Sentinel is deployed, Defender is licensed, dashboards look healthy — but detections are weak, coverage is unclear, and nobody can say with confidence whether the investment is actually working.
Fractional CISO • Microsoft Security • Security Operations
Security leadership for organizations that need clarity, alignment, and action.
Fulcrum Advisory helps organizations align governance, cloud architecture, and day-to-day security operations so the investment they have already made actually protects them. Senior expertise. No junior handoffs.
No forms. No intake call with a junior associate. Straight to David at fulcrum@fulcrumadvisory.ca.
If you are looking for compliance theatre, checkbox audits, or a shopping list of tools — Fulcrum Advisory is not the right fit. If you want your security program to actually work, it is.
David Pesano
25+ years in enterprise IT and security
Global MDR leadership
Built and led a global MDR service across energy, health, public sector, and finance
Microsoft-native
Sentinel, Defender, Azure, identity, and governance
Registered in Alberta, Canada
Serving Canadian organizations nationally and remotely
When to call
Where Fulcrum makes the difference
Four common situations where independent senior security leadership changes the outcome — faster than another platform, another dashboard, or another six-month consulting cycle.
Growing organizations, retained advisory needs, post-acquisition integration, or board pressure that requires executive-level security direction without committing to a full-time CISO hire.
Detection coverage drift, analyst fatigue, unclear escalation paths, or an MDR provider relationship that is not delivering the operational confidence it was contracted to create.
Funding, regulatory scrutiny, major transformation, or incident readiness work that requires a defensible security program built properly before pressure forces rushed decisions.
Why Fulcrum
"Most organizations do not need more tools. They need a fixed point that makes the tools, the people, and the telemetry work in the same direction."
That is the role Fulcrum Advisory is built to play: connecting board-level strategy to technical execution so your security investment translates into operational reality — not another slide deck.
Built out of frustration with how security consulting usually goes.
Too often, large firms make ambitious security promises, charge enterprise rates, then deliver diluted value — outsourced, junior-led, and far removed from the realities clients actually face.
Fulcrum Advisory was created to be the alternative. Security advice should create net positive value for both sides: clients reduce real risk, partnerships last, and attackers lose. That means senior-led delivery, practical guidance, and outcomes that stand up in the real world.
Not here to expand tool sprawl. Not here to optimize billable hours. Here to make your security program more coherent, more defensible, and more effective.
Next step
Start with a real conversation.
If you have a security problem, an initiative under pressure, or a program that is not delivering enough confidence — start there. No forms, no intake process, no gatekeeping.