CyberArk PAM IAM SME/Business Analyst

I worked remotely for a British insurance company within the IT security department on the PAM Project. Responsible for remediating audit issues within privileged access management.

• Document the as is and to be Pam processes
• Create process documents
• Create process flows
• Create process descriptions
• Create Visio flow diagrams
• Gap analysis
• Establish use cases
• Stakeholder engagements
• Capture business and technical requirements
• Create low level safe designs/RBAC for privileged users to onboard into CyberArk
• Provide suggestions and improvements suggestions where possible

I worked for an international private healthcare organisation within the Info Care IT Security team to implement a PAM solution CyberArk and manage recertifications of privileged accounts within the organisation.

• Lead CyberArk implementation for Proof of Concept
• Privileged Accounts Security 10.4
• Password Management
• Configure platforms, apply exceptions within master policy
• On-board accounts
• Create recertification process and conduct recertification of admin accounts
• Attend weekly project meetings
• Vault Administration
• Create test scripts
• Run Reports within private ark and pvwa
• Attend regular workshops
• Privileged Threat Analytics
• Testing use cases within POC test environment
• Low level design
• Administration within Private Ark
• Liaise with CyberArk engineers, Architect, Analysts, Project Managers
• Create & manage recertifications process of privileged accounts
• Provide support and guidance to team

I worked for a leading UK Insurance Company in the Identity & Access Management Department on the IAM transformation project called Tiger. I was responsible for ensuring the end-to-end delivery of the project, met within a strict time frame & budget successfully ahead of schedule. I also participated in Business Analyst duties when required. User base of (14,000).

• Business Analyst duties defining as is to be process, analysis, document new processes, create Visio flow diagrams.
• Planning & Co-ordination
• Manage the project delivery team to ensure all milestones and key deliverables are met
• Managing people against the plan
• Chasing teams, analysts, managers
• Meeting tight deadlines
• Manage budgets, project planning, risks & issues
• Produce weekly on-boarding reports
• Completing bi-weekly action plan status reports for the Project Management Office.
• Engage with Stakeholders, portfolio manager
• Liaise with Audit for milestone sign off
• Liaise with 1st Line of Defence to risk accept milestone exceptions
• Attend weekly project meetings
• Influencing & negotiating when required
• Delegation, task allocation
• On-boarding applications, data cleansing

• Creating mailboxes & distribution lists within Power Shell application
• Creating new users & leavers within Power Shell & Active Directory
• Set up users with remote access – Desktop anywhere
• NTFS file permissions, shares, folders, security groups
• Granting Privileged Access
• Grant overt access for mailboxes
• Deal with requests & incidents using Service Now Application
• Create modify & delete users within Good application
• Create modify & delete users within Blackberry 5 & 10
• Create user access within Share point
• Management of leavers
• Administer department moves
• Answer to email queries within a timely manner
• Password resets
• Ownership management and resolution of access management requests issues from beginning to end.
• Ensure agreed service level agreements are achieved and maintained
• Data access management
• Exchange 2010
• System Manager
• Lotus notes
• Assist with Identity & Access Management team mailbox queries
• IDAM via FIM Portal

I worked for a global Asset management company in their IT Security Team Providing technical support & administration for a global user base of (6,000)

• Perform day to day security administration and access control for 300 applications (add/modify/delete) following RBAC profile
• Enabling/disabling of highly privileged accounts
• Resolution of access and privilege related issues on management of remote access & service
• Liaise with to assist with application, token issues, installation of applications
• Management of break glass accounts
• Create, and delete, modify Mailboxes & distributions lists within MS exchange
• Grant access for high privilege users - admin rights
• Add/modify/delete/assign responsibilities for users in Oracle HR/Financial
• Management of leavers accounts and privileges
• Management of Exchange and Outlook accounts 2007
• Account unlocking and password reset on specific applications
• Perform account transfers to & from different departments/countries
• Create and modify Active Directory privileged accounts/generic and groups
• Permission groups on servers and shares across multiple domains
• Action authorised requests to create/modify/delete/suspend accounts
• Creation/Deletions/modifications for remote access within RSA server
• Management of authentication services - rsa tokens & vpn
• Management of iPad requests & good access for mobile devices
• Assist with BAU application request, approval, and implementation
• Perform 1st 2nd line fixes via Remedy tool
• Run weekly reports for bespoke applications/data analysis for good & Basware application
• Perform account unlocking and password reset for user & Break Glass accounts
• Ownership management and resolution of access management requests issues from beginning to end.
• Document comprehensive operational procedures & processes
• Ensure agreed service level agreements (SLA) are achieved and maintained
• Attend meetings for application take over from third party, testing application and procedures
• Train team on new applications
• Permission users to folders
• Seek approval for overt email access and permission user to the required mailbox for one month
• Manage & assist the IT access control mailbox
• Assign requests & incidents to team members via Remedy & RBAC

I worked for a Tier 1 Corporate & Investment Bank in the IAM Systems Security Team Providing support for a user base of (10,000)

• Create and modify Active Directory privileged accounts/generic and groups, shares
• Permission groups on servers and shares across multiple domains
• Create and administer break glass accounts
• Action authorised requests to create/modify/delete/suspend accounts
• Create, and delete, modify mailboxes & distributions lists within ms exchange console
• Admin across multiple Domains
• User Creation/Deletions/modifications for 100 banking applications
• User Creation/Deletions/modifications within Blackberry Server
• Request authorisation for privileged access and permission accordingly.
• Creation/Deletions/modifications for remote access within RSA server
• Assist with BAU application request, approval, and implementation
• Answering calls
• Recertification’s
• First line support & fixes via incident management tool for all applications, ms outlook, remote access tokens, blackberry, ms exchange
• Monitor and action my requests and queues and respond in a timely manner within call Grant logging system.
• Management of incident related to user access
• Manage urgent requests via our shared system security mailbox and action requests and respond to queries accordingly.
• Process high volume of requests daily, role-based templates (RBAC) & user account transfers to & from different departments.

I worked within the Products & Markets IT Security Administration team to provide support for 150 systems across Products & Markets (Wholesale & International Banking) Business for a user base of (4000) on a shift basis

• Perform User Administration activity on Exchange 2003
• Permission User and Group access to the P&M Domain infrastructure within active directory
• Permission users account according to RBAC profiles
• Perform day to day security administration and access control for over 60 applications – RBAC
• Review and implement user admin controls for new application into the P&M environment
• Document comprehensive operational procedures
• Assist in the production of Management Information (e.g. calls stats, SLAs, type of requests for control team
• Ensure agreed service level agreements (SLA) are achieved and maintained
• Evidence SARBOX controls defined within the end-to-end user admin processes to both internal & external auditors
• Assist in Business Continuity compliance
• Answering calls
• First line support, liaising with clients, traders, support teams
• Assist with BAU application request, approval, and implementation
• Perform role-based access control

I worked on the Service Desk for the Metropolitan Police for a user base of (30,000) On a 24x7 shift basis

• Call logging via Remedy
• Installing Software
• Call Ownership
• Creating Mail Groups, Mailboxes
• Performing remote fixes via terminal services
• Resetting passwords in active directory & intranet
• Troubleshooting
• Supporting bespoke applications
• Managing out of hours call outs for applications and alarms
• Creating User Accounts in Active directory and various bespoke applications
• Restarting Print Services/Spooler
• Set up printers on user profile
• Providing daily reports on calls
• Log and action email requests within Remedy
• Respond to queries within request managed inbox