SUMMARY

• Hands on experience with understanding of policies in CyberArk Components like CPM, EPM, PPM, PVWA, and PSM and experienced in implementing and/or administrating Cyber - Ark (Password Vault).
• Experience in Cyber-Ark Implementation and Installation on CyberArk 7.x and latest Implementation on Cyber-Ark 9.x.
• Experience in implementing, managing vault logs and monitoring of CyberArk privileged account security tool modules.
• Configurations including AD integration and Management of CyberArk Enterprise Password vault.
• Managed Safes ad Server/ host addresses in EPV.
• Greenfield implementation experience on CyberArk.
• Administration experience of CyberArk vault with Safe creation, integration with LDAP and other authentication methods.
• Experienced in performing Privileged Access Reviews, Compliance Reporting, Access Control Processes, and other associated tasks with Privileged User Management.
• Extensive experience in implementation and deployment of Privileged Account Security solution for Windows, UNIX, Database servers, Security, Networks and Websites.
• Experienced in developing information security standards, and procedures. Prepare incident report plans, implement, monitor security awareness programs, train, and write security policies for organization of different types.
• Installation and capacity management of CyberArk Privilege Session Manager (PSM) including RDS Session host and licensing.
• Configurations including AD integration and Management of Cyber Ark Enterprise Password vault.
• On-boarding of Privilege Accounts to CyberArk, Configured Cyber-ark to MySQL, Oracle databases.
• Hands on experience in Shell Scripting Commands, PowerShell, SQL.
• Knowledge of CPM/PPM/EPV/PSM&PSM Recorder for RDP connections and session recording of activity logs in the PVWA, such as SIEM.
• Excellent working knowledge in configuring multiple WebLogic domains including machines, manage servers and cluster environments.
• Knowledge of cloud security and or perimeter security issues.

PROFESSIONAL EXPERIENCE

Confidential, Dallas, TX

CyberArk SME

Responsibilities:

• Experienced in day to day operational support in adding and deleting accounts, applying policies, assigning safes, synchronizing failed accounts, Password rotations. Managing, monitoring and Supporting systems hardware, software, and applications.
• Resolved CyberArk issues in CPM communicate with host to reconcile credentials
• Experience in Implementation, installation and maintenance of CyberArk and in implementing application account management by CyberArk on Windows, Data bases and Linux servers using AIM module.
• Researching, recommending, and implementing new solutions in support of project and business requirements with focus on security and privacy.
• Used Oracle LDAP platform in tandem with standard Oracle SQL to manage high volume backup/purge operations.
• Used AIM to remove hard coded password from application and stored those credentials in Vault.
• Integrated Active Directory to the Vault Server to discover devices using bind account.
• Efficiently Managed Active Directory implementations across multiple domains.
• Worked on administering of User accounts, Group s, and Organizational Units using Active Directory.
• Worked on Application Identity manager to securely facilitate access to privileged passwords in applications or configuration files.
• Performed threat Management and Remediation using security tools and on multiple security appliance platforms such as Splunk, CyberArk andCyberArkEndpoint Privilege manager (EPM) worked with stakeholders and internal IT groups to remediate security findings.
• Deployed and maintaining CyberArk Components: Central policy manager (CPM), Application identity management.
• Coordinated LDAP combination with AD and system security group to open firewall ports.
• Designed and deployed Auto-Detection for windows machines for different applications.
• Configured and maintaining Vault backups on periodic basis.

Confidential, Ashburn, VA

PAM Engineer

Responsibilities:

• Architectural designing of CyberArk 9.0 solution to cover almost all privileged accounts.
• Involved in information gathering and understanding existing system of the organization and creating solution blueprint for solution and creating approach to onboard privileged entities.
• Generating Inactive users report from Stealth Audit for further auditing and maintaining the data for Active Directory.
• Experience in CyberArk Privileged Account Security product suite - Enterprise, Password Vault, Password Vault Web Access, Central Policy Manager, Privileged.
• Manage the day to day operations of CyberArk solutions including adding and deleting accts.
• Managing policies and platforms.
• Creating and assigning Safes, reconciling accounts, rotating passwords.
• Create AD users and groups for safe delegation and updates.
• Conduct workshops with application and infrastructure teams about on-boarding privileged accounts.
• Assist application teams with CyberArk application Identity Manager integrations and linked accounts.
• On-board privileged accounts and application ids with CyberArk upload utility or PVWA
• Ensure ongoing CyberArk system Maintenance is scheduled and completed on time.
• Creating a new application on board is documented and implemented.
• Works with Unix / Directory Support and Network team
• Perform application and Job designs with the existing and current requirements.
• Design build and support processes on Windows Servers and Cyber Ark Security Platform. Providing support to Server owners on the security Servers.
• Coordinate with CyberArk support teams for escalation and resolution issues
• Ensure that all Identity and access management services are secure, available, efficient and meet defined corporate services levels
• Co-ordination with the offshore support teams to address technical or business requirements related queries.
• Involved in both Sever System analyze and Security support on CyberArk as well as Support on Security on Windows servers.
• Monitoring logs, analyzing logs and Troubleshooting issues with the server and the environment.
• Documenting the patterns for new configurations.

Confidential, Houston, TX

CyberArk Admin

Responsibilities:

• Design build and support processes on Windows Servers and Cyber Ark Security Platform.
• Providing support to Server owners on the security Servers.
• Coordinate with CyberArk support teams for escalation and resolution issues. Installation and configuration ofCyberArkVault, Password Vault Web Access (PVWA), Central Password Manager (CPM) and Privileged Session Manager (PSM) in Prod and DR.
• Troubleshooting and maintenance of the Password Vault, Central Password Manager (CPM), Privileged Session Manager (PSM), Application Identity Manager (AIM), DR Vault in DR Server.
• Deployed SQL queries on Oracle and MySQL to access database.
• Configurations including AD integration and Management of Cyber Ark Enterprise Password vault.
• Managed Safes ad Server/ host addresses in EPV. Resolved issues with CyberArk's CPM to communicate with hosts to reconcile credentials.
• Administration experience of Cyber Ark vault with Safe creation, integration with LDAP and other authentication methods.
• Installed, managed and troubleshot DNS in multiple zone environments. Troubleshot DNS integration with Active Directory. Installed, configured and administered WINS, DHCP, IIS and WSFTP, File and Print servers.
• Patching & Monitoring Vault, Central Password Manager, Two-factor authentication, Privileged Session Manager, Password Vault Web Access servers and services.
• Installed, managed and troubleshot DNS in multiple zone environments. Troubleshot DNS integration with Active Directory. Installed, configured and administered WINS, DHCP, IIS and WSFTP, File and Print servers.
• Identifies, diagnoses, and resolves problems for users of the personal computer or laptop software and hardware.
• Performed daily backup operations, ensuring all required file systems and system data are successfully backed up to the appropriate media, recovery tapes or disks are created, and media is recycled and sent off site as necessary.
• Created and performed backup of policies and Rules in Firewall.
• Provides one-on-one end-user problem resolution over the phone.

Confidential, Los Angeles, CA

Linux Administrator

Responsibilities:

• Installation, Maintenance, Administration and troubleshooting of Red Hat Enterprise Linux 5/6/7 and Windows R2 08/12 systems along with VMware virtual machines.
• Racking and cabling datacenter Confidential and Dell servers, mainly C7000.
• Worked on puppet manifests and python scripts to engineer the server platform.
• Worked on server migrations from private cloud to public cloud offered by AWS EC2, S3 and VMware vCloud Air.
• Build and supported AWS and VMware based cloud infrastructure.
• Deployed servers using Puppet and wrote puppet manifests for automating build and patching process.
• Performed automated installations of Operating System using kickstart for Red Hat Enterprise Linux 5/6/7 and Jumpstart for Linux.
• As a Red Hat administrator primary responsibility includes building of new servers which includes rack mounting, installation of OS, configuring of various OS-native and third-party tools, securing of OS, installing & configuring, job scheduling.
• Remote monitoring and management of server hardware.
• Involved in Server sizing and identifying, recommending optimal server hardware based on User requirements.
• Installed Red Hat Enterprise Linux 5/6 and CentOS servers and Blades over the network.
• Extensive use of Bash shell for scripting.
• Expertise in Linux backup/restore with tar including disk partitioning and formatting.
• Involved in development, user acceptance, and performance testing, production & disaster recovery server.
• Set up user and group login ID's, printing parameters, network configuration, password, resolving permissions issues, user and group quota.
• Creating and maintaining user accounts, profiles, security, rights, disk space and process monitoring.