Steven Berthels

I secure cloud environments and manage identity and access within Microsoft Entra ID. I design and implement authentication solutions, including Single Sign-On and Multi-Factor Authentication. I define and enforce Conditional Access policies and integrate enterprise applications using SAML and OpenID Connect. I implement data protection strategies through Data Loss Prevention and information protection solutions. I strengthen Azure security posture by securing infrastructure, monitoring threats, and supporting disaster recovery and business continuity initiatives.

Responsible for designing and implementing security solutions to protect networks, applications, and data. Monitors vulnerabilities, performs risk assessments, and establishes security controls.
Responds to incidents and ensures compliance with industry standards.
Collaborates with IT teams to integrate security into infrastructure and development. Continuously improves security posture through threat analysis and awareness of emerging risks.

I design and oversee secure cloud solutions, develop security frameworks, and set architectural standards to protect cloud environments. I work with development teams to embed security throughout development and ensure alignment with business goals and compliance requirements.

I design, implement, and maintain secure Azure cloud infrastructure, protecting systems through security configurations, access management, vulnerability monitoring, and compliance with industry standards.

I deliver designs, implementations, and maintenance of our workplace services in cooperation with 3rd party vendors with the main office and remote offices across the country in scope. I also take on some projects related to public cloud & security based on my expertise.

The group is planning to do a consolidation/migration of workloads in Amazon (AWS) and multiple Office 365 tenants, to a single Office 365 environment / Azure tenant The project the requires a technical expert.

Ypto | Office 365 / Exchange / Intune / Security Consultant
At Ypto, I serve as a Subject Matter Expert in Azure, Intune, Knox, Identity, and Office 365, providing L3 support and leading infrastructure initiatives focused on security hardening and feature enablement.

Fluvius | Office 365 / Exchange / Security Consultant in Office 365 migration project
At Fluvius, Flanders’ electricity and gas grid operator, I conducted in-depth analysis, remediation, and service enablement across Microsoft 365, Azure AD, Intune, and Defender for Endpoint, enhancing both security posture and operational efficiency.

Recticel | Office 365 / Exchange / Security Consultant in Office 365 Audit project
At Recticel, a global manufacturer headquartered in Brussels, I supported an Office 365 security audit by analyzing and remediating the Microsoft 365 environment, identifying security gaps, and delivering actionable recommendations. I also managed planning and follow-up to ensure successful implementation.

Unit-T | Modern Workplace / Security Consultant in Modern Workplace project
At Unit-T, a joint venture of Telenet and Solutions 30, I supported Modern Workplace and Security initiatives by analyzing and remediating AD/Azure AD (P2), configuring SSO, MFA, and Conditional Access, and deploying operating systems using community tools. I also managed project planning and follow-up to ensure successful execution.

Fluxys | Modern Workplace / Intune Consultant in Modern Workplace project
At Fluxys, Belgium’s independent gas infrastructure operator, I conducted a proof of concept for Microsoft Intune MDM/MAM with Apple devices. This included enabling certificate-based authentication via Intune and integrating components such as Certificate Authority, NDES, Intune Connector, and Azure AD Web App Proxy.

ASCO | Modern Workplace / Security Consultant in Modern Workplace project
At ASCO, a global supplier of aerospace components, I led the analysis, remediation, and implementation of a greenfield Modern Workplace environment. This included OS deployment using community tools, configuring SCCM role-based access control, and managing project planning and follow-up to ensure successful delivery.

STIB-MIVB | Technical Project Manager in Office 365 migration project
At STIB/MIVB, Brussels’ public transport operator, I supported the migration of over 4,000 Office 365 mailboxes, managing the project plan and leading remediation of key infrastructure components such as Exchange Hybrid, Azure AD, SSO, AAD Connect, MFA, and Conditional Access. I also collaborated with the InfoSec team to enhance ISO 27001 compliance, contributing to the risk register and mitigation planning.

Federal Police Belgium | Consultant in Active Directory migration project
At the Belgian Federal Police, serving over 12,000 personnel, I executed multiple infrastructure configurations, including analysis and remediation of AD/Azure AD (P2), AAD Connect with password hash sync (SSO), and implementation of MFA and Conditional Access. I also automated and migrated new sites using SCCM and Intune, enhancing operational efficiency and security.

City of Mechelen | Technical Consultant in Office 365 migration project
At the City of Mechelen, I supported a secure Office 365 migration by analyzing and remediating key identity infrastructure, including Exchange Hybrid, AD/Azure AD (P1), AD FS, and AAD Connect with SSO, enhancing authentication security and cloud readiness.

Vynova | SPOC for Remediation/Service Enablement/Migration in Office 365 migration project
At Vynova, I led secure remediation and migration efforts across a multi-domain Exchange Hybrid and Office 365 environment. I focused on identity infrastructure (AD/Azure AD, AAD Connect with SSO), while also automating user provisioning and managing mailbox migrations and reporting.

Devoteam Belgium | Strategic IT Transformation |
At Devoteam Belgium, I audited Office 365 environments, delivered strategic security recommendations, and led stakeholder briefings. I managed remediation efforts, implemented improvements, and ensured continuous project oversight.

Microsoft Professional Services | Remediation Consultant in Office 365 migration project
For a multinational client spanning 100+ entities in 45+ countries, I led the remediation phase and supported secure service enablement. This included analyzing on-prem Exchange, managing six multi-domain Exchange Hybrid setups, Azure AD Connect, and AD FS, while coordinating remediation calls, demos, and stakeholder reporting.

Led escalated support, coached engineers, and delivered infrastructure projects across Windows, SCCM, Exchange, Office 365, and AD. Key contributions included secure SCCM deployments, Exchange/Zimbra migrations, AD upgrades, PKI and MobileIron assessments, SharePoint migration, encryption rollouts, and license compliance.

SWCS (Société Wallonne du Crédit Social) | Exchange Migration Consultant
Led the design and implementation of a Lotus Notes to Exchange 2013 migration, including CAS, HUB, Public Folders, archive mail, and mobile device management. Delivered network performance recommendations, Exchange–SharePoint 2010 integration, and automation via PowerShell and Exchange Management Shell to enhance operational security and efficiency.

CPAS Mons (Centre Public d’Action Sociale) | Exchange Migration Consultant
Designed and implemented a hybrid Exchange 2003 to Office 365 migration, including infrastructure readiness, process optimization, and deployment of highly available SSO using AD FS to ensure secure and seamless user access.

As a System Engineer, I maintained secure and compliant VMware datacenter operations in line with ISO 27001 standards. I managed host deployment, patching, and performance optimization, with continuous VM monitoring via SCOM to ensure availability and integrity. I led the ESXi 4.0 to 5.1 migration with a focus on reducing attack surfaces, configured secure storage (StorSimple, Storwize v9000), deployed hardened OS images via SCCM 2012 SP1, and implemented hardware monitoring to support asset control and risk mitigation.

As a System Engineer, I ensured secure infrastructure operations by aligning support and migration activities with ISO 27001 controls. I conducted feasibility studies with a focus on risk assessment, provided 1st and 2nd line support with secure incident handling, and managed encrypted storage and backup solutions. I led secure migrations—including VMware to ESXi 5.0, Exchange 2010 to Office 365 (hybrid), and VMware to Hyper-V via SCVMM—ensuring data confidentiality and integrity. I also managed application deployments via SCCM 2012, developed SharePoint templates with access control in mind, and used SCOM for proactive system monitoring and availability management.