We provide IT Staff Augmentation Services!

Cyberark Vault Admin Resume

SUMMARY

  • Around 7 years of Professional Experience which includes Technical Support and IT helpdesk, Access Management and CyberArk EPV Operations
  • 4+ Years in CyberArk EPV Management. (EPV, CPM, PVWA, PSM, PSMP, AIM)
  • Expertise in development of Policies, Processes and Workflows according to business needs.
  • Exposure to CyberArk privileged Identity Management (PIM), Oracle Identity & Access Management and Microsoft Windows Active Directory.
  • Building CyberArk safes and adding different applications ids/service accounts in the safes.
  • Active Directory group/user authentication and maintenances.
  • Authentication and Authorization of Privileged user working with CyberArk and Access Management.
  • Decommissioning servers as need be or as requested by server Engineers.
  • Perform Vault setup in Cluster configuration for Version 9.8.
  • Perform component installation (CPM, PSM and PVWA).
  • Configure Load Balanced setup for PSM and PVWA.
  • Perform DNA Scan, as per client requirements to get an idea of Privileged accounts present in environment.
  • Create Test Approach and Pilot Rollout documents. Workshop these documents and get it reviewed as well as approved by Client.
  • Design Account Migration Approach, as well as define new access management protocol for Client environment.
  • Create Safe Design and Dual Control procedures.
  • Configuring Master Policy.
  • Experience with LDAP and Radius Integration with CyberArk.
  • Integrate IDs across various OS platforms into CyberArk.
  • Manage operations of CyberArk components, and perform maintenance of the same.
  • Fine tuning existing CPM and PVWA policies depending on changing environment.
  • Provide L3 support during severity issues.
  • Administered the replicated environments and deployed to new replication sites.
  • Involved in the Year 200 projects to assure the applications are Y2K compliant.
  • Participated in the database upgrade from Oracle 7 to Oracle 8, and provided support for Oracle upgrade, application installation and operation, and database implementation at the Post.
  • Installed Oracle software and implemented database and applications on the server. Responsible for monitoring and troubleshooting the database environment.
  • Analyse the database performance and performed database performance tuning.
  • Document database procedures and responsible for organizing and instructing trainings for installer to perform upgrade oracle database and application from Oracle 7 to 8.

TECHNICAL SKILLS

  • CyberArk EPV Operations
  • Administration of Functional Accounts and Groups in CyberArk
  • User Management in Active Directory (Account unlocking, password resets}
  • Active Directory
  • Incident Management
  • HP Service Manager (HPSM)
  • ITSM
  • Request Fulfilment.
  • Administration of user accounts and groups on AD.
  • User ID creations and management
  • Troubleshooting on all the latest Windows OS and System Hardware
  • Capable of handling the deliverables of a Team.
  • Implementation of Process within the Team.
  • Sharing knowledge amongst the Team Members thus increasing the Overall Productivity.
  • Sharing best Practices.

PROFESSIONAL EXPERIENCE

Confidential

Cyberark vault admin

Responsibilities:

  • Part of Privileged Access Management team whose role is to secure Web Based Applications on user access and authorization.
  • Experience in integration and implementation of Cyber - Ark Suite components such as Enterprise Password Vault, Password Vault Web Access, Central Policy Manager, Privileged Session Manager.
  • Securing and maintain privileged accounts into EPV (CyberArk Enterprise password vault).
  • Experience with Application Identity Manager for Windows, Unix, WebSphere, Tomcat server, etc. Integrated multiple applications such as Service Now, Stealth Audit Services, Ab Initio, Ansible, etc.
  • Worked on storing the master encryption key (MEK) in a Hardware Security Module (HSM), so it is not sitting on local disk.
  • Deployed PVWA, CPM and Vault on AWS cloud infrastructure.
  • Perform Bulk updates of accounts using password upload utility.
  • Generating Entitlement report, privileged Accounts Inventory Report, Application Inventory reports, Activity Logs in order to assist Audit and Compliance team.
  • Monitoring and tracking incidents to ensure resolution occurs within the customer Service Level Agreement.
  • Hands on experience with onboarding of different types of accounts like windows, Linux, Unix, database, network devices.
  • Creating the safes before on boarding the accounts into EPV based on Line of Business
  • Worked on object level access control for password object permissions.
  • SMTP server IPs integration in PVWA to trigger email notifications.
  • Setting up multi-factor authentication like SAML, RSA, LDAP, and RADIUS.
  • Expertise on Dual control for safe access approvals.
  • Performing clean up activity for stale server and accounts.
  • Perform DR (disaster recovery) exercise by failing over from primary server to DR server.
  • Automate basic operational activities through PACLI, PUU and CyberArk REST API web services.
  • Administration of user accounts & safes in cyber ark.
  • Remediate of non-compliant privileged account
  • Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.

Confidential

Cyberark consultant

Responsibilities:

  • Installation of Vault, CPM, PVWA and PSM servers.
  • Troubleshooting of server related issue for Vault and PVWA.
  • Onboarding accounts in EPV for various platform (Windows, UNIX, and Database).
  • Maintaining the SLA for incident and requests (EURC).
  • Handling 70000 + accounts in EPV.
  • Resetting the accounts manually in EPV and on platform if the CPM or reconcile fails.
  • Involved in troubleshooting issue work requests on day-to-day basis for the applications integrated with CyberArk in QA and Production Environment.
  • Automating the accounts for Windows and UNIX.
  • Performing resets for MAS accounts using RPM.
  • Adding accounts in SSO group.
  • Onboarding bulk accounts using Bulk upload utility.
  • Providing daily customer support in order to ensure customer satisfaction.
  • Change Management Support - ITSM Approval and/Implementation.
  • Updating Knowledge Objects to reduce Incident Tickets.
  • Supported Global Certification Cycle for Shared Folder Access.
  • Maintaining all associated queues (i.e. Service Manager, Central Mailbox) and resolving the requests within SLA.
  • Working on various tools & Power-shell scripts for maintaining Active Directory & generating reports as per the Business requirement.
  • Handling Access management on CyberArk platform.
  • Onboarding AIM accounts and assisting with the integration.

Hire Now