving known performance and reliability issues:

• LEAP, Smokeball, or Actionstep performance issues that have been ongoing
• Integration problems between practice management software and PEXA, InfoTrack, or Microsoft 365
• Network or connectivity issues that have been explained away rather than diagnosed
• Backup configuration aligned with LPUL record-keeping requirements
• User accounts and access controls reflecting current staff and roles

The stabilise phase often takes longer than expected because this is where the accumulated technical debt surfaces — and some of it requires negotiation with third-party vendors.

Phase 4: Improve (Month 2+)

Once the environment is documented, secured, and stable, the provider can focus on genuine improvement:

• Microsoft 365 configuration optimisation — SharePoint governance, Teams structure, Defender security settings
• Essential Eight gap remediation with LIV documentation
• Hardware refresh roadmap for devices approaching end of useful life
• Disaster recovery planning and documented business continuity procedures
• Quarterly security reviews and reporting

Phase 5: Ongoing

Monthly reporting on helpdesk activity, security events, patching status, and any emerging issues. Quarterly strategic review with the principal or practice manager. Technology roadmap updated annually in line with firm growth plans.

Managing the Outgoing Provider Relationship

Most IT provider transitions in Melbourne are professionally handled. The outgoing provider understands that firms move on, provides documentation, and facilitates the handover.

Where it becomes difficult:

The provider has no documentation. If the outgoing provider has never properly documented your environment, they cannot provide documentation they don’t have. The new provider needs to reconstruct the picture themselves, which takes longer.

Admin access isn’t held at the firm level. If the outgoing provider controls your Microsoft 365 admin account, your domain registrar, or your internet service provider account directly, you need these transferred before the final cut-over. A new provider can help facilitate this even if the outgoing provider is uncooperative — Microsoft, your registrar, and your ISP all have processes for proving ownership and regaining access.

There is hardware on loan. If firewalls, switches, or servers were supplied by the provider on a managed service basis and aren’t yours, clarify what happens to them. Most providers allow them to be purchased at fair market value.

Timing the Switch

Avoid transitioning IT providers during your firm’s peak periods — typically end-of-financial-year, end-of-calendar-year, and any periods with high settlement volumes.

The best time is a relatively quiet period when the practice can absorb a minor disruption without it affecting client matters. Build in a two-week overlap period where both providers have access, which allows the new provider to complete documentation before the outgoing provider is fully offboarded.

The Actual Risk

The risk of a well-managed IT transition is low and time-limited. The risk of staying with an IT provider that doesn’t meet your needs is ongoing — slow response times, security gaps that accumulate, LEAP issues that never quite get resolved, and insurance renewals that become increasingly difficult to navigate.

Melbourne law firms that have made the switch consistently report that the transition was less disruptive than they anticipated, and the improvement in day-to-day IT performance is significant.

CX IT Services manages IT provider transitions for Melbourne law firms, including full environment documentation, security baseline, and LEAP/Smokeball/Actionstep transition support. See our IT support for law firms hub for what we deliver as an ongoing managed IT partner, and our cybersecurity for law firms page for the security controls we implement on day one. Book a Right Fit Call to discuss what the transition process would look like for your firm.