Access Control Management
Resume:
Nagarjuna. T
Phone No: 817-***-****
Email id: ******************.*@*****.***
SailPoint Developer
PROFESSIONAL SUMMARY:
Experienced IAM Developer with 8 years of expertise in SailPoint IdentityIQ (IIQ) and IdentityNow, specializing in identity governance, access management, and security compliance.
Proficient in designing, developing, and implementing SailPoint solutions, including custom workflows, provisioning policies, and role-based access control (RBAC).
Strong background in integrating SailPoint with enterprise applications, cloud platforms (AWS, Azure AD, Okta), and legacy systems for seamless identity synchronization.
Expertise Java, BeanShell, XML, SQL, and PowerShell scripting to customize and extend SailPoint functionalities.
Skilled in access certifications, automated provisioning, and deprovisioning to ensure regulatory compliance with SOX, HIPAA, GDPR, and NIST standards.
Hands-on experience in troubleshooting and resolving SailPoint provisioning failures, workflow issues, and performance optimizations.
Strong knowledge of REST and SOAP APIs for integrating IAM solutions with enterprise security frameworks.
Experienced in deploying and maintaining SailPoint environments, including patch management, upgrades, and system optimizations.
Proven ability to collaborate with cross-functional teams, including security, cloud, and DevOps teams, to align IAM strategies with organizational security policies.
Adept at mentoring junior developers, leading IAM projects, and conducting technical training to enhance team capabilities.
Experienced in supporting compliance requirements, such as SOX and privacy standards, with the ability to manage complex projects, stay informed on industry trends, and clearly communicate technical information.
Oversaw system maintenance and ensured adherence to regulatory standards by managing user access permissions through SailPoint.
Designed and implemented custom solutions for Connectors, Lifecycle Management (LCM) workflows, Roles, Policies, and Reports.
Demonstrated expertise in the deployment and configuration of SailPoint connectors, including Active Directory, LDAP, JDBC, SAP GRC, SAP HANA, SAP Direct, and Delimited files.
Specialized in the implementation, configuration, and personalization of IAM systems, with advanced skills in JavaScript and BeanShell scripting to create tailored workflows, rules, and connectors for enhanced identity governance and user lifecycle management.
Education:
Bachelor's in Sathyabhama Institute of Science and Technology, TN.
Masters in Concordia University, MN.
CERTIFICATIONS:
SailPoint IdentityIQ Certified Developer
Certified Identity and Access Manager (CIAM)
AWS Certified Security – Specialty
Microsoft Certified: Azure Security Engineer Associate
TECHNICAL SKILLS:
IAM & Governance
SailPoint IdentityIQ (IIQ), IdentityNow, Identity Governance and Administration (IGA), Role-Based Access Control (RBAC), Segregation of Duties (SoD), User Provisioning & Deprovisioning, Access Governance, Privileged Access Management (PAM)
Authentication & Access Control
Single Sign-On (SSO) – Okta, Ping Identity, Azure AD, Multi-Factor Authentication (MFA) – SAML, OAuth, OIDC, WS-Federation, CyberArk, BeyondTrust, Active Directory, LDAP, Zero Trust Security
SailPoint Customization & Integrations
Connector Development (JDBC, SAP Direct, Workday, REST APIs, SCIM), Custom Rules, Lifecycle Manager (LCM), Custom Workflows, Account Aggregation, Application Onboarding, Access Request & Approval Workflows
Programming & Scripting
Java, BeanShell, JavaScript, XML, JSON, REST APIs, PowerShell, Python, SQL
Database & Middleware
Oracle, MySQL, Microsoft SQL Server, PostgreSQL, MongoDB
Cloud & DevOps
AWS IAM, Azure AD IAM, Kubernetes, Docker, Jenkins, Ansible, Terraform, CI/CD Pipelines
Compliance & Security
SOX, GDPR, HIPAA, PCI-DSS, NIST, ISO 27001, Data Privacy & Protection, IAM Audit & Compliance Reports
Operating Systems & Environments
Windows Server, Linux (Red Hat, Ubuntu), UNIX, MacOS
PROFESSIONAL EXPERIENCE:
BNY, Mellon, New York JAN 2024 – Till date
SailPoint Developer
Responsibilities:
Designed and implemented SailPoint IdentityIQ (IIQ) solutions to centralize identity governance and automate user lifecycle management.
Developed and customized workflows to manage access requests, approvals, and provisioning processes.
Integrated SailPoint IIQ with enterprise applications including Active Directory, Oracle, AWS, and SAP for seamless identity synchronization.
Created and fine-tuned custom rules and policies using Java, BeanShell, and XML to enforce security policies.
Designed role-based access control (RBAC) and attribute-based access control (ABAC) models for structured user access.
Developed and optimized SQL queries for data extraction, transformation, and compliance reporting.
Implemented access certification campaigns to ensure compliance with SOX, HIPAA, and GDPR regulations.
Built custom connectors to support legacy system integration, ensuring smooth transition from manual IAM processes.
Configured automated provisioning and deprovisioning workflows to enhance security and operational efficiency.
Developed REST and SOAP API integrations to synchronize identity attributes across various platforms.
Conducted regular SailPoint IIQ upgrades, patches, and system maintenance to maintain security and performance.
Configured and managed identity governance policies to ensure adherence to organizational security guidelines.
Automated user entitlement reviews to minimize excessive privileges and security risks.
Designed custom dashboards and reports for identity analytics and audit readiness.
Led troubleshooting efforts to resolve provisioning failures, access issues, and performance bottlenecks.
Worked closely with cross-functional teams to gather business requirements and implement IAM best practices.
Provided mentorship and training to junior developers on SailPoint IIQ customization and implementation.
Collaborated with security teams to enhance identity governance and ensure compliance with industry standards.
Designed approval workflows to streamline access requests, reducing manual intervention.
Created technical documentation, process workflows, and best practices for future reference and operational handover.
Created Okta Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions from the ground up, integrating multiple SaaS applications for seamless access management.
Accelerated application onboarding for systems like Active Directory, Azure AD, and JDBC through efficient configuration and integration with identity platforms.
US BANK - CA JAN 2023 - DEC 2023
ROLE: SailPoint Consultant
Responsibilities:
Redesigned and modernized an existing SailPoint IdentityIQ implementation to improve performance and security.
Integrated SailPoint IIQ with cloud platforms such as Azure AD, AWS IAM, and Okta for hybrid identity management.
Developed custom identity lifecycle workflows to automate Joiner, Mover, and Leaver processes.
Configured role mining and access request policies to support a more structured IAM framework.
Designed and implemented identity governance policies to ensure regulatory compliance with HIPAA, ISO 27001, and NIST.
Developed custom BeanShell scripts to enforce policy-driven provisioning and deprovisioning logic.
Configured identity synchronization between on-premises systems and cloud applications.
Built REST API-based integrations to enhance IAM interoperability with enterprise security platforms.
Optimized SailPoint IIQ batch processing and performance tuning for improved scalability.
Implemented adaptive access control mechanisms using dynamic attributes and risk-based authentication.
Designed custom workflows for privileged access requests and integrated with CyberArk for enhanced security.
Automated user access reviews and certification campaigns to meet audit and compliance requirements.
Conducted regular security assessments and IAM risk evaluations to identify and mitigate vulnerabilities.
Developed real-time access monitoring and reporting dashboards for IAM audit and security teams.
Led efforts to automate service account management, reducing manual overhead and improving compliance.
Created self-service IAM capabilities, enabling users to request access with minimal IT intervention.
Developed custom SailPoint rules and triggers to enforce conditional access based on user attributes.
Conducted user training sessions and knowledge transfer workshops for IAM administrators and support teams.
Worked closely with DevOps and Security teams to align IAM policies with organizational security posture.
Maintained comprehensive documentation, including design specifications, integration guides, and troubleshooting manuals.
Delivered hands-on SailPoint system administration expertise, ensuring optimal performance and integration with cloud environments and enterprise systems.
Actively collaborated with clients and stakeholders to identify business challenges and architect tailored SailPoint solutions that met dynamic organizational needs.
Proficient in change management, systematically overseeing changes to ensure smooth adoption and compliance with company policies.
Familiar with CI/CD (Continuous Integration/Continuous Deployment) pipelines, aiding in the development and deployment cycle to streamline updates.
Applied foundational SQL skills for querying databases, supporting data analysis and troubleshooting in identity management activities.
Integrated SailPoint IIQ with internal and third-party applications to enable birthright provisioning, facilitate access approval, and customize workflows.
Implemented SSO (Single Sign-On) solutions to provide users with unified access to multiple applications, enhancing user convenience and efficiency.
Configured Active Directory (AD) integration to pull data, allowing seamless communication with SailPoint.
Employed JavaScript and BeanShell for scripting Quick Links, customized reporting, and integration with tools like ServiceNow, thereby enhancing user experience and system efficiency.
Developed IT and Business roles according to InfoSec and HR specifications, ensuring compliance and effective access governance.
Managed user access, oversaw applications, and assigned roles using Lifecycle Manager (LCM), streamlining identity processes.
Acted as a Subject Matter Expert (SME) for critical tasks such as data migration and process testing, offering valuable guidance and know-how.
Provided use cases and process documentation for support teams, aiding in clarity and alignment regarding role management, entitlements, and provisioning.
Integrated systems using connectors like Active Directory, PeopleSoft, JDBC, Workday, Salesforce, Delimited files, and RSA to optimize identity management workflows.
Offered consulting services on best practices for SailPoint, collaborated on development, and contributed to technical design documentation for accurate solution delivery.
Conducted data analysis to confirm data accuracy before staging and launching certifications, ensuring compliance and data integrity.
Configured Segregation of Duties (SoD) protocols and customized policy violation handling to align with specific client needs, enhancing security and regulatory compliance.
DXC - BENGALURU JAN 2017 - JUL 2022
ROLE: IAM Developer
Responsibilities:
Developed and implemented advanced custom connectors for seamless integration of complex legacy applications.
Spearheaded initiatives to improve access governance by creating detailed role-based access control (RBAC) models within SailPoint.
Designed and implemented automated reporting dashboards to monitor user access, provisioning, and audit compliance metrics.
Ensured integration success by conducting detailed data analysis and attribute mapping for all applications onboarded into SailPoint.
Conducted regular system health checks and implemented proactive measures to maintain high availability of the SailPoint platform.
Provided expert guidance on identity lifecycle management, including joiner, mover, and leaver processes.
Collaborated with cybersecurity teams to identify and address security vulnerabilities in the identity management system.
Streamlined governance processes by automating access certifications and audit workflows within the SailPoint environment.
Enhanced the efficiency of flat file integrations by implementing error-handling mechanisms and improving file processing scripts.
Contributed to the resolution of high-priority incidents, ensuring SLA adherence and minimal business disruption.
Coordinated with external vendors to deploy SailPoint updates, patches, and system upgrades with zero downtime.
Designed customized identity provisioning workflows to meet the unique needs of business-critical applications.
Facilitated workshops and training sessions to upskill internal teams on SailPoint functionality and operational best practices.
Played a key role in ensuring regulatory compliance by designing audit-ready solutions for identity and access management in a highly regulated environment.
Managed and scheduled various User Entitlement Reviews for applications and databases, covering all organizational business areas.
Conducted attribute mapping in Okta and provided support for the Okta service/help desk queue, identifying and troubleshooting user issues.
Experienced in installing Okta’s Lightweight Agent for Active Directory integration.
Designed, implemented, and educated stakeholders on IAM build processes, code migration, and source control practices.
Extensively utilized SailPoint APIs to develop custom features that align with specific business needs.
Worked with SailPoint IIQ's out-of-the-box connectors and Web Services to integrate with target systems.
Gathered client requirements and used them to implement roles in SailPoint, collaborating with clients post-implementation for user testing, debugging, support, and ongoing maintenance.
Provided knowledge transfer sessions and conducted post-production support as necessary.
Developed code for various Lifecycle Events, configured Lifecycle Manager, Compliance Manager, and password management services.
Customized desktop password reset functionalities within a complex customer environment, addressing authentication challenges at the enterprise directory level.
Byjus - Vijaywada, India JAN 2016 – DEC 2016
ROLE: Software Engineer
Responsibilities:
Installed, updated, and configured Red Hat Enterprise Linux (RHEL) versions 4 to 6, demonstrating strong skills in Linux server administration.
Oversaw production servers across multiple data centers, ensuring consistent performance, and performed efficient troubleshooting to quickly address hardware and software issues.
Created Bash shell scripts to automate repetitive tasks, boosting operational productivity, and utilized Kickstart for RHEL 6 and Jumpstart for Sun Solaris 10 to streamline server provisioning.
Set up and managed various network services, including NFS, NIS, TCP/IP, DNS, LDAP, DHCP, and Yum repository servers, demonstrating proficiency in network configuration and Linux system management.
Developed and maintained custom scripts for log rotation, system monitoring, and backup operations, optimizing system performance and reliability.
Deployed and configured Virtual Machines (VMs) using KVM and VMware, supporting virtualization initiatives to improve resource utilization.
Fine-tuned Linux kernel parameters to optimize system performance based on application requirements, improving response times and system throughput.
Configured firewall rules using iptables and firewall to enhance server security, protecting systems from unauthorized access and threats.
Installed and configured Apache and NGINX web servers to host web applications, ensuring proper load balancing and secure SSL/TLS configurations.
Conducted regular system audits to verify compliance with security policies, applying best practices for hardening Linux environments.
Managed software package updates and dependencies through Yum and RPM repositories, ensuring all systems were up-to-date and compliant.
Implemented disk partitioning, LVM (Logical Volume Manager), and RAID configurations to optimize storage solutions and support data redundancy.
Configured and managed network interfaces, VLANs, and bonding for better network performance and fault tolerance in Linux environments.
Contact this candidate