SUMMARY

• Security Professional having 6 years of Experience including networking and Cyber - Ark, implementing, managing and monitoring of CyberArk privileged account security
• Experience in Cyber-Ark Implementation and support engagements
• Implementing & Managing Master Policy, Directory Mapping, LDAP integration, Platform and Safe via Private Ark client & PVWA.
• Hands on experience on managing Cyber Ark Components including CPM, PVWA, PSM.
• Experienced in administrating Cyber-Ark (Password Vault).
• Worked on Disaster Recovery Vault (DR) and CyberArk Enterprise vault.
• Managed Safes and Server/ host addresses in Enterprise Password vault. Resolved issues in Cyber Ark's Central Password Manager to communicate with hosts to reconcile credentials.
• Provided guidance in addition, removal, change and lifecycle of Privileged ID Management (PIM) in order to provide the highest quality levels of Security.
• Day to day operational support in Active Directory such as creating security groups, creating users, assigning policies, maintaining password complexity rules. Commissioning and decommissioning computer objects, creating and maintaining service accounts.
• Good at understanding and communicate CyberArk's role in the privileged account security space.
• Ensured that the bank's policies and guidelines relating to IAM ((Identity and Access Management) are adhered to and implemented.
• Administration, configuration, troubleshooting and installation of Windows 2003, 2008, 2008 R2 and Administration of Active Directory Configured, managed, troubleshot and delegated administrative control to Group Policy Objects.
• Good knowledge in IAM and experience in installation of various Operating systems such as Red Hat (LINUX) and Windows.

TECHNICAL SKILLS

• Java
• JSF
• HTML
• XML
• XHTML
• JavaScript
• Tomcat
• SailPoint
• Eclipse
• Windows
• Linux.

PROFESSIONAL EXPERIENCE

Confidential, Alpharetta, GA

CyberArk Security Engineer

Responsibilities:

• Maintaining Active Directory groups and policies, Backups.
• Developed Architecture and Design for implementing CyberArk solution in distributed environment in order to manage application and service credentials.
• Experience in Privileged Access Management solutions particularlyCyberArk, network security and administration.
• Installation and configuration ofCyberArkVault, Password Vault Web Access (PVWA), Central Password Manager (CPM) and Privileged Session Manager (PSM) in Prod and DR.
• Troubleshooting and maintenance of the Password Vault, Central Password Manager (CPM), Privileged Session Manager (PSM), Application Identity Manager(AIM), DR Vault in DR Server.
• Configurations including AD integration and Management of Cyber Ark Enterprise Password vault.
• Managed Safes ad Server/ host addresses in EPV. Resolved issues with CyberArk's CPM to communicate with hosts to reconcile credentials.
• Administration experience of Cyber Ark vault with Safe creation, integration with LDAP and other authentication methods.
• Installed, managed and troubleshot DNS in multiple zone environments. Troubleshot DNS integration with Active Directory. Installed, configured and administered WINS, DHCP, IIS and WSFTP, File and Print servers.
• Patching & Monitoring Vault, Central Password Manager, Two-factor authentication, Privileged Session Manager, Password Vault Web Access servers and services.
• Installed, managed and troubleshot DNS in multiple zone environments. Troubleshot DNS integration with Active Directory. Installed, configured and administered WINS, DHCP, IIS and WSFTP, File and Print servers.
• Identifies, diagnoses and resolves problems for users of the personal computer or laptop software and hardware.
• Performed daily backup operations, ensuring all required file systems and system data are successfully backed up to the appropriate media, recovery tapes or disks are created, and media is recycled and sent off site as necessary.
• Created and performed backup of policies and Rules in Firewall.
• Provides one-on-one end-user problem resolution over the phone.

Confidential, Atlanta, GA

CyberArk Implementation Engineer

Responsibilities:

• Primary responsibilities include Installation and configuration ofCyberArkVault, Vault Client, Active CPM, Network load balancedCyberArkPVWA, ClusteredCyberArkPSM and PSM SSH proxy Architecture and design.
• Configuration of multiple Privilege accounts across the organization and Administration ofCyberArk.
• Integration of window accounts, Unix accounts, Database, Network and Security Device.
• Experienced in day to day operational support in adding and deleting accounts, applying policies, assigning safes, synchronizing failed accounts, Password rotations.
• Implementation and create of web policies, password policies.
• Vault Back-up Management process, AD Configuration (User to connect AD)& Branches).
• Load Balancer architecture, Application Identity Manager Design, On-Demand Privileges Manager Design.
• Break Glass Access Management Process, Integration with other Systems (email configuration).
• Change Management Process Plan (OS, patch updates).
• Responsible for Create New User, Activate, enable user, group and OU account in Active Directory.
• Reconciliation, Password Synchronization, Service definition for Target System, Workflows and Integration of various target system privilege account integration.
• Managing User Accounts, Server Space & other Log files on servers and Maintaining Mail Accounts in Microsoft Office Outlook & Backup of Emails.
• Helping organization target architecture for infrastructure privileged access and the high-level requirements for the privileged access management solution.
• Implementing the strategy for infrastructure privileged access control in organization, and the drivers in terms of risk and regulatory control.
• Cyber-Ark as a platform for managing privileged access to infrastructure. An initial project is focusing on managing networking devices accounts. In parallel, analysis is ongoing.

Confidential, Forth Worth, TX

CyberArk Consultant

Responsibilities:

• Involved Installation onCyberArkcomponent on various servers and Setup Privileged password management Policies for CPM component.
• Creating safes and adding users and groups to them for privileged access inCyberArkand Creation of policies and Reports in PVWA.
• Installation and configuration ofCyberArkPrivate Ark client and Private Ark server and CPM, PVWA, PSM, PSMP, DR.
• Good understanding of policies inCyberArkCentral Policy Manager (CPM) and (PSM).
• ResolvedCyberArkissue's in CPM to communicate with a host to reconcile credentials.
• Prepared tickets about the issue and informed to the higher specialists.
• Alerting DXB Bank to suspicious activity or instances observed on their networks, such as DDoS attempts, Cross-Site Scripting, or malware infections, then providing recommendations and solutions to handle them.
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• RetrievedCyberArksystem and application password's and assist Database, Linux, and Core Application Support teams when passwords are needed.
• Good knowledge in Active Directory and Involved in AD integration and adding user to with their privileges.

Confidential, Dulles, VA

Network Engineer

Responsibilities:

• Installation and configuration of the EPV components (Central Policy Manager, Password Vault Web Access, High Availability Vault Cluster, Secure Zone Access, SAN storage, SSL certificates and Load Balancing
• Respond to vendor security questionnaires and review contracts and RFPs.
• Involved in investigating and respond to security incidents.
• Review Firewall & load balancer change requests
• Manage and administer RSA envision for centralized log management of critical IT systems. Successfully integrated PCI in-scope Wintel and UNIX application servers and key network appliances like the Firewalls and VPN systems.
• Vulnerability assessments and web application security scanning using Nexpose and IBM Rational AppScan respectively.
• Performed in the role of subject matter expert in the creation of use cases, project time-lines and infrastructure diagrams; Created acceptance testing plans for vault admin and user functions.
• Implemented secure storage and retrieval of shared passwords, one-time passwords, exclusive, Tested and implemented administrator/root passwords from a variety of platforms such as Windows, UNIX.
• Send out security newsletters and latest industry trends to the user community.
• Present Compliance status and IT security metrics from various systems to the Director of IT Security.
• Put together standards and hardening procedure document for various platforms.
• Weekly meeting with Directors to update the IT audit closure status.