A 40-store retail group was running its tills, stock and back office on ageing on-prem servers with real security gaps. We rebuilt the foundation underneath a live business — without closing a single till.
Retail doesn't get to pause. Forty-plus stores were taking payments every hour the doors were open — and the infrastructure beneath them had quietly become the biggest risk in the business.
The group had grown store by store, and its technology had grown the same way — one server room, one firewall, one set of assumptions bolted on after another. Point-of-sale slowed to a crawl at peak. Store networks were flat and unsegmented, so a problem in one location could reach the others. Backups existed but had never been tested end to end. And with card data flowing through every till, the absence of a formal security posture had become impossible to ignore.
Leadership wanted three things at once: modernise the platform, close the security gaps, and prove to partners that the business was audit-ready — all without a single hour of disruption to trading.
You cannot switch off forty tills to fix the plumbing underneath them.
We started with a two-week discovery sprint across a representative sample of stores, mapping every dependency before touching production. From there we ran a phased, zero-downtime migration — moving core workloads to AWS store cluster by store cluster, each behind a tested rollback plan, each cut over outside trading hours and verified before the next began.
"Glisto revamped our entire IT infrastructure and their cybersecurity work gave us real peace of mind. They operate like part of our team." — Operations Director
The cutover completed with zero unplanned downtime — no store lost a trading hour, and the finance team only noticed the change when point-of-sale got faster. The group now runs on a modern, monitored platform with security controls mapped to SOC 2, and a managed support arrangement that catches problems before they reach the shop floor.