Megha T K

PKI & Certificate Lifecycle Management

• Managed end-to-end PKI certificate lifecycle, including SSL, personal authentication, and IoT certificates (code signing, email signing), ensuring secure communication and authentication.
• Performed certificate renewals, conversions, and revocations using OpenSSL, maintaining proper PEM formatting for seamless application integration.
• Conducted regular certificate audits, reducing security risks by ensuring 100% compliance with renewal and revocation policies.

Privileged Access Management (PAM) & CyberArk Administration

• Installed, configured, and managed CyberArk components (Vault, CPM, PVWA, PSM SSH Proxy) to secure privileged access across the enterprise.
• Onboarded 500+ privileged accounts (Windows, Linux, databases, network devices) into CyberArk Safes via bulk upload, improving credential security.
• Designed and enforced password policies, reducing credential-related vulnerabilities by 30% through automated rotation.
• Integrated CyberArk with Active Directory for streamlined authentication and device discovery.
• Troubleshot CPM credential reconciliation issues, minimizing failed password rotations by 25%.
• Led CyberArk version upgrades (8.x to 9.x), ensuring zero downtime for global operations.

Identity & Access Management (IAM) & Security Operations

• Administered PAM/PIM tools, safeguarding privileged accounts and critical systems from unauthorized access.
• Managed ARCON for server/user onboarding, including password rotation, vaulting, and system health checks.
• Implemented multi-factor authentication (MFA) for critical systems, strengthening access controls.
• Supported IVANTI application whitelisting, blocking unauthorized software execution on enterprise networks.

Service & Incident Management

• Used ServiceNow to manage certificate tasks (Cert/SC tasks), change requests, and incident resolutions, ensuring SLA compliance.
• Provided secure remote access via Citrix Workspace, improving remote workforce security.
• Established break-glass access protocols for emergency scenarios, ensuring secure administrative overrides.

PKI Certificate Management & Security

• Managed end-to-end PKI certificate lifecycle for internal/external environments, ensuring secure authentication and encryption for 500+ clients
• Generated and configured 20+ certificate templates, enabling seamless deployment across diverse client environments
• Reduced certificate-related outages by 95% by implementing proactive DigiCert expiry alerts and renewal processes
• Performed certificate conversions (PFX/PEM) and troubleshooting, maintaining 99.9% availability of secure services

CyberArk Privileged Access Management

• Onboarded 300+ privileged accounts across Windows/Linux servers, databases, and network devices into CyberArk using bulk upload utilities
• Designed and implemented password rotation policies that reduced credential vulnerabilities by 40%
• Integrated CyberArk with Active Directory for centralized authentication, improving access management efficiency by 30%
• Led CyberArk upgrade from v8.x to v9.x with zero downtime, enhancing security for global operations

Security Operations & Tools Management

• Configured Proofpoint email security protocols, reducing phishing attempts by 25% through improved filtering
• Utilized PKI DB Viewer and Web Enrollment tools to streamline certificate management for 1000+ endpoints
• Implemented break-glass access procedures, reducing emergency response time by 50%
• Integrated CyberArk with SIEM tools, enabling real-time monitoring of 500+ privileged accounts

• Certified for completion of Cyber Pro program
• Trained in various concepts such as cloud security, networking, SIEM, VAPT, Firewall and also concepts like computer forensic techniques