IAM Systems Engineer
Royal Bank Canada
Total years of experience :9 years, 3 Months
Defined the processes, access roles/rules, and monitoring the effectiveness of access controls that are enforced by access operations functions
•Translated Identity & Access Management (IAM) strategies and policies into actionable, measurable controls based on business alignment.
•Prepared and evaluating technical needs to help migration from the RSA (VIA) to the new system SailPoint (AWS).
•Ensured that roles & responsibilities of various stakeholder groups involved in the execution of EIAM related functions are properly identified and assigned
•Ensured that Access Control Procedures are defined and maintained in alignment with all applicable policies and standards. Strengthen IAM Access Governance oversight over critical activities
•Defined and implement appropriate access remediation processes under the direct guidance of IAM Access Governance and with the direct participation of IAM Access Operation and Technology/Infrastructure Operation teams
•Addressed the root causes contributing to the systematic issues identified within the Enterprise and Access Management (EIAM)
•Worked with application owners and appropriate technical teams to improve the accuracy and timeliness of feeds coming into the EIAM platform and ensure proper maintenance and escalation processes are in place
•Maintained operational policies and standards so that changes and issues are properly addressed and approved by all stakeholders
•Influence enhancements and new projects to improve the IAM processes, products and end-user experience
•Tracked key application metrics, drive insights and builds dashboards to measure results against goals
•SOD management and other IAM compliance related activities
Worked with the business, TD resources to understand and document business requirements for onboarding systems and applications into all IAM and Privileged Identity Management tools
•Supported and provide subject matter expertise with Identity & Access Management (IAM), Privileged Access Management (PAM) processes and tools
•Triaged and disposition production support tickets effectively, accurately and efficiently as tier 3 SME.
•Participated in change management as change coordinator and application SME.
•Led requirement reviews and assisting in the entire Life Cycle and/or processes required for onboard feeds to IAM tools
• Managed the currency project related to ITSM delivery improvement
•Liaison between IAM, Technology teams and business groups to ensure feeds are delivered within the time set by the IAM program
•Verified all security processes and procedures of the Identity and Access Management group is conforming to the applicable industry and Bank's security regulations, policies and standards
•Delivered IAM solutions in an agile and proactive manner to meet enterprise needs while ensuring adherence to security and privacy policies and regulations across the globe
•Collaborated with other teams; including Enterprise Architecture, Security Engineering, Technology Infrastructure teams; to define and operationalize IAM solutions
•Worked closely with key personnel, stakeholders, and management to identify access risks and controls
Leads IAM projects as required and assess any process improvements required to reduce the risk of unmanaged access
•Served as a liaison among development teams, application services, and the business, including functioning as a subject matter expert (SME)
•Worked closely with ServiceNow functional team to build requested items and tasks using workflows to manage processes from the customer to the fulfillment teams
•Provided guidance and input to stakeholders and leaders on ITIL best practice
•Roles and rules management
Currency project for VPN client infrastructure consists of 3500 employees all around North America
• Gathered and managed requirements and undertaking detailed business and systems process analysis to fully understand the client’s requirements
• Documented solutions in the form of impact analysis, technical functional specifications or other documentation required;
•Liaising closely with the client to ensure proposed solutions are fully understood and signed off where appropriate
•Assisted in testing any changes or data fixes received before implementing to customer system
•Performed business analysis to gather requirements around application enhancements and bugs
Assisted the Support Manager, in ensuring client needs are met and dealt with in a professional and timely manner keeping all parties apprised of the issue until resolution;
• Documented solutions in the form of impact analysis, technical functional specifications or other documentation required
• Worked closely with Vendor and Project Team to achieve compliance goals
• Created solutions for internal and external clients
• Provided subject matter expertise (SME) on specific application usage or area of knowledge
• Recommended process improvements
•Worked with the business to gather extremely strong requirements
•Assisted with implementations of technology-based solutions
Provided troubleshooting and problem resolution for day to day issues through email and ticketing system
• Updated application packages on an as-needed basis
• Diagnosed and resolved hardware, software, or other network and system problems, and replaced defective components when necessary
• Installed and configured a server for helpdesk and inventory purposes
Hired as a full-time network/system administrator following initial consulting role. Provide Windows/Linux Administration, LAN/WAN/VPN administration, VMware administration. Also manage FTP servers, DNS, Active Directory, Cisco switches and wireless access points and load balancers.
• Maintain and administer computer networks and related computing environments including computer hardware, systems software, applications software, and all configurations.
• Perform data backups and disaster recovery operations.
• Administered Windows Server 2008 Active Directory, including Group Policy, creation and deletion of user accounts, managing access controls, and domain structure configuration
• Established IT procurement, vendor relationships, and set equipment standards
• Diagnose, troubleshoot, and resolve hardware, software, or other network and system problems, and replace defective components when necessary.
• Managed IT staff including Help Desk support to remote developers
• Plan, coordinate, and implement network security measures to protect data, software, and hardware.
• Implement and provide technical support for voice services and equipment, such as private branch exchange, voice mail system, and telecom system.
• Coordinate with vendors and with company personnel to facilitate purchases.
• Managed and insured the effectiveness of security solutions, including firewalls, anti- virus solutions, VPN.
in
courses: CyberArk Certification (Trustee)