SAI MUKESH MERASI

Infosys

Hyderabad

03.2020 - Current

As an Identity Access Management (IAM) professional, I am responsible for designing, implementing, and managing secure and efficient access control systems within an organization
Proven track record of successfully designing and deploying OneIdentity Manager framework that align with business objectives, regulatory requirements and integrating multiple HR systems
IAM Strategy and Planning: Develop and maintain an IAM strategy aligned with the organization's overall security objectives and business goals
Identify and evaluate IAM technologies and solutions to support the organization's access management needs
User Lifecycle Management: Implement and maintain user provisioning and deprovisioning processes to ensure timely and accurate access control
Manage user lifecycle events such as onboarding, role changes, and offboarding, ensuring adherence to security policies and procedures
Access Control and Authentication: Design and enforce role-based access control (RBAC) policies and access rights based on user roles, responsibilities, and business needs
Implement and manage multi-factor authentication (MFA) mechanisms to enhance the security of user access
Collaborate with IT teams to integrate single sign-on (SSO) solutions for seamless and secure access to various applications and systems
Privileged Access Management (PAM): Knowledge of privileged access management (PAM) solutions and principles
Familiarity with compliance frameworks and regulations.

Project Implementation :

1) Implementing Joiner-Mover-Leaver (JML) Process using One Identity Manager

Design & Configuration: Successfully designed and configured the Joiner-Mover-Leaver (JML) process within One Identity Manager, automating user lifecycle management to streamline onboarding, role changes, and offboarding processes.
Automation & Integration: Integrated JML workflows with existing IT infrastructure, enabling automated provisioning and deprovisioning of access rights and accounts across multiple systems, reducing manual effort and minimizing security risks.
Compliance & Auditing: Ensured compliance with organizational policies and regulatory requirements by implementing role-based access controls (RBAC) and audit trails, providing enhanced visibility and traceability of user actions.
Optimization & Testing: Optimized JML workflows for efficiency, conducted thorough testing, and resolved issues to ensure smooth transitions and consistent user experiences throughout their lifecycle within the organization.

2) Implemented Single Sign-On (SSO) using PingFederate

SSO Integration: Successfully integrated Single Sign-On (SSO) using PingFederate for multiple enterprise applications, providing seamless and secure access for users across the organization.
Security & Authentication: Configured SAML and OAuth protocols to enhance authentication processes, ensuring robust security while simplifying user access management.
User Experience Improvement: Streamlined the login experience by reducing the need for multiple credentials, leading to increased efficiency and user satisfaction across the organization.

3) User Access Management Operations in Identity and Access Management (IAM)

Incident Management: Efficiently managed and resolved user access incidents, ensuring minimal disruption to business operations and maintaining compliance with security policies.
Reporting & Auditing: Generated and analyzed access reports, conducted regular audits to monitor access privileges, and ensured adherence to organizational and regulatory standards.
Governance, Risk, and Compliance (GRC): Actively followed GRC guidelines to enforce access controls, mitigate risks, and maintain compliance with industry regulations.
Process Improvement: Collaborated with cross-functional teams to enhance IAM processes, improving efficiency, reducing risks, and ensuring consistent application of access policies.

Summary