Mohit Sethi
Toronto,Ontario
Summary
With a solid background spanning over 7 years in cybersecurity, this profile is marked by a deep commitment to enhancing security frameworks across cloud and IT infrastructures. Emphasis is placed on adopting Zero Trust models, ensuring compliance, and leading seamless SaaS product integration projects. Known for its ability to lead teams and encourage collaboration to tackle evolving security challenges, the focus is on using this expertise to shield organizations and stay ahead of potential threats.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Cybersecurity Officer
Export Development Canada
08.2022 - Current
- Collaborate with MSSP to address and mitigate
various cyber incidents, including phishing,
malware, ransomware, DOS attacks, and data
breaches as a second line of defence. - Led the charge in safeguarding the organization's security while managing a team of five professionals.
- Participating in selecting the right security tools for the organization involves evaluating SOWs and conducting POCs to ensure they meet our needs. This includes CrowdStrike EDR, Splunk, Sentinel, D3 SOAR, AWS Guard Duty, Zscaler, and Email Security.
- Contributed to enhancing SOC effectiveness and efficiency through the implementation of continuous improvement initiatives
- Facilitated seamless integration between Azure Sentinel, third-party security appliances, and Microsoft Defender to achieve comprehensive security coverage.
- Evaluated and endorsed third-party software requests, ensuring compatibility and adherence to security standards.
- Implemented Entra ID Protection Defender for Cloud apps to enhance and secure the organization's cloud security posture.
- Bringing Zero Trust Architecture to life by meticulously examining device, data, application, network, and identity elements.
- Mitigated potential risks by proactively identifying potential issues and implementing appropriate countermeasures or contingency plans as needed.
Cybersecurity Architect
SherWeb
01.2019 - 08.2022
- Spearheaded the deployment and optimization of the Microsoft Defender suite, significantly elevating endpoint protection for our government/Private sector clients.
- Led the cybersecurity strategy for a healthcare division's transition into a Fortune 500 company, shaping the framework for secure systems and ensuring compliance with payment security standards.
- Orchestrated the overhaul of security infrastructure, from firewalls to intrusion detection, ensuring seamless authentication processes MFA/Conditional Access Policies and robust protection against digital threats.
- Rolled out company-wide security measures, setting up cutting-edge defences against viruses and malware, and ensuring safe, secure web browsing for all.
- Crafted and implemented tailored security measures within Microsoft Defender Tools to align with unique organizational needs.
- Aligning the SIEM tools for the clients with their unique business needs and robust security coverage around all applications.
- Conducted thorough evaluations of the DevOps CI/CD pipeline, Bicep, ARM templates, and Terraform configurations before deployment to ensure no vulnerabilities compromised security.
- Worked with logic apps around the security products to build automation around Cloud security.
- Integrated advanced UEBA systems, IAM protocols, and deception techniques alongside conducting risk assessments and managing vulnerabilities to bolster organizational security.
- Presented detailed reports and documentation of security findings, recommendations, and incident response activities to Clients to give them control and Visibility.
- As a Cybersecurity Advisory resource, played a pivotal role in enhancing security across the organizations.
Information Security Specialist | CSIRT
IGT Global Solutions
11.2017 - 01.2019
- Conducted comprehensive analysis and provided expert advice on complex enterprise environment issues, with a focus on Exchange, Security, and Compliance Subject Matter Experts (SMEs).
- Led interviews and training sessions for new recruits, covering critical aspects of Exchange, security, and compliance.
- Possess deep understanding of cloud infrastructure components, including Identity and Access Management (IAM), software-defined networking, security, governance, and compliance.
- Played a key role in enhancing organizational security postures through the Zero Trust model, including administering specialized training for system administrators.
- Expert in crafting complex Kusto queries for Advanced Hunting in Microsoft Sentinel, aiding in proactive threat detection and response.
- Provided advanced support for Exchange Online, including hybrid setups, transport rules, mail flow, and email authentication protocols (SPF/DKIM/DMARC).
- Implemented third-party security appliances such as IronPort, ProofPoint, and Sendgrid, as well as expertise in Active Directory Domain Services/Active Directory Federation Services, and Azure Active Directory (SSO, SAML).
- Proficient in information protection and security stacks, including Microsoft Defender for Endpoint (MDATP), Microsoft Defender for Identity (MDI), and Microsoft Defender for Cloud Apps (MCAS, formerly).
- Experienced with SIEM tools like Splunk and Azure Sentinel and Exabeam enhancing security monitoring and incident response capabilities.
Education
Bachelor of Science - Information Systems Security
St Clair College
Windsor, ON04.2016
Skills
- Microsoft Defender for Endpoint
- Defender for Cloud Apps (MCAS)
- Defender for Cloud (Azure Security)
- Microsoft Sentinel
- Microsoft Defender for Office
- Entra ID Protection
- Trend Micro
- Powershell
- Kusto Query Language (KQL)
- Log Analytics Workspace
- CrowdStrike
- Sumo Logic
- MFA and Conditional access Policies
- Deep Instinct
- Incident Response
- Threat Vulnerability Management
- Azure ARC
- Microsoft 365
- Exchange Online – Mail flow – Exchange transport rules – SPF/DKIM/DMARC – MDO
- Compliance
- Microsoft Purview
- Microsoft Entra permission management (PAM) – IAM – PIM
- Zscaler ZIA and ZPA
- AWS
- Azure
- SIEM
- SSO/OATH/SAML
- Intune
- Cortex XDR
- CI/CD
- Azure Devops
- Jenkins
- Ansible
- Terraform
- Vulnerability Management
- Security Audits
Certification
- SC100: Microsoft Cybersecurity Architect
- SC900: Security, Compliance and Identity Fundamentals
- CompTIA Security +
- MS500: M365 Security Administrator
- AZ900: Azure Fundamentals
- AI900: Azure AI Fundamentals
- AZ-104: Microsoft Azure Administrator
- AZ-500: Microsoft Azure Security Technologies
- AZ-305: Azure Solution Architect
- CEHv12: Certified Ethical Hacker
- SC-200 ( Diving into it)
- CISSP ( Diving into it)
- 365 Copilot ( Diving into it )
Timeline
Cybersecurity Officer
Export Development Canada
08.2022 - Current
Cybersecurity Architect
SherWeb
01.2019 - 08.2022
Information Security Specialist | CSIRT
IGT Global Solutions
11.2017 - 01.2019
Bachelor of Science - Information Systems Security
St Clair College
- SC100: Microsoft Cybersecurity Architect
- SC900: Security, Compliance and Identity Fundamentals
- CompTIA Security +
- MS500: M365 Security Administrator
- AZ900: Azure Fundamentals
- AI900: Azure AI Fundamentals
- AZ-104: Microsoft Azure Administrator
- AZ-500: Microsoft Azure Security Technologies
- AZ-305: Azure Solution Architect
- CEHv12: Certified Ethical Hacker
- SC-200 ( Diving into it)
- CISSP ( Diving into it)
- 365 Copilot ( Diving into it )
Similar Profiles
Stéphane CôtéStéphane Côté
Content Strategist at Export Development Canada | Exportation et développement CanadaContent Strategist at Export Development Canada | Exportation et développement Canada
Nosheen SubhaniNosheen Subhani
ITSM ServiceNow Product Owner at Export Development CanadaITSM ServiceNow Product Owner at Export Development Canada
John MookerjiJohn Mookerji
ITSM – Operations Analyst at Export Development CanadaITSM – Operations Analyst at Export Development Canada