Shiva Cyber Ark

  • CyberArk Consultant
  • New York City, NY
  • Member Since Apr 14, 2023

Candidates About

 

Shiva

SUMMARY

Ø   years of experience in Software Design and Development with Organizing, Implementations, specialization, and Security.

Ø  Good Involvement in Execution and combination of Cyber-Ark's Privileged Identity Management (PIM) Suite.

Ø  Experience in Cyber-Ark Implementation and Installation on Cyber Ark 7.0 and most recent Implementation on Cyber-Ark 8.1.0.and CyberArk 9.2.1

Ø  Developed and maintains system security plans and contingency plans with the major applications.

Ø  Ensured that system security plans and contingency plans are developed and maintained for each system and applications, and ensured systems personnel are properly designated, and trained.

Ø  Created Plans, administered and oversees network design, implements, organizes, and troubleshoots problems on network; monitors underlying communication protocols and supports network hardware and software; maintains application data integrity and availability.

Ø  Assisted end users' inquiries regarding the use of specific software such as data base, printing, programming languages, electronic mail, and operating systems in tech support areas.

Ø  Experienced in developing information security standards, and procedures. Prepare incident report plans, implement, monitor security awareness programs, train and write security policies for organization of different types.

Ø  Installation and configuration of Cyber-Ark vault, PVWA, CPM and PSM in Prod and DR.

Ø  Installation and capacity management of Cyber-Ark Privilege Session Manager (PSM) including RDS Session host and licensing.

Ø  Configurations including AD integration and Management of Cyber Ark Enterprise Password vault.

Ø  Managed Safes and Server/ host addresses in Enterprise Password vault. Resolved issues in Cyber Ark’s Central Password Manager to communicate with hosts to reconcile credentials.

Ø  Provided guidance in addition, removal, change and lifecycle of Privileged ID Management (PIM) in order to provide the highest quality levels of Security.

Ø  Performed Manage, Resume, Release Privileged Credential using Cyber Ark Privileged Management vault. xVerified Privileged local accounts including RID-500 as per TD bank’s standards.

Ø  Administration, configuration, troubleshooting and installation of Windows 2003, 2008, 2008 R2 and 2012/R2. Administration of Active Directory 2003/2008, Configured, managed, troubleshot and delegated administrative control to Group Policy Objects.

Ø  Administration and troubleshooting of VMware ESX Servers, vCenter, HA, DRS and V-Motion.

Ø  Configured fiber and iSCSI storage in VMWare Hosts and virtual machines.

Ø  Installation, configuration and management of MS System Center Configuration Manager 2007/2012(SCCM) infrastructure. Patched servers in pre-prod, Prod and DR environments for approved MS updates.

Ø  Installed, Managed and Troubleshot DNS in multiple zone environments. Troubleshot DNS integration with Active Directory. Installed, configured and administered WINS, DHCP, IIS and WSFTP, File and Print servers.

Ø  Administration and configuration of Red Hat Linux.

 

Education

·         Bachelors in Information Technology from JNTU, India.

 

PROJECT EXPERIENCE

               

TEKNITI LLC                                                                                                          

CyberArk Consultant

 

Description: Involved in Implementation, Installation, Upgradation, Maintenance of CyberArk 7.0/8.1.0/9.2.1 in multiple servers for a full life-cycle solution for managing the most privileged accounts in the enterprise, enables organizations to secure, provision, manage and monitor all activities associated with all types of privileged identities such as administrator on a windows server, Root on a UNIX Server, Cisco Enable on a Cisco Device, as well as embedded passwords found in applications and scripts.

 

Responsibilities

·         Involvement in Cyber-Ark Implementation and Installation on Cyber Ark 7.0 and latest Implementation on Cyber-Ark 8.1.0.and CyberArk 9.2.1

·         Experience in Privileged Account Management with CyberArk PIM suite Administration

·         Experience in performing Privileged Account Management with fair understanding the underlying business processes.

·         Responsible for the creation of documentation indigenous to CyberArk Administrator of Cyber Ark’s Privileged Account Management solution with approximately 3,000 Safes and over 80,000 Accounts

·         Experience with PAM Operational Tasks Defining Access Control, User Entitlements, Manage Applications Credentials and User Access Policy Management.

·         Experience in performing Privileged Access Reviews, Compliance Reporting, Access Control Processes and other associated tasks with Privileged User Management.

·         Defined, developed, and documented IDAM services including Single Sign-on, Self-Service registration, workflows, user management, management dashboard, Role Base Access Control (RBAC), Attribute Base Access Control (ABAC), resource and business layers Provisioning, credentialing, federation, and auditing.

·         Developed and maintained the solution System Design Document that defined the solution’s architecture framework, component-level design, identity schema, user interfaces design, use cases and process flows.

·         Experience with PAM Operational Tasks Defining Access Control, User Entitlements, Manage Applications Credentials and User Access Policy Management.

·         Experience in performing Privileged Access Reviews, Compliance Reporting, Access Control Processes and other associated tasks with Privileged User Management.

·         Installation, configuration and troubleshooting of AIM clients for various teams.

·         Troubleshooting and maintenance of the Password Vault, CPM, PSM, AIM, DR Vault.

·         Migrate user accounts into Password Vault using Bulk upload utility.

·         CyberArk PIM suite professional, Role based access control, Project Management, Privilege Identity Management, Identity & Access Management, Single sign On, Privilege Identity Management, SAML, OAuth, ADLDS, ADFS, OKTA, TLS/SSL, Active Directory, IIS- 8.5/8/7.5/7/6,

Environment: Cyber Ark 7.0/ 8.1.0/9.2.1 PIM, LDAP, AD Integration, OPM, LTM, GTM, UNIX (basics), RDP, Firewall, IDS/IPS, Routers, ACS, DNS, TCP/IP, F5 Load Balancer, Network Security.

 

TEKNITI LLC                                                                                                          

Cyber-Ark Consultant

 

Description: Cyber-Ark 7.0/ 8.0.1 PIM Implementation for Adobe Client, Installation of All component of Cyber-Ark nearly 3000 servers and implementation and applied policy to CPM, PSM component of Cyber-Ark. Auto IT script implementation for windows OOTB application. OPM and AIM Implementation.AD Integration for adding User groups. Understanding of authentication and authorization methods on various OS, databases.

 

Responsibilities

·         Involved in Technical Requirements Gathering from the client and worked with server teams for permission requirements.

·         Involved in Installation and configuration of Cyber-Ark 7.0/8.0.1 PIM, Vault and Vault Client, Central Password Manager, Password Vault Web Access, Privilege Session Manager.

·         Configuration, Password Management, Password/Web Policies for Multiple Privilege Accounts across the organization for CPM component.

·         OPM and AIM provider Installations on PSM and testing for Installation Qualification.

·         Involved in AD integration and adding user to with their privileges.

·         Integrate Windows, UNIX and Database accounts with PIM.

·         Test script, Test scenarios and conditions DR fail over scenarios for Implemented servers.

·         Server On-Boarding through PUU as per Daimler liaison.

·         Extensively involved in Maintenance of Daimler Password Vault should be up and running.

·         Extensively involve for making Daimler Password Vault Environment up and running.

·         Technical account implementation and Qualys Scan implementation through Cyber ark.

·         Reconciliation, Password Synchronization, Service definition for Target System, Workflows

·         Implemented Session recording and live monitoring in several critical servers.

·         Utilizing Juniper SSL to create an encrypted tunnel between hosts. Using Juniper SSL VPN to replace static passwords with strong two-factor authentication that prevents the use of lost, stolen, shared, or easily guessed passwords when establishing a connection to gain access to protected resources.

·         Perform Penetration testing and vulnerability assessment to improve application security.

·         Utilization of F5 LTM & GTM for the Privilege User's Single-Sign- On.

·         Utilizing MacAfee for the back-end and front-end protection against viruses, worms, emails and WebEx for internal usage.

·         Enhanced the process for Enterprise Password Vault based on customer feedback.

·         Supported Identity Access Management.

·         Mentor to all the other team members in the team and working as the point of contact for Enterprise Password Vault and Identity Access Management.

·         The application was deployed on WebLogic and was used by all enterprise users to automate the onboarding process for Enterprise Password Vault.

 

Environment: Cyber Ark 7.0/ 8.1.0 PIM, LDAD, AD Integration, OPM, LTM, GTM, UNIX (basics), RDP, Firewall, IDS/IPS, Routers, ACS, Authentication & Authorization.

 

Magus IT Solutions (P) Ltd., Hyderabad, India                                                                              

Network Security Engineer

 

Description: Worked in Information Security Group, focused on ensuring information security is embedded and sustained in the Business and IT organization workflows and processes.

 

Responsibilities:

·         Configuring, Administering and troubleshooting the Checkpoint and ASA firewall. 

·         Configured Cisco ASA and Checkpoint firewall layers to secure the infrastructure for the Data Center.

·         Migrated firewalls from ASA to Checkpoint. 

·         Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls. 

·         Implemented Positive Enforcement Model with the help of Palo Alto Networks.  

·         Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment. 

·         Advice the clients on security matters digitally/physically using SAN maintenance systems which includes but not limited to Id Management, IDS and IPS maintenance, Firewalls, Honey pot and DMZs. Intrusion detection and 24/7 systems monitoring.

·         Recommend to my organization the best security software & hardware to purchase and use. Perform security testing/penetration test to avoid vulnerabilities in the network.

·         Perform vulnerability assessments of Systems/Network device. Working knowledge of some Security tools like Cyber Ark, IDS/IPS, SIEM, PIM, Cisco ASA Firewalls, ACS, NMAP, Nessus and Wire shark etc. Performed sniffer analysis using Network General, Arch sight, & Wireshark.

·         Managing Cyber-Ark Security that offers any enterprise a wide range of services and support options to making digital vault solution a success; these services include implementation, consulting, training, maintenance, online support and vault.

·         Utilizing Nessus5/Impervas in scanning and detecting a wild variety malware that render security systems vulnerable eg. routers switches servers and workstations. With the help of Impervas, database is scanned for detection of high-risk vulnerabilities that may be undermining the security of your business

·         Experience in Perimeter firewall designing to checks incoming IP packets and blocks those it believes are intrusive. WAF application firewall that controls, input, output and access to http security network

·         Implementation of Check Point firewall and Virtual firewall; Checkpoint VE on VMWare; Blue Coat proxy (SG, and Blue coat Director), experience with Radware Load Balancer and Juniper Firewall.

 

Environment: Firewall, TCP/IP, RIP, Cyber Ark, IDS/IPS, SIEM, PIM, Cisco ASA Firewalls, VLAN, VTP, WAP, VLSM, FLSM, VSTP, SNMP, Juniper EX Series, Mcafee DLP, Alto firewall.

 

Pentax Software Solutions, Hyderabad, India                                                                                              

System Administrator and Network Engineer                                                                                            

 

Roles & Responsibilities:

 

·         Provide support to end users on a variety of IT support and Network issues including workstations, desktops, laptops, servers, network equipment, computer peripherals and software.

·         Plans, coordinates, designs, tests, and implements technical solutions for multiple concurrent projects.

·         Cisco Routing and Switching, Configure and Manage Cisco Wireless Environment.

·         Establishes networking environment by designing system configuration, developing and implementing network systems.

·         Monitor Systems and Network performance and escalate performance issues to Systems/Network Administrator as needed.

·         Maintain, administrate, and support endpoint security software/devices (anti-malware)

·         Directing system installation; defining, documenting and enforcing system standards.

·         Maximizes network performance by monitoring performance.

·         Troubleshooting network problems and outages; scheduling upgrades; collaborating with network architects.

·         Install and configure hardware, peripherals, services, settings, directories and storage.

·         Contribute to and maintain system standards

·         Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups.

·         Perform regular security monitoring to identify any possible intrusions.

·         Perform daily backup operations, ensuring all required file systems and system data are successfully backed up.