Setting the Scene
In the period between 2003 and 2004 South Africa’s tech ecosystem looked very different. The cloud, as we know it today, simply didn’t exist. “Cloud computing” wasn’t a buzzword, it wasn’t even a word. If someone said “cloud,” they were probably drawing a network diagram and using it to abstract away complex infrastructure like G.703 interfaces, ATM protocols over copper circuits, and X.21 leased lines. Connectivity was a game of physical links, and service delivery stopped at the data centre door.
Email was the undisputed king of business communication, the “Killer App”, but delivering it wasn’t a service, it was a responsibility. Most companies hosted their own mail or Exchange servers on-site, typically accessed over dedicated leased lines. Service providers focused on moving bits from A to B, leaving the client to handle the servers, updates, spam filters, and security protocols.
In this time before Office 365, before Google Workspace, before Zoom or Salesforce or any of the now-familiar platforms that have become synonymous with “the cloud” the dominant thinking was: if you wanted reliability, you needed to own the hardware.
Even “Hosted Exchange,” which would later hint at a managed model, was still in its infancy, and it too followed the same one-server-per-customer logic and wasn’t yet a service from Microsoft.
There were no virtualized tenants, no multi-customer shared infrastructure, if you wanted to offer hosted email security, it meant standing up a new installation, physical and power-hungry, for every single client.
In this hardware-heavy landscape, a product team began to ask: What if there was a better way? What if service could be centralized, standardized, and scaled without sacrificing quality? What if a customer didn’t need to know how the sausage was made, only that it was safe, reliable, and available when they needed it?
What if we could deliver clean, secure email as a service, before “as-a-service” had even entered the business vocabulary?
Those questions planted the seeds of what would become South Africa’s first cloud-based email security service. Long before the term “cloud-native” became trendy, this product quietly redefined what enterprise email protection could look like, and did it in a way that laid the groundwork for a whole new category of digital service.
The Spark of Innovation
The first spark didn’t come from a customer brief or a boardroom brainstorming session. It came from within the systems team, a quiet exploration by one of its members, experimenting with hosted Exchange servers in a data centre environment. At the time, the proposal was entirely rational for the era: deploy physical servers per customer, give each one their own hardware footprint, and carve out managed hosting offerings client by client.
It made sense, technically. But something about it didn’t feel like progress to the product team. The first spark was in keeping with the thinking “The opposite of a good idea might also be a good idea”.
The licensing models of the day encouraged this thinking. Email server software, and the accompanying security plugins, were sold per seat or per server. There was no elegant way to handle multiple tenants or legal entities under a single umbrella license. Virtualization existed, sure, but was still in its clunky, early stages. No one had yet considered using it to serve software to customers from centralized infrastructure. At least, not commercially.
The product team began to see something else entirely.
They recognized that simply shifting the customer’s hardware into the provider’s data centre wasn’t innovation, it was logistical optimization. It might fill up valuable rack space and technically qualify as “hosting,” but it didn’t fundamentally change the value equation for anyone involved. Customers would still carry the burden of complexity, cost, and fragmentation. What if, instead, there was no per-customer hardware and infrastructure could be shared safely, intelligently, and invisibly? How would we bridge the divide between the implementation strategy of the day and this new centralised model, how would we facilitate both those customers using on premises implementations and those using ISP provided or Hosted Exchange implementations, to create a migration path?
The team realized that if they paired this e-mail security, anti-spam and anti-virus, service with a subscription model, hosted it centrally, and managed everything on behalf of the customer, it would effectively eliminate the need for on-site email hygiene tools. A customer would simply receive clean email, no setup, no hardware, no daily babysitting. And because it would be priced per user, it became immediately accessible to businesses of any size.
At its core, the idea wasn’t just about doing something new. It was about reimagining what responsibility the service provider could take on and doing it in a way that scaled. It was a subtle, paradigm-shifting departure from how infrastructure had always been done. It was about shifting market from system integrators to the ISP, and it was about providing something which really gave tangible quantifiable benefit to customers.
It was also controversial.
Inside the business, some of the loudest objections came from the network team, who, quite reasonably, feared that reducing branch-site email traffic would erode leased line revenue. And from a commercial perspective, that concern wasn’t unfounded.
But outside the business, among customers, a different kind of tension was brewing. Over the years, many had grown suspicious of bandwidth usage, often feeling, though rarely articulating, that providers might be engineering traffic just to justify bigger bills. It wasn’t unusual to hear a cautious note in a CIO’s voice: “Are you sure this service won’t just make us use more data?”
The irony, of course, was that this new model would do the opposite. It would streamline delivery, reduce false positives, and eliminate the need for email to ping-pong back and forth between sites for filtering. Clean mail was less bandwidth hungry than unscanned mail. But perception was its own battlefield, as always.
The product team did what product teams should do: they listened. They shaped the messaging, softened the friction, and stayed focused on the real prize, not winning arguments, but winning trust.
They weren’t just improving an email security service model. They were laying the foundation for a product that wouldn’t just serve a market, it would define one.
Building for Scale, Not Just Delivery
Once the vision was clear, the real work began. Not just product development, but orchestration. This wouldn’t be a lightweight, spin-up-a-server-and-go product. It was being built for the enterprise world: Fortune 500s, state-owned entities, top-tier banks. Environments where performance, reliability, and accountability weren't just expected, they were mandated.
The idea may have been born in a small team, but delivering it required alignment across the entire organization. Budget approvals had to be secured. Data centre resources had to be committed. Legal contracts had to be drafted, vetted, and agreed upon. Outsourced support structures had to be negotiated and locked in. Every detail, from firewall redundancy to service-level expectations, needed to be rehearsed and ready.
And while all of that was happening, the competition was moving.
They had seen what we were doing and opted for a more conventional route. One that aligned with the prevailing winds of the time. Their model was simpler, deploy a “server-per-customer” approach that mirrored traditional hosted Exchange thinking. It was technically straightforward and faster to market. All they needed to do was lab test the software, lock down contracts, and start provisioning one customer at a time.
We didn’t have that luxury.
A centralised architecture demands readiness on day one. The service must be live, robust, and resilient. There’s no room for post-sale troubleshooting before go-live in an enterprise environment, not when you're asking customers to trust you with their email traffic, brand integrity, and data hygiene. There’s also no room in a cloud service environment for the service to not be production environment ready.
Every element had to scale and be stable before the first user was onboarded. Firewalls were configured in real-time failover pairs. Redundant SunFire V240 servers were installed, tuned, and tested under load. The software stack was hardened, not just for function, but for scale. Reporting systems were built to handle multitenancy securely and cleanly. Even the billing systems were aligned to ensure every user, every mailbox, was tracked and accounted for from day one.
Internally, that meant carrying real risk, upfront capital, executive commitment, and reputational exposure. But it also meant that when launch day arrived, we didn’t just have a product.
We had a service, a fully operational, enterprise-grade solution with real infrastructure, real support contracts, real reporting, and real scalability. Ready to go.
The competition could get to market quickly. But we were building something built to compete, not only with them, but with an entire system integrators market.
And once the switch was flipped, that difference would become immediately, and irreversibly, clear.
A Product Born for Every Market
From the outset, this wasn’t a side project or a market experiment, it was an enterprise-grade product, designed to meet the expectations of organisations where uptime, security, and performance aren’t negotiable.
Every decision, from the software architecture to the hardware selection, was made with one question in mind: Would this hold up inside a bank, a telco, a state-owned enterprise?
The answer had to be yes.
That meant building with resilience in mind, not just availability. It meant choosing hardware like the SunFire V240s, which packed enough processing power to handle high volumes while still fitting within a compact, scalable footprint. It meant designing redundancy into the DNA of the platform, not as a post-launch patch, but as a first principle. Multiple firewalls. Active-active failover. Twin power feeds. Load distribution. The kind of setup where no single fault would ripple through to the customer.
But architecture was only part of the equation.
We knew that these organisations wouldn’t buy on promise, they’d buy on proof.
That’s why the product wasn’t just technically ready at launch, it was market ready. The team secured anchor customers in the lead-up to go-live: large, reputable enterprises whose adoption signalled credibility. These weren’t pilot projects. These were production rollouts, trusted from day one to handle live email traffic and safeguard the brand reputation that flowed with it.
It wasn’t a theoretical product waiting for real-world testing.
It was live. It was working. And it was stable.
The service didn’t just perform, it delivered. It did exactly what it promised to do: strip out spam, block malware, and let clean, legitimate business communication flow. False positives were rare. Performance was reliable. Support overhead was low. And unlike so many services at the time, it didn’t ask customers to manage the complexity themselves.
We weren’t asking customers to adapt to our product.
We had built a product that adapted to them, across industries, across segments, and across scale.
That included the ability to deploy dedicated infrastructure for specific customers when needed, as we did for a state-owned enterprise with a large national footprint. The centralised model didn’t restrict us, it simply gave us a powerful, efficient default. And when customers needed something bespoke, we had the flexibility to deliver that too, without compromise.
It’s easy now to look back and assume this was inevitable. But at the time, it was a high-stakes play. We were delivering a new kind of product into a business environment that hadn’t even heard the term “cloud service” before. The only thing we had to fall back on was quality, and that quality had to speak for itself.
Strategic Execution & Real Challenges
Delivering this product wasn't just a matter of building the right infrastructure, it meant aligning an entire business around a future no one had a name for yet.
Unlike the competition, we didn’t wait for a customer order to buy hardware. We didn’t roll out servers one client at a time. We made the call to build the whole platform upfront, fully provisioned, redundant, tested, and ready to scale. And that decision wasn’t made lightly. It demanded executive-level buy-in, multi-department coordination, and significant upfront investment.
This wasn’t a side project. This was a bet-the-business unit initiative.
Budgets had to be approved not just for hardware, but for secure data centre space, often in caged environments to meet regulatory and corporate governance requirements. Legal frameworks were put in place. Support contracts were negotiated. Redundancy wasn’t just technical, it extended into procurement, process ownership, and people. Every scenario, every handoff, every escalation path had to be anticipated and rehearsed.
And we knew, throughout, that the competition had taken a simpler route.
They didn’t need to rework their business. Their model was just-in-time: sell a service, buy a server, provision for that one customer. Their approvals were minimal. Their testing limited. Their risk profile much lower. And yes, they got to market first.
We heard it through the grapevine. Shared networks, mutual vendor chatter, technical community overlap, it wasn’t hard to sense where they were. A lab test here. A contract signed there. And then, one week before our go-live, they launched.
But here’s the thing: we knew that when we launched, we weren’t sending out a beta. We weren’t asking customers to wait while we caught up. We were delivering an enterprise-grade service on day one.
Everything was in place. The spooler and MTAs were tuned. The Brightmail integration was tested. The data centre was lit, secured, and monitored. The Customer Implementation Team had their processes documented and signed off. And most importantly, every internal function knew their role, not just in setup, but in sustained delivery.
The commitment wasn’t just financial. It was organisational. Political. Strategic.
This was product development at full scale: high stakes, high standards, and high trust across teams.
Product Maturity: Architecture, Reporting & Stability
By the time the service launched, it wasn’t just a product, it was an ecosystem. A finely tuned, fully orchestrated enterprise platform that was more than ready to meet the needs of the largest organisations in the country.
The architecture said it all.
At the heart of the platform sat five SunFire V240 servers: one configured as a central spooler, responsible for accepting incoming SMTP traffic and distributing it across a pool of four dedicated Mail Transfer Agents (MTAs). Each MTA was tightly coupled with a high-end Dell server running Brightmail, forming scanning and forwarding pairs that processed, inspected, and relayed email to downstream systems.
This was more than clever load distribution. It was thoughtful separation of concerns.
The spooler didn’t scan, it focused purely on queue management and traffic control. The MTAs and Brightmail pairs were optimized for throughput, fault isolation, and performance. With this setup, the architecture was inherently scalable and remarkably fault tolerant. If one scanning node went down, the others picked up the load. If one Brightmail instance required maintenance, traffic simply flowed elsewhere.
And everything was redundant.
Servers featured dual Ethernet interfaces. Connections were routed through high-end Cisco switches, not hubs, a critical choice in a time when switches weren’t ubiquitous and loops could cripple a LAN segment. The infrastructure supported active failover, redundant power feeds, and physically segmented LANs separating internet-facing traffic from internal processing. Even the firewalls were scaled up to support this design, with additional interfaces and redundancy woven into the perimeter.
The system was monitored end-to-end: hardware, LAN segments, software daemons, traffic queues, and service responsiveness. Reporting wasn't just technical, it was productized. The customer portal exposed clean, role-based interfaces showing quarantined mail, spam statistics, and delivery reports.
Internally, the maturity went even deeper.
The Customer Implementation Team had formal, version-controlled process documentation. DNS administration was integrated. The handoffs between network ops, systems engineering, and customer onboarding were clearly defined. Monitoring, patching, and upgrades were all routed through existing, established procedures. No extra overhead. No special cases.
It was a cloud service in everything but name, fully managed, highly available, usage-based, and scalable. And when a customer required a dedicated deployment, like the one designed for a large state-owned enterprise, we simply spun up a replica of the infrastructure, tailored to their security and compliance needs. Same architecture, same processes, same product, just implemented for one.
And all of it was running before most of the market had even figured out how to define “cloud.”
What the Competitors Missed
The competition got to market first, by a week.
They didn’t need centralised infrastructure. They didn’t need full-scale documentation, data centre provisioning, or a fully mapped support process. Their model was simple: one customer, one server. Onboard, install, repeat.
It looked like the faster route. And in some ways, it was. It certainly required less commitment, fewer approvals, and less risk. They only needed to run lab tests and sign contracts. We had to be ready to serve thousands of users across multiple organisations on day one, stable, secure, and fully redundant.
And when they launched, they got a head start on messaging. The market began wrapping its head around terms like “anti-spam service” and “hosted email security”, helping them more than they knew.
But it helped us more.
By the time we launched just days later, the market had already done its initial exploration. We entered the conversation not as an imitator, but with a product that immediately outclassed theirs. Ours was centralised, redundant, mature, and easier to scale. And it showed. The decision wasn’t only which product to choose anymore, which company had the ethos of innovation, which was the one to align with came into the equation.
Each time they added a customer, they needed to order new hardware, provision rack space, and complete installation. It was slow. It was heavy. It was expensive. And their architecture meant each customer got their own interface, running locally, disconnected from the broader brand or service experience. If there was support work to do it was inefficient for them, and always only for one customer.
Our customers got a unified experience, branded, central, and simple to manage.
We could still offer dedicated deployments when needed, and did for some of the largest enterprises in the country. But our default model scaled intelligently and efficiently. Customers were onboarded quickly, in minutes, with consistent processes, centralized reporting, and shared platform benefits. Our licensing model allowed us to pass volume savings on to customers. Theirs did not.
And perhaps most telling of all: our architecture supported partners and the reseller channel from the beginning. Multi-tenant reporting. Flexible pricing tiers. Delegated account management. Strategic control, not fragmentation.
They had built something rigid, expensive, and manually intensive.
We had built something that looked effortless, because all the effort was under the surface.
They beat us to launch, by a week.
The Real Secret: Listening to the Market
The architecture was solid. The performance was consistent. The pricing was sharp. But none of those things would have mattered if the product didn’t fit the market.
And that wasn’t luck. It was intentional.
From the beginning, the team listened, not just to what customers were asking for, but to what they were worried about. Concerns that weren’t always clearly articulated, that needed very close listening and interpretation. Sometimes they showed up as hesitation. Sometimes as awkward questions. Sometimes as outright suspicion.
“Are you sure this won’t just make us use more bandwidth?”
“Who actually has access to our emails?”
“What happens if your servers go down?”
We didn’t just answer these concerns. We built a product that pre-empted them.
Where others leaned into isolation, putting a server in every customer’s corner, we leaned into trust. Our service model didn’t isolate customers technically, but it gave them confidence operationally. Shared infrastructure didn’t mean shared risk. It meant shared efficiency, without compromising control.
That said, we understood the appeal of the per-customer model. It offered clean separation. It was easier to explain. It was also, in theory, easier to support, one customer, one box, clear lines. But we also saw where it broke down. Chief among these challenges was within the sales process, and that’s a primary driver of the success of a product.
As their customer numbers grew, complexity multiplied. Support became fractured. Updates became manual. Monitoring scaled linearly with each install. And when something went wrong, root cause analysis could be a nightmare.
We designed for the opposite.
One platform. One view. One standard.
Which meant one consistent experience, regardless of whether the customer had 5 users or 50,000.
And it worked for partners too. The reseller channel could bring the service to smaller clients with confidence, knowing that the onboarding process was light and the support demands low. Indirect sales teams didn’t need to manage custom infrastructure, they could sell the same product to a startup and a state-owned enterprise, and know the quality would hold. For a reseller they could benefit from the resale of the service without taking on all the support overhead, it was viable, profitable.
But most importantly, we respected the market.
We didn’t assume we knew better. We didn’t chase feature parity for its own sake. We built what businesses needed, even when they weren’t entirely sure what that was yet.
And by doing that, we didn’t just serve a market.
We created one.
Lessons Learned (Subtly)
It’s tempting, looking back, to frame the success of the project as inevitable. The right architecture. The right team. The right timing. But that’s a story best left to legends.
The truth is more interesting, and more useful.
We didn’t have a perfect plan. What we had was a clear need, a working theory, and a team willing to get their hands dirty turning that into reality. There was no playbook for building a managed, cloud-based email security service in South Africa. So we built one.
We made a conscious decision not to take shortcuts, not because we were trying to outshine the competition, but because we knew what large customers actually cared about. Stability. Simplicity. Accountability. Quality.
We listened to our internal teams. We respected their expertise. We let collaboration shape the solution, not just the features. By the time we launched, this wasn’t a product being “supported” by the business, it was part of the business. Embedded in operations. Owned across teams. Sustainable from the inside out.
We built for adaptability, not just scale. For enterprise-grade resilience, not just minimum viable function. And when we faced internal resistance or competing incentives, we brought it back to the customer: Would they trust this? Would they renew? Would they recommend it?
And maybe the biggest learning of all: vision doesn’t have to mean predicting the future. It can simply mean knowing what good looks like before the rest of the world has the language for it.
Closing Reflection
When we launched, there were no spotlights. No “digital transformation” buzzwords. No hero moment.
Just a service, clean, proven, and ready.
And almost immediately, it started doing what it was built to do. Delivering secure, spam-free email to thousands of users across South Africa’s biggest organisations. Quietly. Reliably. Without noise or drama.
It didn’t just work. It fit.
It fit into existing IT operations. It fit into customer expectations. It fit into the future of the business, because it had been built by people who knew the business. Every team had touched it. Every department had a hand in shaping it. And that’s why, when the product launched, it didn’t feel like an outsider or a “new initiative.” It felt like something that had always belonged.
The real achievement wasn’t just technical, it was cultural.
By the time cloud became a thing, the service was already live. Mature. Profitable. Integrated. While the industry was still naming the concept, we were operating it in production, across sectors, through resellers, and into the hands of tens of thousands of users.
We didn’t chase a trend. We built something useful.
And in doing so, we helped define what “cloud” would come to mean, not through marketing, but through action.