IAM Engineer
Resume:
Krishna P
Professional Summary
Experienced Technical Consultant and IAM Developer with over 8+ years of experience in software development, support, and consulting, specializing in Okta Identity and Access Management (IAM).
As a Certified Okta Professional, Admin, Consultant, and Developer, I have a strong track record of delivering secure and scalable IAM solutions for enterprise clients, with expertise in both on-premises and cloud environments.
I excel at streamlining IAM processes, ensuring seamless integrations, and driving security enhancements, all while ensuring compliance with industry standards and regulations.
Throughout my career, I have successfully integrated Okta with various applications and systems, including Azure AD, Active Directory, and LDAP, enabling secure and efficient authentication and user lifecycle management.
My technical expertise spans cloud platforms (AWS, GCP, Azure), DevOps tools (Jenkins, Terraform, Docker), and scripting (Python, PowerShell, Bash), which allows me to automate and optimize workflows for enhanced operational efficiency.
Additionally, I have worked closely with clients to ensure that IAM solutions are tailored to meet their specific security, compliance, and business needs.
In my previous roles, I have played key roles in deploying and managing complex IAM systems, leading integrations of critical applications such as Office 365, Salesforce, and Jira, and implementing MFA and risk-based authentication strategies to protect sensitive data.
I have also contributed to system performance and security monitoring through tools like Splunk and have streamlined reporting processes to ensure compliance with audit and regulatory requirements.
With a focus on continuous improvement, I have delivered significant cost and time savings for clients by automating provisioning processes, improving user access management, and reducing manual intervention in IAM workflows.
My commitment to client satisfaction, security, and operational excellence has led to measurable impacts, including improved access management, reduced troubleshooting time, and enhanced overall system security.
Certifications
Okta Certified Consultant
Okta Certified Developer
Okta Certified Administrator
Okta Certified Professional
TECHNICAL SKILLS
Identity & Access Management (IAM): Okta, Okta ASA, Okta OAG, Ping Identity, Microsoft Entra, Auth0
Web & Programming: HTML, Basic Python, PowerShell, Bash
Operating Systems: Windows 11, Linux (Ubuntu, Fedora, Kali), Unix, Mac OS
CI/CD & Automation: Jenkins, Docker, Terraform, Ansible
Version Control & Repositories: GitHub, Bitbucket
Cloud Platforms: AWS Services (EC2, S3, Lambda, RDS, LightSail), GCP, Azure AD
Monitoring & Security: Splunk, LDAP Browser, Burp Suite, Postman
Cloud Services: AWS (EC2, S3, Lambda, RDS), Azure
PROFESSIONAL EXPERIENCE
IAM Consultant
Client: Northern Trust Bank, Chicago, IL 06/2022 – Present
Strong knowledge of authentication protocols such as SAML, OAuth and access control models like RBAC, ABAC.
Implemented Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions to enhance security and user experience.
Designed and managed RBAC models to ensure appropriate access levels for users across enterprise systems.
Proficient in user provisioning, de-provisioning, role assignments, and periodic access reviews.
Ensured IAM compliance with GDPR, HIPAA, and other regulatory standards by implementing security best practices.
Quickly resolved identity-related issues to minimize system downtime and user impact.
Integrated IAM solutions with enterprise applications and services for seamless access management.
Automated IAM tasks using PowerShell and Python, improving efficiency in identity management processes.
Developed custom scripts for bulk user provisioning, access reviews, and compliance reporting
Participated in team meetings and contributed to the creation of architecture design documents for client projects.
Integrated Azure AD with Okta tenants (Preview, UAT, Production), streamlining authentication for 1,000+ users, ensuring seamless user access across environments.
Customized Okta login pages, email notifications, and applied Okta custom domain features to enhance the user experience and security.
Collaborated with application teams to troubleshoot issues and enforced password policies for secure end-user sign-on.
Led Okta Silver and Gold Smart Start projects, successfully onboarding various clients and delivering Okta solutions with measurable impact.
Onboarded critical applications, including O365, BambooHR, Slack, Salesforce, and Jira using Okta OIN integrations, improving operational efficiency and access management.
Deployed Okta Advanced Server Access for internal and client projects, automating server enrolment using Ansible, which reduced manual configuration time by 50%.
Utilized Jenkins for Continuous Integration/Continuous Deployment (CI/CD) pipelines, automating the deployment of Okta configurations and integrations.
Integrated Docker for containerizing applications, ensuring smooth deployment across environments and faster application scaling.
Administered Linux environments, supporting Okta integrations and custom configurations for client applications.
Managed AWS services, including EC2 for scalable server instances, S3 for secure file storage, and RDS for relational database management, enabling cost-effective and high-performance infrastructure for Okta applications.
Configured and managed Bitbucket for version control, enabling smooth collaboration and deployment processes across teams.
Integrated SonarQube for continuous code quality inspection, improving the stability and maintainability of the codebase for Okta integrations.
Monitored system performance and security logs using Splunk, ensuring real-time visibility into application performance and potential security issues.
Environment & Tech Stack:
Okta IAM, Azure AD, O365, BambooHR, Slack, Salesforce, Jira, Ansible, Jenkins, Docker, Linux, AWS EC2, S3, RDS, Bitbucket, SonarQube, Splunk, Okta OIN, SSO, MFA.
OKTA Security Consultant
Clients: Johnson & Johnson, New Brunswick, NJ 06/2018 – 04/2022
Provisioned 1,000+ users and groups in Okta for applications via SAML 2.0 and custom SAML integrations.
Configured 50+ custom applications for Single Sign-On (SSO) using SAML-based cloud and on-premises integrations.
Managed user onboarding, termination, and SSO provisioning, reducing onboarding time by 35%.
Assigned and managed admin-specific roles for access control, ensuring 99.9% accuracy in role assignments.
Configured user attributes and handled access requests, enhancing operational efficiency.
Created and managed API tokens while adding URLs to trusted zones for secure integrations.
Performed bulk user assignments and deletions using Postman API calls, streamlining user management by 40%.
Troubleshot and resolved 90%+ of access-related issues, including login failures and profile inconsistencies.
Generated weekly reports for revocation, reconciliation, and aggregation, improving audit efficiency.
Acted as a subject matter expert, offering best practice recommendations and security optimizations.
Engaged in cross-functional communication with application teams to resolve integration issues efficiently.
Provided knowledge transfer, training, and support to team members, improving onboarding efficiency.
Prepared detailed documentation on Okta integrations for knowledge management.
Handled daily ticket processing using ServiceNow, resolving tickets within SLA compliance.
Led weekly status meetings and daily sync calls, managing escalations routed to the team mailbox.
Resolved Multi-Factor Authentication (MFA) issues, reducing MFA-related support tickets by 40%.
Managed and deployed change requests in production environments with minimal downtime.
Responded to escalated Tier 3 client support calls, ensuring 95%+ resolution rate within SLAs.
Environment & Tech Stack:
Okta IAM, SSO, MFA, SAML, SCIM, OAuth, OIDC, Active Directory (AD), LDAP, Okta Workflows, API Integration, ITSM Ticketing Systems (ServiceNow, Jira), Postman API.
OKTA IAM Engineer
Client: Centennial Bank, Conway, AR 06/2016 - 06/2018
Integrated Okta with Active Directory (AD) and LDAP to streamline authentication and enable seamless user synchronization.
Developed and enforced Okta security policies, including conditional access and risk-based authentication, to protect sensitive financial data.
Implemented and maintained Okta API-based provisioning, enabling automated user lifecycle management and reducing manual intervention.
Configured Okta Adaptive MFA to enforce contextual access policies, enhancing security while ensuring smooth user experience.
Led Okta Workforce Identity implementations, including SSO, MFA, and user provisioning for banking applications, ensuring regulatory compliance.
Optimized Okta Universal Directory (UD) configurations, improving attribute mapping and ensuring accurate user profile synchronization.
Worked closely with application teams to onboard banking and financial applications into Okta using SAML, OAuth, and OIDC.
Managed Okta session policies and authentication flows, ensuring secure and seamless access across web and mobile banking platforms.
Developed Okta reporting and analytics dashboards for user activity monitoring, compliance tracking, and audit purposes.
Supported security audits and regulatory compliance initiatives, aligning Okta configurations with financial industry standards such as FFIEC and PCI-DSS.
Performed Okta health checks and assessments, identifying and resolving misconfigurations to improve security and performance.
Coordinated with the cybersecurity team to implement Okta Threat Insight and risk-based authentication for enhanced fraud prevention.
Assisted in post-breach access reviews, identifying unauthorized access and implementing corrective actions using Okta logs and reporting.
Environment & Tech Stack:
Okta IAM, SSO, MFA, SAML, SCIM, OAuth, OIDC, Active Directory (AD), LDAP, Okta Workflows, API Integration, ITSM Ticketing Systems (ServiceNow, Jira).
Systems Engineer
Client: TCS, Chennai, India 01/2015 – 05/2016
Installed, configured, and maintained Windows Server (2016/2019), RHEL, and Ubuntu ensuring high availability and performance.
Provided L1/L2 support for system issues, troubleshooting incidents, and resolving service requests in a 24/7 production environment.
Managed user access, permissions, and roles in Active Directory (AD), Okta, and Azure AD.
Monitored system health, logs, and performance metrics using Nagios, Prometheus, and Grafana.
Deployed and managed virtual machines (VMware ESXi, Hyper-V, AWS EC2, Azure VMs) and storage solutions.
Automated system administration tasks using PowerShell, Bash, and Python scripting.
Managed and optimized CI/CD pipelines using Jenkins, GitLab CI/CD, and Azure DevOps, supporting DevOps teams.
Implemented security policies, patch management, and vulnerability remediation using Qualys, Nessus, and WSUS.
Supported audits and compliance frameworks such as ISO 27001, SOC 2, and PCI-DSS, ensuring security best practices.
Assisted in log analysis and threat detection using Splunk, ELK Stack (Elasticsearch, Logstash, Kibana), and SIEM tools.
Deployed and managed containers using Docker, Kubernetes (EKS/AKS), and Helm for orchestration.
Managed infrastructure automation with Terraform, Ansible, and CloudFormation for IaaC.
Created and maintained SOPs, system documentation, and troubleshooting guides in Confluence and SharePoint.
Worked within ITIL-based support models, managing incidents, changes, and problem resolution via ServiceNow.
Ensured compliance with TCS SLAs, client security policies, and industry best practices.
Collaborated with cross-functional teams, developers, network engineers, and cloud architects for system improvements and infrastructure scaling.
Environment: Windows Server (2016/2019), RHEL, Ubuntu, AWS, Azure, GCP, VMware ESXi, Hyper-V, Active Directory, Okta, Azure AD, Qualys, Nessus, WSUS, Nagios, Prometheus, Grafana, Splunk, ELK Stack, PowerShell, Bash, Python, Terraform, Ansible, CloudFormation, Jenkins, GitLab CI/CD, Azure DevOps, Docker, Kubernetes (EKS/AKS), Helm, ServiceNow, ISO 27001, SOC 2, PCI-DSS
Education
Bachelors: Computer Science Engineering, 05/2015, IIIT India.
Contact this candidate