IMTEYAZ AHMAD

Cybersecurity Sentinel: 23 Years of Fortifying Digital Frontiers

Plot 105, Sangam Nagar, Ring Road, Nagpur -440013
Cell: /WhatsApp+91-8600038911/7208835363
Email:imteyazahmad05@gmail.com Skype: imteyazbabu
Passport Validity: 2029
PROFESSIONAL SUMMARY:

Driven IAM and security architect with 23 years of experience, wielding SailPoint IDN and the latest solutions to
orchestrate seamless access governance across enterprise clouds. Proven ability to deliver 200% ROI through optimized
access controls, mitigating risks by 45% and accelerating business agility by 30%. Certified professional (CEH, CISA, CISM,
CHFI, CCNP, MCSE, ITIL) with an unwavering commitment to security excellence.

I am not just a resume; I am a testament to the human spirit's resilience in the face of digital darkness. I am a leader, a
mentor, a warrior in the ever-shifting landscapes of cybersecurity. Let me stand sentinel at your gates, and watch your
digital realm bask in the unwavering light of my security prowess.

Highlights

23+ years of mastery in IAM, including 10+ years spearheading SailPoint IDN implementations.

Architect and implement best-in-class solutions, seamlessly integrating SailPoint IDN with cutting-edge tools like Okta,
Azure AD, Ping Identity, CyberArk, and Forgerock.

Quantifiable success: Delivered 200% ROI through optimized access controls in a previous role, reducing security risks
by 45% and expediting business agility by 30%.

Deep understanding of security frameworks (NIST, ISO 27001), cloud security (AWS, Azure, GCP), and DevOps practices.

Proactive problem-solver, identifying and mitigating security threats through in-depth risk assessments and penetration
testing.

Collaborative leader, driving successful IAM initiatives with cross-functional teams and stakeholders.

Industry-recognized credentials: CEH, CISA, CISM, CHFI, CCNP, MCSE, and ITIL demonstrate dedication to continuous
learning and expertise.

KEY SKILLS:
 SailPoint IdentityNow (IDN)  IAM Business Requirements  Azure Identity and Access
 SailPoint IdentityIQ (IIQ) Definition Management
 Identity Governance and  Client-Side Advisory  Azure Active Directory
Administration (IGA)  Identity and Access Management  Access Control Policies
 Access Management (IAM) managed services  OKTA/Sailpoint/Gluu Identity
 IAM Architecture  Solution Implementation Suite
 Identity Lifecycle Management  IAM Risk Assessment and  Open-Source Technologies
 Role-Based Access Control Governance  Azure MFA
(RBAC)  Zscaler ZIA & ZPA  Multi-Factor Authentication
 Identity Federation  SecureX from Palo Alto Networks (MFA)
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
  Privileged Access Management
(PAM)
 Multi-Factor Authentication
(MFA)
 Compliance and Risk
Management
 Security Protocols and Standards
 Advanced Threat Prevention
(ATP)
 Zero Trust Network Access
(ZTNA)
 Secure Web Gateway (SWG)
 VPN technologies (IPSec, SSL)
 Network Security Fundamentals

 Cisco ASA and Firepower
Firewalls
 Fortinet FortiGate Firewalls
 Snort and Suricata IDS/IPS
 Check Point Security Gateways
 Web Application Firewalls (WAF)
 Data Loss Prevention (DLP)
 Cyber Security Incident Response
 IAM Project Leadership
 Security Compliance
 Identity Governance and
Administration (IGA)

 Active Directory Integration
 IAM Automation
 Identity as a Service (IDAAS), End-
to-End
 Azure AD B2C and Azure AD DS
 Conditional Access Policies
 Identity Federation and Single
Sign-On
 Cloud Security
 Comprehensive IAM Design
 Identity Threat Detection
 IAM Process Development

LEADERSHIP CAREER HISTORY:

2021 TO 2023–PRINCIPAL IAM CONSULTANT, TECHNAVIOUS TECHNOLOGIES SERVICES.
 Led the design, implementation, and optimization of a SailPoint IDN solution for a global organization
with 10,000+ users, achieving 200% ROI through streamlined access governance.
 Integrated SailPoint IDN with Okta and Azure AD, automating user provisioning and
deprovisioning, reducing access risks by 45%.
 Conducted regular security assessments and penetration testing, proactively identifying and
remediating vulnerabilities.
 Delivered training sessions on SailPoint IDN best practices, empowering users and administrators.
 Led the implementation of SailPoint IIQ solution, ensuring seamless integration with existing IAM
systems and meeting business requirements.
 Designed and configured identity governance policies, access controls, and role definitions to enforce
security best practices and regulatory compliance.
 Collaborated with cross-functional teams to define user access requirements and streamline access
request and approval processes.
 Conducted user access reviews and audits to ensure adherence to security policies and mitigate risks
associated with inappropriate access.
 Provided training and guidance to internal stakeholders on SailPoint IIQ functionalities, best practices,
and troubleshooting techniques.
 Contributed to the development of IAM roadmap and strategy to align with business objectives and
future growth.
 Architected and implemented a cloud-based CISO SASE solution using Zscaler ZIA and ZPA for 10,000+
users, resulting in a 35% reduction in security incidents and streamlining remote access for 80% of the
workforce.
 Designed and built 15 secure network tunnels between DC/Branch to Zscaler POPs, boosting
performance by 15% and reducing response times by 10%.
 Configured and managed ZIA and ZPA policies, including DLP rules that prevented 200+ data
exfiltration attempts, and ATP policies that blocked 500+ malware infections.
 Integrated Zscaler with Okta/AD/Splunk, achieving single sign-on for 95% of users and enhancing
security data correlation by 30%.
 Led vulnerability assessments and penetration tests, identifying 45 critical vulnerabilities and mitigating
them within 30 days.
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
  Mentored 5 junior engineers, increasing their security knowledge and contributing to a 10% team
productivity gain.

2018 TO 2021 – ENTERPRISE INFRASTRUCTURE ARCHITECT, QATARGAS OPERATING COMPANY LTD.

 Led the implementation of SailPoint IIQ solution, ensuring seamless integration with existing IAM
systems and meeting business requirements.
 Designed and configured identity governance policies, access controls, and role definitions to enforce
security best practices and regulatory compliance.
 Collaborated with cross-functional teams to define user access requirements and streamline access
request and approval processes.
 Conducted user access reviews and audits to ensure adherence to security policies and mitigate risks
associated with inappropriate access.
 Provided training and guidance to internal stakeholders on SailPoint IIQ functionalities, best practices,
and troubleshooting techniques.
 Contributed to the development of IAM roadmap and strategy to align with business objectives and
future growth.
 Pioneering the implementation of Secure Access Service Edge (SASE) framework and Secure Service
Edge (SSE) initiatives with a comprehensive 23-year background.
 Orchestrating the deployment of Zero-trust Network Access (ZTNA) solutions, including Zscaler ZIA and
ZPA cloud-based platforms.
 Configuring and managing connectivity from Data Centers/Branches to Zscaler Points of Presence
(POP).
 Developing and implementing robust security policies for ZIA, ZPA, Data Loss Prevention (DLP),
Sandboxing, and Advanced Threat Prevention (ATP).
 Leading the integration of Zscaler with Identity Providers (idP), Active Directory (AD), and Security
Information and Event Management (SIEM) systems.
 Expertly configuring cloud-based Zscaler platforms, building ZIA & ZPA policies, and implementing
Device Posture Assessment Policies.
 Ensuring secure onboarding of applications and users while publishing Internet applications seamlessly.

2010 TO 2017- SR. SECURITY CONSULTANT & CORPORATE TRAINER, INDIAN CONSULTANCY SERVICES.
(MIDDLE EAST& AFRICA).
 Spearheading the implementation of Secure Access Service Edge (SASE) framework and Secure Service
Edge (SSE) initiatives.
 Orchestrating the deployment of Zero-trust Network Access (ZTNA) solutions, including Zscaler ZIA and
ZPA cloud-based platforms.
 Configuring and managing connectivity from Data Centers/Branches to Zscaler Points of Presence
(POP).
 Developing and implementing robust security policies for ZIA, ZPA, Data Loss Prevention (DLP),
Sandboxing, and Advanced Threat Prevention (ATP).
 Leading the integration of Zscaler with Identity Providers (idP), Active Directory (AD), and Security
Information and Event Management (SIEM) systems.
 Expertly configuring cloud-based Zscaler platforms, building ZIA & ZPA policies, and implementing
Device Posture Assessment Policies.
 Ensuring secure onboarding of applications and users while publishing Internet applications seamlessly.
 2008-2010 –DGM-SR. SECURITY SOLUTION ARCHITECT, BHARTI AIRTEL ENTERPRISE SERVICES LTD.

Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
  Participated in the collection and analysis of existing business and technical requirements to develop Enterprise-
wide Identity and Access Management (IAM) processes and procedures.
 Working with internal teams to integrate applications and design/implement workflows.
 Develop processes and automation for ongoing audits and reconciliations.
 Maintenance of IAM security infrastructure.
 Managed "End-user" access (application-level accounts) and "privileged access" (system/elevated-level
accounts) given to individuals who are directly responsible for system management and/or systems security, and
must have elevated or "special" permissions in order to perform their job function (most commonly IT
resources).
 Identified opportunities to automate and partner with internal teams to meet those needs.
 Built out of the IAM infrastructure and supporting processes.
 Worked with HR, IT and other teams to ensure that IAM processes are integrated with other business processes.
 Collaborated with other security professionals to identity and mitigate risks associated with access rights.
 Assisted in troubleshooting and problem resolution.
 Participated in development and maintenance of IAM workflows that manage provisioning of resource
entitlements to end users using AD IAM for centralized access
 Workflow documentation and knowledge transfer as needed per provisioned resource in coordination with the
IAM Business Analyst

 2006 TO2008-SR. CONSULTANT (SECURITY/BCP) MOHSIN HAIDER DARWISH LLC, SULTANATE OF OMAN.
 On a daily basis, responsible for the provisioning of all onboarding/off boarding requests and implementation of
new user requests utilizing Active Directory and other product lines
 also coordinated with customers, vendors, and internal departments to manage requests and projects
accordingly
 Oversaw technical configurations of multiple identity and access management solutions and processes –
predominantly Netegrity's SiteMinder (now CA Single Sign-On), IBM Tivoli Access Manager, and Oracle Access
Manager, Active Directory and Ping Identity and CA Federation Manager (formerly Netegrity Siteminder
Federation).
 Primary responsibility for the creation and optimization of onboarding and offboarding as well as other relevant
IAM scripting
 Mentoring and ensuring team members receive required approvals are obtained prior to granting user access to
requested resources
 Participated in defining and implementing overall access and authorizations, security strategy, policies, and
procedures
 Assisted in the creation of IAM architectures
 Developed policies and procedures for provisioning new user accounts and resolving permission-related issues
 Performed regular account audits and provide permission reporting in response to audit requests
 Worked with department leaders to understand business requirements, information technology standards,
information security policies, and other considerations that influence how identity and access solutions and
services should perform and operate using a risk-based approach
 Ensured identity and access services perform according to defined processes and comply with applicable
information security requirements
 Performed other duties as assigned

2000-2006 IT EXECUTIVE, SKJ GROUP, BRUNEI DARUSSALAM

 Administered and maintained IAM systems, including user provisioning, role management, and access policy
enforcement.
 Collaborated with application teams to integrate IAM solutions for secure identity management.
 Supported identity lifecycle management processes, including onboarding, offboarding, and access reviews.
 Assisted in the development and documentation of IAM policies, procedures, and best practices.
Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas
EDUCATION &TRAINING
 MASTER OF SCIENCE - INFORMATION TECHNOLOGY.
 BACHELOR OF SCIENCE - INFORMATION TECHNOLOGY.
 MASTER LEVEL STUDIES ON “RISK MANAGEMENT” FROM OXFORD UNIVERSITY
 MASTER LEVEL STUDIES ON “STRATEGIC MANAGEMENT” FROM IIM BANAGALORE.

CERTIFICATION& TRAINING
 TOGAF 9.2 Certified Enterprise Architect.

 Multi Cloud Solutions Architect (Azure/GCP/AWS/IBM)

 Information Technology Infrastructure Library (ITIL) Certified ITSM professional.

 Certified Information System Auditor(CISA)

 Certified Information System Security Manager(CISM)

 Certified Ethical Hacker(CEH)v8

 Certified Computer Hacking Forensic Investigator (CHFI)v8

 Microsoft Certified System Engineer (MCSE 2000)

 Cisco Certified Network Professional (CCNP)

 Sun Solaris System Administration (I & II)

 High Availability Management (MS, VERITAS & SUN Clustering)

 Disaster Recovery Management (VERITAS & Acronis)

 Information Security Management System (ISMS) (ISO 17799 - BS7799 - ISO 27001)

 Balanced Score Card Solutions Deployment.

 ISO 9000:2000 Certified Internal Quality Auditor Total Quality Management.

 dvanced Training on Strategy &Performance Management/ Balanced Scorecards Solution Deployment.

 Advanced Training in Business Continuity& High Availability Management.

Travelled to Saudi Arabia, Oman, Malaysia, Singapore, Qatar, UAE, Nepal, Mongolia, China, Africa/Sudan, and Earned certifications
CISA, CIA, CISM, CHFI, CEH, ISO-22301, ISO-27001, COBIT, SABSA, TOGAF, ITIL, CCNP, MCSE, Sun Solaris and Symantec Veritas