SUMMARY:

• I am a Security Engineer with total 6 years of IT experience and about 4 years of experience in installing, managing and monitoring of CyberArk privileged account security tool modules.
• I have experience with setting up multi factor authentication like LDAP, RSA, RADIUS and has managed sessions in Privileged Session Management (PSM).
• I have extensive experience with CyberArk's security products such as Enterprise Password Vault(EPV), Privileged Identity Management, Application Identity Management(AIM) including design and implementation of Disaster Recovery(DR) hot - site and development of the BCP plans using LDRPS and has experience in Cyber-Ark implementations and installations on CyberArk 8.1.0 and latest Implementation on CyberArk 9.2.1 and CyberArk 9.3 and CyberArk 9.5.2 and 9.7.2 and 10.4.
• I have good knowledge in IAM and experience in installation of various Operating systems such as Solaris, Red Hat (LINUX) and Windows and can come up to speed on new technologies quickly.
• Information Technology and Security professional in architecting and deploying Identity Management, LDAP Directories, Single/ Reduced Sign-On (SSO).
• Design and Implementation experience with SailPoint IIQ 5.x,6.x,7.x and knowledge on Identity now
• Experience in implementing Provisioning and De-Provisioning (or) Identity Workflows, Access Management, RBAC (Role-Based Access Control ), Compliance and Auditing Technologies, Federate d Identity/Federation, Enterprise System Architecture, Security Infrastructure Design, Authentication and Authorization technologies, as well as custom-built security and technology frameworks.
• Experience in ITIL Service Operation Functions and Process for Incident management, Access management, Change management, Problem Management and Service Desk Functions.
• Currently I am working in Pittsburgh but have no issues relocating to anywhere in United States, I am available immediately for a new project
• 4 years of Experience in the field of Information Security.
• Hands on experience with understanding of policies in Cyber Ark Components like CPM, PVWA, PSM and experienced in implementing and/or administrating CyberArk (Enterprise Password Vault).
• Integrate LDAP/S, Active Directory, Radius, SSO authentication methods using Cyberark.
• Good experience in Implementation and Installation on Cyber Ark 9.3 and latest Implementation on Cyber-Ark 9.7.2.and CyberArk 10.4 Privileged Identity Management (PIM) Suite.
• Performed Manage, Resume, Release Privileged Credential using CyberArk Privileged Management Vault Administration, configuration, troubleshooting and installation of Windows 2008, 2012 and 2016 R2 and … .
• SAILPOINT IAM Engineer complete software development life cycle process which includes Analysis, Design, Development, Testing and Implementation.
• Experienced in Identity and Access Management tool - SailPoint Identity IQ Access Governance, in Configuring Connectors, Role Management, Life Cycle Manager Provisioning and Access Certifications, Report generation, Integration with end/target systems and SailPoint Identity IQ APIs, REST APIs, Custom Connector, Patch up gradation.
• Exporting Metadata, creating Adapters, Service Provider connections, Identity Provider connections, replicating configuration archive, importing and exporting SSL certificates using Ping Federate, Configured Ping Gateway to Authenticate the users and API’s through Ping Access and Ping Federate.
• Expert in Analysis skills with an ability to transform the needs of the business users into functional & technical requirements. Experience working in all phases of Software Development Life Cycle (SDLC)
• Experienced in UML modeling (Process Mapping, Sequence diagrams, Activity diagrams, entity relationship diagram (ERD), data flow diagram (DFD)) using tools such as Microsoft Visio and Rational, Configuration of Roles, Policies and Certifications for governance compliance and configure business processes to manage ongoing changes.
• Design and Implementation experience with SAILPOINTIIQ6.x, 7.x .
• Proficient in SQL programming - Stored Procedures, Functions, Packages, SQL tuning, and creation of Oracle Objects - Tables, Views, Materialized Views, Triggers, Sequences, Synonyms, Database Links, and User Defined Data Types.
• Managed networks performance, maintained laptops, servers, Active Directories, information security, network security, wireless security, firewalls, and backup systems.

TECHNICAL SKILLS:

Identity and Access Management: SAILPOINT IIQ5.5, 6.x, 7.x. CyberArk 10.4 and 9.7.2 and CyberArk 9.3, Incident managementDirectory Server LDAP, Microsoft AD.

ITIL Functions and Process: Incident, Change, Problem and Service Desk.

Operating systems: Ubuntu Linux, Red Hat Linux, Oracle Enterprise Linux and Windows 2000, XP, 7 and 8. Languages/Technologies Java, J2EE - JSP, JDBC, JavaScript, SOAP, REST Web Services.

Web technologies: XML, HTML, XHTML, SOAP, CSS, Ruby.

Design & Modeling: UML, Microsoft Visio

Databases: Oracle, SQL Server, PLSQL, MYSQL

Application/Web servers: Tomcat, IBM WebSphere, Oracle WebLogic

Other Utilities IDE: (Eclipse, Visual Studio 2012), Sublime Text.

PROFESSIONAL EXPERIENCE:

Confidential, Pittsburgh, CA

Sr. Security Engineer

Responsibilities:

• Involved in the development of Solution Design Overview document and technical document. Built Joiner, Mover and Leaver workflows to maintain user accounts.
• Involved in upgrade of SailPoint 6.1 to SailPoint IIQ 6.3
• Rewriting the workflows to encompass the new way of provisioning. Restructured the entire product to reflect direct provisioning across many applications. In the process of upgrading the IdentityIQ product from 6.1 to 6.3.
• Actively involved in the implementation of SailPoint Identity IQ.
• Designed and deployed Identity & Access Management solution to improve user experience, meet compliance, and reduce costs.
• Design complex exclusion rules, correlation and data loading tasks in Identity IQ.
• Created and Implemented static/dynamic roles. Configured entitlements and policies.
• Analysis of the specifications provided by the client and help Project Manager to estimate the effort required.
• Managed client requirements and configured SailPoint IIQ connectors.
• Configuring the Applications (Authoritative and Non-Authoritative) using AD, Flat file, JDBC and LDAP connectors to load the Identity Cubes.
• Deployed several out-of-box SailPoint connectors to connect various client Systems (JDBC, LDAP, AD etc.)
• Participated in and/or User Acceptance Testing and bug-related reengineering efforts.
• Designed and implemented solutions which manage the Identity lifecycle of almost all applications with the enterprise, without directly controlling the Identity store within the application.
• Designed, implemented, and educated on SailPoint build processes, code migration, and source control use. Documented the IT security and identity management environment to include processes.

Confidential, Sacramento

Security Engineer

Responsibilities:

• Developed and supported IAM solutions to globally dispersed businesses and customers.
• Implemented and Customized Manage Access and Identity modules as per customer requirements
• Installation, integration and deployment of SailPoint Identity IQ in client environments
• Develop and customize workflows in the Sail Point Identity IQ for Role Creation, Identity Events, Identity Refresh and Policy Violations.
• Worked on different out of the box and custom connectors like Active Directory, UNIX, Delimited, JDBC, RACF, LDAP, etc.
• Responsible to manage Administration functionality for SailPoint applications such as loading data, create roles, create policies, scheduling tasks and run reports for certification campaigns.
• Worked on various Certifications, developed custom tasks and reports
• Developed Custom java to fetch custom Tasks in IIQ.
• Configuration of Roles, Policies and Certifications for governance compliance and configure business processes to manage ongoing changes.
• Worked on Standard Quicklinks, Lifecycle Manager Quicklinks and built and configured custom Alerting clients to suspicious activity or instances observed on their network, such as DDoS attempts, Cross-Site Scripting, or malware infections, then providing recommendations and solutions to handle them.
• Performed manage, resume, release privileged credential using CyberArk privileged management vault administration.
• Experienced in Implementation and Installation on Cyber Ark 8.x and latest Implementation on CyberArk 9.2..1.
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• Retrieved Cyber Ark system and application password's and assist Database, Linux, and Core Application Support teams when passwords are needed.
• Good knowledge in Active Directory.

Confidential, CA

Jr CyberArk engineer

Responsibilities:

• On boarded different type of accounts.
• Good understanding of policies in Cyber Ark Central Policy Manager (CPM) and (PSM).
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• Created Safes and different type of policies as per the company requirements.
• Provide the onsite support for the accounts on-boarded.
• Responsible for Privileged Account Management with CyberArk PIM suite Administration with a good understanding of the underlying business processes.
• Develop Application - Active Directory - CyberArk - Active Roll Server - Implementation plan
• Worked on onboarding SQL servers.
• Coordinated with Cyber Ark support teams for escalation and resolution of issues in Prod & DR and Configured Event notification engine (ENE) with Cyber Ark.
• Review and submit all official outage Reports to the outage owner's Director for root cause and mitigation.
• Installed and configured TIS Firewall Tool Kit (FWTK) on firewall
• Configured Internet mail using send mail and DNS

Confidential

Jr Security Engineer

Responsibilities:

• Conducted basic network administration tasks such as network connectivity troubleshooting, account management using Active Directory in a Windows OS environment
• Responsible for the assignment and configuration of IP addresses
• Troubleshot MS Email Exchange accounts
• Modified security groups and folder permissions
• Monitor client security systems and IDS
• Develop scripts and other automated procedures for importing structured data from other systems into databases
• Provides access rights and privileges as needed for all managed applications and ensures in compliance with management role based requirements.
• Responds to all requests related to systems access and user management issues on a timely basis.
• Conducted internal interviews with organization stakeholders in order to assess Security measures.
• Reviewed existing Performed Security control assessments of organization owned information systems for NIST compliance
• Organization policies and standards in order to identify organizational weaknesses.
• Provided remediation guidance to organization stakeholders for discovered compliance issues.
• Assisted in the development of System Security Plans and Security Awareness Reports.