Étienne Fiset
EXPERTISE
BIO
Étienne Fiset is a senior cybersecurity consultant, founder of ProFastSecure, with more than 5 years of experience in cybersecurity and 11 years in IT. He specializes in the architecture, optimization and automation of Microsoft security solutions, with an ability to intervene in complex contexts (multi-cloud, multi-tenant, regulated).
WORK EXPERIENCE
CyberSecurity engineer
Alithya
November 2021 - May 2025
As a seasoned Security Engineer, I specialize in leveraging Microsoft’s advanced security ecosystem to design, deploy, and optimize end-to-end solutions for multi-cloud and hybrid environments. My experience spans tools such as Microsoft Sentinel, Defender (XDR, for Endpoint, for Cloud), Logic Apps, and Azure Automation, paired with experience in PowerShell scripting, Azure CLI. Security Strategy Design • Developed and implemented security policies tailored for multi-cloud infrastructures, ensuring compliance and robust data protection. • Designed and executed security architectures aligned with international standards. Multi-Cloud and Hybrid Environment Management • Delivered advanced configurations for Microsoft Sentinel and Defender for Cloud, securing complex infrastructures across Azure and AWS. • Integrated Intune MDM/MDE for endpoint management and Qualys for vulnerability scans, ensuring a comprehensive security posture. Security Automation • Automated key security workflows—log ingestion optimization, threat detection, remediation—using PowerShell and Azure Logic Apps, reducing manual intervention and operational risk. • Created and refined analytic rules, Playbooks, and Workbooks to accelerate threat detection and incident response. Threat Monitoring & Incident Response • Implemented advanced detection use cases with Microsoft Sentinel, enabling rapid response to critical incidents. • Designed automated Playbooks for common attack scenarios, minimizing time-to- contain. Collaboration & Integration • Worked closely with development and infrastructure teams from project inception, ensuring best practices. • Mananing Qualys and custom integrations to strengthen organizational defense. Additional Responsibilities • Microsoft Defender Suite Management (XDR, EDR, O365, Sentinel, ARC): Ongoing maintenance, continuous vulnerability monitoring, and proactive remediation of security incidents. • Azure Security & Entra ID: Administration of identity and access policies, including Conditional Access rules. • Penetration Testing & Security Audits: Coordinated penetration tests and performed security audits on Azure/AWS infrastructures, with follow-up remediation through Qualys. • Threat Intelligence Activities: Leveraged custom MITRE ATT&CK matrices, previous incidents, and threat reports to enhance prevention mechanisms. • Defender for Cloud Apps & Intune: Oversaw cloud access controls (MCAS) and mobile device/app management, ensuring secure productivity.
CyberSecurity Analyst
Canadien Federal gouvernement
August 2020 - April 2021
Information System Assessment & Audit • Evaluated systems against the CIA Triad (Confidentiality, Integrity, Availability) to classify assets by criticality. • Performed in-depth assessments using HTRA-ITSG-33 methodology, accurately determining inherent and residual risk levels. Vulnerability Identification & Remediation • Executed vulnerability and compliance scans with Nessus/Tenable, identifying security gaps across various environments. • Analyzed results to calculate severity levels, prioritize remediation efforts, and provide clear recommendations. Risk Analysis & Treatment • Assessed vulnerabilities to estimate potential impacts and likelihood, ensuring risks were aligned with organizational risk appetites. • Proposed mitigation strategies—patching, control enhancements, or policy revisions—to reduce risk to acceptable levels. Security Controls & Hardening • Tested and validated security controls, recommending targeted improvements to strengthen system resilience. • Authored comprehensive security recommendations and software assessment reports to guide future upgrades. Compliance & Reporting • Documented risk findings, remediation actions, and compliance statuses for stakeholders. • Contributed to audit readiness by ensuring adherence to federal security standards and best practices.
EDUCATION
Baccalaureate
Polytechnique de Montréal, April 2021
Cybersecurity
CERTIFICATIONS
Azure Fundamentals
Microsoft Certified: Azure Fundamentals
Issued: 1/23/2025
Credential ID: B25D09ED13C8919E
Microsoft Certified: Security Operations Analyst Associate
Microsoft
Issued: 5/6/2025
Credential ID: DB3D2BBEA020933B
PORTFOLIO PROJECTS
Defender for endpoint migration
Objective: Migrate endpoint protection from ESET to Microsoft Defender XDR for 2,000+ devices. Results: Successfully executed a large-scale migration with minimal downtime, elevating endpoint security and unifying management.
Microsoft Sentinel deployment
Objective: Optimize Microsoft Sentinel deployments for multi-tenant environments while reducing overall log ingestion costs. Results: Achieved a $1,415 monthly cost savings and cut incident response times by 30%, improving overall operational efficiency
Defender for Cloud Deployment
Objective: Establish a foundational security architecture across hybrid and multi-cloud environments, enabling centralized governance, automation, and unified policy management. Results: Implemented a scalable, centralized security management framework that streamlined operations, reduced manual tasks, and laid the groundwork for further expansion to other tenants and business units.
Defender for cloud - phase 2
Objective: Extend the foundational Defender for Cloud setup to multiple business units, building a multi-tenant/cloud unified strategy via Azure Lighthouse. Results: Enhanced visibility and established a centralized, cohesive security structure across multiple tenants and cloud environments.
Pentest Remediation Coordination (Annual)
Objective: Address vulnerabilities discovered during penetration testing and streamline remediation across cross-functional teams. Results: Improved adherence to internal security standards and reduced exploitable vulnerabilities across the entreprise
Skill set Show Case
SECURITY MICROSOFT | Sentinel & Defender Suite Deploying, configuring, and optimizing Microsoft Sentinel: • Connectors (Azure, Microsoft 365, Syslog, DCR/AMA, etc.) • Tuning of analytical rules (KQL) • Alert management and best ingestion Comprehensive Defender XDR Suite Expertise : • Defender for Endpoint (ASR, EDR, Threat Analytics, Live Response) • Defender for Office 365 (Phishing, Safe Links, Spoof intelligence) • Defender for Identity (on-premises AD integration + Azure) • Microsoft Defender for Cloud (CSPM, Defender Plans, Secure Score) • Azure Policy (CSPM) Azure+AWS cloud security benchmark compliance • Microsoft Cloud App Security (MCAS) • Intune – ma'am/mdm/alcohol • Enter ID Protection • Microsoft Purview & eDiscovery (DLP) Automation with Logic Apps (SOAR): • Custom Playbooks (Auto-Triage, Enrichment, Automated Response) • Intégration Graph API, webhook, GitHub, JIRA, Teams, etc. CLOUD SÉCURITÉ | Azure & Multi-cloud • Renforcement de la posture de sécurité Azure (RBAC, policies, PIM, réseau, key vault) • Multi-environment deployment via Bicep + GitHub Actions (CI/CD) • Using Azure ARC to secure and monitor hybrid hosts (on-prem + AWS) • Integrating AWS Logs (CloudTrail) into Sentinel • Harmonized governance between Azure, AWS, and Sentinel INCIDENT MANAGEMENT & THREAT HUNTING • Tri d’alertes multi-source (Sentinel, Defender, MCAS) • Advanced investigation with KQL, multi-perimeter log cross-referencing • Proactive threat hunting (based on MITRE ATT&CK + Microsoft Threat Intelligence) • Writing RCA (Root Cause Analysis) reports • Standardization of procedures (SOPs, playbooks, IR workflows) VULNERABILITY MANAGEMENT, TRA & SECURITY AUDIT • Identification and qualification of vulnerabilities using Qualys, Defender DVM, Nessus/Tenable.io and OSINT tools (Shodan, Censys) • Assessment of report, prioritization report and coordination for patching. • Threat & Risk Assessments (TRA/HTRA) aligned with ISO 27005, NIST SP 800-30, and IT-SG33. • Security audits on RBAC, logging practices, MFA configuration, and policy compliance (Azure / M365) • Compliance and recommendations with Defender for Cloud CSPM, Azure/AWS Cloud security Benchmark, Security Score improvement, SOC Optimization Initiative action plan(SOC/Sentinel). AUTOMATION & SECURE INFRASTRUCTURE • Deploying Sentinel & Defender as Code components (Bicep + GitHub Actions) • Create reusable modules (Logic App Template, Sentinel All-in-One deployment) • Securing CI/CD pipelines (GitHub, Azure DevOps) • PowerShell scripting, Azure CLI for SOC automation DOCUMENTATION & COMPLIANCE • Comprehensive documentation (Markdown, PDF, GitHub, SOPs) • Structuring of internal security repositories and guides • Compliance with ISO/IEC 27001, NIST 800-53, GDPR, Law 25 (QC) frameworks • Cloud Security Policy Development / Governance
Verified Security Engineer
3-5 years of experience
Preferred commitment: Full Time
Languages
Skills
Impressed by Étienne Fiset's profile?
Take the next step and bring this top talent to your team
Hire Étienne for your team