Maxwell Shiundlana - Senior IAM Technical Architect

Johannesburg South, South Africa

Experience

Aug 2023 - Present

1 year 8 months

Johannesburg, South Africa

Senior IAM Technical Architect

BCX

Design overall architecture of IAM processes and identifying opportunities for improvement.

Onboard several out-of-box SailPoint connectors/application to connect various client Systems (LDAP, Java Based Connectivity, Active Directory, Web Services, SCIM, SAP HR Direct, Azure, Delimited, etc)

Direct provisioning using direct connectors for integration of target application (Application onboarding).

Working across functions to improve IAM solutions to address compliance requirements and embrace best practices.

Manage SailPoint and CyberArk deliverables and provide guidance and support to the team with tasks and activity management.

Designed and implemented migration from FIMM/MIM (Microsoft Identity Manager) to SailPoint IIQ.

Implemented SIEM Plugin in SailPoint for logs and events monitoring

Design, implement and manage Joiner, Mover, Leaver and Reinstate enhancements to improve onboarding/offboarding/transitions of employees through Lifecycle events, Workflows and Role Based Access Control.

Implementation of SailPoint DR environment (Data Recovery Environment) for service restoration and recovery from application unavailability, to minimise risk and major business impact.

Implementation of Role Based Access Control, SOD and Access Certification

Manage SailPoint and CyberArk upgrades and patch fixes.

Designed architecture migration plans for evolution of access (e.g., from password-based to broad multi-factor; evolution of federation in a cloud-based application world)

Responsible for ongoing Sailpoint and Cyber Ark Application Health checks i.e. Applications connectivity, Task management and overall system performance.

Provide analysis and architecture design for the implementation of Contractor/Non-perm employee management system.

Mar 2022 - Jul 2023

1 year 5 months

London, United Kingdom

Senior IAM Technical Architect

Requirement gathering, requirement discussions with stakeholders, design discussions and sign-off

Prepare Architecture, High-Level and Low-Level Design Documents.

Built Joiner, Mover and Leaver workflows to manage user LifeCyle.

Drove the migration of OneIdentity to Sailpoint IIQ.

Deployed several out-of-box Sailpoint connectors to connect various client Systems (LDAP, JDBC, Active Directory, Web Services, SCIM, Workday, Azure, Delimited, etc)

Direct provisioning using direct connectors for integration of target application (Application onboarding).

Provide technical architecture and support across applications and guidance to other functional areas to define IAM software/hardware requirements and in planning and delivering IAM Solutions.

Provide infrastructure analysis and capacity planning for Identity and Access Management Solution.

Integrated Jira with SailPoint using rest API endpoint for User Access Requests using Java

Development of custom certifications to streamline Access Reviews across business units.

Development of classifications to manage security groups/entitlements in SailPoint IIQ based priority level and managing nested AD groups through classification.

Aug 2019 - Apr 2022

2 years 9 months

Centurion, South Africa

Cyber Security: IAM Engineer

Vukile IT Consulting

Built Joiner, Mover and Leaver workflow to manage user Lifecycle

Deployed several out-of-box SailPoint connectors to connect various client Systems (LDAP, JDBC, Active Directory, Web Services, SCIM, SAP HR Direct, Azure, Delimited, etc)

Developed and configured 100+ SailPoint connectors.

Implemented RBAC (Role based access controls) for various Business Units.

Developed custom AWS rest api for group creating in Java

Participated in all SailPoint deployment activities – connector integration, custom rule development, workflow configuration and development and third-party system.

Developed customization rules; Build Map for Application integrations, Correlation, Identity Creation rules

Worked on AD automated provisioning like Birthright

Provides technical architecture and support across applications and guidance to other functional areas to define IAM software/hardware requirements and in planning and delivering IAM Solutions.

Analysis infrastructure and capacity planning

Apr 2019 - Nov 2019

8 months

Johannesburg, South Africa

Full Stack Developer

BidorBuy

Reviewed code, debugged problems, and corrected issues.

Managed development milestones from initial steps through final delivery.

Developed functional databases, applications, and servers to support websites on back-end.

Coordinated efficient large-scale software deployments.

Dec 2017 - Mar 2019

1 year 4 months

Johannesburg, South Africa

Cyber Security: IAM Java Developer

Altron Security

Managed all Sailpoint deployment activities – connector integration, custom rule development, workflow configuration and development and third-party system.

Configured Active Directory groups with multiple approval levels

Configured RBAC (Role Based Access Controls)

Configured User Access Review Certification for Privileged access management (Quarterly)

Extensively worked with Sailpoint API to develop custom functionalities.

Participated in SailPoint migration from 6.x to 7.3p1

Worked on Life Cycle Management i.e. Joiner Event, Leaver event and Manger Transfer event.

Implemented Active Directory automated provisioning for Birthright provisioning for newly onboarded employees

Closely worked with the Business Analysts to design and develop SailPoint custom features i.e. for Active Directory group creation

Developed Policy, Policy Scan, Policy Formatting Rule, Policy Violation Rule.

Participated in Sailoint IIQ configuration and setup.

Implemented multi-plex application onboarding including custom rule development for logical applications

Implemented custom tasks to aggregate the data for multiple applications.

Jan 2015 - Nov 2017

1 year 11 months

Johannesburg, South Africa

Programmer

FNB

Worked with software development and testing team members to design and develop robust solutions to meet client requirements for functionality, scalability, and performance.

Prepared detailed reports on updates to project specifications, progress, identified conflicts, and team activities.

Developed web applications for deployment on platforms and sites.

Developed continuous integration tool to streamline deployment.

Jun 2015 - Jul 2015

2 months

Centurion, South Africa

Data Science Intern

CSIR

Created data visualization graphics, translating complex data sets into comprehensive visual representations.

Translated cost and benefits of machine learning technology for non-technical audiences.

Applied appropriate data science techniques to solve business problems.

Maintained schedules of client interactions and project delivery dates.

Summary

Highly skilled IAM (Identity and Access Management) Technical Architect with 8 years' experience in management and support of all 5 main stages of the IAM project Life Cycle (Analysis, Architecture, Implementation, Testing and Transition to support). Proven record of identifying business risks and compliance issues and designing proactive solutions. Aligning security architecture plans and processes with security standards and business goals. In addition; extensive experience developing and testing security framework for cloud-based software and on-premises applications. Provided Technical Architectural Design Solutions and Reviews for a range of institutions in the Finance, Communications Services and Online Betting & Gaming sectors both Locally and Internationally. I have extensive experience with SailPoint Identity Management as an architect and developer. With over 7 years of hands-on experience in the custom development and deployment in SailPoint (versions 6x – 8x).