Access Management Active Directory
Resume:
Uday Kiran Reddy Alakanti
314-***-**** ****************@*****.***
Professional Summary
SailPoint Developer with over 7+ years of experience in identity governance, specializing in SailPoint IdentityNow and IdentityIQ.
Configured and managed SailPoint IdentityIQ, integrating CyberArk PAM for secure privileged access.
Designed and implemented identity governance and privileged access management across enterprise environments.
Developed and enforced Role-Based Access Control (RBAC) models, conducting role/entitlement analysis to minimize excessive access.
Managed and optimized Joiner, Mover, and Leaver workflows, ensuring automated provisioning and deprovisioning.
Performed user authentication and authorization troubleshooting, resolving access issues across Active Directory, Azure AD, and LDAP.
Integrated third-party applications into the IAM/SSO platform, enabling seamless SAML, OAuth, and OpenID Connect authentication.
Owned and executed the migration of applications and users to a new IAM/SSO platform, ensuring minimal business disruption.
Integrated SailPoint with enterprise systems, including Workday, Azure AD, Active Directory, ServiceNow, ensuring seamless identity synchronization.
Developed and automated AI-driven anomaly detection within IAM platforms to identify unauthorized access patterns.
Conducted audit and compliance reviews, enforcing least privilege principles through periodic access certification campaigns.
Designed and implemented IAM policies for multi-cloud identity governance, enhancing security across AWS, Azure, and GCP.
Designed, developed, and deployed SailPoint IdentityIQ solutions to meet evolving business and security needs.
Developed and maintained custom workflows, rules, and connectors within SailPoint IdentityIQ, enhancing automation and governance.
Performed regular updates and maintenance of the SailPoint platform, ensuring high availability, security, and compliance.
Troubleshot and resolved IAM-related issues, collaborating with cross-functional teams to support identity lifecycle and privileged access management.
Integrated CyberArk PAM with SailPoint, enabling just-in-time (JIT) privileged access management.
Configured and optimized IAM connectors, improving authentication and reducing provisioning failures across enterprise applications.
Built and managed API-based integrations for real-time access provisioning across Workday, SAP, ServiceNow, and Oracle.
Developed and automated access request workflows using Java, BeanShell, and PowerShell, reducing manual approvals.
Implemented lifecycle automation for identity provisioning, ensuring real-time updates based on HR-driven changes.
Technical Skills
Identity & Access Management: SailPoint IdentityIQ (IIQ), SailPoint IdentityNow (IDN), Okta, CyberArk PAM, ForgeRock, Ping Identity
Programming Languages: Java, BeanShell, Python, PowerShell, JavaScript, Groovy, SQL, PL/SQL
Web Technologies : REST APIs, SOAP, Web Services, JSON, XML, SCIM, GraphQL
Tools & IDEs: Eclipse, IntelliJ IDEA, Visual Studio Code, Postman, Jenkins, Git, Bitbucket, ServiceNow, JIRA
Application Servers: Apache Tomcat, IBM WebSphere, Oracle WebLogic, JBoss, GlassFish
Databases: Oracle, MySQL, Microsoft SQL Server, PostgreSQL, DB2, MongoDB
Security Standards & Authentication Protocols: SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), WS-Federation, Kerberos, LDAP, MFA
Cloud & Infrastructure: AWS IAM, Azure AD, Google Cloud IAM, Kubernetes, Docker, Terraform, Ansible
PAM Tools: CyberArk, Thycotic Secret Server, HashiCorp Vault
Development & Automation: CI/CD Pipelines, Terraform, Ansible, Docker, Kubernetes, Groovy Scripts
Testing & Debugging: JUnit, TestNG, SonarQube, Splunk, ELK Stack (ElasticSearch, Logstash, Kibana)
Operating Systems: Windows Server, Linux (Ubuntu, CentOS, Red Hat), macOS
Version Control & CI/CD: Git, GitHub, GitLab, Jenkins, SVN
Compliance & Governance: SOX, GDPR, ISO 27001, NIST, HIPAA, PCI DSS
Professional Experience
Salesforce– San Francisco, CA September 2021 to Present
Senior SailPoint Developer/ IAM Analyst
Developed, configured, and deployed identity management workflows using SailPoint IdentityNow, streamlining automated provisioning and de-provisioning of access across multiple applications.
Designed custom connectors and streamlined integrations with Active Directory, Azure AD, and other LDAP directories, enhancing identity sync and access control.
Improved access governance through the implementation of role-based access controls (RBAC) and role mining, leading to significant reduction in unauthorized access.
Created self-service access request and provisioning interfaces, enabling users to independently manage their access and reducing service desk tickets.
Optimized compliance reporting and user access reviews (UAR) by developing customized reports, ensuring adherence to audit requirements.
Wrote PowerShell and Java scripts to automate various IAM tasks, including account cleanup and role reassignment.
Hands-on expertise with IAM platforms such as Azure Entra ID, Okta, SailPoint, Saviynt, CyberArk, and BeyondTrust.
Deep knowledge of security frameworks and best practices (preferred certifications: CISSP, CISA, CISM).
Implemented API-based access control and application integration patterns to enhance enterprise security.
Designed and optimized large-scale IAM solutions, ensuring high performance and capacity planning.
Developed and enforced multi-factor authentication (MFA) policies, including risk-based and adaptive access controls.
Strong expertise in modern authentication protocols, including OpenID Connect, SAML, OAuth 2.0, and SCIM.
Translated business strategies into IAM architectural roadmaps, defining short- and long-term identity solutions.
Ensured IAM compliance with security frameworks such as NIST, ISO 27001, GDPR, SOX, and PCI DSS.
Directed identity governance policies, removing obstacles and delegating tasks to streamline IAM initiatives.
Integrated SAML, OAuth, and OpenID Connect protocols to support secure single sign-on (SSO) functionality across enterprise applications.
Built API integrations to support cross-platform identity data synchronization, contributing to seamless data flow and reduced identity management overhead.
Collaborated with cybersecurity teams to implement multi-factor authentication (MFA) policies across critical applications, strengthening security posture.
Used Postman to test API integrations, ensuring consistency and security within the IdentityIQ environment.
Produced detailed documentation for IdentityIQ configurations and processes in Confluence, aiding knowledge transfer to team members.
Engaged in Agile development cycles, contributing to bi-weekly sprints and ensuring prompt delivery of IAM solutions.
Supported ISO 27001 and PCI DSS compliance efforts by aligning IAM policies with industry standards and regulatory requirements.
Designed and managed CI/CD pipelines for IAM code deployment, reducing deployment time and enhancing process efficiency.
Enhanced user experience through tailored dynamic dashboards, providing real-time access analytics for stakeholders.
Technologies Used: SailPoint IIQ, IdentityNow, Okta, CyberArk, Azure AD, AWS IAM, Active Directory, LDAP, Workday, ServiceNow, SAP, Oracle, SCIM, REST APIs, Java, BeanShell, Python, PowerShell, SQL, Terraform, Ansible, Docker, Kubernetes, Git, Jenkins, JIRA, Splunk, OAuth 2.0, SAML, RBAC,
Esurance Insurance Services, Inc– Sioux Falls, SD July 2019 to August 2021
Identity Management Engineer/ SailPoint Engineer
Configured and deployed SailPoint IdentityIQ solutions, managing full user lifecycle processes including provisioning, de-provisioning, and user access review.
Conducted role mining and analysis to create optimized RBAC policies, improving efficiency and minimizing risk of privilege misuse.
Developed workflows and approval processes for automated access provisioning and de-provisioning, reducing manual intervention.
Integrated SailPoint with CyberArk Privileged Access Management (PAM) for streamlined management of high-level access to critical systems.
Implemented OAuth, SAML, and SCIM protocols to enable secure federation and integration with other IAM systems like Okta and Ping Identity.
Collaborated with cross-functional teams to align IAM frameworks with business and IT security strategies.
Conducted disaster recovery and business continuity planning, strengthening IAM resilience against threats.
Led IAM risk management initiatives, ensuring security, compliance, and governance across enterprise applications.
Developed clear and effective IAM communications, tailoring technical details to different audiences.
Held teams accountable for IAM commitments, ensuring on-time delivery of secure, scalable solutions.
Utilized SQL and PL/SQL for backend data operations and audit reporting, supporting compliance with regulatory requirements.
Customized access reviews and audit reporting to meet HIPAA and SOX compliance, aiding in maintaining audit-ready status.
Built user access request forms and delegated administration workflows, simplifying access management for non-technical users.
Enhanced data synchronization using RESTful APIs, ensuring accurate identity data across systems and directories.
Conducted testing using Postman and managed bug fixes, ensuring high-quality performance in production environments.
Streamlined CI/CD deployment for IdentityIQ configurations, increasing deployment speed and reducing operational downtime.
Documented procedures, configurations, and project workflows in JIRA and Confluence, improving transparency and team collaboration.
Designed reports and visualizations for access data using SailPoint analytics, providing valuable insights into access patterns.
Trained team members on SailPoint tools and best practices, fostering a collaborative work environment.
Ensured compliance with ISO 27001 and NIST standards, supporting a secure and compliant IAM environment.
Technologies: SailPoint IIQ, AWS IAM, Active Directory, CyberArk, Okta, Azure AD, LDAP, Workday, ServiceNow, SAP, Oracle, SCIM, REST APIs, SAML, OAuth 2.0, RBAC, Java, BeanShell, Python, PowerShell, SQL, Terraform, Ansible, Docker, Kubernetes, Git, Jenkins, JIRA, Splunk.
Intuit Inc.– Mountain View, CA February 2017 to June 2019
IAM Developer/ SailPoint Engineer
Developed and managed SailPoint IdentityIQ integrations with multiple systems including Active Directory, Oracle databases, and HR systems, enhancing identity synchronization across platforms.
Created and implemented automated provisioning workflows, reducing access request processing time by integrating with approval workflows.
Configured single sign-on (SSO) and multi-factor authentication (MFA) for enterprise applications, promoting secure and convenient user access.
Used Java, BeanShell, and Groovy to customize IdentityIQ workflows, tailoring access controls to meet business-specific needs.
Designed entitlement review and user access review processes, ensuring periodic access checks to maintain security compliance.
Automated role-based access assignments through role mining and role management, aligning user roles with business requirements.
Enhanced reporting capabilities by creating custom reports and audit logs, supporting audit and compliance teams.
Monitored IAM system performance and resolved issues, collaborating with support teams to maintain system uptime.
Built CI/CD pipelines for SailPoint deployments, facilitating smoother updates and minimizing downtime.
Integrated IAM solutions with enterprise applications such as Workday, ServiceNow, SAP, and Oracle to streamline user identity management.
Implemented role-based and attribute-based access controls (RBAC/ABAC) to enhance security and reduce excessive access permissions.
Developed custom IAM workflows and connectors, leveraging Java, BeanShell, Python, and PowerShell for automation.
Supported regulatory compliance initiatives such as SOX, HIPAA, and GDPR by aligning IAM policies with regulatory standards.
Utilized Jenkins and Git for version control and deployment, streamlining the deployment cycle and enhancing change management.
Engaged with Agile teams to continuously refine identity workflows and optimize IAM processes.
Collaborated with internal teams to create user-friendly self-service workflows, simplifying access requests for end users.
Documented IAM configurations, integration setups, and access control processes, contributing to a comprehensive knowledge base.
Ran automated tests on new workflows using Postman to identify and resolve issues before deployment.
Education
Masters in Information Technology Management, Webster University – Saint Louis
Contact this candidate