SUMMARY:

• I am a CyberArk Security Engineer with about 4 years experience; installing, managing and monitoring ofCyberArkprivileged account security tool modules. I have experience with setting up multi factor authentication like LDAP, RSA, RADIUS and has managed sessions in Privileged Session Management (PSM). I have extensive experience with Cyber - Ark's security products such as Enterprise Password Vault(EPV), Privileged Identity Management, Application Identity Management(AIM) including design and implementation of Disaster Recovery(DR) hot-site and development of the BCP plans using LDRPS and has experience in Cyber-Ark implementations and installations on CyberArk 8.1.0 and latest Implementation on CyberArk 9.2.1 and CyberArk 9.3 and Cyberark 9.5.2. I have good knowledge in IAM and experience in installation of various Operating systems such as Solaris, Red Hat (LINUX) and Windows and can come up to speed on new technologies quickly.
• I am living in San Francisco, But have no issues relocating to anywhere in United States, I am available immediately for a new project
• 1.4 years of Experience in the field of Information Security.
• Hands on experience with understanding of policies in Cyber Ark Components like CPM, PVWA, PSM and experienced in implementing and/or administrating Cyber-Ark(Password Vault).
• Integrate LDAP/S, Active Directory, Radius, SSO authentication methods using Cyberark.
• Good experience in Implementation and Installation onCyberArk7.0 and latest Implementation onCyber-Ark8.1.0.and Cyber-Ark 9.2.1 Privileged Identity Management (PIM) Suite.
• Performed Manage, Resume, Release Privileged Credential usingCyberArkPrivileged Management Vault Administration, configuration, troubleshooting and installation of Windows 2003, 2008, 2012 R2 and … .
• Day to day operational support in Active Directory such as creating security groups, creating users, assigning policies, maintaining password complexity rules. Commissioning and decommissioning computer objects, creating and maintaining service accounts.
• Efficiently Managed Active Directory implementations across multiple domains.
• Deployed and managed Windows 2008 R2 Domain Controllers in Active Directory.
• Successfully managed active directory objects, Users, Groups, Computers and Organizational Units.
• Configured Sync server to load live data from Directory servers to Data Base for audit purposes.
• Expertise in Exporting and importing data in Directory servers, initialize a broken instance in replicated mesh and restoring it to normal stage.
• On-boarding of Privilege Accounts toCyber-Ark, Configured Cyberark to MySQL, Oracle databases.
• Developed and implemented processes and procedures for on boarding users and Privilege Accounts toCyber-Ark.
• Identified and tested vulnerabilities and conducted research in the areas of information system and networksecurity.
• Proficient in SQL programming - Stored Procedures, Functions, Packages, SQL tuning, and creation of Oracle Objects - Tables, Views, Materialized Views, Triggers, Sequences, Synonyms, Database Links, and User Defined Data Types
• Managed networks performance, maintained laptops, servers, Active Directories, information security, network security, wireless security, firewalls, and backup systems.
• Troubleshooting LAN/WAN issues, establish and implement systems policies, procedures, standards, and ensure conformance with information systems objectives used malware analysis to develop IDS signatures (Snort), and create reports for specific threats.

TECHNICAL SKILLS:

Primary Skills: Cyber-Ark 9.5.2, Cyber-Ark 9.3, Incident management

Programming: PL/SQL, C, C#

Secondary Skills: SNOW, Active Directory

Operating System: Windows 2008/2005/2003/2000, Unix/Linux, Advanced Server

Other Software: VBScripts, HTML, XML, MSTS

Domain Knowledge: IdM, Implementation, Operation

Application Tools and Utilities: Pharos, ESS, PRT

PROFESSIONAL EXPERIENCE:

Confidential, Richfield.

CyberArk Security Engineer

Responsibilities:

• Worked on Cyber Ark Enterprise Password Vault and PVWA.
• Experienced in day to day operational support in adding and deleting accounts, applying policies, assigning safes, synchronizing failed accounts, Password rotations.
• Installed and configured Private Ark to Client to manage Vault server.
• Managing, monitoring and Supporting systems hardware, software, and applications.
• Resolved CyberArk issues in CPM communicate with host to reconcile credentials.
• Researching, recommending, and implementing new solutions in support of project and business requirements with focus on security and privacy.
• Used AIM to remove hard coded password from application and stored those credentials in Vault.
• Integrated Active Directory to the Vault Server to discover devices using bind account.
• Efficiently Managed Active Directory implementations across multiple domains.
• Worked on administering of User accounts, Group s, and Organizational Units using Active Directory.
• Coordinating efforts with vendors for upgrades and system maintenance.
• Managed failed accounts synchronization and password rotations.
• Confirming that all projects and infrastructure are properly documented.
• Cyber Ark integration with SIEM tool Arcsight.
• Managed sessions in Privileged session management (PSM).
• Generated reports of the account and devices inventories in the Cyber Ark.
• Performsystem, security, and application log and reports reviews following established procedures.
• Good understanding of policies in Cyber Ark Central Policy Manager (CPM) and (PSM).On boarding windows and Linux accounts.
• Fallback from DR vault server to production in case of production vault server failure.
• Analyzed output from network vulnerability assessments and recommend mitigation strategies. Reviewed and provided feedback on security plans and procedures regarding all aspects of LAN, WAN or MANs as applicable.

Confidential, Sacramento, CA

Cyber Ark Admin

Responsibilities:

• Good experience with PVWA Operational tasks which includes Creating Safes, Defining Access Control, Policies/Platforms, User provisioning and entitlements, Managing Applications Credentials, Auto upload and User Access Policy Management.
• Great knowledge in Master Policy.
• Experience with setting up multi factor authentication like LDAP, RSA, RADIUS.
• Experienced in day to day operational support in adding and deleting accounts, applying policies, assigning safes, synchronizing failed accounts, Password rotations.
• Locking and unlocking accounts based on the requirement. Involved in version upgrades from 7.x to 9.x. Managed Vault, CPM and PSM infrastructure servers.
• Upgrading Cyber Ark suite of products from 7.x to 9.x. (CPM, PSM, EPV, PVWA & AIM).
• Network Application scans usingCyberArkDNA and Beyond Trust Retina - Wireshark
• Supporting commercial clients across multiple markets, including financial services & healthcare in assessing current IAM capabilities, exploring the impact of new technologies and capabilities, developing strategies, deploying new IAM products, and integrating them with existing products to improve business operations, reduce security risks, and meet regulatory requirements.
• Good understanding of phases ArcSight ESM event life and describe the functional processing which occurs during each phase.
• Coordinated with Cyber Ark support teams for escalation and resolution of issues in Prod & DR and Configured Event notification engine (ENE) with Cyber Ark.
• Review and submit all official outage Reports to the outage owner's Director for root cause and mitigation.
• Installed and configured TIS Firewall Tool Kit (FWTK) on firewall.
• Configured Internet mail using send mail and DNS.
• Established new centralized log server and established a process to analyze the computersystem logs for intrusions, incidents, and out-of-band behavior.
• Implemented IDS and analysis using Security Onion on Internet-facing computing grid.
• Directs all change requests submitted by tier-2 support to be published globally and monitors the task's progress for impact to Operations.

Confidential, VA

Cyberark Engineer

Responsibilities:

• Responsible for Privileged Account Management withCyberArkPIM suite Administration with a good understanding of the underlying business processes.
• Creating safes and adding users and groups to them for privileged access inCyberArk
• Creation of policies and reports in PVWA.
• Installation and configuration of Cyber Ark Private ark client and Private ark server and CPM, PVWA, PSM, PSMP, DR.
• Good understanding of policies in Cyber Ark Central Policy Manager (CPM) and (PSM).
• Resolved Cyber Ark issue's in CPM to communicate with host to reconcile credentials.
• Prepared tickets about the issue and informed to the higher specialists.
• Alerting clients to suspicious activity or instances observed on their network, such as DDoS attempts, Cross-Site Scripting, or malware infections, then providing recommendations and solutions to handle them.
• Experienced in Implementation and Installation onCyberArk7.0 and latest Implementation onCyber-Ark8.1.0.
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• RetrievedCyber Arksystem and application password's and assist Database, Linux, and Core Application Support teams when passwords are needed.
• Good knowledge in Active Directory.

Confidential, CA

Cyberark Support Engineer

Responsibilities:

• On boarded different type of accounts.
• Good understanding of policies in Cyber Ark Central Policy Manager (CPM) and (PSM).
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• Created Safes and different type of policies as per the company requiremts.
• Provide the onsite support for the accounts onborded.
• Responsible for Privileged Account Management withCyberArkPIM suite Administration with a good understanding of the underlying business processes.

Confidential

Jr Security Engineer

Responsibilities:

• Conducted basic network administration tasks such as network connectivity troubleshooting, account management using Active Directory in a Windows OS environment
• Responsible for the assignment and configuration of IP addresses
• Troubleshot MS Email Exchange accounts
• Modifiedsecuritygroups and folder permissions
• Monitor clientsecuritysystems and IDS
• Develop scripts and other automated procedures for importing structured data from othersystems into databases
• Provides access rights and privileges as needed for all managed applications and ensures in compliance with management role based requirements.
• Responds to all requests related tosystemsaccess and user management issues on a timely basis.
• Conducted internal interviews with organization stakeholders in order to assess Security measures.
• Reviewed existing Performed Security control assessments of organization owned information systems for NIST compliance
• Organization policies and standards in order to identify organizational weaknesses.
• Provided remediation guidance to organization stakeholders for discovered compliance issues.
• Assisted in the development of System securityPlans and Security Awareness Reports.