Roshan Trivedi

PAM Design and Implementation

•Lead multiple projects for designing and implementing IAM and PAM solution for multi-tenant environment

•Designed the PAM infrastructure to handle the load of global sites

Security Implementation- PAM Uplift for Gov customer

•PAM capabilities gap analysis

•Participated in scope finalization, architecture, effort estimation and resource planning

•Functional and non-functional information gathering for different environments

•Design base solution architecture

•Participate in drafting deliverables documents

PAM Strategy and Requirement Gathering ( Financial Organisations )

•Defined scope for PAM solution

•Information gathering for different tracks

•Designed and planned CyberArk upgrade and migration plan

•Participate in roadmap creation

•Drafted resource effort estimation

• Working as a Senior Architect for the various projects where handling end to end design and architecture, Implementation, Integration of CyberArk, BeyondTrust PAM solution both on prime and on-cloud( AWS, Azure).
• Defined PAM strategy, PAM Roadmaps, Creation of PAM project plans(Timelines, Hours, Manpower). Additionally, Interviewing stakeholders, Application owners to understand their infrastructure to prepare PAM Cycle before deploying the actual solution( CyberArk ,BeyondTrust etc.).
• Worked in the PAM migration projects where used PAM tools like CyberArk & BeyondTrust to be migrated from on-prime to on-cloud & vice versa; as well as deployed the same by replacing any other tool used by client previously to manage their privilege user credentials.
• Experienced in translating business requirements to functional requirements and solution design.
• Collaborated with Client’s project team and create detailed activity plans, communication plan. Additionally, shared relevant UAT and production practices, processes and policies, Identified the need to migrate over to new Identity tool by aligning business goals with technology solutions to drive process improvements, competitive advantage and bottom-line gains
• Implementation of IT systems: Identity Governance and Administration, Privileged access management, Enterprise Single Sign On, Cloud Management and Security incident management.
• Consulting: Delivered and lead many successful implementations, Support various technology.
• Development: Strong experience in Development and Administration in Sailpoint IIQ. Created / Modified the rules to update the target application attributes and identity attributes. Provided the RCA for the repeated issues.
• PAM Dashboard creation, Deck preparation for client presentation. Creation of Play-books for end user was part of my job role. Customization of dashboard using 3rd party tools as per client need and was part of multiple training programs within firm to educate and build IAM, PAM team to enhance Cyber Security Practice. Additionally, trained end users whilst working in the project as part of the process.
• Given trainings to end users, project team members, firm members on CyberArk, BeyondTrust, Fundamentals of Cloud etc. as part of building PAM Practice under Cyber Security Practice.
• Controlled costs and optimized spending via restructuring of budgets for labor, capital assets, inventory purchasing and technology upgrades.
• Expanded cross-functional organizational capacity by collaborating across departments on priorities, functions and common goals.

• Remodelled existing PAM architecture to enable end-to-end functionality and ensure complete implementation of best practices to mitigate risks.
• Identified, analyzed and implemented management of privileged accounts existing within IT infrastructure of a service based client.
• Developed process and practices to introduce, control, manage and terminate the privileged accounts controlling critical operations within PCI organization.
• Analysed and revamped privileged account policies for US based financial organization and later implemented the policies with BeyondTrust PBPS setup deployed at organization.
• Designed, developed and implemented multi site Active-Active architecture for BeyondTrust PBPS environment for a fortune 500 firm.
• Assisted customers to design and enhance their IAM and PAM processes to meet the audit requirements. This includes current state assessment for client’s IAM landscape and suggesting future roadmap.
• Extensive experience on managing privileged accounts using CyberArk for a fortune 100 managed healthcare client in US. Also, he has been responsible for designing, automating and documenting various processes.
• Trained resources on CyberArk and BeyondTrust PBPS as part of knowledge transitioning in the projects.
• He has also performed PAM assessment for a US based client. In this project, he was responsible for outlining client’s current PAM landscape and thereby recommend enhancements based on findings.

• Architecture, Design and Implementation of PAM infrastructure.
• Remodeled existing PAM architecture to enable end-to-end functionality and ensure complete implementation of best practices to mitigate risks.
• Identified, analyzed and implemented management of privileged accounts existing within IT infrastructure of a service based client.
• Assisted customers to design and enhance their IAM and PAM processes to meet the audit requirements. This includes current state assessment for client’s IAM landscape and suggesting future roadmap.
• Extensive experience on managing privileged accounts using CyberArk for a fortune 100 managed healthcare client in US. Also, he has been responsible for designing, automating and documenting various processes.
• Working as a Senior Architect for the various projects where handling end to end design and architecture, Implementation, Integration of CyberArk , BeyondTrust PAM solution both on prime and on-cloud( AWS, Azure).
• Defined PAM strategy, PAM Roadmaps, Creation of PAM project plans(Timelines, Hours, Manpower). Additionally, Interviewing stakeholders, Application owners to understand their infrastructure to prepare PAM Cycle before deploying actual solution( CyberArk ,BeyondTrust etc.).
• Worked in the PAM migration projects where used PAM tools like CyberArk & BeyondTrust to be migrated from on-prime to on-cloud & vice versa; as well as deployed the same by replacing any other tool used by client previously to manage their privilege user credentials.
• Experienced in translating business requirements to functional requirements and solution design.
• Collaborated with Client’s project team and create detailed activity plans, communication plan. Additionally, shared relevant UAT and production practices, processes and policies, Identified need to migrate over to new Identity tool by aligning business goals with technology solutions to drive process improvements, competitive advantage and bottom-line gains.
• PAM Dashboard creation, Deck preparation for client presentation. Creation of Play-books for end user was part of job role. Customization of dashboard using 3rd party tools as per client need and was part of multiple training programs within firm to educate and build IAM, PAM team to enhance Cyber Security Practice. Additionally, trained end users whilst working in the project as part of the process.