Access Management Control
Resume:
Shivani PullaPolla
**********@*****.***
SailPoint Consultant
Summary:
SailPoint Consultant with 8 years of experience designing and implementing Identity and Access Management (IAM) solutions
Designed and developed custom SailPoint workflows for lifecycle management and role automation.
Configured and customized SailPoint IdentityIQ, including workflows, connectors, and integrations, to ensure secure and efficient identity governance.
Proficient in programming languages such as Java and JavaScript, and scripting with PowerShell for developing and enhancing SailPoint functionalities.
Skilled in working with relational databases and SQL for managing user data, performing queries, and optimizing system performance.
Experienced in implementing role-based access control (RBAC) and access management solutions to meet regulatory and compliance standards in banking.
Troubleshot IAM issues related to authentication, authorization, entitlement, and permissions.
Analyzed business requirements and delivered tailored IAM solutions for enterprise-level identity management.
Strong understanding of web technologies, including HTML, CSS, SOAP, and REST, to enable seamless application integration and secure system performance.
Served as a Subject Matter Expert (SME) for data migration and business process testing.
Implemented Single Sign-On (SSO) solutions to make user authentication easier across systems.
Created essential project documentation, including BRDs, FRDs, questionnaires, project plans, and presentations.
Mentored junior IAM analysts and helped build internal expertise within the team.
Configured and monitored Identity Cubes using connectors for accuracy in provisioning processes.
Skilled in aligning IAM processes with SOX and NERC standards to ensure regulatory compliance and audit readiness.
Configured applications using Active Directory, LDAP, Flat file, and JDBC connectors to load Identity Cubes.
Provided solutions for changing business requirements, adapting IAM processes as needed.
Worked in Agile environments to quickly adapt and deliver effective solutions.
Technical Stack:
IAM Platform: SailPoint IdentityIQ
Programming Languages: Beanshell Scripting, Java, JavaScript,
Databases: SQL Server, MySQL
Directory Services: Active Directory (AD), LDAP
Integrations: API Integration, Custom Application Connectors (e.g., Workday, SAP, ServiceNow)
Task Management: Jira, Confluence.
Education:
Bachelor of Commerce in Computers, Rishi UBR College, Hyderabad, India
Master's in data science, University of Texas at Arlington,Texas
Work Experience:
BNY, Mellon, New York May 2023 – present SailPoint Developer
Responsibilities:
Led the end-to-end identity lifecycle management in SailPoint IdentityIQ, automating user provisioning, role-based access controls (RBAC), and access deactivation, ensuring enhanced security, operational efficiency, and compliance with industry regulations.
Developed custom SailPoint IIQ connectors for Active Directory (AD), LDAP, Oracle, and MySQL, enabling seamless integration and provisioning between SailPoint and enterprise systems.
Configured and optimized IdentityIQ certification campaigns for access reviews, ensuring timely completion for SOX compliance and minimizing the risk of access violations.
Managed role-based access control (RBAC) within SailPoint IIQ, defining entitlements and roles for over 10 enterprise applications, ensuring appropriate access based on user responsibilities.
Integrated Okta for Single Sign-On (SSO) across multiple platforms, streamlining authentication processes for internal and external users while improving security.
Worked closely with the audit team to ensure SailPoint IIQ configurations and workflows met the requirements for SOX compliance, particularly around access management and user provisioning.
Assisted in implementing SecureAuth for advanced access controls, integrating with SailPoint IIQ to enforce multi-layered security policies for high-risk applications.
Led the customization of password policies and password reset management within SailPoint IIQ, enhancing user satisfaction while maintaining security standards.
Performed connector debugging and troubleshooting using IIQ Console, resolving issues with Active Directory, LDAP, and Oracle integrations.
Developed custom rules in SailPoint IIQ to automate complex access control logic based on user attributes, reducing errors in access assignments by 25%.
Collaborated with business analysts to document Business Requirements Documents (BRDs) and Functional Requirements Documents (FRDs) for IAM projects, ensuring alignment with business needs.
Integrated SailPoint IdentityIQ with internal and external cloud services, enabling seamless identity and access management across hybrid infrastructures.
Provided direct support to business users for user access issues, guiding them through the SailPoint IIQ portal and resolving technical problems in a timely manner.
Worked in collaboration with cross-functional teams to ensure all IAM solutions in SailPoint IIQ aligned with SOX standards, minimizing compliance risks and improving access governance processes.
Generated and delivered reports such as Uncorrelated Accounts and New Accounts, enabling informed decision-making and enhancing access governance.
Implemented advanced workflows in SailPoint IIQ to automate multi-step processes for user lifecycle management, including access requests, approvals, and terminations, minimizing risk and improving efficiency.
Created and implemented policies in SailPoint IIQ, such as Sign-On, MFA, and Password Policies, ensuring secure access and efficient management of users and applications.
Applied strong expertise in attribute mappings, Single Sign-On (SSO), and provisioning configurations to optimize user experience and security within SailPoint IIQ.
Configured and maintained Identity Cubes within SailPoint IIQ to ensure data consistency and integrity, enabling accurate entitlement reviews and access certifications.
Collaborated on designing and documenting SailPoint IIQ configurations, including system integrations, lifecycle events, and user provisioning rules, ensuring consistency with business and security requirements
Client: Morgan Stanley, New York Oct 2021 – Apr 2023
Cybersecurity Consultant
Responsibilities:
Implemented SailPoint IdentityIQ, customizing it to align with identity and access management requirements.
Design and manage Role-Based Access Control (RBAC) policies, making sure users have the right access based on their roles.
Automate the provisioning and de-provisioning of user access, streamlining onboarding and offboarding processes.
Set up and manage access request workflows, allowing users to easily request access while keeping everything secure.
Run access certification campaigns, ensuring regular access reviews to stay compliant with security policies.
Generate detailed audit trials and reports, helping to ensure we meet internal and regulatory standards like SOX.
Ensure proper Segregation of Duties (SoD), avoiding any conflicts in user access that could pose security risks.
Used Java to enhance SailPoint IdentityIQ functionality, developing custom workflows and integrations to improve identity management processes and automate access controls.
Ran MySQL queries, checking if SailPoint IdentityIQ was properly connected and verifying if logs were being generated, helping to quickly identify and resolve any integration issues.
Customize SailPoint connectors for key systems like Active Directory and ServiceNow, making sure data flows smoothly.
Set up and maintain Single Sign-On (SSO) solutions to simplify login processes for users while keeping security tight.
Implement Multi-Factor Authentication (MFA) for added security, ensuring users authenticate securely.
Integrate cloud apps like AWS and Office 365 with SailPoint, ensuring cloud-based access is properly governed.
Troubleshoot and resolve any IAM-related incidents, ensuring quick solutions to access issues and sync problems.
Enable self-service features, allowing users to reset passwords and manage access requests without IT help.
Build and track reports and dashboards to monitor access, compliance campaigns, and potential security risks.
Automate manual workflows in SailPoint to increase efficiency and reduce human error in access management.
Ensure compliance with global regulations like GDPR and SOX, keeping SailPoint aligned with these standards.
Work closely with business teams to gather requirements, ensuring SailPoint meets both security and operational needs.
Manage projects in an Agile framework, ensuring we hit deadlines and deliver value to the business.
Mentor and train junior team members, sharing knowledge on SailPoint best practices and troubleshooting.
Integrate SailPoint with core systems like HRMS, CRM, and ERP to create a seamless user experience.
Acted as the main point of contact for all IAM matters, ensuring access and security were managed effectively and securely.
Exelon, New Jersey, D.C. Mar 2019 – Sep 2021
SailPoint Developer
Responsibilities:
Configure and customize SailPoint IdentityIQ (IIQ) for identity lifecycle management.
Develop and optimize provisioning policies, rules, and workflows for automated user access management.
Implement and fine-tune IdentityIQ connectors for seamless integration with applications like Active Directory, SAP, and cloud platforms.
Design and enforce Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and policy-driven role mining for access governance.
Manage Identity Cubes to ensure accurate identity correlation and entitlement mapping.
Conduct access certification campaigns, automating review processes to meet compliance mandates such as SOX, GDPR, and NERC.
Identify and remediate Segregation of Duties (SoD) violations using SailPoint’s policy engine.
Troubleshoot issues related to provisioning, de-provisioning, and access requests, ensuring minimal downtime.
Develop custom BeanShell scripts for advanced customization of workflows and business logic.
Implement lifecycle event triggers to automate user onboarding, transfers, and terminations.
Configure and monitor identity governance reports and dashboards for real-time access visibility.
Generate and present audit logs, compliance reports, and entitlement reviews for internal and external audits.
Collaborate with security and compliance teams to align IAM strategies with organizational policies and industry best practices.
Optimize Access Request and Approval workflows to streamline user access provisioning and minimize risk exposure.
Stay updated on SailPoint version upgrades, patches, and feature enhancements, continuously refining IAM processes.
Managed Okta for Single Sign-On (SSO) and Multi-Factor Authentication (MFA), streamlining secure access across enterprise applications.
KPMG, Hyderabad, India Jun 2015 - Aug 2017
IAM Consultant
Responsibilities:
Customized SailPoint IdentityIQ to meet organizational identity governance needs, including workflows for emergency operations like Disable, Enable, and Terminate Identities.
Built lifecycle event workflows for Joiner, Leaver, and Manager Transfer processes, ensuring smooth transitions and automated provisioning.
Designed and implemented role-based access provisioning using IT and Business Roles, including Sunrise and Sunset configurations for better role management.
Developed Birthright provisioning workflows to automate access based on predefined rules, streamlining onboarding processes.
Configured logical applications and performed data aggregation to centralize identity information and improve usability.
Integrated SailPoint with client systems using out-of-box connectors, collaborating with teams to automate access request processes.
Leveraged AWS services like EC2 and VPC to build scalable, secure systems that supported SailPoint implementations.
Enhanced existing SailPoint configurations to boost performance and scalability across various client environments.
Implemented Electronic Signatures for certifications and customized approval workflows to align with compliance standards.
Actively participated in Agile ceremonies and sprint planning sessions, driving collaboration and ensuring alignment within the team.
Contact this candidate