Access Management Zero Trust

Rajiv Shah

********@*****.***

+1-973-***-****

Summary:

•IAM Security Operations Lead with (Provisioning, Deprovisiong (JML), Incident response, Request Management/Fulfillment, Testing and Validating IAM Controls) Security within Zero Trust and Defining The Boundaries of Zero Trust framework, Root Cause Analysis, Governance, Risk Management, Compliance.

•Identity and Access Management Policies, RBAC, Controls (Privilege Access IDs, Non-humans IDs, JIT), SOX Audit, IGA, Process Documentation, Establish and analyze IAM controls, Privilege Access Management.

•Managed Azure IAM Application development projects using Agile methodology, aligning resources, and removing roadblocks to ensure deadlines were met.

•Liaison between developers and project stakeholders; fostered quality communication between engineering disciplines.

•Conducts Weekly/Monthly/Quarterly SOX process review meetings with SOX Team to gather and document business needs and translate them into functional requirement documents (FRD)

•An excellent communicator and leader with emphasis on building strong client relationships & excellent team dynamics, passion to add business value using customer- centric approach that translates to top-line and/or bottom-line.

•Management of the identity and access management services including password management, SSO, SAML, Active Directory and authentication.

•Conducts security control Assessment to assess the adequacy of management, operational, privacy, and technical security controls implemented.

•IAM Tools - SailPoint, Hitachi, One Identity, NetIQ, Active Directory, Azure AD, ARS, LDAP, CyberArk

Certification:

(ISC)2 Security Within Zero Trust (ISC2-CISSP) from ISC2! July 2024

Defining the Boundaries of Zero Trust ISC2 Candidate from ISC2! July 2024

Cyber Security Key Concepts for Legal Aid Groups, Non-Profits, Pro bono and Law firms" [GlobalCISO Leadership Foundation] July 2024

IAM Technology Lead: ForgeRock Migration 01/2024 – 6/2024

Infosys Client: LPL/Remote

•Guide Team in Program Increment (PI) planning, Sprint Planning, Story Refinement, (Backlog) contributing to the team's objectives and commitments - updates PO as per daily Scrum.

•As technical Lead, a team of 4 engineers for client LPL for application migration from onprem to SSO, SAML Idp initiated work flow on AWS – ForgeRock applications

•Provide leadership in complete migration of applications for the team, lead in providing the daily, weekly reports to application owners and stakeholders.

•Architecture of On-boarding of multiple applications with Single Sign-On using CIAM solution.

Identity Access Management Operation Engineer 04/2023 – 12/2023

Infosys Client: Ulta Beauty/Remote

•Worked on One Identity and Active Directory managed user onboarding to offboarding.

•Worked with customers to provision access using established processes.

•Align UAM concepts with the IT Framework, including security, and developed appropriate audit controls and procedures to ensure the integrity of applications.

•Evaluates their current processes and adapts them with the intent to increase productivity, streamline workflows, adapt to changing business needs, or increase profitability.

•Responsible for protecting, saving SOX applications, data, and systems from unauthorized access while managing the adentities, and access rights of users within and outside the organization.

IAM/Scrum Master/SOX Control Coordinator 03/2021 – 03/2023

Infosys Client: TOYOTA (TMNA)/Remote

•Lead a team of SailPoint identity and access management solutions for governance.

•Managed on IT Governance, IT application controls, IT System Development, Project Management, Cloud Computing, Risk management, compliance, and audit fields.

•Managed concurrent SOX projects using Agile methodology, aligning resources, and removing roadblocks to ensure deadlines.

•Providing evidence to Archer for Internal auditing and external auditing in operational information technology systems.

•Identify the risks and/or gaps and suggest possible improvements.

•Managing Certification using SailPoint IIQ for Audit.

•Migration from on prem application to Azure - for B2C and B2E customers (different team withing Toyota).

•Collaborate with all levels of business, technical and architectural leadership actively deploying solutions - utilizing Azure AD, Azure B2E, and Azure B2C

•Develop and maintain technical documentation of testing results.

•Prepares Azure application certification list which expires weekly/monthly for timely renew the certificate and proactive communication with respective IAM teams.

IAM Technology Lead 08/2019 – 11/2020

Infosys Client: Ralph Lauren, NJ

•Managed Identity Governance and Administration (IGA) – users, applications, and data.

•Provided IAM Access Management, Recertification, and PAM (Hitachi) Solutions, Audit, User Provisioning, Group Management, SSO Management

•Managed the Varonis Application (Data Advantage and Data Privilege) Role Base Access Control (RBAC /ABAC approach), Role Assignments, User Analytics Behavior.

•Managed Varonis Collector, and IDU Configuration communication Integrate Collectors with File Servers

•Upgraded Varonis in a large environment (Including Varonis version upgrade/patch)

•Access and Security Solution with Active Directory Admin, GPO and DNS (Internal, External) Admin, ADFS, SSO, MFA.

•Created SSL (.csr, der, pfx, PEM) Certificate, PowerShell scripting

IAM Security Engineer 11/2012 – 10/2018

AIG, Fort Worth, Texas

•Using SailPoint application - provisioning and Deprovisioning identity, and Identity access management solutions for governance.

•Managed Privileged Access Management (PAM), and Control Access (Architecture, Compliances, Policy).

•Audit Reporting and LifeCycle included Access Request, Provisioning, Password Management.

•Privilege - user login, User vaulting, analyzing password recorded session, alerts and took appropriate actions, analyzing as is to make recommendations for improvement and working with the team on assigned project tasks.

•Process improvements utilizing Identity and Access Management platforms.

•Managed RSA technologies including hard tokens, soft tokens, and RSA tool.

•Managed, administered, and operated a Microsoft Active Directory structure in Windows 2003, 2007, 2012

•Worked on to Security audit & Server compliance tools like BMC Blade Logic.

•Generated report for network-based vulnerability scans using Qualys Guard, for Network vulnerability assessments to identify vulnerabilities or confirm compliance to security standards (Using Qualys)

Contact this candidate