- Leading and implementing identity governance with SailPoint IdentityNow through approval procedures, certification
campaigns, role based access controls, and separation of duties policies driving enterprise productivity by eliminating manual
work across multiple teams and enabling app owners to securely grant or revoke access without involving IT. - Spearheading migration from GlobalProtect to Zscaler Private Access by re-architecting to zero trust access controls for private applications, servers, SQL databases, and AWS services (Airflow, EKS, and RDS).
- Introducing Okta privileged access for entitlement analysis, server account lifecycle management, vaulting of local server account passwords, SSH/RDP access with ephemeral certificates, and session recording through Okta access gateways
- Securing Okta tenant through stricter authentication/global session and behavior detection policies (location, device, IP, velocity).
- Deploying Okta FastPass, a phishing-resistant authenticator that detects and prevents the disclosure of sensitive authentication
data to fake applications or websites, and enabling passwordless logins through biometrics verification on managed devices. - Enforcing use of fine-grained OAuth 2.0 access tokens instead of overly permissive API tokens within integrations.
- Discovering, alerting, and remediating vulnerabilities with Axonius SaaS management platform to reduce overall risk.
- Migrating and deploying SecOps infrastructure to AWS through Terraform IaaC to improve scaling and redundancy.