ICT System Engineer & IT Project Lead with 15+ years of experience across Microsoft infrastructures: Windows Server, Active Directory, Microsoft 365 and Entra ID.

I design, secure and automate IT environments so they become easier to manage, safer to operate, and better documented.
My focus is simple: reduce friction for users and admins, improve security, and turn complex infrastructure into something reliable and maintainable.

Most of the content here comes from my labs, experiments and real-world infrastructure thinking — please adapt and test everything before using it in production.

• Modernizing Microsoft infrastructures from legacy on-prem to secure hybrid environments
• Automating repetitive administration tasks with practical PowerShell tooling
• Improving identity, collaboration and endpoint security with Microsoft 365 / Entra ID
• Bridging hands-on engineering, documentation and project coordination

These repositories reflect the kind of work I enjoy most: infrastructure design, automation, documentation and secure-by-default thinking.

• CIVIS-M365
  CIVIS M365 is a lightweight, self-hosted platform designed to improve Microsoft 365 security visibility in organizations that need practical monitoring capabilities without the cost and operational overhead of enterprise SIEM adoption. ➜ Repository

• Azure Hub-and-Spoke Lab with Bicep
  This lab is designed as a learning resource to discover and practice Bicep by building an Azure Hub-and-Spoke network architecture. It is intended for self-taught architects, cloud engineers, and curious students who want to gain solid foundations in infrastructure as code with Bicep, starting from a modular, scalable, and educational base. ➜ Repository

• PME-Infra-Documentation
  End-to-end infrastructure documentation for a small business moving from legacy on-premises systems to a modern hybrid environment: network, storage, security, Microsoft 365, Defender and Intune.
  ➜ Repository

• Global-Deployment-of-Microsoft-Places
  Deployment guide and scripts for rolling out Microsoft Places across multiple offices with Microsoft 365 Business Premium, with a pragmatic licensing-conscious approach.
  ➜ Repository

• Infra-pfSense
  Secure homelab architecture built around pfSense, Hyper-V, VLANs, DMZ and reverse proxying with Traefik — designed to explore segmentation, exposure control and resilient infrastructure patterns.
  ➜ Repository

• M365-Storage-Reports
  PowerShell scripts to collect and consolidate storage and usage data across Exchange Online, OneDrive, SharePoint and Teams into usable reports for visibility and decision-making.
  ➜ Repository

• Core tools: PowerShell, Windows Server, Active Directory, Microsoft 365, Entra ID
• Cloud & security: Conditional Access, identity security, Exchange Online, Teams, Defender, Intune
• Infrastructure topics: network segmentation, VLANs, DMZ, reverse proxy, backup and storage
• What I enjoy most:
  • Solving messy infrastructure problems
  • Removing repetitive work through scripting and automation
  • Turning tribal knowledge into clear, reusable documentation

• 🛠️ Scripts and small tools for system administration and automation
• 🧪 Lab projects around Microsoft infrastructure, networking and security
• 📚 Documentation, notes and configuration examples built while learning and testing
• 🧭 Practical approaches to making infrastructure clearer, safer and easier to operate

Outside of tech, I also enjoy the quieter things that help me reset and stay curious:

• 🍜 Big fan of noodles — ramen, udon and anything in that universe
• ⛰️ Mountains, hiking and being outdoors
• ⛩️ Japanese culture and Shinto shrines
• 🍫 Good chocolate is always a valid upgrade

If you’d like to talk about Microsoft infrastructure, automation, security, documentation or project coordination, feel free to reach out.

LinkedIn – Jean-Marc Alpesse

Stats are not everything, but they offer a quick snapshot of activity and interests.