SUMMARY

• Strong IT Experience with major portion on IAM in PAM, Saviynt, Thycotic, SailPoint, SSO, CyberArk, Active Directory and Okta, oAuth, SAML, OpenID etc.
• Implemented, integrated, managed, and enhanced the Privileged Access Management (PAM) and the Multifactor Authentication solutions.
• Highly skillful in configurations, troubleshooting, application onboarding and system monitoring of Saviynt.
• Extensive Experiences with Identity life Cycle Management, IAM governance.
• The integration involved migrating from Sun OpenSSO to ForgeRock OpenAM, migration from Sun directory Servers to ForgeRock OpenDJ directory servers.
• Involved in integration of Oracle DRM, OBIEE with Saviynt System Manager.
• Reviewed layout and setup of Enterprise Password Vault solutions on client site including Privileged Identity Manager and Thycotic Secret Server.
• Experience with Design, code, and debug operations, reporting, data analysis & web applications utilizing Python.
• Demonstrated background within the design and implementation of Golang and Java web applications.
• Successfully implemented CyberArk and Okta (Provisioning/SSO/MFA) at Confidential.
• Implemented the migration of IAM infrastructure from Sun/Oracle IAM products to ForgeRock IAM stack.
• Worked with SQL staging databases to organize data before importing into Saviynt IGA.
• Worked with integrating PAM CyberArk module with the SailPoint IIQ.
• Experience in installing Okta Lightweight agent to integrate with Active Directory.
• Worked on all the PingFederate OAUTH grant types to get the access token to access the protected API.
• Develop and customize configurations, Email templates, rules in SailPoint IdentityIQ.
• Experienced in using IAM/PAM tools for deployment, configuration, integration, upgrades of CyberArk PAS suite
• Proficiency in the domain of Identity and Access Management with expertise in Oracle Identity Manager (OIM) and Saviynt IGA.
• Good Knowledge of Python and Python Web Framework Django.
• Experience on setting up SAML applications in OKTA Installing AD / IWA agents on member domains, validating single sign - on, user provisioning and troubleshooting password synchronization across multiple Okta platforms.
• Troubleshoot user access problem in Thycotic Secret server environment.
• Implemented Single Sign-On using SiteMinder on single/multiple cookie domains for Web applications and integrated SSO with Sun One LDAP and MS Active Directory and e-Directory.
• Conducted and presented trend analysis on all internal and external Operational Risk Management
• Configured and administer Thycotic Secret Server Vault & Cyber-Ark PIM Suite/Enterprise
• Configured Single Sign on (SSO) between applications that are deployed in different domains using SAML2.0.
• Designed and implemented SailPoint build processes, code migration, and source control use.

TECHNICAL SKILLS

Identity Application: IAM, CyberArk, Identity Now etc.

Access Management Platforms: IAM, CA Single Sign On (Site Minder), CA AUTH minder, CA Risk minder, Ping Identity Ping Federate, CA API Gateway, CA Secure Proxy Server, CyberArk.

Open Standards: Oauth, Okta, OpenID, Fast Identity Online (FIDO), SAML

LDAP directories: Microsoft Active Directory, CA directory, Oracle RDBMS, MySQL, IBM DB2, Sun Java Enterprise System (JES) Directory Server, Oracle Virtual Directory. BOSS 4.1, IPlanet, Sun One, Tomcat 6.

Programming and Markup Languages: Python, SQL, Oracle PL/SQL.

PROFESSIONAL EXPERIENCE

Confidential, TX

IAM Engineer

Responsibilities:

• Installation and configuration of IAM (Identity access management) with as required PAM (Privileged access management) by design solution.
• Involved in end-to-end implementation of IAM solution using Saviynt System Manager.
• Created various reports like Role composition report, Identity Reports and Application attribute reports for IIQ.
• Played a key role in design and testing of IBM Security IAM suite providing efficient user management
• Implementing IAM platform OIM, ILM, Saviynt (Implementation).
• Configured OKTA inbuilt multifactor authentication for additional security.
• Experience in Cyber-Ark Implementation and Installation on CyberArk 7.0 and latest Implementation on CyberArk 8.1.0. And CyberArk 9.6.
• Design SailPoint deployment and solution architectures.
• Very strong experience writing API's/ and Web Services in PHP and in Python.
• Create new API using Golang and Docker.
• Implemented ForgeRock OpenDJ for LDAP data store for internal user data.
• Design and Implementing for all identity life cycle management projects in complex networked environments.
• Designed and implemented a Thycotic Secret Server for 3,000 users which replaced KeePass and Password Safe
• Defined and implemented PAM best practices, Blueprint stages to mature & maintain highly secured environment.
• Worked with Saviynt Team to on-board new applications into Saviynt.
• Participate in all SailPoint deployment activities - connector configuration, custom rule development, workflow configuration and development, third party system integration.
• Hands - On experience in development/integration background in ForgeRock OpenAM.
• Hand on experiences in IAM platform OIM, ILM, Saviynt IGA (Implementation).
• On board the applications and provided seamless authentication and SSO using OKTA.
• Perform Installation and configuration of SailPoint Identity.
• Experienced in developing web-based applications using Python, Django, QT, C++, XML, CSS, JSON, HTML, DHTML, JavaScript and jQuery.
• Worked on Provisioning use case development building to meet compliance controls & IAM governance.
• Designed and implemented Enterprise Password Vaults including Thycotic Secret Server and Cyber-Ark Privileged Identity Manager (PIM) Suite.
• Responsible for end-to-end single-sign-on OKTA implementation for integrations using SAML & OAuth.
• Implementation of enterprise level integration of Saviynt with Oracle Apps.
• CyberArk Vault Maintenances. Building CyberArk safes and adding different applications/portfolios in the safes. Active Directory group/user authentication and maintenances. Authentication and Authorization of Privilege users working with CyberArk and Access Management.
• Handling Identity, Access and Privilege management (SailPoint IQ, Centrify, Thycotic) operation escalations.
• Tested custom configuration of SailPoint Identity and out of box Workflows as per the business needs
• Communicate the functions, capabilities, and processes of proposed enterprise IAM programs.
• Assisted in executing the implementation of IAM systems and upgrade to systems as needed.

Confidential

IAM Consultant

Responsibilities:

• Developed and customized workflows in the Sail point Identity IQ for Role Creation, Identity Events, Identity Refresh and Policy Violations.
• Experienced in using IAM/PAM tools for deployment, configuration and troubleshooting of CyberArk
• Gathering functional requirements and providing technical design for Saviynt integrations.
• Involved in building, testing, supporting and determining SailPoint Identity IQ Solution design.
• Daily monitoring of Saviynt Identity and Access operations requests from end users.
• Involved in building database Model & Views utilizing Python, in order to build an interactive web-based solution.
• Developed Rest Api to processes the data from DB to another Rest Service using Golang.
• Implemented data sync between Active Directory and LDAP using ForgeRock OpenIDM.
• Creates platforms according to FDIC security policy in order to manage all accounts in CyberArk
• Assist the Specialist with design and implementation of the Thycotic Secret Server PAM Product
• Hands on experience in IAM requirement, implementation of Access Gateways & SAML integrations.
• Work with Saviynt Team for ongoing production issues and resolutions.
• Integrated CyberArk with Okta Platform for SSO & MFA.
• Managing ForgeRock 13.5 OpenAM environment for Access Management with OpenDJ 3.5
• Developed and implemented processes and procedures for onboarding users and Privilege Accounts to CyberArk.
• Implement enterprise password management using Thycotic Secret Server
• Installation and Configuration of ForgeRock AM 6.5, DS, IG and IDM.
• Created User Controls and simple animations using Java Script and Python.
• Gathering functional requirements and providing technical design for Saviynt IGA integrations.
• Configured two level access workflows for Saviynt integrated applications.
• Experience in administrating OKTA and providing support to OKTA clients
• On boards new Active Directory, Unix, Oracle, SQL, and application accounts into CyberArk
• Hands on experience in SailPoint product upgradation (From 6.4 to 7.0).
• Daily monitoring of Saviynt Identity and Access operations requests from end users.
• Developed and supported IAM solutions to globally dispersed businesses and customers.
• Configured and Deployed SailPoint IIQ Connectors for various target systems.
• Gathering of functional requirements for migrating Oracle EBS and Vista Plus to Saviynt.
• Implemented and Customized Manage Access and Identity modules as per customer requirements.
• Expertise on making plans and execution of the design, implementation, integration, and support of IAM systems
• Installation, integration, and deployment of SailPoint Identity IQ in client environments.
• Frame set up for Role mining, Role Based Access Control (RBAC) and Identity Management.

Confidential

IAM Analyst

Responsibilities:

• Configuring User Authentication Stores and Policy Authorization Stores on LDAP.
• Installation and configuration of SailPoint IIQ as required by design solution.
• Migration of Oracle EBS and Vista Plus to Saviynt from OIM.
• Integrated Thycotic Secret Server Enterprise Password Vault with Incident request tracking system.
• Developing PowerShell Script files to automate office365.
• Developed multi-threaded standalone app in Python, PHP, C++ to view Circuit parameters and performance.
• Developed Golang Microservices and converted the user stories into backend logic in service classes.
• Experience in integration with OKTA and Worked on Multifactor Authentication Using OKTA
• Worked on migration of FLEX, MESA and AS400 applications from OIM to Saviynt.
• Administration experience of CyberArk vault with Safe creation, integration with LDAP.
• Involved in SOX compliance for User Access Review, Saviynt for User Access Reviews
• Experienced in administrating OKTA and providing support to OKTA
• Worked on integration of Oracle ERP and Active Directory with Saviynt.
• Developed entire frontend and backend modules using Python on Django Web Framework.
• Developed AWS Lambda and AWS S3 using Golang.
• Configured and administer Thycotic Secret Server Vault & Cyber-Ark PIM Suite/Enterprise
• Implementation & integration of PAM solutions (CyberArk, Password Auto Repository)
• Monitor CyberArk reports and respond to failed password verification alerts and Qradar SIEM.
• Analyzed Daily SailPoint access requests in order to ensure proper provisioning has been completed.