Noida, Uttar Pradesh, India
Skilled IAM Administrator with hands-on experience in SailPoint IdentityIQ and Microsoft Azure AD. Expertise in user lifecycle management (Joiner-Mover-Leaver), RBAC, identity provisioning, and access governance. Proficient in onboarding applications, managing entitlements, automating workflows in IIQ, and configuring user/group policies and conditional access in Azure AD. Focused on delivering secure, compliant, and efficient identity solutions across hybrid environments.
Led end-to-end delivery of CyberArk PAM solutions, including privileged account onboarding, Safe configuration, access policy setup, and security hardening aligned with CyberArk best practices. Administered and supported core CyberArk PAS components — EPV, CPM, PSM, PSMP, PWA, and PTA — ensuring high availability, performance, and reliability of the PAM platform. Collaborated with infrastructure, network, security, and application teams to integrate privileged access controls across Windows, Linux, Active Directory, and cloud environments. Authored and maintained comprehensive technical documentation including High-Level Design (HLD), Low-Level Design (LLD), SOPs, and operational runbooks for PAM platforms. Managed incident and change management lifecycle using ServiceNow; conducted root cause analysis (RCA) and post-incident reviews to prevent recurrence. Monitored system health and access workflows; proactively identified and resolved platform issues to maintain SLA compliance and service stability. Implemented automation scripts to reduce manual onboarding effort, improving operational efficiency within a DevOps-oriented delivery model. Worked closely with security architects and client stakeholders to deliver secure access solutions within agreed project timelines and governance frameworks. Supported privileged session monitoring and threat analytics via PTA to detect anomalous privileged activity and enforce least-privilege access controls. Tracked sprint tasks and delivery milestones using JIRA in Agile environment, ensuring on-time delivery of PAM enhancements.
Managed user identities, groups, roles, and access assignments in Microsoft Entra ID (Azure AD) to enforce secure access across cloud and hybrid environments for a global retail enterprise. Supported hybrid identity synchronization using Azure AD Connect, ensuring accurate and timely provisioning of on-premises AD accounts to Azure AD. Implemented and maintained Conditional Access policies to enforce MFA, device compliance, and location-based access controls aligned with Zero Trust principles. Executed user lifecycle operations — account creation, modification, and deprovisioning — through Azure Portal in adherence to JML (Joiner-Mover-Leaver) processes and access control policies. Integrated Azure AD with on-premises Active Directory and LDAP systems to enable centralized identity and access management across hybrid infrastructure. Provided Tier 1 and Tier 2 IAM support for login, MFA enrollment, and authentication issues; managed identity-related service tickets in ServiceNow with timely resolution and proper escalation. Conducted periodic access reviews and assisted in access certification campaigns to ensure compliance with least-privilege and separation-of-duties (SoD) policies. Standardized user onboarding and access provisioning workflows by developing IAM process documentation to reduce errors and improve audit-readiness.
Managed end-to-end identity lifecycle — Joiner, Mover, Leaver (JML) — using SailPoint IdentityIQ for 50,000+ users across multiple enterprise domains, ensuring timely and accurate access provisioning and de-provisioning. Designed and implemented Role-Based Access Control (RBAC) models and policy-based access controls (PBAC) to enforce least-privilege principles and support privileged access governance. Onboarded enterprise applications into SailPoint IIQ using JDBC, LDAP, Delimited File, and Web Service connectors, enabling secure and automated access to business-critical systems. Automated provisioning and de-provisioning workflows using SailPoint rule-based triggers and identity lifecycle events, significantly reducing manual effort and access provisioning risk. Conducted access certification campaigns and periodic access reviews to ensure compliance with internal governance policies and regulatory audit requirements. Supported Active Directory and LDAP integration within SailPoint to enable centralized authentication and role-based authorization for standard and privileged user accounts. Performed troubleshooting of IIQ workflow failures, connector issues, and provisioning errors, providing root cause analysis and production support. Promoted to Senior IT Security Administrator within two years for consistently delivering high-quality IAM implementations and exceeding performance benchmarks.