Multi-tenant environment · greenfield-to-production rollout

Security Standardization & Onboarding at Scale

Took a team from zero to self-sufficient—standardized security baselines and built a repeatable onboarding pipeline across a complex multi-tenant environment.

Technologies

NMM
Entra ID
Defender for Office 365
Solution Baselines
Policy Baselines
CIS
Group Templates
Partner Center
GDAP
Policy Import
Console Connect
PSA Integration

Situation

A team needed to turn internal security best practices into enforceable, repeatable standards across many customer tenants—but had no baseline experience and no reliable onboarding path.

Blocked imports, missing prerequisites, and disconnected tooling (PSA, remote support, notifications) were preventing them from moving from evaluation to production.

Role

Owned the problem end-to-end: baseline design, integration troubleshooting, onboarding workflow, and hands-on enablement until the team could run it independently.

Actions

Staged Entra ID and Defender baselines with CIS report-only rollout, validated prerequisites, and phased enforcement—no guesswork.
Built policy baselines with group templates for precise targeting and clean exclusion handling at scale.
Unblocked onboarding via Partner Center and GDAP; diagnosed and fixed import API failures tied to source-tenant configuration.
Established a stable golden-tenant import flow and connected PSA ticketing, remote support, and alerting into one operational stack.

Results

Team went from blocked and dependent to self-sufficient—configuring and assigning baselines without ongoing support.
Created a repeatable report-only → enforce pattern reused across multiple tenants.
Turned a broken onboarding workflow into a runbook anyone on the team can execute.

Contact

Open to technical operator, cloud engineering, platform, and customer-facing roles. If you have a hard problem, I can probably help—reach out by email or LinkedIn.

brandon.sardelli@gmail.com 631-707-5433 linkedin.com/in/brandonsardelli