Identity & Access Platforms (2022 – Present)
Global Head – IAM Platform Operations (Hands-On)
Platforms Owned & Operated: CyberArk PAM, Conjur, Venafi, Digicert, Entrust, Sectigo, RSA, Duo, HSM, Authorization services
Leadership
- Lead a global 24x7 team of 15 engineers across the US, EMEA, and APAC. Infuse the firm's goals in the operational framework by creatively enforcing SLAs.
- Liaise with divisional platform engineers for continual service improvements and obsolescence projects. Lead and execute cross-divisional projects.
- Lead ServiceNow service catalog designing for IAM, Public & Private Cloud, request flows, and operational runbooks
Hands-On Engineering & SRE
- Perform daily operational support, break-fix, Incident Management, and FTSS escalations for IAM and cryptographic platforms. Mentor & motivate regional members on future support executions
- Conduct DR testing for CyberArk, Conjur, Certificate Management, HSM, and MFA platforms. Author Auditable DR documentation. Mentor and empower regional team members for DR Testing.
- Built Python-based tooling for TLS CSR generation & TLS Certificate format conversion aligned with internal compliance controls
- Designed and built 60+ ServiceNow Service Catalogs for 20+ IAM platforms, with built-in compliance. This has been generating ITSM Data and service delivery metrics to support continuous improvement.
- Act as SME for Entrust KeyControl: VMware integrations, Venafi Internal CA, and Digicert external TLS Certificates.
Compliance & Audit Engineering
- Embedded compliance controls directly into CyberArk, Conjur, and RSA operational workflows.
- Led cross-divisional project, integrated CyberArk PAM into enterprise Privileged Account Provisioning with CMDB. Achieved zero audit findings (2023–2025) for IAM platforms
- Reduced non-compliant CyberArk PAM usage requests by 79% by applying (RBAC) guardrails integrating with CMDB.
- Designed ServiceNow Catalog Items with RTB & CTB Role-Based CyberArk SAFE authorization by integrating CMDB and HR Data. This eliminated 100% non-compliant requests by January 2025.
Cloud Services & SRE (2018 – 2023)
AWS & Hybrid Cloud Operations – Hands-On Director
Hands-On Cloud Engineering
- Personally provisioned AWS accounts with IAM, networking, and compliance guardrails
- Wrote Python scripts to remediate AWS tagging and billing violations (↓90% incidents)
- Performed Tier-3 cloud break-fix and escalation support
- Authored AWS IAM policies for PoC and production workloads. Continually updated IAM policies with firm's Cloud governance requirements with Prisma Cloud.
SRE & Observability
- Built Grafana SLO/SLI dashboards for private and public cloud platforms
- Authored reusable JSON dashboard templates adopted enterprise-wide
- Integrated Prisma Cloud with ServiceNow to auto-generate incidents from compliance breaches
Platform Leadership
- Led 24x7 hybrid cloud operations (AWS, Azure, private cloud)
- Designed Cloud Services Portal with AI-driven knowledge and chat (↑68% efficiency)
- Facilitated Microsoft 365 rollout and Azure AD Connect integration
Web Platform Operations (2014 – 2020)
US Head – Web Platform Resiliency & Engineering
- ITIL aligned enterprise IT platform services delivery. Led, Supported and stabilized 50+ business-critical platforms with a global team of 15.
- Led incident response, change management, and DR improvements
- Designed, built and commissioned a PGP encrypted secure file transfer platform to address an NIST standards adherence for audit requirements.
- Re-designed global remote access platform during COVID-19 to provision sudden surge in 100% employee traffic from all global regions.
- Continually liaised with CTO and CISO organization in leading cross divisional IT Sec projects.
- Promoted to Senior VP rank in 2016 for significant contributions in the internet facing IT platforms.