SUMMARY

• 11+ years of extensive IT experience in Identity and Access management. Used various security applications in implementation, maintenance, and production support in the Finance, Healthcare, and Supply chain domain.
• Proficient on user on - boarding/off-boarding, access provisioning using various applications using AD/ Mainframe/ Okta/ Data Dog/ Jira/ Tableau/ Apex/ AWS/ Optimizely/ PAS/Pentaho/ Horison/ Qtest/ iQuote and DM Billing
• Experienced in resolving Incidents/Tickets using various ticketing solutions like Service Now, Footprints, BMC Remedy.
• Create user accounts on PCI/DMZ servers and troubleshoot the user access issues.
• Create and manage user accounts/service accounts, mailboxes, Security/Okta groups, distribution lists in AD /Identity IQ/ Okta.
• Used the power shell scripts for batch access add/remove, approver changes, Error debugging, Drive mappings, Mailbox creation, User transfer, Server Dcom, RDP, Cyber ark account, etc
• Provided Tier 3 support of Single Sign-On and MFA tools, while acting as an escalation point for the operations team and support issues
• Expertise in log analysis through Splunk, CA Identity Manager, Enterprise Access Recertification & IBM Lotus Notes for any performance and vulnerability issues.
• Develop VB scripts for operational maintenance tasks in the Role mining team to create auto role templates using the unformatted data.
• Role mine the security for various applications like Catalyst/Guidewire, SAP, Apex, Unix, Top-secret, ACF, RACF, etc in all divisions and prepare the Role metadata for RBAC systems in IDM.
• Responsible for performing an initial assessment of Roles, requirement gathering for the group policies, impact analysis, discussing technical solution design, developing Proof of concepts using various scripting languages.
• Prepare detailed workflow charts and diagrams that describe the workflow of Role mining operations
• Proficient in writing an SQL query and query amendment.
• Responsible for creating SOW for all the recertification campaign initiation and getting approval from application owners before the recertification initiation.
• Has used Enterprise Access Recertification and Lotus web client for Test, Dev, and stage environments to add /remove campaign groups for the system/users.
• Proficient in performance analysis and optimization, monitoring, problem resolution, upgrade planning and execution, and process creation and documentation
• Assisted in implementing, and maintaining policies, procedures, and training plans for IAM services and their appropriate use
• Worked on Business Intelligence tool SAP Business objects for Planning, Analyzing, and Reporting on Business performance to management.
• Expertise in creating RPA automated workflows for repetitive tasks using Power Automate.
• Expertise in formatting and data validation to ensure the requirement fulfills the SOW for data uploads.
• Audit the accounts for privileged access and validate using data pass through and data accuracy for SOX Security Audits.
• Knowledgeable of trends and advancements in information systems and information technology to assess the feasibility of implementing new services, systems, and technologies
• Strong communication, interpersonal, technical, analytical, problem-solving, risks & issues management, and Leadership skills, with an ability to work in a team and perform multiple tasks

TECHNICAL SKILLS:

Operating System: Windows 10, 7/XP/2000

Certifications: CompTIA Security+, AWS Certified Cloud Practitioner, ISTQB, ITIL V3, PL/SQL, Oracle, ICDL, VBA, MS Office

Special Software: Sail point IIQ, Okta, Putty, Active Directory, LDAP, LDS, SQL developer, IBM Lotus Notes, SharePoint, HRSD, ServiceNow, Ent Access Recertification, Remedy, Footprints, Microsoft Team Foundation Servers, PowerShell, CyberArk, Mainframe

PROFESSIONAL EXPERIENCE:

Confidential

IAM Security Specialist

Responsibilities:

• Create/ Modify and Administer active directory security groups in Corporate, Corp test, and Agency domains.
• Worked on Servicenow/Footprints tickets/incidents for enterprise user accounts issues based on priority and severity.
• Make sure all the access administrations are performed after procuring the needed manager/resource owner approvals to ensure safety and compliance.
• Managing permission and access availability of various applications like Tableau, Apex, Guidewire, Policy center, Claim center, AWS, Optimizely, PAS, Pentaho, Horison, Qtest, iQuote, DM Billing, etc based on the requirement.
• Manage user access to security groups, distribution list, mailbox via Powershell scripts.
• Ensure an employee receives only the access they need when onboarding. Remove/provide access when there is a job change. Terminate all the access on time when the employee leaves.
• Resolving user issues Error debugging, Drive mappings, User transfer, Server Dcom, Remote Desktop Protocol, Cyber ark, PCI/DMZ, Okta groups, Agency Rightfax accounts, etc
• Perform the needed follow-ups to get the required approvals to resolve the issues and update the customer periodically about the job progress to satisfy the SLA.
• User creation verification is performed on endpoints like DB2, Oracle user master tables through WinSQL.
• Assigning login scripts, managing user accounts creation/ deletion for new/transfer users.
• Use Cyberark for controlling access to privileged account passwords used for accessing systems.
• Remediate Single Sign-On, MFA, Okta issues by acting as an escalation point for the operations team and support issues.
• Categorize the incidents based on criticality to determine your highest priority and resolve them for uninterrupted service.
• Role-based access provides the new / transfer user with all the needed preapproved access to eliminate unnecessary wait time and audit compliance.
• Performing Role mining based on the user role, job codes, dept and validating them using various industry-standard methods to create Role templates. It will be used for future role automation projects.
• GroupID administration with creation and scheduling of Dynamic/Smart Groups and Dynasty DL’s and regular Distribution lists
• Managing group policy object, Active Directory structure, and domains through GroupID servers.
• Collaborating with role owners in going through designs, requirements, analyzing implementation challenges, and determining technical feasibility.
• Attend daily scrum meetings organized by the Audit team to discuss the ongoing items, stragglers, and future items.
• Work in Application Audits to evaluate them periodically to ensure they are TEMPeffective and working and used as intended.
• Audit reviews/findings are documented and approved and uploaded to SharePoint sites for Audit compliance.
• Creating the privileged user accounts for service, check-out, test for use in DC environments and servers.
• Interacting extensively with the business and engineering teams in solving business queries and issues for the root cause analysis

Confidential, Illinois

Security Access Specialist

Responsibilities:

• Bugfix the VBA interface to create, modify, terminate users' accounts in Active Directory
• Design a Log file system to record user activity on Active Directory accounts and groups in 3 different domain/locations
• Create service accounts and security groups in AD and set permissions based on the requirement.
• Manage drive mappings, mailboxes, folder permissions, Distribution list, and security groups using Powershell scripts.
• Perform OU locations change of a Workstation/Desktop/User and add group policy based on approvals.
• Enable restrictions on user and workstation accounts using Group Policy Management.
• Handle VB script to fix the user's existing internal communicator access provisioning issues.
• Worked on account Reset/Unlock, Enable/Disable user accounts in Active Directory
• Design a system that records approving manager changes of a security group through EIDM/AD
• Monitor crash logs/ system anomalies using Splunk tools.
• Done feasibility study on Identity IQ for user account modifications, creating and Tracking requests.
• Handle ITSM/ServiceNow incidents based on priority/SLA TEMPeffectively to ensure no system breakages.
• Maintaining Application Recertification campaigns systems to ensure access integrity.
• Work on ETL Application for data formatting using various techniques to satisfy bulk data upload requirements.
• Perform weekly status reviews during the application development process to identify discrepancies and initiate amendments with the management.
• Managing the Bulk access approvals recertification system EAR to ensure no breakages in access retention.
• Coordinate upgrades and certification system and performed UAT testing to ensure the changes reflect in the production environment.
• TEMPEffectively use performance tuning on GAA Recertification Database Tool to identify Memory leaks and optimize code accordingly to memory management principles.
• Demonstrate data integrity to auditors/regulators in compliance with industry regulatory standards.
• Created lots of process improvement macros using VBA for the recertification team to ensure there is no discrepancy in the process, efficiency, and process improvements.
• The first point of escalation on any operational breakdown
• Presenting operational metrics to the management regularly

Confidential

Tech Lead

Responsibilities:

• Managing an offshore team of 7 members handling the Access management tasks as outlined below.
• Primary responsibility for application data access management for getting customer role-based requirements updated in the platform.
• Analyze functional and business requirements to developed technical requirement specifications with process flow, error handling, assumptions, constraints, and risks.
• Performance tuning in queries and jobs. Initiated continuous improvements KAIZEN approach to sustaining and improving the process deliverables.
• Running the sync query to identify the ROB fulfillments and remediating them through the scheduled jobs.
• Developed SQL scripts for batch loading data according to the requirement.
• Interacting extensively with the business and vendors support teams in solving business queries and issues occurring on the platform
• Responsible for extracting the weekly report based on top categories of issues and trending it and presenting it to clients.
• Developed and Implemented the VBA macro for Kuehne + Nagel reference file format to reduce the processing time and get rid of manual errors.
• Worked on very tight deadlines in a fast-paced environment for the completion of the Project.
• Review of team’s performance and evaluation based on the quarterly performance metrics.
• Revenue generation and KPI performance metrics to propose and estimate the future process requirement and project resource mapping
• Reporting, Auditing, conducting KT sessions, document creation, and uploading in SharePoint coordinating the onshore-offshore meetings
• Generating reports for weekly, bi-weekly, monthly, and quarterly meetings for the client and upper management