Krishna Hollakal

• Led efforts in identifying and addressing insecure SQL authentication methods as part of a healthcare security remediation project, ensuring compliance with ITIL best practices and security standards.
• Collaborated with stakeholders, including technical teams and application developers, to track and manage remediation tasks through ServiceNow, ensuring timely resolution of issues.
• Conducted thorough assessments of existing database connections (SQL, Azure, and other vendor databases) to verify secure routing, prevent public IP exposure, and enhance the security posture of the organization’s infrastructure.
• Reviewed and analyzed automated scripts and background processes to detect potential insecure SQL connections, utilizing Problem Management processes to implement secure configurations.
• Assisted in verifying Fully Qualified Domain Names (FQDNs) and DNS names of database servers, ensuring connections adhered to private IP routing and Configuration Management Database (CMDB) standards.
• Worked proactively to communicate risks related to SQL authentication and database access, supporting stakeholders through Change Management processes for secure solutions implementation.
• Utilized ServiceNow dashboards to track progress on remediation efforts, generate compliance reports, and manage SLA adherence during the project lifecycle.
• Utilized tools like Axonious, Bulk NS Look Up, ServiceNow, and ARIN to gather, analyze, and manage network and asset data, ensuring visibility into the IT infrastructure in alignment with ITIL practices.
• Leveraged ServiceNow CMDB to automate asset discovery, track configuration items, and improve IT asset tracking and compliance.
• Conducted DNS validations using Bulk NS Look Up, identifying misconfigurations, and ensuring proper alignment with organizational standards and policies.
• Used ServiceNow Incident Management to resolve service disruptions, collaborating with cross-functional teams for timely resolutions, and effective communication.
• Documented workflows and processes related to asset discovery, incident management, and network investigations, to ensure clarity and alignment with ITIL Knowledge Management standards.
• Coordinated tools such as Axonious, ServiceNow, and ARIN to streamline processes for IT asset management, security, and incident response, ensuring alignment with organizational goals.
• Performed in-depth data analysis using Power BI and Excel, creating dashboards and reports to provide actionable insights, and enable proactive decision-making.
• Designed and maintained interactive Power BI dashboards to monitor key performance indicators (KPIs), trends, and project metrics in alignment with ITIL Continual Service Improvement (CSI) processes.
• Conducted data cleansing, validation, and normalization in Excel to ensure accurate and reliable data for decision-making and reporting.
• Used advanced Excel functions, such as pivot tables and macros, to analyze large datasets and streamline reporting processes, aligning with organizational needs.
• Leveraged Power BI to transform complex datasets into meaningful visualizations, supporting stakeholders with strategic planning and trend analysis.
• Utilized Splunk for monitoring and analyzing log data, enabling real-time insights and incident detection, in adherence to ITIL Incident Management practices.
• Configured automated alerts in Splunk to monitor critical systems, enabling proactive responses to potential issues, and minimizing downtime.
• Developed custom Splunk dashboards and reports to provide key operational metrics, supporting Service Operations with real-time visibility, and actionable insights.
• Conducted deep-dive investigations into incidents using Splunk, tracing root causes through log analysis, and providing actionable recommendations aligned with Problem Management frameworks.
• Collaborated with IT and business teams to build Splunk queries, ensuring that insights aligned with business objectives and ITIL Service Strategy goals.

Tools Used: Arin, Axonious, Splunk, SIEM, Bulk NSLOOKUP, ServiceNow CMDB, Excel, Power BI.

• Working in a pharmaceutical manufacturing domain as a security business analyst and product owner.
• Providing support and guidance to the development team, and collaborating with stakeholders.
• Facilitating daily stand-ups, sprint reviews, and backlog refinement for IAM and IGA-related projects.
• Ensuring that project artifacts, including user stories, acceptance criteria, and test cases, are properly documented to align with IGA best practices.
• Developing, reviewing, and modifying Agile project plans to ensure compliance with IGA security controls, while tracking timelines, budgets, and deliverables.
• Utilizing Agile tools such as Jira to track team progress, access certification workflows, and identify governance enhancements.
• Measuring and reporting on team performance in IGA initiatives, identifying opportunities for process improvement, and automation.
• Attending meetings to gather business requirements for identity governance, ensuring the implementation of myAccess-certified and standard solutions, as determined by the Eli Lilly Identity and Governance Module.
• Implemented IGA solutions using SailPoint IdentityIQ (6.4 and 7.2) for access governance, provisioning, and compliance.
• Working across various direct, indirect, and disconnected service types within myAccess IIQ (6.4) to streamline identity lifecycle management.
• Providing full-service and certification-only services across AD Connector, JDBC Connector, and Unplugged Connector types in SailPoint IIQ.
• Developed and enforced Segregation of Duties (SoD) policies to prevent conflicting access permissions, ensuring adherence to IGA security standards.
• Automated self-service access requests using workflow-based approval processes within SailPoint IIQ, reducing manual interventions.
• Designed and managed periodic access certification campaigns to ensure compliance with SOX, HIPAA, and GDPR, improving IGA governance controls.
• Performing group analysis on AD connector types across different domains to determine eligibility for myAccess adoption, ensuring alignment with IGA role-based access control (RBAC) models.
• Analyzing application onboarding forms for IGA compliance and myAccess adoption, ensuring secure integration with SailPoint IIQ.
• Verifying and validating JDBC read and write application connectors, ensuring IGA-compliant data flows, and access provisioning.
• Developing standard single-group and multiple-group configurations for JDBC application connectors to align with IGA role-based policies.
• Performing data load validation testing and unit testing for JDBC applications to ensure seamless integration with IGA governance models.
• Collaborating with capabilities teams to conduct code comparisons during the myAccess IIQ 7.2 upgrade, ensuring proper IGA integration.
• Customizing email templates and resolving defects for the 7.2 IIQ upgrade in the IIT environment, improving IGA notification workflows.
• Implementing secure vaulting of privileged credentials, enforcing password policies, and periodic credential rotation.
• Mitigating insider threats by applying PAM controls and monitoring high-risk activities using CyberArk and BeyondTrust.
• Conducting discovery and onboarding of privileged accounts into CyberArk, ensuring compliance with organizational security policies.
• Automating credential rotation for privileged accounts to enhance security and reduce manual intervention.
• Configuring and maintaining CyberArk policies to mitigate risks associated with insider threats, unauthorized access, and privileged account misuse.
• Providing support for security incidents involving privileged accounts, leveraging CyberArk tools for tracing activities, and remediating vulnerabilities.
• Leveraging ServiceNow to manage incidents, change requests, and service requests, ensuring adherence to ITIL best practices.
• Configuring ServiceNow workflows to automate incident escalation, SLA tracking, and resolution timelines.
• Creating dashboards and reports in ServiceNow to monitor incident trends, service performance, and compliance with organizational KPIs.
• Collaborating with cross-functional teams to maintain and update the CMDB (Configuration Management Database) for accurate tracking of IT assets and dependencies.
• Conducting root cause analysis for recurring issues, and implementing long-term fixes through ServiceNow Problem Management.
• Supporting and coordinating change management processes in ServiceNow, ensuring minimal disruption during infrastructure updates and upgrades.
• Documenting and maintaining knowledge base articles in ServiceNow for quick resolution of common issues, improving response times for support teams.
• Working on a migration project to upgrade the Manufacturing application, High Jump, to SCA 13 version.
• Performing standalone and integration testing on pick, pack, and ship operations using Remote Terminal Devices with High Jump.
• Coordinating with developers and development teams to identify solutions, prioritize needs, and resolve conflicts.
• Identifying and maintaining links to data flow within different modules of the Warehouse Inventory System application.
• Familiarity with clinical trial and manufacturing concepts, including pick, pack, and ship processes.
• Following GMP, FDA documentation, and process standards.
• Analyzing and reporting security events, and identifying specific Microsoft vulnerabilities.
• Providing guidance and consultation to developers for integrating application code with Lilly’s secured protocols.
• Gradually defining streamlined processes for migrations, and documenting them where required.
• Working with the information security team to identify, analyze, and streamline processes for remediating impacted systems across Eli Lilly.
• Auditing, analyzing, and tracking security events using Splunk.
• Performing user and access management based on onboarding roles and requests.
• Extensive use of Excel for month-on-month report analysis and tracking.
• Creating reporting mechanisms to track migration progress.
• Using Power BI for generating reports and performing data analytics.

Tools Used : Jira, SailPoint 6.4 p7 and 7.2 p2, SQL Server, Toad, JDK 1.7, Eclipse, TFS, Group Manager, Softerra, Netezza, SharePoint, ServiceNow, Notepad++, Beyond Compare, Java, Oracle, Active Directory, and Splunk.

• Worked on the existing documentation and made enhancements to upgrade from 6.3 to 7.1.
• Assisted in drafting design documentation on specific topics related to application connectors, workflows, certifications, roles, applications, and rules.
• Experience in performing data analytics using Tableau.
• Experience creating interactive data visuals and simplifying complex data structures.
• Experience working on importing data from Excel and MySQL data sources.
• Experience in creating dashboards with multiple snippets of data visuals for simple and easy understanding.
• Worked in Agile Project Methodology with 2-week sprints.
• Assisted in drafting test cases and test steps for JDBC, Oracle Direct connectors, and LDAP connectors.
• Experience working with Business Services and.
• Worked on the configuration of JDBC, Delimited, and SAP-Direct as Authoritative Application sources.
• Configured SAP Direct, Oracle Direct, LDAP, Sun One Direct, and Active Directory as the target connectors.
• Worked on the configuration of auto provisioning and manual provisioning of authoritative sources and downstream applications in IIQ.
• Worked on the Entitlement Catalog, exporting the existing entitlements from the database and importing the same in accordance with the managed attributes.
• Performed unit testing and functional testing in accordance with the test plan drafted.
• Migrated and developed correlation rules, customization, provisioning, and build map rules.
• Performed migration and configuration of the password policies into the 7.1 environment.
• Migration of rules and workflows, which determine the provision and de-provisioning of the identities.
• Worked on OOB and custom quick links for creating a new identity, as well as managing downstream applications.
• Used Java for the development and customization of rules and workflows.
• Configuring different aggregation tasks, ranging from Account, Group, and Sequential Aggregations.
• Customization of provisioning forms, rules, and methods.
• Used WebSphere application to verify log files.
• Worked on the migration of reports, both OOB and custom reports, from 6.3 to 7.1.

Tools Used: SailPoint 6.3 and 7.1, SQL Server, JDK 1.7, XML, Windows Server 2003, JX Explorer, Eclipse IDE 4.5.2, Java, SQL, Beyond Compare, PuTTY, GitHub, Notepad.

• Was a part of the transition team in understanding the current architecture and design of SailPoint
• Review on all the documentation with respective to the existing IAM Application
• Worked on IIIQ 6.4 and 7 versions
• Worked on various connectors such as Delimited, JDBC, Logical and AD
• Extensive work on application validation setting up aggregation
• Used OOB and Advanced Analytic to generate and schedule reports
• Worked on creating custom Email Templates for scheduler Email reports
• Worked on Access Requests and certification
• Knowledge on SODs policy violations
• Extensively worked on application remediation and termination process
• Worked on Build-map rules, Correlation rules and creation rules
• Created test plans for Application On-Boarding
• Keeping track of day-to-day support activities with respective to Daily Application Aggregation reports and Application connection status report
• Used Unix shell scripting to perform tasks on Web Servers, extract and verify the log files for IIQ
• Following up with the business team to complete the requirements
• Creating remedy tickets for creation of new users and getting access to different environments and Databases
• Worked on Service Now and Remedy ticketing tools to create tickets for troubleshooting JDBC application connectivity issues
• Briefing the Business team on automating the existing On-Boarded application to JDBC or Automate FTP feed drop in the Server locations
• Troubleshooting Delimited and JDBC Application Configuration issues
• Wrote Custom code to convert Text files to CVS feeds
• Extensively used tools are WinSCP, Putty, SQL Management Studio, Beyond Compare, Java Eclipse and XML
• Tools Used: SailPoint 6.3 and 7.1, SQL Management Studio, Win SCP, JDK 1.7, XML, JX explorer, Eclipse IDE 4.5.2, Java, SQL, Beyond Compare, Putty, GitHub, Notepad++
• Client

• Support in Analysis of the business requirements and present design review to estimate the timeline required to complete the project
• Configured JDBC and Active Directory Connectors as per the client requirement
• Worked on creating roles and entitlements based on the SQL queries
• Designing and modifying the Provision form to perform functionality of Create, Delete and Update
• Worked on the designing Forms and Rules to attain custom functionality of the business requirements
• Developed Custom workflows to verify companies SOD policies and validations
• Performed Unit and Integration testing on various test case scenarios in the Dev environment
• Extensive use of Java Eclipse and XML to generate and validate the custom code
• Created certification process tasks to format the Users tasks and entitlements data
• Formatted existing rule library to meet the change requirements of the business
• Tools, : SailPoint 7.0, JDK 1.7, SQL Server Management Studio, Active Directory, SVN, Putty, WIN SCP, XML, Beyond Compare

• Expertise in performing data loading using Data Loader
• Knowledge on performing data migration using Bit Bucket and Source Tree
• Hands on experience in creating profiles, roles, permission sets and assigning sharing permissions as
• Per the profiles
• As a BA was in regular contact with the business on Chatter to understand their requirements which
• Would assist in completing the User Stories
• Was a part of UAT team onsite with the client and resolve issues with the application on the go
• Hands on experience in assigning field level and object security on permission sets and profiles
• Resolving and creating tickets related to User Stories
• Design and developed solutions based on functional, migration and integration requirements for SFDC
• Platform
• Develop prototypes on SFDC environment for Proof of Concept demo and for customer Endorsement
• Work on customization of standard objects like Lead, Account, Contact and Opportunity
• Perform day to day User Management on SFDC Org by configuring Sharing Rules, Permission Sets
• Roles and Profiles
• Create custom report types, custom reports and dashboards to meet the reporting requirements of the
• Decision makers in the organization
• Created and maintained the email templates to be used in the Workflows, Auto Assignment Rules and
• Auto Response Rules related to Lead Management module in Sales Cloud
• Work on complex data migration projects using Data Loader tool and Cast Iron
• Develop Visualforce pages, Visualforce custom components, portal pages with JavaScript for
• Validation
• Design and develop APEX classes, APEX triggers, Custom Controllers, Controller extensions
• Integration of Sales cloud with external information systems using SOAP API web services
• Integration of Oracle E-Business Suite products master data with Salesforce.com by using Cast Iron
• Application
• Deploy changes from SFDC sandbox environment to Production environment using changes
• Tools Used: Salesforce.com, Sales Cloud, Custom Cloud, Reporting and Analytics of Sales
• Service and Custom Cloud, MS Office, MS Project, MS Visio, SQL , Java, Win 8, Win 7, Win XP and Win 2000, Linux

• Fix any code related bugs and develop new forms and workflows using Xpress
• Daily production support- work on password reset, account lock tickets
• Monitor daily PeopleSoft ActiveSync process for user creation and termination
• Deferred tasks for disabling and deleting of users upon termination were developed to be managed and performed by IT Administrator
• Coordinate testing requirements/efforts with Sun IDM and OpenSSO for IDM Infrastructure and Operations support teams and users
• Develop and execute the Test scripts/Use cases to test user authentication and authorization scenarios including single sign-on using OpenSSO
• Participated in projects and initiatives in support of regulatory, audit and IDM directives
• Bulk migration process including data clean-up process for the existing 170K users
• Performance monitoring tasks and scheduled tasks were created for System Administrators day-to-day activities
• Experience with Change management procedures
• Implement scripts for rollover of logs and task automation
• Worked on System /Technical documentation, User documentation for the project activities
• Worked on System /Technical documentation, User documentation for the project activities
• Tools, Sun IDM 7.1, 8.1, OpenSSO, PeopleSoft, SailPoint 5.5, Java, JSP, LDAP, Active Directory, XML, Glassfish, Oracle 9i, Tomcat, HTML, JavaScript, SQL, Perl

• Develop and execute the Test scripts/Use cases to test user Provisioning and De-Provisioning scenarios
• Develop and execute the Test scripts/Use cases to test user authentication and authorization scenarios including single sign-on using OpenSSO
• Manual testing of the first-time login scenarios forgot password and forgot username functionality
• Serve as an escalation point for issues involving testing and provide periodic status report that includes testing metrics
• Communicate the test strategy to Team Lead/Project Manager and Development Team, Support and train other team members as required
• Tools Used: Sun IDM 7.1, OpenSSO, LDAP, Active Directory, XML, tomcat.