Varun Shukla
Bengaluru
Summary
Skilled IT Engineer leveraging experience in Identity Access Management (IAM), Privileged Access Management (PAM), Active Directory Administration, task automation, and network administration to improve business processes and maximize operational efficiency. Aligns business needs with technological business solutions with knowledge in requirements gathering and analysis, system configuration, and technical support skills. A team player whose career progression and education demonstrates the background necessary to deliver value to programming and network projects.
Overview
16
16
years of professional experience
1
1
Certification
Work History
Identity & Access Management Engineer
Intelerad Medical Systems
12.2020 - Current
- Participates in efforts to deploy new IDM technologies, optimize existing solutions, create standards, and govern technologies including but not limited to Azure AD, Office 365, CyberArk Vaulting, and Microsoft Identity Management (MIM).
- Employs a cloud-native mentality in developing new solutions for Active Directory, IDM, and other technologies.
- Develops PowerShell scripts for administrative and automation tasks.
- Assists with migration projects to O365 cloud and decommissioning of on premise IDM systems.
- Supports Security Engineering efforts and Cyber Roadmap development and maturation.
- Supports ongoing Security Engineering and architecture efforts.
- Participates in Disaster Recovery design validation and execution.
- Provides vulnerability management principles, proper patch management and deployment.
- Follows Change control, Incident and Problem resolution processes.
IT Engineer
Arete Associates Inc
06.2017 - 01.2021
- Implemented the installation of the PRIVMGMT CyberArk Application Suite across the Enterprise network.
- CyberArk Vault administrator who implements access control to privileged accounts.
- Created multiple application connections in SailPoint to include SCIMv2, LDAPS, Active Directory, JDBC, and Delimited file.
- Performed several successful SailPoint upgrades for all environments.
- Implemented the installation of the PRIVMGMT CyberArk Application Suite across the Enterprise network.
- CyberArk Vault administrator who implements access control to privileged accounts.
- Customized SailPoint UI Configuration file to add additional displayed identity attributes with organizational data.
- Created multiple application connections in SailPoint to include SCIMv2, LDAPS, Active Directory, JDBC, and Delimited file.
- Performed several successful SailPoint upgrades for all environments.
- Created a working Services Standard Build (SSB) for SailPoint and maintains the source code repository for ease of application upgrades and re-deployment.
- Created several tasks within SailPoint to correlate and aggregate data to identities based on defined attributes.
- Configured Single-Sign-On through Federated Services for SailPoint.
- Manages System Center Operations Manager (SCOM) to monitor the health status on all Domain Controllers across the domain.
- Creates custom monitors in SCOM to provide alerts based on defined event id's from various server logs.
- Build and replaces domain controllers as need to support organization needs.
- Replaced 78 legacy 2008R2 domain controllers that had reached their end-of-life.
- Troubleshoots and resolves Active Directory and DNS problems on Domain Controllers across the Enterprise.
- Resolves critical Microsoft security vulnerabilities as required.
- Installed Splunk Universal Forwarder on 200 Domain Controllers to facilitate the collection of DNS and security logs data.
- Utilizes Palo Alto to monitor network traffic and makes allowances or blocks to websites, as necessary.
- Uses vRealize Automation (VMWare) to request and mange virtual machines that are required to support enterprise applications.
- Provides Tier 3 Active Directory support to lower tier IT administrators.
Client Support Technician
Peninsula Regional Medical Center
03.2013 - 05.2017
- Performs configuration, diagnostics, troubleshooting, and compliance and procedural implementations by DOD policy.
- Delivered local and remote Tier 1 IT support for hardware and software to company personnel.
- Disassembled computer systems to troubleshoot and resolve hardware issues.
- Troubleshot daily IT desktop client issues, supporting multiple departments and various offices.
- Performs configuration, diagnostics, troubleshooting, and compliance and procedural implementation as mandated by Air Force and DOD policy.
- Uses Windows Deployment Services to image computers to the Air Force Standard Desktop Configuration.
- Uses Active Directory to set up and maintain computer accounts, user accounts, group accounts, distribution lists, organization mailboxes, and assigns permissions under the oversight of the Information Systems Security Officer (ISSO).
- Manage Windows Server 2008 and Windows Server 2012 R-2. Install and maintain applications on the servers. Set up and maintain the print servers for the organization’s printers. Install security updates to the servers as required and ensures that the Servers are following DISA STIGS.
- Configure network printers to use Public Key Infrastructure (PKI) technology to authenticate Common Access Cards to allow users to securely utilize scan-to-email and scan-to-network functions to increase organization efficiency and security.
- Configure Handheld Terminals (HHT’s) according to Air Force policy to allow users to efficiently accomplish their jobs.
- Manage the installation of equipment, peripherals, as well as deleting and modifying client level software.
- Content Manager/Site Owner for all Base Supply Microsoft SharePoint sites.
Material Coordinator
Jones Lange Lasalle Inc.
10.2008 - 03.2013
- Accountable for mobility bags containing mobility assets values at $3M, as well as three equipment accounts totaling $458K in Air Force equipment.
- Tracked mobility assets and shelf life utilizing the Mobility Inventory Control and Accountability System (MICAS).
- Managed the operation, testing, and troubleshooting of the Gas Mask Testing Machine, verifying the functionality of all equipment.
- Functioned as Controlled Area and Resource Protection Monitor, preventing unauthorized entry into facility.
Education
Bachelor of Science - Information Technology, Database Management
Purdue University Global
10.2017
Associate of Applied Science - Network Systems Administration
ITT Technical Institute
06.2014
Skills
- Microsoft Server: 2008R2, 2012R2, 2016, 2019
- SailPoint IDN: Identity Access Management (IAM)
- CyberArk: Privileged Access Management (PAM)
- System Center Operations Manager (SCOM): 2012R2, 2016
- Program Languages: PowerShell, XML, Beanshell (Java), SQL
Certification
- ITIL V3: Foundation Certificate in IT Service Management, 2017
- CompTIA A+, 2020
- CompTIA Network+, 2020
- CompTIA Security+, 2019
- CompTIA CSIS, 2020
- CompTIA CIOS, 2020
Additional Information
- security clearance Active Clearance: Public Trust
Timeline
Identity & Access Management Engineer
Intelerad Medical Systems
12.2020 - Current
IT Engineer
Arete Associates Inc
06.2017 - 01.2021
Client Support Technician
Peninsula Regional Medical Center
03.2013 - 05.2017
Material Coordinator
Jones Lange Lasalle Inc.
10.2008 - 03.2013
Bachelor of Science - Information Technology, Database Management
Purdue University Global
Associate of Applied Science - Network Systems Administration
ITT Technical Institute
- ITIL V3: Foundation Certificate in IT Service Management, 2017
- CompTIA A+, 2020
- CompTIA Network+, 2020
- CompTIA Security+, 2019
- CompTIA CSIS, 2020
- CompTIA CIOS, 2020
Similar Profiles
Matt McCoyMatt McCoy
Account Executive at Intelerad Medical SystemsAccount Executive at Intelerad Medical Systems
Zachary ShirahZachary Shirah
Application Specialist at Intelerad Medical SystemsApplication Specialist at Intelerad Medical Systems
Norma HillNorma Hill
RN Staff Nurse at Medical Center Hospital Health SystemsRN Staff Nurse at Medical Center Hospital Health Systems