Chandler, Arizona, United States
As a Senior Information Security Engineer and IAM Architect with over a decade of experience, I specialize in building secure, scalable, and automated identity and access management (IAM) solutions that support enterprise-scale operations. I’m a Subject Matter Expert in CyberArk, with deep expertise across privileged access management (PAM), PowerShell automation, certificate-based authentication, and secrets management integration within DevSecOps pipelines. Throughout my career including impactful roles at Wells Fargo and Bank of America, I’ve successfully led large-scale account onboarding projects involving tens of thousands of servers, automated lifecycle operations using CyberArk REST APIs, and driven password rotation and compliance initiatives with 95% SLA adherence. My automation-first approach has reduced manual operations by up to 75%, accelerated deployment timelines, and enabled proactive monitoring using custom-built reporting frameworks. 🔐 Core Strengths: • CyberArk Suite (PVWA, PSM, CPM, AIM, CCP, REST API) • Privileged Access Governance & Security Automation • PowerShell Scripting | Identity Lifecycle Management • IAM/PAM Architecture | Hybrid & On-Prem Environments • Secrets Management | Infrastructure Hardening • Firewall Policy Auditing | Compliance & Risk Mitigation I’m open to connecting with fellow cybersecurity professionals, IAM leaders, and organizations looking to elevate their security posture through intelligent access controls and process automation. Currently pursuing a Master’s in Cybersecurity & Information Assurance, I combine technical depth with strategic vision to bridge security policy with operational execution. I thrive in zero-trust environments, collaborating across lines of business to design secure, policy-compliant, and audit-ready infrastructures.
• Privileged Access Management & Automation: Managed 10,000+ privileged accounts across CyberArk and Hitachi P-Sync; resolved 95% of incidents within SLA. Developed PowerShell-based scripts and GUIs to automate RegIIS password rotation and 2,000+ lifecycle tasks. • Led CyberArk REST API integration for unlock/reset workflows, cutting user tickets by 60%. • Onboarding & IAM Deployment: Onboarded 5,000+ accounts via AIM and CCP integrations in zero-trust environments. • Spearheaded onboarding of 36,000+ servers and 72,000+ accounts during domain migration project. Designed and tested 30+ onboarding plans, achieving 90% first-pass success rate. • Infrastructure Upgrades & DevSecOps: Automated deployment of 30+ PSM/CPM servers and led CyberArk PSM 10.3 upgrade. Supported rollout of Bravura PAS 12.3 and early planning for Conjur/Kubernetes integration. • Compliance & Reporting: Reviewed 200+ firewall rules quarterly, reducing audit exceptions by 20%. Built a PowerShell, REST API & Splunk-powered reporting framework, cutting monthly reporting time from 6 hours to 45 minutes.
• Privileged Access & Policy Enforcement: Managed 5,000+ accounts in CyberArk, ensuring compliance using PowerShell, PACLI, and batch scripts. Reduced account-related incidents by 30% through improved access control workflows. • Automation & Tool Development: Built PowerShell GUI tool and account validation scripts; cut manual steps by 50–60%. • Automated safe creation using scripting and Excel, improving onboarding time by 35%. • Cross-Team Collaboration & Support: Provided advanced support to sysadmins and DBAs, reducing CyberArk-related escalations by 25%. Queried SQL databases for CyberArk data audits, enabling faster issue resolution.
• Enterprise Device & System Management: Managed 1,000+ iPods/iPads/Kubi devices using Apple Configurator, Altiris, and AppCenter. Deployed BitLocker & MBAM 2.5 for EMR downtime systems, encrypting 200+ devices. • Infrastructure Imaging & Virtualization: Created and maintained VMware-based VDI images, improving provisioning speed by 50%. Configured encrypted SQL databases for MBAM deployment. • Documentation & Policy Enforcement: Authored technical manuals and guides; reduced ticket escalations by 25%. • Managed PC lifecycle using Altiris filters, policies, and packages.
• Help Desk & SLA Compliance: Oversaw daily service desk operations; improved resolution time by 20%. • Delivered SLA-driven technical support with >90% satisfaction rate. • Trained staff and built knowledge base to enhance first-call resolution.