SUMMARY

• Information Technology and Security professional with over 11 years’ experience in architecting and deploying Identity & Access Management (IAM) & Privileged Access Management (PAM) solutions like CyberArk, RSA Aveksa, Tivoli Identity & Access Management, TADDM (Tivoli Application Discovery & Dependency Mapping), Compliance and Auditing Technologies & Scrum Management with Agile methodology.

TECHNICAL SKILLS

IAM Security / Compliance Governance: CyberArk, RSA Aveksa, IBM Tivoli Suite (TIM/TAM), Web seal, RSA Secure ID, TADDM (Tivoli Application Discovery & Dependency Management), ISAM, CyberArk, SCRUM Management.

LDAP Directories: Microsoft Active Dir, Tivoli Directory Server.

Software: Database (SQL/Oracle), Webserver (IIS, Apache, IBM), Reverse Proxy, Citrix, Terminal servicesWebSphere

Operating Systems: Microsoft Windows up to Windows 2012 R2 Standard Edition, UNIX (SOLARIS 2.x, SOLARIS, AIXIRIX, HP/UX, LINUX, MS - DOS, and z/OS.

Networking: TCP/IP, DNS

Tools: Remedy, Service Now, HPSM, Service Center, TADDM Console

PROFESSIONAL EXPERIENCE

Confidential

CyberArk Consultant

Technologies Used: CyberArk Enterprise Password Vault (EPV), PSM, AIM, CPM, Windows Server 2012 R2 Standard

Responsibilities:

• Creating and managing of safes, platforms, applications.
• Upgraded CyberArk from 9.8 to 9.10
• Worked on AIM agent Migration to Satellite vault.
• Creating Safes and assigning approver groups in AD.
• Experience in troubleshooting CyberArk vaulting and password rotation issues.
• Experience in working on Hashi corp Secrets management for GCP.
• Processing Service now requests for User administration.
• Managing DBA, MySQL privileged accounts using ODBC connector in CPM.
• Worked on Mainframe accounts rotation and configuring Process and prompts plugin files.
• Experience in handling large heterogeneous environment (10k + unix root accounts) password rotations and troubleshooting.
• Managing day to day security operations task, CPM plugin issues, troubleshooting and resolving user issues.

Confidential - Pennsylvania

CyberArk Consultant

Technologies Used: CyberArk Enterprise Password Vault (EPV), PSM, AIM, CPM, Windows Server 2012 R2 Standard

Responsibilities:

• Creating and managing of safes, platforms, applications.
• Upgraded RSA authentication package in vault from 7.1 to 8.0.
• Installed SCIM server 1.1.1 and integrated SailPoint with CyberArk.
• Importing platform packages to PVWA.
• Working with direct CyberArk Engineers for challenging issues within the environment.
• Reported few issues to CyberArk which were considered as bug from CyberArk end raised enhancement request on behalf of the reported issues.
• Creating connection components for integrating various applications and web applications.
• Upgrading AIM providers.
• Creating test cases for CPM and PSM related issues.
• Managing passwords for windows, unix & database endpoints.
• Removing the decommissioned server related accounts from Cyberark.
• Onboarding of accounts to CyberArk with password upload utility using REST API.
• Custom Application integrations using Auto IT script.
• Working on various PAM Operational tasks - Defining Access Control, User Entitlements, Manage Applications Credentials, User Access Policy Management, Reports, Audit overview understanding.
• Coordinating and participating in weekly scrum meetings to address various stories and their progress within the team.
• Integrated various third-party applications with PSM like AbInitio, Control+M, Venafi, Toad for DB2 etc.,
• Developing solution for integrating Microsoft O365 Azure portal with cyberark (creation and configuring web connections with PSM, creation of Reconcile accounts for managing passwords)
• Analyzing and troubleshooting various end user reported issues, post to the resolution documenting the procedure for knowledge data base.

Confidential

CyberArk Consultant

Responsibilities:

• Installation & Configuration of CyberArk components including Enterprise Password Vault, PVWA, CPM, PSM.
• Configuring the CyberArk components such as PVWA and CPM.
• Managing the policies for different platforms configured in Confidential Environment.
• Vaulting the Unix Accounts in CyberArk using SSH Key Pairs.
• Creating and Managing Safes, platforms and Owners.
• Understanding of CyberArk EPM policy creation and modification and the interworking of the EPM product.
• Planning and deploying EPM client rollout via SCCM and administrative rights removal via GPO all while following change management process and user communication.
• Vaulting Windows Domain Admin and DCADM Accounts to rotate the password as per Policy Requirements.
• AIM Integration for Venafi Trust Protection Platform access using to privileged system and application accounts held by CyberArk.
• Designing and Implementation of Disaster Recovery Exercise for CyberArk in Confidential Production Environment.
• Worked on resolving high priority issues related to PSM, PVWA, EPV and CPM.
• CyberArk Integration with Active Directory, SNMP, SMTP.
• Review support manuals run books and other project documentation to develop Technical architectural designs.
• Analysis of reported issues based on the pre acquired product knowledge
• Design & Implementation of User and Password Synchronization between different user repositories using Tivoli Directory Integrator.
• On-boarded Privileged Accounts & Super User IDs in the Cyber Ark Safes using Bulk upload utility.
• Configuring connection components and Integrated various applications with CyberArk using PSM like Toad for DB2, Control-M Workload Automation, and FileZilla Client etc.
• Integrating and managing of Windows and Unix accounts to CyberArk.
• Onboarding of accounts to CyberArk with password upload utility using REST API.
• Configured third party web applications via PSM using Generic Web Client.
• Custom Application integrations using Auto IT script.