Maxwell Shiundlana
Senior IAM Technical Architect
Experience
Aug 2023 - Present
2 years 5 monthsJohannesburg, South Africa
Senior IAM Technical Architect
BCX
- Design overall architecture of IAM processes and identify opportunities for improvement.
- Onboard several out-of-the-box SailPoint connectors/applications to connect various client systems (LDAP, Java based connectivity, Active Directory, Web Services, SCIM, SAP HR Direct, Azure, delimited, etc).
- Implement direct provisioning using direct connectors for integration of target applications (application onboarding).
- Work across functions to improve IAM solutions to address compliance requirements and embrace best practices.
- Manage SailPoint and CyberArk deliverables and provide guidance and support to the team with tasks and activity management.
- Design and implement migration from FIMM/MIM (Microsoft Identity Manager) to SailPoint IIQ.
- Implement SIEM plugin in SailPoint for logs and events monitoring.
- Design, implement and manage joiner, mover, leaver and reinstate enhancements to improve onboarding/offboarding/transitions of employees through lifecycle events, workflows and role based access control.
- Implement SailPoint DR environment (data recovery environment) for service restoration and recovery from application unavailability to minimise risk and major business impact.
- Implement role based access control, segregation of duties and access certification.
- Manage SailPoint and CyberArk upgrades and patch fixes.
- Design architecture migration plans for evolution of access (e.g., from password-based to broad multi-factor; evolution of federation in a cloud-based application world).
- Responsible for ongoing SailPoint and CyberArk application health checks (applications connectivity, task management and overall system performance).
- Provide analysis and architecture design for the implementation of contractor/non-perm employee management system.
Mar 2022 - Jul 2023
1 year 5 monthsLondon, United Kingdom
Senior IAM Technical Architect
Independent Contractor
- Gather requirements and conduct requirement discussions with stakeholders; lead design discussions and sign-off.
- Prepare architecture, high-level and low-level design documents.
- Build joiner, mover and leaver workflows to manage user lifecycle.
- Drive the migration of OneIdentity to SailPoint IIQ.
- Deploy several out-of-the-box SailPoint connectors to connect various client systems (LDAP, JDBC, Active Directory, Web Services, SCIM, Workday, Azure, delimited, etc).
- Implement direct provisioning using direct connectors for integration of target applications (application onboarding).
- Provide technical architecture and support across applications and guidance to other functional areas to define IAM software/hardware requirements and in planning and delivering IAM solutions.
- Provide infrastructure analysis and capacity planning for identity and access management solution.
- Integrate Jira with SailPoint using REST API endpoint for user access requests using Java.
- Develop custom certifications to streamline access reviews across business units.
- Develop classifications to manage security groups/entitlements in SailPoint IIQ based on priority level and manage nested AD groups through classification.
Aug 2019 - Apr 2022
2 years 9 monthsCenturion, South Africa
IAM Engineer
Vukile IT Consulting
- Build joiner, mover and leaver workflows to manage user lifecycle.
- Deploy several out-of-the-box SailPoint connectors to connect various client systems (LDAP, JDBC, Active Directory, Web Services, SCIM, SAP HR Direct, Azure, delimited, etc).
- Develop and configure over 100 SailPoint connectors.
- Implement RBAC (role based access controls) for various business units.
- Develop custom AWS REST API for group creation in Java.
- Participate in all SailPoint deployment activities: connector integration, custom rule development, workflow configuration and development, and third-party system integration.
- Develop customization rules; build maps for application integrations, correlation and identity creation rules.
- Implement Active Directory automated provisioning (birthright provisioning).
- Provide technical architecture and support across applications and guidance to define IAM software/hardware requirements in planning and delivering IAM solutions.
- Perform infrastructure analysis and capacity planning.
Apr 2019 - Nov 2019
8 monthsJohannesburg, South Africa
Full Stack Developer
BidorBuy
- Review code, debug problems, and correct issues.
- Manage development milestones from initial steps through final delivery.
- Develop functional databases, applications, and servers to support websites on the back end.
- Coordinate efficient large-scale software deployments.
Dec 2017 - Mar 2019
1 year 4 monthsJohannesburg, South Africa
IAM Java Developer
Altron Security
- Manage all SailPoint deployment activities: connector integration, custom rule development, workflow configuration and development, and third-party system integration.
- Configure Active Directory groups with multiple approval levels.
- Configure RBAC (role based access controls).
- Configure user access review certification for privileged access management (quarterly).
- Extensively work with SailPoint API to develop custom functionalities.
- Participate in SailPoint migration from 6.x to 7.3p1.
- Implement life cycle management events: joiner, leaver and manager transfer events.
- Implement Active Directory automated provisioning for newly onboarded employees (birthright provisioning).
- Collaborate with business analysts to design and develop SailPoint custom features such as Active Directory group creation.
- Develop policy, policy scan, policy formatting rule and policy violation rule.
- Participate in SailPoint IIQ configuration and setup.
- Implement multi-plex application onboarding including custom rule development for logical applications.
- Implement custom tasks to aggregate data for multiple applications.
Jan 2016 - Nov 2017
1 year 11 monthsJohannesburg, South Africa
Programmer
FNB
- Work with software development and testing team members to design and develop robust solutions to meet client requirements for functionality, scalability and performance.
- Prepare detailed reports on updates to project specifications, progress, identified conflicts and team activities.
- Develop web applications for deployment on platforms and sites.
- Develop continuous integration tools to streamline deployment.
Jun 2015 - Jul 2015
2 monthsCenturion, South Africa
Data Science Intern
CSIR
- Create data visualization graphics, translating complex data sets into comprehensive visual representations.
- Translate cost and benefits of machine learning technology for non-technical audiences.
- Apply appropriate data science techniques to solve business problems.
- Maintain schedules of client interactions and project delivery dates.
Summary
Highly skilled IAM (Identity and Access Management) Technical Architect with 8 years' experience in management and support of all 5 main stages of the IAM project Life Cycle (Analysis, Architecture, Implementation, Testing and Transition to support). Proven record of identifying business risks and compliance issues and designing proactive solutions. Aligning security architecture plans and processes with security standards and business goals.
In addition; extensive experience developing and testing security framework for cloud-based software and on-premises applications. Provided Technical Architectural Design Solutions and Reviews for a range of institutions in the Finance, Communications Services and Online Betting & Gaming sectors both Locally and Internationally.
I have extensive experience with SailPoint Identity Management as an architect and developer. With over 7 years of hands-on experience in the custom development and deployment in SailPoint (versions 6x – 8x).
I am currently contracted to BCX; Managing and Supporting IAM Solutions (SailPoint and Cyber Ark) from an Architecture, Development, Testing and Operation perspective.
Skills
Identity And Access Management Engines: Sailpoint Identityiq/now, Cyber Ark Pam, Microsoft Fimm/mim, Oneidentity, Netiq Identity Manager, Sap Iam, Oracle Idm, Okta
Siem, Scim
Directory Servers: Active Directory, Azure Active Directory
Operating System: Windows, Linux, Unix, Rhel, Aws Lambda, Mainframe Z/os
Application Server: Apache Tomcat 7+
Programming Languages: Python, Java, Beanshell, Sql (Mysql, Oracle, Ms Sql, Postgresql), .Net, Powershell, Jsp, Javascript, Xml, J2ee, Jsp Servlet, Jdbc, Ldap, C#
Communicating With Stakeholders
Security Risk Assessments And Audit Reports
Agile Working Environment
Infrastructure And Software Administration
Design And Implementation Of Access Controls
Sdlc Implementation
Development Approach
Ability To Provide Off-hour Support
Cloud Services
Firewalls
Tcp/ip Protocol
Scripting Skills
Penetration Testing
Risk Mitigation Strategies
Security Vulnerability Assessment
Security Regulations Compliance
Jira
Sharepoint
Aws And Azure Ad
Ldap
Microsoft Cloud
Pki
Github
Gitlab
Bitbucket
Svn
Eclipse
Foglight
Siem Log Monitoring
Sap Hr/successfactors
Workday
Oidc
Scim
Languages
English
AdvancedEducation
Jan 2017 - Dec 2017
University of Pretoria
Bachelor of Commerce Honours, Informatics · Informatics · Pretoria, South Africa
Jan 2011 - Mar 2015
Pearson Institute of Higher Learning
Bachelor of Science, Informatics · Informatics · Johannesburg, South Africa
Need a freelancer? Find your match in seconds.
Try FRATCH GPT More actions
Similar Freelancers
Discover other experts with similar qualifications and experience
Alagi Mansaray
Senior Project Manager S4HANA in the energy sector
View Profile
Pierre Gronau
Ansible Automation, Windows Third Level Support
View Profile
Peter Fleischer
Subproject Manager and Solution Architect - Microsoft 365 Transformation
View Profile
Kazim Rizvi
Principal Security Architect - Contract Hands on
View Profile
Michael Langer
IAM Developer & IT Architect
View Profile
Oliver Frömel
Senior IT Enterprise Security Architect | Project Bank Migration
View Profile
Frank Joraschkewitz
Lead Project Manager
View Profile
Mark Offer
Consultant Intune, Dynamics, Ivanti Mobile Iron
View Profile
Maciej Sawicki
Product Owner
View Profile
Michael Schwendemann
Compliance Consultant
View Profile
Tobias Stötzer
Project Manager Business Technology Platform BTP
View Profile
Holger Görz
IAM Expert for Current State Analysis and Migration Concept from bi-Cube to IdentityIQ (SailPoint)
View Profile
Miguel Skirl
Senior System and Cloud Engineer
View Profile
Lothar Hinsche
Solution Manager for PoC investigation and replacement and refinement of an existing cloud and IoT power plant control system
View Profile
Daniel Jüntgen
Information Security Consultant
View Profile
Michael Lenz
Identity & PAM Architect
View Profile
Stefan Radushev
ISO27001 Certification
View Profile
Daniel Kaguongo
ISMS Risk Tracker & Compliance Portal (Streamlit + PostgreSQL)
View Profile
Onik Mia
SAP SuccessFactors & S4HANA Consultant
View Profile
Jürgen Fey
AR/VR/XR Architect
View Profile
Christoph Guse
IAM/AD Management Consultant
View Profile
Victor Bassey-asuquo
Technical Consultant, AWS Infrastructure
View Profile
Albert Frischmann
Lead Product Owner
View Profile
Christian Fritsch
Architecture management
View Profile
Philipp Schmidt
MS365 Consultant/Solution Architect
View Profile
Steffen Müller
Principal Consulting Partner - freelancing
View Profile
Samir Soliman
Project Manager in the Cybersecurity Department
View Profile
Christian Decker
Managing Director and Senior Consultant
View Profile
Yuri Gladkov
Senior Security Devops Engineer
View Profile
Ralf Ramge
Security Architect
View Profile
