Post Job Free
Sign in

Engineer Active Directory

Location:
Nashua, NH
Posted:
December 23, 2020

Contact this candidate

Resume:

Sachin SV

+1-810-***-**** *********@*****.***

Professional Summary:

Around 5+ years of experience in designing and deploying Identity and Access Management, Directories, Single Sign-On (SSO), Provisioning & Approval Workflows, Identity Federation, Authentication and Authorization OKTA.

Involved in Corporate-Wide Implementation of Single Sign On.

Administration and configuration of OKTA and Ping Federate SSO on multiple domains.

Experience in IT Governance, Security, Identity &amp, Access Management.

Design security policy rules and constraints that govern automatic assignment (and removal) of entitlements. Review and adjust existing IAM processes (provisioning, de-provisioning, re-certifications, etc..) to ensure that they are aligned with industry best practices.

Extensive experience on Okta with both external and workforce users, Experience with SAML 2, Oauth2 and OIDC SSO applications

Strong understanding of AD and LDAP

Experience with Importing users, setting up delegated administration and password reset on Okta

Experience with self-registration, Access provisioning and Lifecycle management of users onto Okta

Experience with Centralized and Application specific login pages

Experience enabling SSO for web and mobile applications.

Deploying SSO across all member company domains involved establishing the firewalls and installing AD / IWA agents on member domains, validating single sign-on, user provisioning and troubleshooting password synchronization across multiple OKTA platforms.

Good understanding on other IAM tools (CA IDM, Control minder, Ping Federate and OneLogin).

Good analytical & technical skills combined with excellent communication & inter-personal skills.

Fast learner and able to understand unfamiliar areas independently. Very easily adaptable to new systems and tools.

Technical Skills:

Identity Access Management

OKTA, PingFederate, CA SiteMinder, Open AM (Open SSO)

SSO technologies:

SSO technologies

SAML2.0 (SP/IdP initiated login), WS-FED, SWA, Desktop SSO, AD Integration.

Directory Services

Microsoft Active Directory, LDAP Directory

Security Technologies

LDAP, RSA SecurID, and Federated Identity Management

Web Technologies and languages

XML, XSL, HTML, CSS, JavaScript, Java, Restful Services, Git, Webservices

Education:

University of Michigan-Flint, Flint, MI 08/2014-05/2016

Master of Science, Computer Science and Information Systems

GPA: 3.14 on a scale of 4.0

Jawaharlal Nehru Technological University, Avanti Institute of Engineering and Technology, Telangana, India

Bachelor of Technology, Computer Science 2009 - 2013

Professional Experience

Client: T-Mobile,GA Jan 2019- Present

Role: IAM Engineer

Responsibilities:

Document System Design Specification(SDS) for OKTA and update whenever changes made.

Integrate Okta, an integrated identity and mobility management service, with Corporate Active Directory

Installing the AD agent and IWA agent on member companies Active Directory Domains (- Production Environment).

Design Portal Identity management with Okta, Integrate and federate authentication with 3rd party portals

Design dashboards for various KPIs for slicing and dicing of information on identities, accounts, roles, entitlements, associations, assignments, identity events

Work with Development team in providing OKTA SDK and API’s to perform Okta user Life Cycle operations

Execute workflows with API endpoint, save date with flow history and repair an invalid flow Design time- and context-based identity entitlement, build automation to catch identity conflicts and lifecycle activity

Assist development team in implementing API based implementation and Creating Custom web pages for customer application.

Deploy Desktop SSO, Just in Time Provisioning, OKTA Mobile Connect (OMC) and Multifactor authentications

Design SCIM connectors, Okta Workflows

Integrate 50+ apps (SAML 2.0, WS-FED, SWA etc.),Configure Multifactor Authentication(MFA) feature in Organization level.

Integrate Okta with Google Services using SAML through Google Apps.

Configure & monitor multiple Okta agents on different servers to ensure high availability service. Experience with technologies and protocols to support identity federation and robust access control models (e.g., SAML 2.0, WS-Federation, OAuth, OpenID Connect, SCIM, etc).

Build, design test workflows, including connecting applications, import and edit data in a table, set schedule options

Responsible for synchronization of all Active Directory accounts and groups to utilize Okta solution.

Working knowledge of enterprise web technologies, Information and Network security solutions, IaaS and PaaS services

Knowledge of Cloud architectures across the spectrum – viz. IaaS, PaaS, and SaaS as well as complex enterprise on-premise IT application landscapes, Good knowledge of Enterprise identity life cycle management processes and standards.

Configure provisioning, authentication and authorization for the applications.

Environment OKTA, SAML 2.0, WS-FED, OpenID, SWA, Multifactor Authentication (MFA), Microsoft Active Directory, ADFS, LDAP, VMware, Load Balancing.

Client: Verizon,NH Apr 2017- Dec 2018

Role: IAM Engineer

Responsibilities:

Corporate-Wide implementation of Single Sign On using Okta. Administration and configuration of OKTA SSO on multiple AD domains.

Installing the AD agent and IWA agent on member companies Active Directory Domains (- Production Environment.

Experience with HTTP Servers web proxy rules configuration, LDAP and Web Services

Enabling and validating the setup of Desktop SSO infrastructure across all the company domains.

Performed attribute mapping on OKTA and provided Level 3 support for OKTA service/help desk queue - Identifying and troubleshooting issues.

Performed AD agent installation and password plugin installation of IBM Security Identity Manager (ISIM also known as ITIM)

Experience on ISIM and Active Directory administrative roles.

Creating a run book based on - Okta deployment process, ISIM AD installation and Troubleshooting guide.

Deploying SSO across all member company domains involved establishing the firewalls and installing AD / IWA agents on member domains, validating single sign-on, user provisioning and troubleshooting password synchronization across multiple Okta platforms.

Integrate applications to OKTA using SAML 2.0 & OAuth, Configured SAML 2.0 connectors for various applications to enable SSO

Install and upgrade OKTA agents in production and lower environments

Integrated OKTA with the company's AD domain to import, confirm and activate 10,000+ users. Password synchronization between OKTA and AD.

Implemented RSA Federated Identity Management 3.1.2 using SAML 1.x protocol to provide authentication, attribute and authorization portability across autonomous security domains for TBG alliance partners and customers.

Environment Active Directory, Okta IdP, MS Visio, SAML 2.0, WS-FED, SWA, OMC,

Multifactor Authentication(MFA), SAML,WS-Fed and Oauth2.0

Orbees Business Solutions,India May 2012 to July 2014

Role: Security Applications Engineer

Responsibilities:

Participated in client interaction and requirement gathering for new functionalities.

Experience in introducing Semaphore implementation successfully in the Trading systems to achieve best inter-process communication.

Experience in carrying out failovers, upgrades and application migration across locations.

Experience in Designing and implementing various scripts to improve miscellaneous Trading System operations.

Experience in optimizing order matching for increased order throughput by 100%.

Experience in implementation of interface systems to work parallel with existing trading system.

Troubleshooting all dev and production issues.

Experience in mentoring incoming engineers regarding Trading System Architecture and trained them technically on implementation.

Environment Unix, PowerShell, JBOSS, JMS, SDLC

REFERENCES: Available upon request



Contact this candidate