SUMMARY

• Information Technology Professional with over 7 years of Microsoft Azure experience.
• Expertly collaborates with Clients to understand requirements and business objectives.
• Provides solutions for monitoring and managing configurations, provides strategic advice on using technology to achieve goals.
• Supports new implementations, migrations, and upgrades, and produces detailed high - level technology plans and documentation.

TECHNICAL SKILLS

• Azure AD
• Azure Multifactor Identification
• Azure Conditional Access
• Azure Federation
• PowerShell
• SSO
• OAuth 2.0
• OpenID Connect
• SAML 2.0
• Express Route
• Virtual Network
• VPN Gateways
• DNS
• Load Balancers
• AAD Connect
• Azure AD privileged access
• PIM
• App registrations
• Microsoft Identity Manager
• Solar Winds Access Rights Manage
• Dameware Remote Everywhere
• Dameware Remote Support
• Server & Application Monitor
• Manage Engine AD Audit Plus
• Bulk Password Control
• OKTA Identity Management
• Microsoft Identity Management
• SSO
• MFA and Password-less Solutions

PROFESSIONAL EXPERIENCE

Confidential

Azure AD Engineer, SSO/ IAM Engineer

Responsibilities:

• Strong knowledge of Active Directory and Authentications
• Manage Security and IAM authentication experiences
• Solid understanding in security domains, especially identity and access management
• Developing and management of API’s
• Building of virtual systems and virtual environment.
• Strong Knowledge on MFA solutions and implementation.
• Creating, configuring, and giving license to user identity.
• Implementing and managing external identities.
• Managing domains for hybrid configuration with On-premises.
• Encryption/Decryption of XML config. Implement (SAML) XML- based standard for exchanging authentication and authorization data between security domains.
• Migrating SAML Based SSO Partners From AD to Azure AD
• Implementing OAUTH using different grant types to get the access Token to Native Mobile Applications to the Third-Party API’s.
• Working on Federated SSO between Third Party Vendors Making Inbounds and Outbound Calls Security.
• Understanding SSO, PHS, PTA and ADFS SAML identity strategies and Concepts.
• Planning, implementing, and administering Conditional Access.
• Understanding Enterprise Apps and Apps registration for Single Sign-on (SSO).

Confidential, Indianapolis

Azure AD Engineer/ IAM Engineer

Responsibilities:

• Manage, maintains, supports troubleshoots, and optimizes the Azure AD environment, and suggests adjustments and new system designs for future needs.
• Configuration, integration, and management of Azure AD Identities, Groups, App Registrations, and SSO services.
• Perform assessments on various environments and provide recommendations for system improvements, and optimization.
• Accept escalations and complete service requests within the established SLAs and provide best practice recommendations
• Resolve level 2 and 3 problems and issues related to Azure AD.
• In-depth understanding of Azure AD Identities, Security Groups, Azure AD Roles.
• Development and upkeep of documentation relating to the client's Azure Active Directory environments.
• In-depth understanding of Azure AD Identities, Security Groups, Azure AD Roles.
• Experience with Azure App registrations, SAML SSO, Azure Active Directory Connect, and Azure Portal Administration.
• Knowledge of Office 365 Management Suite and PowerShell.
• Strong fluency user of Windows applications and Microsoft Office programs such as MS Project, Word, Excel, and PowerPoint.
• Experience with Azure Active Directory, Azure Managed Service Identity
• Design, implement and manage virtual networking within Azure and connect to on-premises environments, configure Express Route, Virtual Network, VPN Gateways, DNS, and Load Balancers
• Create and manage Azure AD tenants, manage users and groups, and configure application integration with Azure AD
• Strong experience with Azure Networking, Security and Storage, High availability, and backup
• Integrate on-premises Windows AD with Azure AD, configure multi-factor authentication, and federated single sign-on
• Hands on experience with OAuth 2.0, OpenID Connect, SAML 2.0
• Responsible for the planning, design, and implementation of Azure AD Identities and SSO services using Azure AD, AAD Connect, Azure AD privileged access, PIM, App registrations, and ensuring the environment is supported and resilient.

Confidential, Palo Alto, CA

Azure AD Engineer/ IAM Engineer

Responsibilities:

• Understand and refine a Role Based Security framework. Produce schema designs and operational plans to enforce and maintain identity management workflows
• Participate in development of roadmaps and participate in the standards process for Identity and Access Management (IAM) solutions
• Promote effective teamwork, mentor employees, and evaluate individual performance
• Manages the strategy and roadmap implementation for Identity and Access Management Platform Tools
• Manage identity and access management support to business and technical teams in the design of standardized products and customized solutions
• Develop roadmaps and participate in the standards process for Identity and Access Management (IAM) solutions
• Hands-on architect and developer of a comprehensive IAM system that addresses the challenges of a very complex development and production environment
• Assist in the development of performance metrics/ measurements for the user access attestations
• Work with the project teams on implementing the defined Policies within Access & Identity Management (AIM) solution
• Champion the improvement of identity and access management processes, controls and communications related to Policies across stakeholder groups
• Champion the improvement of identity and access management processes, controls and communications related to Roles across stakeholder groups
• Work with the project teams on implementing the defined business Roles within Access & Identity Management (AIM) solution
• Work with team on project work to keep project going according to schedule
• Work with Business Unit Information Security Officers (BUISOs), system owners, and other IAM colleagues to address audit and regulatory related issues

Confidential, Los Angeles, CA

Azure Cloud Administrator

Responsibilities:

• Experience with Security Centre Key Vault, Application Gateway, and Network Security Groups.
• Experience with complex IT systems, including operating systems, networks, firewalls, and load balancers.
• Secure and harden the network, server, data, and end user infrastructure.
• Experience with Azure Active Directory, Azure Managed Service Identity.
• Design, implement and manage virtual networking within Azure and connect to on-premises environments, configure Express Route, Virtual Network, VPN Gateways, DNS, and Load Balances.
• Create and Manage Azure AD tenants, manage users and groups and configure application integration with Azure AD.
• Strong experience with Azure Networking, Security and Storage, High availability, and backup.
• Integrate on-premises Windows AD with Azure AD, configure multi factor authentication and federated single sign-on.
• Hands on experience with OAuth 2.0, OpenID Connect, SAML 2.0
• Responsible for planning, design, and implementation of Azure AD Identities and SSO services using Azure AD, AAD Connect, Azure AD privileged access, PIM, App registration and ensuring the environment is supported and resilient.

Confidential

Azure Cloud Administrator

Responsibilities:

• Achieved over 2 million dollars in savings for the Cost Optimization team by meeting with infrastructure owners and stakeholders to downsize and delete unused resources.
• Locate specific right ownership contacts to partner with inside Walmart and Identify if the downsizing recommendations fit the design and forecasted usage patterns of the Application infrastructure.
• Create and host presentations during meetings with stakeholders to visually help them understand the savings opportunity, utilization of devices etc.
• Experience with Azure access controls, Azure policy management, Azure operational monitoring, Azure security monitoring.
• Experience with Azure Migration using Azure Site Recovery, Azure Migrate.
• Deployed Azure IaaS virtual machines and Cloud services into secure VNets and subnets.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs) VMs and subnets.
• Migrate SQL server database and Websites from on premises to Azure Cloud.
• Configuring Availability Set for Azure VM’s (Fault and Update Domains)
• Fulfillment of Identity and Access Management requests based on a Role based Access Controls.
• Experience with Setup and Implementing Express route, P2S, Site VPN and VNet peering.
• Experience with Identity and Access Management concepts such as SAML, RBAC, SSO, privileged access management, multi factor authentication and Microsoft Authenticator.
• Understanding of DevOps technologies and tools such as Jenkins, GitHub.

Confidential

Loan Data Entry Specialist

Responsibilities:

• Processing of mortgage loan and lending documents
• Review customer accounts received payments by phone.
• Inbound calls
• Set up customer’s automatic monthly payment.
• Review and analyze loan application, appraisal reports, collateral and supporting documentation
• Perform high volume, time sensitive tasks related to the loan documentation process
• Entering of retail contracts/ Lease agreements and data into the company’s portfolio system
• Responsible for evaluating, monitoring, and accessing quality loan packages
• Act as a liaison between lenders and legal department.