Harish.

Phone No:- +1 404-900-0503

Email ID: [email protected]
Cyberark Engineer
Summary:
 Experience of working as a CyberArk Engineer for 9+ years, working on designing, building, testing, and
deploying policies to manage least-permissive role-based access on end-user windows and Mac devices.
 Troubleshooting SiteMinder environment using SiteMinder test tool and SiteMinder policy server log files and
agent log files, Troubleshooting issues with Single-Sign-On between cross domains, Administration of PKI
services like SSL Certs and Partner Certs.
 mac and windows from hybrid to cloud environments.
 Created audit trails to track and analyze privilege elevation attempts using EPM
 Performed updates to support all IAM tools within the environment
 Experienced in Implementation, installation, and maintenance of CyberArk 9.6 & 9.8, 11.7 PIM Suite
 Worked on installing, implementing, deploying and maintaining EPM on different versions of CyberArk
 Experienced in CyberArk PAS suite which includes Enterprise Password Vault, Password Vault Web Access,
Central Policy Manager, Privileged Session Manager, Proxy and PACLI.
 Generating and/or designing application-level reporting for management, internal customers, and auditors
 Worked on installing, implementing, deploying and maintaining EPM on different versions of CyberArk
 Experience in implementing EPM on CyberArk and Maintaining and Configuring for the attack against
Ransomware and Credential Theft.
 Provided timely and concise status to customers and team members for engagements
 Lead junior team members and ensure their work product is in line with quality standards and expectations
 Proactively and continuously evaluate and address issues related to performance, stability, scalability, and
extensibility of the systems
 Seek opportunities for process improvements, recommending and contributing to solutions by developing risk
and opportunity plans
 Worked with adjacent teams to integrate new services with other platform web services provided user identity
and analytics
 Performed internal audits to ensure compliance requirements are met.

Professional Summary

Fidelity Investments westlake, Texas June 2022– Till Date

Sr. CyberArk IAM Consultant

Responsibilities:
 Gathered technical requirements and worked as primary point of contact
for clients CyberArk’s Operations and Maintenance Tasks.
 Implemented foundational endpoint security controls across multiple endpoints with varying platforms from
hybrid to cloud environments.
 Experienced in CyberArk PAS suite which includes Enterprise Password Vault, Password Vault Web Access,
Central Policy Manager, Privileged Session Manager, Proxy and PACLI.
 Responsible for PAM Operational tasks defining access control, user entitlements, managing applications
credentials and user access policy.
 Developed and maintained the solution System Design Document that defined the solution’s architecture
framework, component-level design, identity schema, user interfaces design, use cases and process flows.
 Managed CyberArk Security that offers wide range of services and support including implementation, consulting,
training, maintenance, online support and vault.
 Worked on cloud and on-premises version of CyberArk.
  Installed Implemented and configured Endpoint Privilege Manager in the environment.
 Worked on Implementing application account management by CyberArk on Windows, Databases and Linux
servers using AIM module.
 Experienced in Linux and Windows systems to provision new ids and find the RCA in system level and
troubleshooting.
 Integrated Service now with CyberArk
 Troubleshooting and maintenance of the Password Vault, CPM, PSM, AIM, DR Vault.
 Migrated user accounts into Password Vault using Bulk upload utility.
 Worked in Active Directory mapping connection to provision users and groups into Cyber-Ark vault and e-mail
notification failures.
 Configured Auto-Detection processes to provision and manage Windows service accounts.
 Worked with the Ticketing system (Service Now).
 Provided 24/7 On call remote support for Operations and Maintenance.
Environment: CyberArk 9.6 & 9.8, PAM, LDAD, AD Integration, UNIX, Firewall, SIEM, VMWare, DNS, TCP/IP, F5 Load
Balancer, Network Security.

Department of Veterans Affairs, Austin, TX ,Round Rock, Texas Aug 2020 – Feb 2022
Sr. CyberArk Consultant

Responsibilities:
 Involved in gathering technical requirements and establish clear definition of clients CyberArk’s responsibilities
and Maintenance.
 Experienced in Implementation, installation, and maintenance of CyberArk 9.5 PIM Suite.
 Worked on installing, implementing, deploying and maintaining EPM on different versions of CyberArk
 Worked in CyberArk PAS suite which includes Enterprise Password Vault, Password Vault Web Access, Central
Policy Manager, Privileged Session Manager.
 Managed CyberArk Security that offers wide range of services and support including implementation, consulting,
training, maintenance, online support, and vault.
 Responsible for PAM Operational tasks defining access control, user entitlements, managing applications
credentials and user access policy.
 Integrated various applications (Ansible Tower, Qualys) with Application Access Management.
 Developed and maintained the solution System Design Document that defined the solution’s architecture
framework, component-level design, identity schema, user interfaces design, use cases and process flows.
 Knowledge of Implementing application account management by CyberArk on Windows and Linux servers using
AAM module.
 Worked in Linux and Windows systems to provision new ids and find the RCA in system level and,
troubleshooting.
 Performed DNA scan.
 Onboarded and Managed Service account in CyberArk.
 Upgraded to latest version of CyberArk on the Production and DR vaults and pertaining CPM/PSM and PVWA.
 Troubleshooting and maintenance of the Password Vault, CPM, PSM, AIM, DR Vault.
 Migrated user accounts into Password Vault using Bulk upload utility.
 Knowledge in Active Directory mapping connection to provision users and groups into Cyber-Ark vault and e-
mail notification failures.
 Configured Auto-Detection processes to provision and manage Windows service accounts.
 Partner with Technology users to address security issues that privileged access management platform can
address
 Worked with Ticketing system (BMC Remedy) and Data Analytic Tool (Splunk).
 Provided 24/7 On call remote support for Operations and Maintenance.

Environment: CyberArk 9.5, PIM, LDAD, AD Integration, UNIX, Firewall, SIEM, Cisco ASA Firewalls, VMWare, DNS, TCP/IP,
F5 Load Balancer, Network Security.
SafeWay, Pleasanton CA Oct 2017 – July 2020
CyberArk Security Consultant

Responsibilities:
 Experience in implementing EPM on CyberArk and Maintaining and Configuring for the attack against
Ransomware and Credential Theft.
 Implemented and installed of different versions of CyberArk Suite 7.0, 8.1.0 and 9.3.
 Used CyberArk Privileged Account Security product suite which includes Enterprise Password Vault, Password
Vault Web Access, Central Policy Manager, Privileged Session Manager.
 Performed vulnerability assessments of systems/network device. Knowledge of Security tools
like CyberArk, IDS/IPS, SIEM, PIM, Cisco ASA Firewalls, ACS, NMAP, Nessus and Wire shark etc.
 Managed CyberArk Security that offers any enterprise a wide range of services and support options to making
digital vault solution a success; these services include implementation, consulting, training, maintenance, online
support and vault.
 Worked on PAM Operational tasks defining access control, user entitlements, managing applications credentials
and user access policy.
 Performed Privileged Access Reviews, Compliance Reporting, Access Control Processes and other associated
tasks with Privileged User Management.
 Designed, developed, and documented IAM services including single sign-on, self-service registration,
workflows, user management, management dashboard, Role-Based Access Control, Attribute-Based Access
Control, resource and business layers provisioning, credentialing, federation, and auditing.
 Developed and maintained the solution System Design Document that defined the solution’s architecture
framework, component-level design, identity schema, user interfaces design, use cases and process flows.
 Implemented application account management by CyberArk on Windows and Linux servers using AIM module.
 Upgraded CyberArk software version on the Production and DR vaults and pertaining CPM/PSM and PVWA.
 Troubleshoot and maintenance of the Password Vault, CPM, PSM, AIM, DR Vault.
 Migrated user accounts into Password Vault using Bulk upload utility.
 Involved in Privileged Identity Management, Identity & Access Management, Single Sign On, SAML, OAuth,
ADLDS, ADFS, OKTA, TLS/SSL, Active Directory.
 Fixed Active Directory mapping connection to provision users and groups into Cyber-Ark vault and e-mail
notification failures.
 Configured Auto-Detection processes to provision and manage Windows service accounts.

Environment: CyberArk 7.0, 8.1.0, 9.2.1, PIM, LDAD, AD Integration, UNIX, Firewall, SIEM, VMWare, Routers, DNS,
TCP/IP, F5 Load Balancer, Network Security.

Birlasoft, India May 2013 – Dec 2016

CyberArk Analyst

Responsibilities:
 Interacted with clients in gathering requirements, designed, and delivered solutions to install and integrate with
the existing CyberArk implementations and managed high privileged accounts to automate Privileges Access
Management process.
 Involved with Identity & Access Management Services on deployment, implementation and operations
of Privileged Identity tool, CyberArk.
 Designed access control, user entitlements, application credentials, user access policy management, session
management related to Privileged Access Management.
 Performed daily operations, support and defined access control, user entitlements, applications credentials, and
user access policy management.
 Worked on Active Directory involving users, computers, groups, policies.
 Worked with CyberArk components such as vaults, CPMs, accounts, policies, safes, usages, PACLI and providers.
  Installed & configured of components of CyberArk, like Vault, PVWA, PSM, AIM or CCP and Primary Vault, DR
Vault, CPM, PVWAs, PSM, PTA, Secure Replicator, and Password Upload Utility.
 Worked on DR Drill.
 Diagnosed, isolate, debug problems, and perform problem resolution
 Defined Access Control, User Entitlements, Manage Applications Credentials, User Access Policy Management.
 Knowledge of security and systems standards, access management, authorization/ permissions management,
network protocols, system management applications, and system & network security.
 Worked with account management on various platforms such a Windows, Unix, Active Directory, LDAP, SNMP
monitoring, databases, and storage systems.
 Installed, configured, deployment, and maintained of SiteMinder components like the Policy Server, Web Agent,
Policy Store and Federation Security Services for SAML 2.0 implementation.
 Troubleshoot issues related to SSO, authentication and authorization.
 Configured CA SiteMinder System objects like Agents, Agent Conf Objects, Host Conf Objects, User Directories,
Domains, Administrators and Schemas.
 Responsible for the replication, chaining, load balancing and other administration task.
 Involved with AD related Services including DNS, Group Management, Group Policy Management, Domain
Trusts, and Kerberos.
 Involved in the areas of server log analysis and understanding of common analysis techniques and tools on Unix
and Windows servers.
 Knowledge in AIM solutions to manage Windows and Linux application account passwords.
 Worked with Network Engineer's in the installation and configuration of firewalls.
 Knowledge of Scripting (VB script, PowerShell).
Environment: CyberArk 7, 8, 9. PIM, LDAD, AD Integration, UNIX, Firewall, IDS/IPS, SIEM, IIS, IBM HTTP SERVER, PVWA,
PSM, AIM or CCP, CPM, PTA ACS, DNS, TCP/IP, Security, VB script, PowerShell.

Education:

 Rvr & JC college

 Computer science in engineering