Senior Security Engineer
LTIMindtree
Total years of experience :3 years, 7 Months
Having an experience in identifying Privileged Access Management use cases and implementing controls which restrict access and reduce standing privileges.
Knowledge of Role-Based Access Control (RBAC) and how it is used to enforce the principle of least privilege access.
Technologies: PAM- UNIX and LINUX, Windows Active Directory.
Tools: Security tooling - PAM, Broadcom CA Access Control, Beyond Trust Password Safe, Security log integration's (Splunk), Bitbucket
Implementation of Security products to provide Integration & Support on the environment..
Proficient in writing procedures and technical documentation.
Familiar with the integration of PAM technologies and Identity Access Management solutions with ITSM systems (Service Now).
Supporting the delivery, on-boarding, troubleshooting and fine tuning of the Operational Security tool sets to improve their effectiveness
Broadcom CA Access Control :
• Authentication and Authorization for User Access Management level.
• Control level of access SSH, RDP, Applications.
• Giving access to users based on IAM roles, and User Administration activities.
• Maintaining servers secure connection with Active Directory(LDAP) for access purpose
• Secure and logging of les, securing binaries - Dening the program rules.
• Using bash scripts to get a newly deployed servers into the correct policy management database server and also into IAM for correct groups/rules.
• Adding ACL for user if required and Clearing vulnerabilities.
• Performing Daily health check-ups on policy servers.
• Creating/Verifying sudo rules and adding it to Bitbucket repository.
• Using Active Directory (LDAP), JXplorer for users, groups and AD roles details. Beyond Trust - PAMUL :
• Centralized management of Servers, User level access to elevate required privileges.
• Fulll audits & compliance requirements
• Session Monitoring and logging of privileged activities. Session recording Management with keystroke logging
• License Maintenance/Upgradation of PAM - BIUL(Beyond Insight access Unix Linux)
• Daily health check-ups on Policy Servers and GDPR maintenance. SSSD(System Security Services Daemon) :
• Troubleshooting login issues
• Clearing server level cache if needed.
• Implementing security measures and policies to protect the systems data. Beyond Trust - Password Safe :
• Password, Session Management, Vaulting passwords and rotating automatically as per dened schedule password policy
• Monitoring active sessions and saving for auditing purpose.
• Creating multiple policies as per daily needs
• On-boarding and of-boarding of Servers and applications
Completed my graduation in Bachelor of Computer Science from Aditya Degree College, Kakinada, Andhra Pradesh, India with 8.47GPA.
URL removed due to policy violation. Please contact support for further information.