Sep 2021 – Nov 2023 · 2 yrs 2 mos

• In this role, I was actively engaged in designing and implementing highly effective security solutions and reference architectures for diverse environments, including cloud, container, and hybrid setups. I take a hands-on approach to driving security automation initiatives, conducting meticulous security reviews, and integrating systems with robust security measures. Implementing industry-leading Secure SDLC practices and creating comprehensive security documentation are integral parts of my responsibilities. My strategic planning skills enable me to develop long-term security roadmaps that align with organizational objectives. Ultimately, my focus remains on fortifying organizations' security posture and safeguarding critical assets through successful implementation of these measures.

Sep 2018 – Aug 2021 · 2 yrs 11 mos

• As part of the team, I played a pivotal role in establishing essential cloud security practices and solutions, empowering business to innovate rapidly within a secure cloud environment. My contributions included providing technical advisory services and conducting thorough security reviews, ensuring that cloud-based solutions met both business objectives and compliance requirements.
• I actively collaborated in various initiatives related to Identity Governance and Administration (IGA), Identity Management (IDM), and the implementation of modern authentication and authorization protocols such as OAuth, OIDC, and SAML2. Additionally, I assisted the business in adopting emerging technologies like FIDO2 and Passwordless Authentication.
• I also helped the business navigate the development and deployment of solutions for Virtual Directory, Active Directory, Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), Privileged Access Management (PAM), and enterprise DNS services.
• My expertise in Python programming and the utilization of RESTful APIs facilitated the automation of processes and improved interoperability across different systems. As a seasoned practitioner in cloud technologies, I contributed to optimizing performance and security on both AWS and Azure platforms, driving transformative changes that positioned our business for success in the cloud.

Jul 2016 – Sep 2018 · 2 yrs 2 mos

• Within an insurance market client project focused on Enterprise Information Security and Risk Management, I contributed to the development and implementation of Identity & Access Management services. This involved utilizing products such as Forgerock OpenAM, Forgerock OpenIDM, and Forgerock OpenDJ, as well as Radiant Logic Virtual Directory Server to ensure robust security measures.
• As part of an Identity & Access Management program for an eCommerce client platform, I played a key role in setting up the infrastructure and implementing measures to enhance service stability. This encompassed leveraging CA SSO suite, Splunk, Ping Directory, and implementing Captcha-based multifactor authentications to bolster security.
• In my role as a technical transition engineer for a data storage client's IAM Project, I oversaw the transition phases and documentation for the operations team. This involved facilitating the technical transition of IAM services, which were primarily based on CA SSO and reverse proxy solutions, ensuring seamless integration and continuity of operations.

Nov 2015 – Jun 2016 · 7 mos

• I was part of the IAM Engineering project for a global insurance leader client, where I played a critical role in engineering IAM and PKI solutions tailored to meet the security and compliance requirements of various business groups.

Jun 2014 – Nov 2015 · 1 yr 5 mos

• I played a pivotal role in a Web Access Management (WAM) project, where I contributed to its design, setup, and implementation. This encompassed designing and establishing the infrastructure for the WAM service, utilizing the CA Single Sign-On suite and reverse proxy solutions for robust access management. Additionally, I facilitated the setup, installation, and implementation of ADFS (Active Directory Federation Services) to enable seamless identity federation with cloud applications. Strengthening security measures, I implemented strong authentication methods and monitored the environment's performance and stability using SCOM and NAGIOS. Furthermore, I assisted in deploying the Symantec Endpoint Server service to enhance security within the project. Leveraging my proficiency in shell scripting and expertise in Linux, Solaris, and Windows administration, I ensured the smooth operation and administration of the entire WAM infrastructure.

Jun 2012 – May 2014 · 1 yr 11 mos · Noida Area, India

• SSO functionality implementations for mobile and web applications using CA SSO solution.