Access Management Active Directory

Emmanuel S

Mobile : 972-***-****

Email :***************@*****.***

SailPoint IIQ Engineer

Professional Summary:

Over 10 years of hands-on experience in SailPoint IdentityIQ (IIQ) and Identity and Access Management (IAM) solutions, specializing in identity governance, user lifecycle management, provisioning, access reviews, RBAC, and certifications across platforms like Workday, Active Directory, SAP, and Azure AD.

Expert in developing and customizing SailPoint workflows, rules, and connectors using Java, BeanShell, PowerShell, REST APIs, and advanced JavaScript.

Proficient in integrating SailPoint with systems such as Active Directory, LDAP, JDBC, SAP GRC, SAP HANA, and OKTA (SAML applications).Proven ability to design, configure, and deploy SailPoint solutions, including multi-factor authentication (MFA), Single Sign-On (SSO), and federation using SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), and WS-Federation.

Integrated Azure AD with SailPoint for SSO and Linux server access.Extensive experience in database design and management with SQL Server, Oracle, and MySQL, ensuring seamless integration with IAM solutions. Skilled in performance tuning, system maintenance, troubleshooting, and optimizing identity management workflows.

Strong background in supporting compliance requirements such as SOX and Privacy regulations. Adept at managing user access levels, ensuring regulatory compliance, and maintaining secure IAM environments across DEV, QA, PROD, and DR configuration.

Experienced in working under Agile methodologies, collaborating with cross-functional teams, and managing complex projects. Committed to continuous process improvement, adhering to industry best practices, and effectively communicating technical concepts to meet business and security requirements.

Technical Skills:

Operating Systems: Windows, Linux

Identity and Access Management: SailPoint IIQ 6.x, 7.x, 8.x, SailPoint IdentityNow, Okta

Privileged Access Management: CyberArk

Application Servers: Tomcat

Database: Oracle, My SQL

Scripting Languages: Java, JavaScript

Education

Bachelor of Technology in Information Technology, JNTU Hyderabad, India- 2013

Master’s in Information technology management with 3.9 GPA Concordia University St. Paul, USA – 2019.

Professional Experience:

BNY, Texas Sep 2023 – present

SailPoint Developer

Responsibilities:

Designed, implemented, and customized SailPoint IdentityIQ solutions, including LCM workflows, role management, identity cubes, and attribute mappings to ensure robust identity governance and compliance with Segregation of Duties (SoD) policies.

Onboarded applications using connectors like Active Directory, JDBC, Web Services, and Delimited. Integrated SailPoint with platforms such as Workday, Entra AD, M365, ServiceNow, SAP, and configured Okta SSO/MFA solutions for seamless identity and access management.

Developed and configured lifecycle events (Joiner, Mover, Leaver, Contractor Extensions, LOA, RLOA) and various access certifications (Manager, Entitlement, Application), ensuring secure user provisioning and deprovisioning.

Utilized Java, BeanShell, JavaScript, and PowerShell to develop custom connectors, workflows, and automation scripts, enhancing platform functionality. Managed version control using Git for collaborative development and code migration.

Managed and optimized SQL Server, Oracle, and MySQL databases for identity data storage. Created complex SQL queries for reporting, data analysis, and automation, ensuring data integrity and efficient performance.

Conducted comprehensive monitoring of IIQ and PROD servers, ensuring server health, task execution, and quick resolution of production issues to minimize downtime and maintain system stability.

Designed and refined RBAC policies, collaborated with stakeholders to adjust roles per organizational changes, and optimized access management to meet regulatory and security requirements.

Ensured compliance with SOX, Privacy regulations, and internal security frameworks by consistently following best practices and maintaining secure, scalable, and efficient SailPoint environments.

Worked closely with cross-functional teams to gather requirements, provided recommendations, and delivered IAM solutions aligned with business needs. Created technical design documents and facilitated knowledge transfer to support teams.

Automated task scheduling and data feed collection processes using custom scripts, ensuring timely data processing and maintaining the integrity of identity systems.

Morgan Stanley, Dallas Dec 2020 – Aug 2023

SailPoint Developer

Responsibilities:

Design, implement, and manage SailPoint IdentityIQ solutions for identity lifecycle management, compliance, and access certifications, ensuring robust identity governance across the organization.

Develop and maintain Role-Based Access Controls (RBAC), Attribute-Based Access Controls (ABAC), and Segregation of Duties (SoD) policies, ensuring secure and compliant access management.

Develop custom workflows, rules, and provisioning logic in SailPoint IdentityIQ using Java, enhancing automation and streamlining access control functionalities. Troubleshoot and optimize SailPoint components for performance and reliability.

Design and manage relational database schemas in SQL Server, Oracle, and MySQL, optimizing data structures for performance. Build and maintain connectors for seamless integration between SailPoint and enterprise databases, ensuring efficient data synchronization.

Monitor IIQ and PROD servers, overseeing server health, task execution, and custom processes. Analyze logs and system data to troubleshoot issues, optimize configurations, and resolve performance bottlenecks.

Proficient in ServiceNow for incident and problem management, efficiently handling and resolving issues to maintain system integrity. Apply change management practices to ensure smooth, systematic updates aligned with organizational policies.

Ensure identity management solutions align with regulatory standards like SOX, GDPR, and HIPAA. Develop security policies and procedures, conduct risk assessments, and implement controls to mitigate identity-related risks.

Work closely with business stakeholders to gather and analyze identity management requirements. Collaborate with IT, Security, and Compliance teams to align SailPoint solutions with business objectives.

Troubleshoot complex issues related to provisioning, identity synchronization, connectors, and workflows. Optimize SailPoint configurations for scalability, efficiency, and system performance.

Provide technical guidance and mentorship to junior developers and team members, sharing best practices in IAM development, system optimization, and identity governance.

Mayo Clinic, MN May 2019 – Nov 2020

SailPoint Consultant

Responsibilities:

Configured organizational, business, and IT roles to manage application entitlements. Implemented Role-Based Access Control (RBAC) from scratch, aligning with least privilege security principles, and managed Segregation of Duties (SoD) policies for regulatory compliance.

Managed Identity Cubes, Identity Attribute Mappings, and developed LCM (Lifecycle Management) and LCE (Lifecycle Events) workflows (e.g., Joiner, Mover, Leaver). Provisioned user access and streamlined role assignments using Lifecycle Manager (LCM).

Developed custom workflows, rules, and provisioning logic in SailPoint IdentityIQ using Java. Utilized JavaScript and BeanShell scripting to create Quick Links, custom reporting, and automated processes, enhancing system performance.

Built and maintained connectors for seamless integration between SailPoint and enterprise systems such as Active Directory, PeopleSoft, JDBC, Workday, Salesforce, Delimited Files, and RSA. Integrated SailPoint IIQ with ServiceNow for streamlined ticketing and approval workflows.

Designed and managed relational database schemas in SQL Server, Oracle, and MySQL, optimizing IAM data structures for performance. Applied SQL skills to support data analytics, query databases, and ensure data integrity before certification activations.

Supported SOX, Privacy, and GDPR compliance requirements by developing security measures, configuring SoD policies, and customizing policy violation processes. Generated compliance reports to meet regulatory standards.

Monitored IIQ and PROD servers, managed server health, and customized processes for optimal performance. Troubleshoot complex provisioning, synchronization, and workflow issues, minimizing system downtime.

Proficient in ServiceNow for handling incidents and problem management. Managed change control processes to ensure smooth SailPoint updates and system reliability, while contributing to CI/CD pipelines for streamlined deployments.

Implemented Single Sign-On (SSO) solutions to simplify user access across multiple applications. Designed Active Directory (AD) connectivity for seamless data extraction and integration with SailPoint, improving user provisioning workflows.

Collaborated with stakeholders to gather requirements and align IAM solutions with InfoSec and HR policies. Provided consultancy on SailPoint best practices, created design documents, and facilitated knowledge transfer through use case documentation and process guidelines.

Client: HSBC, Hyderabad Oct 2015 – Dec 2017

Role: IAM Engineer

Responsibilities:

Expertise in building multi-tiered web applications using J2EE technologies like JSP, Servlets, and JDBC. Proficient with frameworks such as Swing, Struts, Spring (Core, MVC, JDBC), and Hibernate for enterprise application development.

Analyzed and resolved issues related to identity provisioning, de-provisioning, and access management, ensuring seamless IAM operations. Managed user entitlement reviews for applications and databases across the organization.

Extensively worked with SailPoint APIs to develop custom functionalities tailored to business needs. Utilized out-of-the-box connectors and Web Services for integration with target applications, ensuring smooth communication between endpoint systems and SailPoint.

Configured Lifecycle Manager, Compliance Manager, and password manager services in SailPoint. Developed custom code for various Lifecycle Events and customized desktop password reset functionalities with complex enterprise directory authentication.

Installed Okta’s Lightweight agent for integration with Active Directory and performed attribute mapping. Provided support for the Okta service/help desk queue, identifying and troubleshooting issues for seamless identity federation.

Deployed code and configuration files in Tomcat servers across Dev, Test, and Prod environments. Addressed bugs and issues during upgrade testing and maintained detailed documentation of support processes.

Monitored system performance and health, identified opportunities for process improvements and automation within the IAM framework, and ensured robust incident and service request management.

Designed, implemented, and provided guidance on IAM build processes, code migration, and the effective use of source control tools to streamline development workflows.

Gathered requirements from clients to implement roles in SailPoint. Provided user testing, debugging, and post-production support, ensuring a smooth transition and system stability after deployment.

Skilled in using IDE tools like Eclipse and Rational Application Developer (RAD) for development and troubleshooting. Applied strong Java programming expertise to optimize SailPoint components and enhance access control functionalities.

Client: Uber, Hyderabad Jul 2013 – Sep 2015

Role: IAM Analyst

Responsibilities:

Assist in the creation, management, and deletion of user accounts across various systems and applications.

Help manage user access rights, ensuring permissions align with the principle of least privilege.

Support onboarding and offboarding processes by provisioning and de-provisioning user access as required.

Participate in periodic access reviews and audits to ensure compliance with internal security policies and external regulations (e.g., SOX, GDPR).

Assist in the identification and remediation of access violations or segregation of duties (SoD) conflicts.

Document and maintain compliance records for auditing purposes.

Support password management processes, including resets, policy enforcement, and multi-factor authentication (MFA) configurations.

Assist users with authentication issues and troubleshoot login/access problems.

Assist in role mapping and ensuring that users are assigned appropriate roles based on job functions.

Gain hands-on experience with IAM tools like SailPoint, Okta, Ping Identity, Microsoft Azure AD, or CyberArk.

Assist in configuring and maintaining IAM platforms to support identity lifecycle processes.

Support the investigation and resolution of IAM-related incidents, such as unauthorized access or provisioning errors.

Work with IT and security teams to troubleshoot and resolve identity-related technical issues.

Contact this candidate