montreal, qc — cybersecurity analyst @ collège ahuntsic

Cybersecurity analyst and software engineer.

// 01 — whoami

analyst by day,
engineer always.

I'm a Cybersecurity Analyst and Software Engineer securing enterprise and institutional IT environments across the Microsoft ecosystem — threat detection & incident response, identity and access management, security automation, and data-protection compliance. Perfectly bilingual (English / French). I've been taking software apart to see how it breaks since my teens — now I get paid to make sure it doesn't.

  • edu B.Eng. Software Engineering — Security & Mobility, Polytechnique Montréal (2019–2024)
  • certs CompTIA Security+ · Microsoft SC-200
  • langs English (native) · Français (natif) · 中文 (advanced)
  • base Montreal, QC 🍁

// 02 — experience

where I've defended.

07/2025 — present

Cybersecurity Analyst @ Collège Ahuntsic

  • Lead cybersecurity initiatives strengthening the institution's security posture and data-protection compliance.
  • Deployed Microsoft Defender & Sentinel for threat detection and incident response; log ingestion with ManageEngine Log360.
  • Remediated vulnerabilities surfaced by penetration tests and security audits.
  • Built PowerShell + Microsoft Graph API automation replacing static admin consents with a dynamic, user-driven cloud-app authorization workflow.
  • Designed and implemented a comprehensive IT recovery plan; running monthly compliance and technology-watch meetings.
SentinelDefenderKQLGraph APIPowerShellLog360

06/2025 — 07/2025

IT Support Specialist @ InterRent

  • Automated Windows laptop setup and enrollment with Intune (Settings Catalog).
  • Enforced secure access with Conditional Access policies and privileged-role management via Entra ID + PIM.
  • Monitored endpoints with CrowdStrike Falcon; rolled out YubiKey SSO across the Microsoft ecosystem.
  • Managed mobile fleet via Jamf, Exchange mailboxes, and full user lifecycle.
IntuneEntra IDPIMCrowdStrikeJamfYubiKey

09/2022 — 09/2023

Web Developer & LAN Technician @ Otakuthon

  • Engineered and maintained a centralized staff portal automating staff-management workflows.
  • Ran provisioning and lifecycle for the LAN section's Windows workstation fleet.
  • Hardened the network with pfSense firewall rules, routing policies and monitoring.
WebpfSenseWindowsNetworking

01/2022 — 05/2022

Cybersecurity & Automation @ Hydro-Québec

  • Developed RegEx rules detecting unauthorized configuration-file modifications, hardening critical infrastructure against attacks.
  • Created and managed Ansible playbooks automating server deployment.
RegExAnsibleLinux

// 03 — threat hunting

hunt. detect. respond.

sentinel — advanced hunting

Representative KQL hunting queries: risky sign-ins, encoded PowerShell commands, and brute-force detection.

representative hunts — the real ones live in Sentinel & Defender. 🛡

// 04 — the origin story

🌟hdf.services

licensing & distribution platform for CS:GO script modules · 2020 → 2021 · built & operated solo · retired, fully archived

↑ faithful replica of the original landing page — its tab-title typewriter lives on in your real browser tab. look up. 🌟

Before the blue team, I designed, built and ran hdf.services — a full-stack licensing and distribution platform for CS:GO script modules. Auth server, code-protection pipeline, Discord bot, admin panel: one teenager, one Ubuntu box, hundreds of users. Everything I know about how attackers think started here.

  • HWID-locked auth API — PHP endpoints binding every user to their hardware ID, serving role-gated scripts (User / Beta / Staff) with per-request logging.
  • Code-protection pipeline — every release automatically obfuscated through the Luraph and MoonSec APIs before delivery.
  • Discord bot — discord.py key generation & redemption, account linking and role sync.
  • Admin panel + ban system — live log viewer, IP bans, remote HWID resets and kill-switch.
  • Modular delivery — feature modules shipped as role-gated Lua, versioned and served per user.
PHPLuaPythonMySQLdiscord.pyApacheUbuntu

☠️ retired 2021, preserved as a complete server archive. defending against detection systems taught me more about them than any course — that's why I defend for a living now.

327 registered users
226,220 script deliveries
1,288 HWID auth checks
530 user uploads
49 invite codes

// 05 — toolkit

the toolkit.

🛡 Security & SIEM

DefenderSentinelKQLPurviewMITRE ATT&CKCrowdStrike FalconLog360IDS / Firewalls

🔑 Identity & Access

Entra IDPIMConditional AccessIntuneJamfYubiKey / SSO

☁️ Cloud & DevOps

AWS (Boto3)DockerKubernetesTerraformAnsible

⌨️ Programming

PythonC / C++JavaPowerShellKotlinLuaSQL

🌐 Web & Automation

AngularNode.jsPHPFlaskREST / SOAPSeleniumFirebase

🕸 Networking

LAN / WANCisco routerspfSense
🎖

CompTIA Security+

certified

🎖

Microsoft SC-200

Security Operations Analyst

🎓

B.Eng. Software Engineering

Polytechnique Montréal · Security & Mobility · 2019–2024

// 06 — connect

let's connect.

Hiring for security or engineering — or want to talk detection engineering? My DMs are open.