BENJAMIN UHUNOMA
Grand Prairie
Summary
Cloud Engineer and Infrastructure Engineer with expertise in IAM/PAM solutions using,AWS and Azure.Microservice Kubernetes,Terraform, Ansible, GitHub, and Docker
Professional engineer prepared for this role. Expertise in problem-solving, system optimization, and project management. Strong focus on team collaboration and achieving results. Reliable and adaptable with skills in CAD, process improvement, and technical analysis. Known for effective communication and innovative solutions.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Senior IAM/PAM Engineer
Kroger Technology & Digital
11.2022 - Current
- Architect, deploy, and maintain IAM and PAM solutions across AWS, Azure, and Google Cloud Platform (GCP)
- Implement role-based access control (RBAC), least privilege access, and policy/user group management utilizing Ping Federate, Okta, and Saviynt Identity
- Configure and manage SSO solutions, including SAML and LDAP-AD, integrating with enterprise applications
- Develop, implement, and enforce IAM policies, multi-factor authentication (MFA), and access review processes
- Architect and secure AWS Virtual Private Clouds (VPCs) with private endpoints, application gateways, and security groups to ensure effective network segmentation
- Implement VPN network access controls integrated with IAM policies
- Deploy AWS Cloud HSM, Key Management Service (KMS), Macie, and Shield to protect sensitive data and control access
- Design and deploy privileged access controls, session monitoring, and Just-In-Time (JIT) access policies
- Integrate AWS KMS, Secrets Manager, and HashiCorp Vault for secure credential storage
- Implement automated provisioning and de-provisioning processes for privileged accounts
- Configure Security Information and Event Management (SIEM) tools such as Splunk, AWS GuardDuty, and CloudTrail for real-time security monitoring
- Develop and enforce security policies and compliance standards, including SOX, HIPAA, and GDPR
- Conduct periodic security audits, vulnerability assessments, and incident response utilizing tools such as Nessus, Metasploit, and SonarQube
- Automate security monitoring processes using AWS Lambda and GCP Cloud Functions
- Collaborate with DevOps teams to integrate IAM/PAM security into CI/CD pipelines using tools like Jenkins, GitHub, Docker, and Kubernetes
- Implement automated testing, security scanning, and deployment strategies with Chef, Puppet, and Datadog
- Develop security automation scripts using programming languages such as Python, PowerShell, and Bash
SailPoint/IAM Engineer
Siemens
11.2019 - 10.2022
- Led the architecture and implementation of comprehensive IAM solutions that align with organizational objectives, ensuring security and compliance with regulatory standards
- Conducted thorough assessments of business requirements, providing technical leadership to troubleshoot IAM-related issues, optimize system performance, and enhance user experience
- Managed the end-to-end IAM design process, including gathering business requirements and creating high-level and low-level design documentation
- Successfully implemented critical SailPoint features such as self-service capabilities, password management, provisioning, and access policies
- Highly skilled in SailPoint Identity Management, serving as both architect and developer, with a focus on integrating HashiCorp Vault for secure password management within SailPoint environments
- Deployed, configured, and upgraded Ping SSO servers, integrating them with Active Directory for robust user authentication and access management
- Oversaw the IAM security tools infrastructure, including SailPoint IIQ, Ping Federate, Ping Access, and HashiCorp Vault, ensuring optimal functionality and performance
- Designed and automated access review processes, implemented access request workflows for critical applications, and established region-specific Role-Based Access Control (RBAC)
- Implemented SailPoint IdentityNow and Oracle Identity Manager for compliance reporting, streamlining audit and governance processes
- Proactively identified risks and developed contingency plans to address potential issues in test automation
- Customized One Identity Manager modules to meet specific business requirements, enhancing system usability and security
- Engineered custom adapters and connectors in Oracle Identity Manager to ensure seamless integration with third-party applications and systems
- Led threat and vulnerability management initiatives, identifying security issues and implementing enhancements for audit readiness
- Enhanced privileged access security by implementing remote password changes and enforcing Just-In-Time (JIT) access controls
- Developed and maintained automated testing frameworks, such as JUnit, to ensure system reliability and performance
IAM Architect | Security & Compliance Leader
Paccar Inc
10.2017 - 10.2019
- Architect and implement robust IAM frameworks that encompass CIAM, IGA, Access Management, and PAM, ensuring seamless integration across multiple projects and enterprise-wide deployments
- Provide strategic oversight and technical leadership in IAM integration, optimizing system performance and proactively addressing technical issues to enhance scalability, reliability, and security
- Align IAM initiatives with organizational goals, ensuring adherence to regulatory requirements, industry best practices, and enterprise security standards
- Develop, implement, and maintain IAM policies, procedures, and security standards, fostering a secure and efficient identity management environment
- Collaborate with stakeholders to assess IAM requirements, translating business needs into technical solutions that enhance security and operational efficiency
- Conduct periodic audits and compliance assessments to ensure IAM systems adhere to internal policies and external regulatory mandates
- Lead user access management processes, including provisioning, de-provisioning, and periodic access reviews, to uphold the principle of least privilege
- Ensure IAM systems remain secure and up to date through regular assessments, remediation strategies, and proactive security enhancements against emerging threats
- Develop and maintain comprehensive documentation, including IAM architectures, strategies, operational procedures, and governance models to ensure audit readiness and future reference
- Stay abreast of advancements in IAM, continuously monitoring industry trends, emerging technologies, and best practices to enhance security posture and IAM effectiveness
Education
Associate of Applied Science - CyberSecurity
Texas State Technical Colege (TSTC)
Waco, TX02-2020
Data Analytics - Texas
Colaberry School Of Data Analytics
Plano, TX02-2019
Bachelor of Science - Mathematics And Statistics
Ambrose Alli University
Edo State Nigeria01.2006
Skills
- Regulatory Compliance
- Policy and Procedure Development
- Stakeholder Collaboration
- Audit and Compliance Management
- User Access Management
- Security Assessment and Enhancement
- Documentation and Governance
- Industry Awareness
- End-to-End Design Management
- Business Requirements Assessment
- IAM Solution Architecture
- SailPoint Implementation
- SailPoint Identity Management Proficiency
- SSO Deployment and Integration
- IAM Tools Infrastructure Management
- Access Review and RBAC Design
- Compliance Reporting Implementation
- Risk Management and Contingency Planning
- Threat and Vulnerability Management
- Customization of IAM Modules
- Privileged Access Security
- Automated Testing Framework Development
- Root-cause analysis
- System troubleshooting
- Engineering documentation
- Quality control
- Time management
- System design
- Design development
- Data management
- Agile methodologies
- Cybersecurity awareness
- Technical documentation
- Cloud computing
- Design optimization techniques
- Troubleshooting
- Excellent communication
- Team building
- Teamwork and collaboration
- Problem-solving
- Design optimization
- Scale model design
- Network configuration
- Project management
- Critical thinking
- Project planning
- Data analysis
Certification
- AWS Certified Solutions Architect, 01/2024, 01/2027, AWS04179771
- Linux Essentials Certification, 01/2024, LPI000598239
- AWS Certified Cloud Practitioner, 12/2023, 12/2026, AWS03725544
- Certified SAFe Scrum Master SAFe 5.0 (SSM), 11/2022
- Certified Professional Scrum Master PSM1, 09/2022
- Certified International Scrum Institute (Scrum Master), 02/2022
Timeline
Senior IAM/PAM Engineer
Kroger Technology & Digital
11.2022 - Current
SailPoint/IAM Engineer
Siemens
11.2019 - 10.2022
IAM Architect | Security & Compliance Leader
Paccar Inc
10.2017 - 10.2019
Associate of Applied Science - CyberSecurity
Texas State Technical Colege (TSTC)
Data Analytics - Texas
Colaberry School Of Data Analytics
Bachelor of Science - Mathematics And Statistics
Ambrose Alli University
Similar Profiles
Angela CrottsAngela Crotts
Fraud and Risk Analyst at Kroger Technology & DigitalFraud and Risk Analyst at Kroger Technology & Digital
OLUBUKOLA ABEJIDEOLUBUKOLA ABEJIDE
Product Owner at Kroger Technology, The Kroger CompanyProduct Owner at Kroger Technology, The Kroger Company
Brandon FadleyBrandon Fadley
Senior Software Developer/Android Developer at Kroger DigitalSenior Software Developer/Android Developer at Kroger Digital
Aniyah StewartAniyah Stewart
Host at Lazy Dog RestaurantHost at Lazy Dog Restaurant
Sergio AzpilcuetaSergio Azpilcueta
Inventory Control Associate at The Home Depot - FDC #5824Inventory Control Associate at The Home Depot - FDC #5824