Srinivas

Designed, configured, and maintained PingFederate infrastructure to support enterprise-wide Single Sign-On (SSO) using SAML 2.0, OAuth 2.0, and OIDC protocols.
Implemented identity federation with third-party service providers and external partners, ensuring secure, seamless access to internal and external applications.
Developed and managed custom authentication policies, adapters, and token handling logic in PingFederate to meet specific business requirements.
Integrated PingFederate with LDAP/Active Directory, enabling centralized user authentication and profile attribute mapping.
Configured OAuth clients, scopes, and resource servers for secure token issuance and access management using JWTs and bearer tokens.
Collaborated with cross-functional teams to implement MFA solutions and adaptive authentication flows.
Supported PingFederate upgrades, patching, and HA configurations to ensure availability and performance.
Integrated PingFederate with PingDirectory, PingAccess, and API gateways.
Conducted security audits, logging, and token trace analysis for troubleshooting and compliance purposes.
Played a key role in the organization’s Zero Trust and IAM modernization initiatives.

Sailpoint IDN:

Designed, implemented, and managed SailPoint IdentityNow (IDN) for enterprise-wide identity governance and access management in a hybrid cloud environment.
Developed and configured lifecycle events, identity profiles, and correlation rules to automate user onboarding, role changes, and offboarding processes.
Integrated multiple authoritative sources including Active Directory, Workday, and HRIS systems with IdentityNow for consistent and accurate identity data.
Configured account aggregation, entitlement harvesting, and provisioning policies for both cloud and on-premise applications using IDN connectors.
Defined and enforced access certification campaigns and policy violation rules (SOD, role policy) to meet compliance and audit requirements.
Built custom transforms and rules using Beanshell and SailPoint APIs to extend out-of-the-box functionality.
Implemented Access Request Center and designed role-based access controls (RBAC), minimizing overprovisioning and ensuring least-privilege access.
Collaborated with InfoSec and business stakeholders to align identity governance with enterprise security policies.
Provided post-deployment support and training to internal teams, improving adoption of IDN’s self-service and compliance capabilities.

Managed project timelines to ensure timely delivery of engineering projects.

Collaborated with clients to identify and address technical requirements.

Developed technical documentation for engineering designs and processes.

Resolved complex technical issues through troubleshooting techniques and root cause analysis.

Analyzed customer requirements and designed software solutions to meet their needs.

• On-boarding applications into Azure-AD to provide SSO using SAML/OIDC.
• On-boarding applications to support SSO using CA Siteminder/OIDC
• CA Strong Authentication/CA API Management/CA IDM
• Complex client architecture-involving single and two factor authentication based on Siteminder and CA Strong Authentication(MFA).
• Implemented and supported federation partnerships-SSO domains, Webagent RP configurations, federation certificate renewals etc.
• On-boarding the new applications in Siteminder and providing authentication and authorization services, based on application requirements.
• Enhanced trouble shooting skills.
• Provided L2/L3 level support for Azure AD/CA Strong Authentication, CA API Management and CA Identity Governance – log monitoring, service maintenance and simple/complex changes.
• ITIL standard processes for change management, problem management, incident management and release management
• Expertise on RCA preparation.

• CA Siteminder/Apache/IIS/Linux/Windows 2008 Server
• Integrating the New applications in Siteminder and configuring Policy based authorization.
• Configuring the System and Domain objects to provide authentication and authorization services to the applications.
• Configuring Single Sign on (SSO) and Cross Domain Single Sign on (CDSSO) between the applications as per application team requests.
• Troubleshooting the issues reported by application teams and customer related to the Siteminder policy server and webagent.
• Installing and configuring the webagents for Apache and IIS webservers and protecting the application resources in policy server.