SUMMARY

• Over 7 years of IT Industry experience in Identity Access Management, Confidential, SSO, MFA.
• Experience with IAM data model, new IAM frameworks such as SAML 2.0 (Security assertion markup language), tool, sets.
• Competence in Confidential Access Gateway implementation and Deployment.
• Expertise in API Access Management suite.
• Experience in providing access to data, systems, and other resources as per identity management policies.
• Installed, integrated, and deployed enterprise software in client environments.
• Expertise in designing MFA polices based on user location, groups to improve the security of organization.
• Responsible for synchronization of all Active Directory accounts and groups to utilize Confidential solution.
• Experience in implementation and providing Single Sign - On across enterprise application using Confidential, improving technical efficiencies in Identity & Access Management and Single-Sign-On space, involved in designing and implementation of end-to-end security solutions.
• Solid understanding and working knowledge of Identity & Access Management applications, including MS Active Directory and Confidential platforms.
• Expertise in generating rules and Sign on policies for applications based on requirements
• Customized workflows based on customer requirements.

• User Lifecycle Management
• Expert technical knowledge of Identity and Access Management, Single sign-on (SSO) - SAML2.0, OIDC, OAuth.
• OAG, API.
• Process improvement and Automation.
• Delegated Authentication - related to active directory.
• Multifactor authentication (MFA) - related to global policies and/or app sign-on policies.
• Directory Servers: Microsoft AD, Oracle Internet.
• Provisioning from Confidential to application for licensing, roles, etc.
• Must be able to prioritize, delegate and collaborate in the development of high-performance teams to lead/support an environment driven by customer service and teamwork.
• Excellent verbal and written communication skills able to speak directly and professionally even when challenged ability to work with multiple teams.
• Ability to think with a security mindset. The successful candidate has a strong IT background with in-depth Identity and Access Management knowledge.
• Possess good Identity and Access Management domain knowledge.

PROFESSIONAL EXPERIENCE

Confidential, Irving, TX

IDENTITY ACCESS MANAGEMENT ENGINEER

Responsibilities:

• Installed and configured Multi Factor Authentication MFA and SSO in Confidential application. Worked with Confidential API and Confidential Access Gateway (OAG).
• Worked on building custom approval servers to satisfy business prerequisites utilizing API Access Management.
• Worked on API access Gateway to modify and secure Confidential API Endpoints from Customer confronting applications.
• Characterized modified guidelines inside API Access Management dependent on the application asset level sign-on policies.
• Carried out Customer Life cycle the Management such as Registration, Forgot Password with the assistance of Confidential API's.
• Expertise in requirements gathering discussion with Workday app team and helped them utilize Confidential 's SSO feature for Workday.
• Involved in Production support for troubleshooting the application errors alongside Confidential API flows.
• Get-together the Use cases from application groups and planning Access management plan documentation for Application groups.
• Create Confidential API Token and use API Token to connect with Confidential API to create and modify users, applications and assign users to applications.
• Arranged Privileged Access Management and assembled workflows in Identity Automation.
• Worked as a key technical Engineer for Easy Access Confidential Implementation Project. Deployed and Implemented Confidential from initial phase which includes adding domains, importing users from various AD.
• Utilized API access gateway to get our Confidential Endpoints for client confronted applications and to secure the API rate control of Confidential endpoints.
• Application of API gateway to modify a portion of the client life cycle the management activities for clients.
• Operated API gateways to get the documents that are being transferred by clients to our Internal sites.
• Create Confidential API Token and use API Token to connect with Confidential API to create and modify users, applications and assign users to applications.
• Keep up with workflows that oversee the identity management lifecycle.
• Relocated interior workflows applications behind SiteMinder into Confidential on Co-Existence method's SAML, WS-Fed, OIDC and OAuth2.0
• Imported users from Active Directory (Source of Truth) to Confidential .
• Configured Access Request workflow for End Uses for different applications based on business requirements.
• Configured attribute level mastering for all attributes as per requirements.

Confidential, CA

IDENTITY ACCESS MANAGEMENT ENGINEER

Responsibilities:

• Worked directly with clients and business owners on reviewing the design and integration requirements for the IAM infrastructure, which includes provisioning and de-provisioning user accounts and the user lifecycle applications that store and organize information about the users and network shares of a computer network.
• Create, modify, and delete user account profiles for various systems, applications, and directories.
• Create and maintain onboarding and provisioning documentation.
• Streamlined and Automated the New Hire Onboarding and Off Boarding Process via Workday/ Confidential /AD along with Provisioning/Deprovisioning of SaaS base applications.
• Installed Confidential AD agents in Active Directory domains as part of AD domains integration with Confidential and imported all AD groups to Confidential to automate user group membership via Group Rules.
• Worked and helped with onboarding users and integrating their apps with SSO and Active Directory.
• Recommend and participate in developing, testing, implementation and support of all enhancements to the systems and services and technologies used by the IAM platform.
• Created policies, realms, rules, and responses to protect the applications and configure them to work under the SSO environment.
• Perform Delivery activities for the Identity and Access Management program, including but not limited to the in corporation of new and existing systems into the Bank's user access provisioning system, the performing of reviews to ensure separation of duties and the principle of least privilege, and the building of new items in the Confidential, Azure.
• Configured Delegated Authentication for Active Directory.
• Integrated Office 365 with Confidential using SAML SSO method.
• Integrated Custom internal applications using SAML.
• Provision Groups using Group Push to multiple directories and provisioning supported applications.
• Configured End-User dashboard as per requirements.
• Configured Group based Password policies and rules to protect End Users credentials.
• Created rules and Sign on policies for applications based on requirements.
• Imported all users and groups to Confidential from Active directory.
• Facilitate cross-team communication and the creation and maintenance of technical and departmental process documentation.
• Maintain workloads to meet SLAs and drive efficiency.
• Participate in the updating of Policies, Standards and Procedures.
• Participate in design discussion regarding new functionality and enhancements that will be maintained and monitored by IAM Operations.
• Design and implement new custom workflows for provisioning.
• Experience on Implementation of self service and password features.
• Participate in Waterfall and Agile implementations.

Confidential

IDENTITY ACCESS MANAGEMENT ANALYST

Responsibilities:

• Integrated Confidential with other identity providers to allow external users from other identity providers to access internal applications. Configured Delegated Authentication in Active Directory.
• Imported all users and groups to Confidential from Active directory.
• Configured SSO for internal applications using SWA, SAML methods.
• Troubleshoot SAML applications using SAML Tracer.
• Provisioned end user accounts to internal applications using Confidential .
• Customized attribute mapping using Expression Language as per requirements.
• Assigned Administrator Roles to multiple users based on requirements.
• Installed and configured Integrated Windows Authentication for Desktop SSO as a Proof of Concept.
• Configured multi-level Access Request Workflow for user accounts provisioning as per requirements.
• Configured Group based Password policies and Sign On policies based on requirements.
• Provide guidance on integrating the identity management authentication and authorization framework into new and existing applications.
• Works closely with application developers to maintain custom extensions of IAM environment.
• Manage incident and issue escalations.
• Perform daily system administration tasks such as installing new software and patching / upgrading existing software.