SUMMARY

• Around 7 years of Professional Experience which includes Technical Support and IT helpdesk, Access Management and CyberArk EPV Operations
• 4+ Years in CyberArk EPV Management. (EPV, CPM, PVWA, PSM, PSMP, AIM)
• Expertise in development of Policies, Processes and Workflows according to business needs.
• Exposure to CyberArk privileged Identity Management (PIM), Oracle Identity & Access Management and Microsoft Windows Active Directory.
• Building CyberArk safes and adding different applications ids/service accounts in the safes.
• Active Directory group/user authentication and maintenances.
• Authentication and Authorization of Privileged user working with CyberArk and Access Management.
• Decommissioning servers as need be or as requested by server Engineers.
• Perform Vault setup in Cluster configuration for Version 9.8.
• Perform component installation (CPM, PSM and PVWA).
• Configure Load Balanced setup for PSM and PVWA.
• Perform DNA Scan, as per client requirements to get an idea of Privileged accounts present in environment.
• Create Test Approach and Pilot Rollout documents. Workshop these documents and get it reviewed as well as approved by Client.
• Design Account Migration Approach, as well as define new access management protocol for Client environment.
• Create Safe Design and Dual Control procedures.
• Configuring Master Policy.
• Experience with LDAP and Radius Integration with CyberArk.
• Integrate IDs across various OS platforms into CyberArk.
• Manage operations of CyberArk components, and perform maintenance of the same.
• Fine tuning existing CPM and PVWA policies depending on changing environment.
• Provide L3 support during severity issues.
• Administered the replicated environments and deployed to new replication sites.
• Involved in the Year 200 projects to assure the applications are Y2K compliant.
• Participated in the database upgrade from Oracle 7 to Oracle 8, and provided support for Oracle upgrade, application installation and operation, and database implementation at the Post.
• Installed Oracle software and implemented database and applications on the server. Responsible for monitoring and troubleshooting the database environment.
• Analyse the database performance and performed database performance tuning.
• Document database procedures and responsible for organizing and instructing trainings for installer to perform upgrade oracle database and application from Oracle 7 to 8.

TECHNICAL SKILLS

• CyberArk EPV Operations
• Administration of Functional Accounts and Groups in CyberArk
• User Management in Active Directory (Account unlocking, password resets}
• Active Directory
• Incident Management
• HP Service Manager (HPSM)
• ITSM
• Request Fulfilment.
• Administration of user accounts and groups on AD.
• User ID creations and management
• Troubleshooting on all the latest Windows OS and System Hardware
• Capable of handling the deliverables of a Team.
• Implementation of Process within the Team.
• Sharing knowledge amongst the Team Members thus increasing the Overall Productivity.
• Sharing best Practices.

PROFESSIONAL EXPERIENCE

Confidential

Cyberark vault admin

Responsibilities:

• Part of Privileged Access Management team whose role is to secure Web Based Applications on user access and authorization.
• Experience in integration and implementation of Cyber - Ark Suite components such as Enterprise Password Vault, Password Vault Web Access, Central Policy Manager, Privileged Session Manager.
• Securing and maintain privileged accounts into EPV (CyberArk Enterprise password vault).
• Experience with Application Identity Manager for Windows, Unix, WebSphere, Tomcat server, etc. Integrated multiple applications such as Service Now, Stealth Audit Services, Ab Initio, Ansible, etc.
• Worked on storing the master encryption key (MEK) in a Hardware Security Module (HSM), so it is not sitting on local disk.
• Deployed PVWA, CPM and Vault on AWS cloud infrastructure.
• Perform Bulk updates of accounts using password upload utility.
• Generating Entitlement report, privileged Accounts Inventory Report, Application Inventory reports, Activity Logs in order to assist Audit and Compliance team.
• Monitoring and tracking incidents to ensure resolution occurs within the customer Service Level Agreement.
• Hands on experience with onboarding of different types of accounts like windows, Linux, Unix, database, network devices.
• Creating the safes before on boarding the accounts into EPV based on Line of Business
• Worked on object level access control for password object permissions.
• SMTP server IPs integration in PVWA to trigger email notifications.
• Setting up multi-factor authentication like SAML, RSA, LDAP, and RADIUS.
• Expertise on Dual control for safe access approvals.
• Performing clean up activity for stale server and accounts.
• Perform DR (disaster recovery) exercise by failing over from primary server to DR server.
• Automate basic operational activities through PACLI, PUU and CyberArk REST API web services.
• Administration of user accounts & safes in cyber ark.
• Remediate of non-compliant privileged account
• Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.

Confidential

Cyberark consultant

Responsibilities:

• Installation of Vault, CPM, PVWA and PSM servers.
• Troubleshooting of server related issue for Vault and PVWA.
• Onboarding accounts in EPV for various platform (Windows, UNIX, and Database).
• Maintaining the SLA for incident and requests (EURC).
• Handling 70000 + accounts in EPV.
• Resetting the accounts manually in EPV and on platform if the CPM or reconcile fails.
• Involved in troubleshooting issue work requests on day-to-day basis for the applications integrated with CyberArk in QA and Production Environment.
• Automating the accounts for Windows and UNIX.
• Performing resets for MAS accounts using RPM.
• Adding accounts in SSO group.
• Onboarding bulk accounts using Bulk upload utility.
• Providing daily customer support in order to ensure customer satisfaction.
• Change Management Support - ITSM Approval and/Implementation.
• Updating Knowledge Objects to reduce Incident Tickets.
• Supported Global Certification Cycle for Shared Folder Access.
• Maintaining all associated queues (i.e. Service Manager, Central Mailbox) and resolving the requests within SLA.
• Working on various tools & Power-shell scripts for maintaining Active Directory & generating reports as per the Business requirement.
• Handling Access management on CyberArk platform.
• Onboarding AIM accounts and assisting with the integration.