Professional Documents
Culture Documents
Driven IAM and security architect with 23 years of experience, wielding SailPoint IDN and the latest solutions to
orchestrate seamless access governance across enterprise clouds. Proven ability to deliver 200% ROI through optimized
access controls, mitigating risks by 45% and accelerating business agility by 30%. Certified professional (CEH, CISA, CISM,
CHFI, CCNP, MCSE, ITIL) with an unwavering commitment to security excellence.
I am not just a resume; I am a testament to the human spirit's resilience in the face of digital darkness. I am a leader, a
mentor, a warrior in the ever-shifting landscapes of cybersecurity. Let me stand sentinel at your gates, and watch your
digital realm bask in the unwavering light of my security prowess.
Highlights
23+ years of mastery in IAM, including 10+ years spearheading SailPoint IDN implementations.
Architect and implement best-in-class solutions, seamlessly integrating SailPoint IDN with cutting-edge tools like Okta,
Azure AD, Ping Identity, CyberArk, and Forgerock.
Quantifiable success: Delivered 200% ROI through optimized access controls in a previous role, reducing security risks
by 45% and expediting business agility by 30%.
Deep understanding of security frameworks (NIST, ISO 27001), cloud security (AWS, Azure, GCP), and DevOps practices.
Proactive problem-solver, identifying and mitigating security threats through in-depth risk assessments and penetration
testing.
Collaborative leader, driving successful IAM initiatives with cross-functional teams and stakeholders.
Industry-recognized credentials: CEH, CISA, CISM, CHFI, CCNP, MCSE, and ITIL demonstrate dedication to continuous
learning and expertise.
KEY SKILLS:
SailPoint IdentityNow (IDN) IAM Business Requirements Azure Identity and Access
SailPoint IdentityIQ (IIQ) Definition Management
Identity Governance and Client-Side Advisory Azure Active Directory
Administration (IGA) Identity and Access Management Access Control Policies
Access Management (IAM) managed services OKTA/Sailpoint/Gluu Identity
IAM Architecture Solution Implementation Suite
Identity Lifecycle Management IAM Risk Assessment and Open-Source Technologies
Role-Based Access Control Governance Azure MFA
(RBAC) Zscaler ZIA & ZPA Multi-Factor Authentication
Identity Federation SecureX from Palo Alto Networks (MFA)
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
Privileged Access Management Cisco ASA and Firepower Active Directory Integration
(PAM) Firewalls IAM Automation
Multi-Factor Authentication Fortinet FortiGate Firewalls Identity as a Service (IDAAS), End-
(MFA) Snort and Suricata IDS/IPS to-End
Compliance and Risk Check Point Security Gateways Azure AD B2C and Azure AD DS
Management Web Application Firewalls (WAF) Conditional Access Policies
Security Protocols and Standards Data Loss Prevention (DLP) Identity Federation and Single
Advanced Threat Prevention Cyber Security Incident Response Sign-On
(ATP) IAM Project Leadership Cloud Security
Zero Trust Network Access Security Compliance Comprehensive IAM Design
(ZTNA) Identity Governance and Identity Threat Detection
Secure Web Gateway (SWG) Administration (IGA) IAM Process Development
VPN technologies (IPSec, SSL)
Network Security Fundamentals
2010 TO 2017- SR. SECURITY CONSULTANT & CORPORATE TRAINER, INDIAN CONSULTANCY SERVICES.
(MIDDLE EAST& AFRICA).
Spearheading the implementation of Secure Access Service Edge (SASE) framework and Secure Service
Edge (SSE) initiatives.
Orchestrating the deployment of Zero-trust Network Access (ZTNA) solutions, including Zscaler ZIA and
ZPA cloud-based platforms.
Configuring and managing connectivity from Data Centers/Branches to Zscaler Points of Presence
(POP).
Developing and implementing robust security policies for ZIA, ZPA, Data Loss Prevention (DLP),
Sandboxing, and Advanced Threat Prevention (ATP).
Leading the integration of Zscaler with Identity Providers (idP), Active Directory (AD), and Security
Information and Event Management (SIEM) systems.
Expertly configuring cloud-based Zscaler platforms, building ZIA & ZPA policies, and implementing
Device Posture Assessment Policies.
Ensuring secure onboarding of applications and users while publishing Internet applications seamlessly.
2008-2010 –DGM-SR. SECURITY SOLUTION ARCHITECT, BHARTI AIRTEL ENTERPRISE SERVICES LTD.
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
Participated in the collection and analysis of existing business and technical requirements to develop Enterprise-
wide Identity and Access Management (IAM) processes and procedures.
Working with internal teams to integrate applications and design/implement workflows.
Develop processes and automation for ongoing audits and reconciliations.
Maintenance of IAM security infrastructure.
Managed "End-user" access (application-level accounts) and "privileged access" (system/elevated-level
accounts) given to individuals who are directly responsible for system management and/or systems security, and
must have elevated or "special" permissions in order to perform their job function (most commonly IT
resources).
Identified opportunities to automate and partner with internal teams to meet those needs.
Built out of the IAM infrastructure and supporting processes.
Worked with HR, IT and other teams to ensure that IAM processes are integrated with other business processes.
Collaborated with other security professionals to identity and mitigate risks associated with access rights.
Assisted in troubleshooting and problem resolution.
Participated in development and maintenance of IAM workflows that manage provisioning of resource
entitlements to end users using AD IAM for centralized access
Workflow documentation and knowledge transfer as needed per provisioned resource in coordination with the
IAM Business Analyst
2006 TO2008-SR. CONSULTANT (SECURITY/BCP) MOHSIN HAIDER DARWISH LLC, SULTANATE OF OMAN.
On a daily basis, responsible for the provisioning of all onboarding/off boarding requests and implementation of
new user requests utilizing Active Directory and other product lines
also coordinated with customers, vendors, and internal departments to manage requests and projects
accordingly
Oversaw technical configurations of multiple identity and access management solutions and processes –
predominantly Netegrity's SiteMinder (now CA Single Sign-On), IBM Tivoli Access Manager, and Oracle Access
Manager, Active Directory and Ping Identity and CA Federation Manager (formerly Netegrity Siteminder
Federation).
Primary responsibility for the creation and optimization of onboarding and offboarding as well as other relevant
IAM scripting
Mentoring and ensuring team members receive required approvals are obtained prior to granting user access to
requested resources
Participated in defining and implementing overall access and authorizations, security strategy, policies, and
procedures
Assisted in the creation of IAM architectures
Developed policies and procedures for provisioning new user accounts and resolving permission-related issues
Performed regular account audits and provide permission reporting in response to audit requests
Worked with department leaders to understand business requirements, information technology standards,
information security policies, and other considerations that influence how identity and access solutions and
services should perform and operate using a risk-based approach
Ensured identity and access services perform according to defined processes and comply with applicable
information security requirements
Performed other duties as assigned
CERTIFICATION& TRAINING
TOGAF 9.2 Certified Enterprise Architect.
Information Security Management System (ISMS) (ISO 17799 - BS7799 - ISO 27001)
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas