Yashuda KC Paudel

LinkedIn Profile

339-***-****

adzlew@r.postjobfree.com

IAM Business Analyst (SailPoint)

Professional Summary

• Successfully worked as a Security Analyst to implement SailPoint as an identity governance solution, a leading access management tool, focusing on security risk management and technical privacy and security compliance programs.

• Utilized SailPoint's customer support and quality control features, ensuring code review, and understanding of systems for seamless deployment and ongoing support.

• Streamlined governance processes by incorporating artificial intelligence (AI) and machine learning (ML) technologies into identity and access management strategy, enabling quicker and more informed decision-making.

• Mitigated compliance risks by implementing SailPoint's automated downstream termination of employee rights, enhancing compliance and risk management practices.

• Integrated SailPoint with identity management solution, managing identity lifecycle, joiners, movers, leavers, group management, and group membership.

• Continuously onboarded critical applications, cleaned up roles, and optimized access rights across the enterprise, paving the way for future phases incorporating AI and ML technologies.

• Extensive experience as a Business Analyst focused on Identity Security & Access Management and educating on IAM build processes.

• Proficient in collecting business requirements and creating customized identity and access management solutions using SailPoint IdentityIQ.

• Experience in gathering and documenting requirements to onboard enterprise applications to SailPoint IdentityIQ, automating Role-Based Access Control processes, and validating requirements.

• Skilled in business analysis activities to support the implementation of Identity Management and Access Governance and Administration solutions.

• Proficient in Requirement Gathering & Analysis, documentation, Software Quality Assurance, and project management.

• Created standard Business Requirement Document template for each application type to onboard/integrate applications in SailPoint.

• Developed a Standard Questionnaire Document to understand the business application, its technology, number of users, and its security platform.

• Experience in creating Business Requirements Documents (BRDs) and Functional Specifications Documents (FSDs).

• Knowledgeable in provisioning and access governance with an understanding of security systems such as Active Directory, LDAP/Unix, DBMS Oracle, and manually provisioned applications.

• Ability to develop and maintain documentation, including process flows, business requirements documents, and technical design documents.

• Strong understanding of identity and access management concepts, including provisioning, access governance, and RBAC.

• Demonstrated ability to use Role Based Access Control to enforce segregation of duties and reduce risk within the organization.

• Extensively involved in risk analysis and providing mitigation plans for known and predicted issues.

• Team player with effective communication, motivation, and organizational skills combined with attention to detail and a focus on business process improvements.

• Good understanding of SSO and federation protocols like SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), and WS- Federation.

Technical Skills

Identity and Access Management SailPoint IdentityIQ, SailPoint IdentityNow, Okta Databases SQL Server, MySQL, MS Access

Programming Languages Java, BeanShell, Python, MS Excel Operating Systems Linux, Windows

Software Modeling Tools MS Visio, Draw.io, MS PowerPoint Application Servers Web logic, Apache, Tomcat

Frameworks & IDE tools IDE Eclipse, NetBeans

Professional Experience

GoTo (Formerly LogMeIn, Inc.)

IAM Business Analyst

Boston, MA

Jun 2020 - Present

• Led the implementation of core tenant rights including HRMS, AD, and SailPoint IDN, resulting in a successful phase one process and onboarding of SOX compliant applications.

• Reduced significant time and resource savings through the automated re-certification of access rights, leveraging SailPoint to manage SOX critical applications and centralized identity lifecycle management.

• Maintained and updated the onboarding application Questionnaire by gathering inputs from the application owners and business stakeholders.

• Played a key role in enhancing the company's Identity and Access Management program as part of the Information Security team.

• Documented the current state of resources managed by the IGA team, documented business processes related to resource usage, and identified key IAM capabilities for resource integration.

• Identified available roles for each resource and mapped them to relevant job functions.

• Gathered and documented system workflows to understand the flow of sensitive data within the organization.

• Coordinated the end-to-end onboarding of an application through the different phases of SDLC.

• Created different artifacts such as BRD, FRD, Questionnaire document, project plan and PPT slides.

• Established enterprise-level Role mining, Role Based Access Control (RBAC), and Access Reviews.

• Expertise in configuring SailPoint IIQ tasks, including account aggregation, group aggregation, system maintenance, and report generation for auditing purposes.

• Analyzed applications to identify unique IDs, access levels, and permissions, and conducting deep dive sessions.

• Implemented Self-service, Password, Provisioning features and policies in SailPoint.

• Strong background in providing business analyst support for RBAC implementation, including requirements gathering, documentation, and role mining.

• Evaluated SailPoint IDN using modules like Life Cycle Management, Access Review/Certifications, Policy Management, RBAC, and Source creation and Access Profiles.

• Proficient in creating, modifying, and deleting user access for onboarded applications using Provisioning requests in IdentityIQ.

• Implemented and scheduled various types of user entitlement reviews for applications and databases across the organization.

• Utilized Agile procedures (access controllers) to track the project, create stories. Manulife Financial Corporation

SailPoint Business Analyst

Boston, MA

Aug 2017 – Jun 2020

• Defined business requirements through process flows, triggers, data mapping relationships, data transformations, data dependencies, process dependencies, and system of authority requirements.

• Developed a comprehensive data model to accommodate the data model, including objects to be moved, triggering events of interest, attributes to be synchronized, direction of synchronization, and authoritative sources for the data.

• Identified technical requirements necessary to meet prioritized business requirements, such as development/test environment, infrastructure needs, backup and disaster recovery, security, and development requirements.

• Created a plan for the iterative delivery of business value, ensuring alignment with key dates and deliverables, regular status communication, company representation as a key product owner, and milestone achievement.

• Documented necessary modifications to support processes and accommodate new implementations.

• Conducted user acceptance testing to validate newly integrated functionality and ensure alignment with business processes.

• Performed regression testing to verify the proper functioning of multiple applications.

• Developed a plan for transitioning the implementation effort from development to operations.

• Developed a communication plan to inform end users about changes and conducted necessary training for support staff.

• Conducted requirements gathering and developed processes for integrating business applications into SailPoint IdentityIQ.

• Led and coordinated testing activities across on-site and offshore teams, ensuring adherence to company testing procedures.

• Collaborated with business owners and developers to analyze requirements, conduct design reviews, and create documentation for agile development projects.

• Created a Test Plan aligned with project deliverables and shared it with stakeholders.

• Reviewed team members test scripts to ensure alignment with Business Requirements Document (BRD) and Traceability documents.

• Developed process flow diagrams for organizational change during migration from current to future state.

• Serve as an internal liaison for RBAC/IAM issues, working with application owners and IGA team.

• Define roles and resource groups for standardization as per client security standards.

• Designed, documented, and explained the file formats for collecting the Separation of Duties (SOD) data within the application and system.

• Utilized agile development methodology and implemented Agile (Scrum) methodology, including daily scrum meetings with the team.

• Resolved QA team issues and reviewed their test plans and scripts to ensure proper coverage of all requirements. Change Healthcare

IAM/OKTA Analyst

Nashville, TN

Apr 2015 – Aug 2017

• Coordinated the implementation of SailPoint identity governance program.

• Addressed compliance gaps by automating certification campaigns, reducing the number of entitlements being certified from 285,000 to 135,000, and standardizing certification processes for internal and external audits.

• Improved end user experience by enabling seamless access requests through SailPoint, eliminating the need for manual ticketing, and reducing wait times for network access and basic items for new employees.

• Enhanced off-boarding processes by ensuring immediate revocation of access for terminated employees, minimizing the risk associated with lingering access.

• Implemented proper data management controls to mitigate potential risks, allowing for better understanding and governance of sensitive data within the organization.

• Utilized SailPoint's IdentityIQ File Access Manager to manage data security use cases and gain access to comprehensive reporting for informed decision-making by the security team.

• Recognized the importance of identity in ensuring the safety and security of employees and customers, with SailPoint enabling a bright future for the company.

• Participated in meetings and discussions with cross-functional teams to address Single Sign-On (SSO) related challenges and requirements.

• Collaborate with IT and security team members to ensure that the documentation accurately reflects any modifications made to Okta configurations or workflows and is kept up to date.

• Documented regular security audits of the OKTA platform and related systems to identify any vulnerabilities or gaps in security controls.

• Collaborated with other IT and security teams to ensure secure and proper configuration of OKTA integration with other systems.

• Created and updated process workflows that explain the methods used to handle user identities and access rights using Okta.

• Conducted regular reviews of user accounts, roles, and permissions to ensure appropriateness and necessary for business operations.

• Maintained documentation related to the system and security processes, including policies, procedures, and guidelines.

• Developed and implemented security awareness and training programs for users of the SSO system.

• Stay up to date with the latest security trends, threats, and technologies to ensure that security practices remain current and effective.

Education

High School Diploma

Somerville Public School Massachusetts Department of Elementary and Secondary Education Somerville, MA

Contact this candidate