A Q&A with Mark Armstrong, IT Consultant, Gold Group
Accounting firms sit on some of the most sensitive data in business: client financials, tax records, banking credentials, and compliance documentation. That makes them high-value targets, and it makes the consequences of poor access management especially costly. Yet for many firms, the reality is still sticky notes on monitors, passwords reused across platforms, and credentials stored wherever is most convenient rather than most secure.
Gold Group is a Gold Coast-based accounting firm that has been delivering specialized accounting services to clients since 1969. With a team of around 20 staff accessing a broad range of systems daily, keeping credentials organized, secure, and centrally managed is a professional obligation. We spoke with Mark Armstrong, IT Consultant for Gold Group, about the access challenges they faced, the regulatory pressure that made change urgent, and how LastPass helped them achieve something many organizations struggle to reach: 100% adoption.
Q: Can you tell us about Gold Group and the work your team does?
A: Gold Group is a Gold Coast-based accounting firm that's been around since 1969. We offer high-level and specialized accounting services and employ around 20 staff. Our team accesses a wide range of systems every day, and managing that access in a secure, organized way is critical to how we operate.
Q: What security challenges were you facing before finding a solution?
A: The usual suspects: users setting weak passwords and saving them in their browsers, passwords written on paper or stuck to monitors. It was ad hoc access management at its worst. We knew this wasn't sustainable, but we needed a solution that people would actually adopt and use consistently.
Q: What made solving this a priority when it did?
A: Two things converged. We wanted better security and centralized management, which was an ongoing concern. But new laws introduced in Australia also raised the bar on password handling requirements, making a proper password manager a baseline expectation rather than a nice-to-have. Compliance made the conversation easier to have internally, and it gave us the push to formalize something we already knew we needed.
Q: You evaluated other options — what ultimately made LastPass the right choice?
A: We looked at Dashlane and Bitwarden, but LastPass stood out as the well-established player in the space. Good layout, strong pricing, and a feature set that ticked all the boxes: password vault, MFA, admin policies, usage reporting. It reviewed well, and the ease of use was a deciding factor. We knew adoption would be the real test, so we needed something staff could get comfortable with quickly.
Q: What has the impact been since rolling out LastPass?
A: Our adoption rate is 100%, which says a lot. We ran an in-house demo for staff, configured everything in advance, and did one-on-one sessions until everyone was comfortable. The investment in onboarding paid off. Since then, we've seen a significant drop in password reset requests, faster onboarding for new staff, and generally better productivity because people aren't searching around for login information. Having everything in a secure, organized, searchable vault is exactly the workflow improvement we were after. We also do update training at regular intervals to keep good habits in place.
Manage risk the smart way: Start with secure access
Mark's account reflects a challenge that is common across professional services firms: access management starts informal and stays that way until something — a compliance requirement, a near-miss, or just the weight of accumulated risk — forces the issue. For Gold Group, it was the combination of regulatory pressure and a clear-eyed look at the habits that built over time. Passwords on sticky notes aren't a small problem. In an accounting environment, they're a liability.
For firms like Gold Group, password management is where secure access has to start. But as regulatory requirements evolve and the tools employees use multiply, the need for broader visibility and control grows with it. LastPass Secure Access Essentials is built to meet organizations at that starting point and scale with them, delivering the centralized management, strong authentication, and access controls that lean IT teams need without the complexity that makes enterprise solutions out of reach.
Ready to build the same foundation for your team? Discover how LastPass Secure Access Essentials helps organizations of all sizes secure access, simplify credential management, and drive adoption that actually sticks.
