Customer Service Active Directory

Location:

Marshall, AR

Posted:

November 20, 2024

Contact this candidate

Resume:

Michelle K. Edwards

*** *. *** **, ******* AR ***39

Email: ********@*****.***

469-***-**** Cell

870-***-**** Home

https://www.linkedin.com/in/michelle-edwards-92864858/

SUMMARY:

Over 20 plus year’s experience, with this Identity and Access Management genres with concentration of IBM and CA, SailPoint, Saviynt, AWS, Azure, GCP, Aveska RSA, One Identity and Okta product lines.

Over 20 years of Customer Service and Interfacing with Senior Executive Managements and Business Stake Holders.

Highly skilled Senior Solutions architect with these technologies:

Saviynt

SailPoint IIQ/ID Now

One Identity

IBM Security Verify (All versions)

Ping Identity

Ping Access

AWS/Azure/GCP Cloud Platforms

Okta

Lead as many as 18 people manned teams with diversity of US, India, Brazil, and China based resources.

Proven track record designing, developing, and architecture design and implementations end to end solutions.

Extensive knowledge of all versions of ITIM/ISIM/IDS/ISAM/IGI/Saviynt/SailPoint/AWS, Azure Application Gateway/IBM Security Verify, Google Cloud (GCP)

Lead Architect for Governance Tools RFP and selection process included IBM Verify and IBM IGI (formally Cross Ideas), CA Governance Minder, SailPoint, Saviynt, One Identity, RSA Aveksa, AWS, Azure and Google Cloud. Unrestricted Data and complete Governance Analytics tools RFP for Stealth bits and Veronis

Skilled with migrating off OID/OAM/OIM infrastructures to other tools.

Skilled with all protocols including OID/SAML/OIDC/FIPS/FIDO 2 Federation Protocols implemented.

Least Privilege and Frictionless and password less Authentications implemented.

Highly skilled in designing SOA infrastructures to adhere to company’s business requirements, business processes and audit requirements, and Security best practices.

Capable of design, installation and support of the back end middle ware infrastructure, customization of the TDI/SDI assembly lines to incorporate HR feed's, pwd sync from SunOne LDAP's, etc, customizations of the Self-care UI.

Saviynt versions V2020.x thru V23.x, connectors deployed Workday, Oracle HCM, Azure Active Directory, Active Directory, Okta, REST API, ServiceNow, PeopleSoft, Azure SSO Integration, AS400, Salesforce, Oracle EBS, etc.

Workflow background accomplishes many customization's including email notifications to various groups, RFI, Remedy and ISR (ServiceNow) Remedy, and Jira ticket integration, approval node customizations.

Has integrated with Active Directory, SunOne LDAP, TDS, Lotus Notes, Microsoft Exchange, SUSE & RedHat Linux OS, Oracle DB's, Microsoft Access DB's, Open LDAP, DB2 DB's, RACF, as well as been a part of solutions for custom adapters for legacy applications

Migrated many applications as well as IGA supporting architectures from on-premise to AWS cloud platforms and Azure Cloud Platforms.

Extremely skilled with Business Requirement and Use Case design strategies for IGA architectures implementation and design.

Integrations with HR systems Workday, Oracle HCM, SAP, Fieldglass for Employees and Non-Employee types.

IBM Security Verify, ITIM/ISIM/ISAM/TAMeb/TAMesso/TCIM/TSIEM/OID/OAM/OID/OUD, but does include CA SiteMinder and CA's Identity Minder, OBLIX, and Courion products.

Programming/Scripting (LDAP, JavaScript, Python, Shell Scripting, Perl)

Familiar with Ansible/Chef, Urban Code Development (UDP) integrations

Certifications/Badges:

Saviynt Level 100 and Level 200

One Identity

SailPoint IIQ and ID Now

IBM Security Verify

ISAM/ISIM

ISDI/ISDS

Ping Federate/Ping Access

IdentiFence (One Identity)

RSA Aveska

AWS

GCP (Google Cloud Platform)

Azure Federation

Okta

PROFESSIONAL EXPERIENCE:

iLantus Services

IAM Program Director Architect Jan 2024 to August 2024

(Saviynt)

oGovernance and Risk Design Architecture for SailPoint ID Now IGA implementation

oSaviynt Architecture and Integrations v2020.x thru 23.x, with multiple connectors deployments: Workday, Oracle HCM, Azure Active Directory, Active Directory, Okta, REST API, ServiceNow, PeopleSoft, Azure SSO Integration, AS400, Salesforce, Oracle EBS, etc.

(SailPoint ID Now)

oOnboarding 100+ applications for .csv file UAR execution

oDesign and Development of several application integrations for full JML Processing integrations.

(IBM Security Verify/ISIM/IGI/ISAM/SDI/TDI/TDS and Saviynt)

oProvided Governance and Senior IAM overall architecture guidance for a already implemented ISIM/ISAM/IGI stack architecture.

oDesign a migration plan to upgrade the ISIM stack

oDeveloped some scripts to execute Performance Tuning and Certificate validation for ISAM stack.

oDeveloped a migration plan for ISIM/IGI stack to Saviynt IGA

oMigration from ISIM on-Premises to IBM Security Verify (SAAS solution)

oApplication integrations with IBM Security Verify

oOIDC/FIDO2 Protocols integrations

oID Proofing configurations

oAccess Certifications

AWS

oImplemented AWS Identity and Access Management Access Analyzer, automated risk profiling policies, access control using identity and or resource-based policies.

oAccess Management Policy implementations

TCS (Tata Consulting Services, Edison NJ)

COE Senior Solutions Identity and Access Management Architect Jan 2018 to Jan 2024

Design Architecture for several IGA tools, Saviynt, SailPoint IIQ and ID Now, One Identity, IBM Verify/ISAM/ISIM Infrastructure on premises to Azure Cloud

Design Architecture for several IGA tools, Saviynt, SailPoint IIQ and ID Now, One Identity, IBM Verify/ISAM/ISIM Infrastructure on premises to AWS Cloud platform.

Saviynt Architecture and Integrations v2020.x thru 23.x, with multiple connectors deployments: Workday, Oracle HCM, Azure Active Directory, Active Directory, Okta, REST API, ServiceNow, PeopleSoft, Azure SSO Integration, AS400, Salesforce, Oracle EBS, etc.

Saviynt JML processes using JSON code, Postman validation, etc.

Design and Architecture Migration Strategy for IBM MQ Server Pub/Sub Service

Design and Architecture Migration Strategy of IBM ISAM 9.0.3 on premise to Azure VM deployment of ISAM 9.0.4 appliances, to include currently deployed ISAM Policy Servers, ISAM WebSeal Reverse Proxy servers deployed in multiple zones.

Migrated ISIM Version 10 on prem to IBM Security Verify (Saas solution)

Designed IBM Security Verify solution for various clients, implementing ID Proofing, Cloud Identity User Stores, Application integrations, OIDC/FIDO2 Protocol configuration, ID Proofing configuration, Access Certifications, Identity Directory and attributes, etc.

ISIM Version 10 (On Prem) Architecture Health and Stabilization Program for NextEra account. Workflow, provisioning Policy, SDI Assembly Lines, over 2K Linux/Unix/AIX servers repaired. Mainframe (RACF) adapter, SAP Adapter Upgrade and deployment, Data Synchronization and Reporting engine repairs, Performance Tuning DB2/LDAP,

Designed and Implemented Greenfield IAM programs beginning to end

Design Migration’s and Implemented IAM tools from one platform to the new platform.

AWS Cloud platform designed IAM solutioning for replacement and migration of on-premise IGA solutions.

CloudTrail integration with AWS Access Management for Policy generation/protection of last accessed information.

Migration of 100+ applications to utilize OIDC/SAML/MFA/FIDO2 offerings of AWS Access management platform.

Architecture Design Implementation of new AAC 2-Factor Authentication Offering

Architecture Design Implementation of new FIM Authentication Offering

Application Integrations with authentication methods of Forms, EAI, Junction, Certificates, SAML, OAUTH, 2 Factor Step up

Migration of 130 Layer 7 application to other targeted platforms, AAD, ISAM, Optimal IDM project, built entire analysis of all Layer 7 applications and the existing services that are present in Layer7 supporting their application. Developed a decision tree, to identify what is the correct target platform for these applications based on their current SSO requirements.

Application Categorizations Simple, Medium, and Complex for each of the Layer 7 application to be migrated, select 59 applications for the first phase.

Migration of TDS 6.2, SDS 6.3 to SDS 6.4 servers including schema synchronization.

SDI/TDI Assembly Line design for collapse of TDS 6.2 to 6.3

Upgrade of SDS 6.3 to 6.4

Upgrade of IBM ISAM 9.0.4 to 9.0.7

Installation of SDS 6.4 with replication strategy for Master-Replica-Replica configuration.

Created Application Onboarding Process for new Azure ISAM infrastructure.

Created Technical Solution Design and Technical Implementation Design documentation for Azure Cloud ISAM deployment.

Currently design architecture for migration of ISIM 5.2 to IBM Identity Governance Intelligence (IGI 5.2.4)

On boarding applications with all types of authentications, Junctions/Virtual Junctions/SAML 2.0 Federations Configurations/OTP/, PKMS Login Configuration, Kerberos/SPENGNO/OAUTH Workflows, Multi-Factor, 2FA

Currently design architecture for integration with ServiceNow and IBM Identity Governance Intelligence (IGI 5.2.4)

Azure application gateway and Azure VM deployments for all ISAM infrastructure stacks.

Currently Creating Operational Support Guides, onboarding application guides, steady state runbooks.

Stellar communication skills with Customer interfacing and design supporting documentation.

PROFESSIONAL EXPERIENCE:

MCE Computer Services, Inc., Dallas, Texas

Senior Solutions Architect, AWS/ISIM/ISAM Solutions Architect, February 2017 thru Jan 2018

AWS Architecture Design and Development and Implementation

AWS IAM Security Solutioning.

Architecture Requirement gathering requirements, Use Case design and Technical Solution Design Documentation.

AWS Solutions Architect Certification for Professional Exam, preparing to take exam in October 2017

Server Builds for Linux and Windows on AWS

Secure with Multifactor Authentication, encryption methods, governance AWS

Solutions Design, implementation and Support of these technologies with Amazon EC2 and Elastic Load Balancing, Auto Scaling, Amazon S3, VPC, Amazon Cloud Watch and CloudTrail, Cloud Directory, AWS Certificate Manager, AWS Management Console

IBM (Consulting through Collabra), Dallas, Texas

Senior Cloud Identity Management Engineer, May 2015 to February 2017

Responsible for the daily support of the Cloud GMA lighthouse Identity Management application, includes researching Logs for WebSeal, WebSphere, TDI, TDS, HTTP, DB2 for ticketed issues.

Standard TFIM Federations, SAML Assertions, OAuth and 2 Factor Authentication creations and support including Junction Management, ACL, and certificate management for Partners and Domains for ISAM 8 and 9.

TDS Maintenance, writing LDAP scripts to administrator TDS. Running Reorg/Runstats on all TDS instances, resolving Replication Issues, schema changes, new installs and architecture.

ISIM/ISAM/TDS/TDI/TSIEM/TCIM/TFIM administration, design architecture and support.

WebSphere MQ installations, support of Queues, day to day management of message queues.

PostGres Database with PGPool and PostGres Database with RepMgr installations, support, administration.

Urban Code Deployment (UCD) standard administration and support, executions of processes, Support of UCD and Ansible servers and deployment file management.

Redis database servers standard operation support and administration

TDI/SDI Directory Integration support of servers, Assembly Lines, Instances, code deployment, monitoring, standard day to day maintenance and troubleshooting.

Jetty server standard deployment, configuration and support.

QRadar support of appliances and standard process restarts.

Upgrade Patch Management for all these platforms, ISIM, TDI, TDS, DB2 all versions, WebSphere all versions, TFIM patching all versions, WebSphere MQ, Postgres DB, Redis DB, SUSE Linux OS Patching, RHEL Linux OS Patching.

Cloud Identity and Access Management concepts and architecture design.

Gather Business Requirements with customer and document and obtain sign off, create Technical Solution Design Documents, Provide Gap Analysis, implemented best practice Phase Approach Methodology. Apply SDLC model for all design and development work.

In-depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.

Certificate Administration, expiring certificates updates, import and configuration of new certificates.

Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.

Embedded Operating Systems security controls for platforms including Windows 7, Windows 2003-2008, AIX, Solaris, Z/OS, AS/400, RHEL Linux, and others

Remedy Ticketing daily administration to include change ticket creations, support ticket management.

NewRelic familiarity with functions, monitoring, and usability.

IBM Cloud for ISIM proof of concept, included integration in the cloud and prototyping.

IBM IGA Identity Governance and Intelligence installation and proof of concept version 5.2.1

Ansible and UDP Administration, Support and design.

Stellar technical writing, documentation development, process mapping, and visual communication skills.

Excellent interpersonal and verbal communication skills, customer interaction skills.

Apply methods to systematically create architectures based on the analysis of known functional requirements, quality requirements and constraints.

Drive innovative solutions to reduce technology costs, and improve performance and scalability resulting in business flexibility and growth.

Assume responsibility for developing, implementing a completing highly complex often unique or pioneering projects.

Streamline manual ID Admin processes to a fully automated Identity Management solution, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Southwest Airlines, Dallas, Texas

Senior Solutions IAM Solutions Architect 2/2015-5/2015

Aveksa RSA MyAccess Governance

Design and Development of Collectors, Reviews, Roles, Rules, Email’s, and Workflows

Enterprise Role Development, Application Role Development, and other Roles

Architecture Requirement gathering requirements

SQL queries to analyze and update attributes and tables

Ongoing of onboarding of Applications to MyAccess

SOD and Access Recertification design for Governance utilizing RSA Aveksa MyAccess.

Northwestern Mutual (Consulting through MCE Computer Services INC), Milwaukee, Wisconsin

Senior Solutions Architect ISIM/ISAM Solutions Architect 12/2014-2/2015

Lead Security Solutions Architect My Access

Upgraded current CA IDM 12.5 environment to 12.6 SP4

Designed and implemented new architecture for CA IDM 12.6 SP4

Implemented new Provisioning for AD Groups

Implemented enablement of Encryption across all of CA IDM 12.6 SP4 infrastructure

WebSphere Clustering with 4 Nodes and Deployment Manager

Implemented CA Directory Server Replication and Load Balancing

Beacon Hill Technologies (Consulting through MCE Computer Services INC), Detroit, Michigan

Senior Solutions Architect ISIM/ISAM Solutions Architect 11/2014-12/2014

BCBSM (Michigan) Lead Security Solutions Architect

Complete Architecture Design of Day 1 Birthrights Automated Provisioning

RBAC/ABAC Requirements gathering

Developed RFP Process for new Identity Governance Tool, including pre-eval of all tools available.

Conducted onsite evaluations of 4 different vendor’s tool sets and offerings.

Produced analytics because of the Tools RFP evaluation process.

SailPoint Proof of Concept Demo of Catalog, Email Attestations, Revocations, Batch processing, Bulk Approvals Audit, Naughty List, Ability to consume data from ISIIM or other repositories, Role Cleanup entitlement views, Risk Level to Roles, Identity aware profiling, integration with Stealth-bits for unrestricted data components, and a proposed Role discovery.

Leading team of 8 Technical consultants for the new design of Day 1 automated provisioning.

Stellar technical writing, documentation development, process mapping, and visual communication skills.

Excellent interpersonal and verbal communication skills, customer interaction skills.

Ability to effectively convey ideas through oral and written communications; ability lead and work in a group or work independently; excellent analytical skills, detail oriented; ability to understand, and resolve issues.

Deployed and Integrated with Latest IBM SIM RMI Adapter's, SAM Adapters with ISIM Provisioning Policies, Adoption Polices, workflows, etc.

Extension of ISIM LDAP to support custom attributes where needed.

Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ISIM 7.0

ISAM/ISIM Testing Cycle Support for each environment (UAT/Staging/Production)

Lead Architect for Governance Tools RFP and selection process included IBM IGA (formally Cross Ideas), CA Governance Minder, SailPoint, and RSA Avesksa.

Unrestricted Data and complete Governance Analytics tools RFP for Stealthbits and Veronis

AIS (Consulting through MCE Computer Services INC), Sacramento, California

Senior Solutions Architect ISIM/ISAM Solutions Architect, 09/2014-11/2014

XEROX – TrustBuilder SME

Installation/Configuration of TrustBuilder Servers. (Development)

Configuration of Workflows, HTML Pages, Java Scripts for TrustBuilder Server

Step-up Authentication for Administration Groups

Browser Finger Printing, to enforce 2-Factor re-authentication, upon different machine or different browser detected.

2-Factor Authentication using OTP via Nexmo Service

Integration with TAM EAI for TrustBuilder Re-Direct

Deloitte (Consulting through MCE Computer Services INC), Baltimore MD

Senior Solutions Architect ISIM/ISAM Solutions Architect, 07/2014-09/2014

Installation/Configuration of ISAM 7.0 Policy Servers. (UAT/Staging/Production)

Installation/Configuration of ISAM 7.0Webseal Servers (UAT/Staging/Production)

Installation/Configuration of ISAM TDS 6.3.0.17 Internal, External, Proxy Servers with SSL (UAT/Staging/Production)

Installation/Configuration of WPM 7.0 and components (UAT/Staging/Production)

Installation/Configuration of SMS, XPS 7.0 ISAM Components (UAT/Staging/Production)

Installation/Configuration of SSL for all ISAM Components (UAT/Staging/Production)

Apply Fix packs to all ISAM components. (UAT/Staging/Production)

Stellar technical writing, documentation development, process mapping, and visual communication skills.

Excellent interpersonal and verbal communication skills, customer interaction skills.

Deployed and Integrated with Latest IBM SIM RMI Adapter's, SAM Adapters with ISIM Provisioning Policies, Adoption Polices, workflows, etc.

Extension of ISIM LDAP to support custom attributes where needed.

Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ISIM 7.0

ISAM/ISIM Testing Cycle Support for each environment (UAT/Staging/Production)

Levi Strauss (Consulting through MCE Computer Services INC) Westlake TX

Solutions Architecture ITIM Architecture Team Lead 09/2013-6/30/2014

Assumed currently deployed ITIM 5.1 infrastructure steady state support.

Designed an upgrade strategy for ITIM 5.1to ITIM 6.0 with added design of implementing new FlexPLM Adapter to support FLEX PLM databases to include SQL Group/Role development.

Designing business requirements and architecture strategy for Active Directory/Exchange ITIM automation of ID creation/lifecycle management.

Developing customization for ITIM Self Service applications to perform Hot Button Terminations.

Design, deployment and automation of Active Directory/Exchange mailbox ID creation from HR Feed processing and Non-Employee feed processing.

Streamline manual ID Admin processes to a fully automated Identity Management solution, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Stellar technical writing, documentation development, process mapping, and visual communication skills.

Excellent interpersonal and verbal communication skills, customer interaction skills.

Deployed and Integrated with Latest IBM SIM Active Directory Adapter's, with ISIM Provisioning Policies, Adoption Polices, workflows, etc.

Extension of ISIM LDAP to support custom attributes where needed.

Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ITIM 5.1

ISIM 6.0 Proposal and cost analysis with correct ROI statistics for currently deployed solution for downtime resolutions, manual reporting switching to automated reporting mechanisms, improved efficiency for Compliance and Audit remediation of accounts.

IBM Cloud Proof of concept Research for ISAM and ISIM products.

Prolific (Consulting through MCE Computer services Inc.) Manhattan, NY

Senior Identity Management and Access Management Solutions Architect 06/2012 -04/2014

Responsible for the design architecture of the Tivoli Stack including ISIM/SAM/TDS/SDI/TSIEM/TCIM, and QRadar

Technical Lead of a Team 5 developers, implementers, architects for solution designs.

In-depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.

CA SiteMinder, ControlMinder, IdentityMinder design of high availability solutions architecture. Implementation with workflow design, email notification and approval nodes. Federation integration with SAML assertion and PKI technologies.

IBM Cloud research for ISIM integration, lease space, and training.

Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.

Embedded Operating Systems security controls for platforms including Windows 7, Windows 2003-2008, AIX, Solaris, Z/OS, AS/400, Linux, and others

Stellar technical writing, documentation development, process mapping, and visual communication skills.

Excellent interpersonal and verbal communication skills, customer interaction skills.

Apply methods to systematically create architectures based on the analysis of known functional requirements, quality requirements and constraints.

Drive innovative solutions to reduce technology costs, and improve performance and scalability resulting in business flexibility and growth.

Assume responsibility for developing, implementing a completing highly complex often unique or pioneering projects.

Streamline manual ID Admin processes to a fully automated Identity Management solution, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Developed all Training and Functional Testing Documentation for Healthnet

Technical Solution Design documents for United Rental, with Use case development

Deployed and Integrated with Latest IBM SIM Active Directory Adapter's, with ISIM Provisioning Policies, Adoption Polices, workflows, etc.

Extension of ISIM LDAP to support custom attributes.

TDI/SDI skills are utilized on both accounts for integration of PeopleSoft feeds, custom feeds, SunOne Sync LDAP Directories Assembly Lines.

IBM (Consulting through CDI Corporation) (7 years Consecutive Consulting at IBM), Portland, OR

Standard Insurance IBM (Contracted through IBM & CDI Corporation) 3/2012-6/30/2013

Assumed currently deployed ITIM 4.6 infrastructure steady state support.

Currently designing an upgrade strategy for ITIM 4.6 to ITIM 5.1 with added design of implementing new Oracle Adapter to support Oracle 11g databases to include Oracle Group/Role development.

Designing business requirements and architecture strategy for Active Directory/Exchange ITIM automation of ID creation/lifecycle management.

Developing customization for ITIM Self Service applications to perform Hot Button Terminations.

Design, deployment and automation of Active Directory/Exchange mailbox ID creation from HR Feed processing and Non-Employee feed processing.

Streamline manual ID Admin processes to a fully automated Identity Management solution, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Support of ISAM/TFIM Functional Components including Junction creation/ Customization of TFIM Self-service pages, Authorizations, etc.

SAML Assertion integration’s with B2B business partners through TFIM

IBM Blue Cross Blue Shield of Massachusetts, Boston MA

Senior Identity & Access Management Solutions Architect, 12/2010- 3/2012

Responsible for the design architecture of the Tivoli Stack including ITIM/TAM/TDS/TDI/TSIEM/TCIM/ISAM/TFIM/ISIM

Technical Lead of a Team 8 developers, implementers, architects for solution designs.

In-depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.

Oracle Identity Manager (OIM) 11G support in steady state administration and migration activities to ISIM infrastructure, tasks included updates to workflow designer for the approval and provisioning workflows, Registration managements of fine grained entitlement’s. Agentless adapter upgrades and installations, configurations. Utilized Adapter factory for integrations with legacy custom applications. Implemented Generic Technology Connectors for Process flow for business processes. Established recertification processes for fine grained entitlements.

Oracle Access Management (OAM) updates, configuration, migration’s, administration of SSO enabled applications to ISAM infrastructure.

Oracle Identity Federation (OIF) updates, configurations, steady state support administration and migration activities to IFIM infrastructure.

Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.

Oracle Unified Directory and Oracle Internet Directory, Oracle Virtual Directory (OUD/OID/OVD) LDAP V3 technology, design and implemented schema changes and updates, administration of application ID’s for authentication and LDAP group authorizations. User’s updates, password and access administration, migrations of users and groups to TDS infrastructure.