Professional Summary
Overview
Work History
Education
Skills
Certification
Timeline

FARZAD A DAUD

OneMain Financial (OMF)
Sterling,USA
1
Certification
14
years of professional experience

An enterprise Identity and Access Management (IAM) and Governance (IGA) leader with over 12 years of hands-on experience designing, stabilizing, and automating high-availability identity infrastructures across financial services, healthcare, and insurance sectors. Expert in managing end-to-end identity lifecycles, enforcing Zero Trust architectures, and executing large-scale application, database, and cloud directory integrations. Advanced proficiency in orchestrating directory schema mappings, database synchronization, and script-based automation (Python, PowerShell) to optimize corporate productivity. Proven track record of spearheading complex audit remediations (SOX, HIPAA, NIST 800-53) and utilizing data-driven business analytics to mitigate enterprise-wide risk. Fully adept at independently managing complex project applications, driving change management initiatives, and leading cross-functional engineering teams.

Work History

Lead IAM Engineer and Team Lead

4 Months
OneMain Financial (OMF) | 03.2026 - Current
  • Strategic Team Leadership: Lead and direct the core IAM engineering team in executing enterprise identity roadmaps, driving daily operations, and managing sprint deliveries within a high-compliance financial environment.
  • Data Security Governance via Veza: Spearheaded the integration and configuration of Veza, mapping complex access permissions across disparate enterprise databases, cloud storage ecosystems, and SaaS applications to build a unified data access graph and eliminate hidden authorization risks.
  • Okta Identity Governance and OAA Orchestration: Engineered automated approval workflows and self-service entitlement provisioning structures utilizing Okta Identity Governance and Okta Access Requests, drastically reducing ticket resolution times and optimizing the employee access lifecycle experience.
  • Enterprise Migration Automation: Authored advanced Python and PowerShell scripts to orchestrate the automated migration of legacy user accounts, custom application entitlements, and security configurations into centralized, modern identity fabrics while ensuring zero operational downtime.
  • Continuous Operations and Optimization: Act as the primary escalation point for architectural anomalies, guiding the engineering team through root-cause analysis and establishing robust Standard Operating Procedures for data security lifecycle controls.
  • Remote

Senior IAM Solutions Architect

2 Years
Fidelity Investments | 02.2024 - 02.2026
  • Project Management Applications and Platform Scaling: Managed and optimized enterprise-wide IAM infrastructure across millions of workforce and customer identities utilizing Okta, SailPoint IdentityIQ, and Azure AD.
  • Business Analytics and Systems Automation Engineering: Designed and implemented data-driven Python, PowerShell, and REST API automation scripts to execute real-time identity lifecycle events; connected Workday HRIS databases with downstream application targets to eliminate manual provisioning and reduce operational human error.
  • Operations and Lifecycle Management: Designed, deployed, and maintained custom Okta SSO and SCIM 2.0 connectors for over 100 SaaS and on-premises applications, directly driving real-time automated provisioning and system resource optimization.
  • Project Workflow Orchestration: Leveraged ServiceNow orchestration engines to automate complex operational approval workflows and account reconciliation tasks, reducing manual security intervention, mitigating operational risks, and accelerating user request fulfillment.
  • Systems Monitoring and SIEM Analytics: Monitored massive hybrid environments via Splunk dashboards and SIEM alerts, utilizing custom logs and queries to detect authentication anomalies, enforce Segregation of Duties, and ensure continuous audit readiness.
  • Remote

Senior IAM Technical Lead

2 Years 3 Months
Travelers Insurance | 10.2021 - 01.2024
  • Strategic Project Leadership: Directed day-to-day IAM infrastructure operations for Okta, SailPoint, Active Directory, and Azure AD across a complex, multi-cloud enterprise environment.
  • Database Management and Data Aggregation: Designed and deployed advanced SailPoint workflows to automate identity aggregation, schema configuration, and role assignments across more than 200 distinct enterprise business applications, utilizing SQL queries to validate database target integrity.
  • Change Management and Organizational Behavior: Facilitated enterprise-wide transition and behavioral adoption during the deployment of Okta Adaptive MFA; leveraged user device profiling, risk scoring, and conditional access policies to strengthen perimeter security while minimizing end-user friction.
  • Project Risk and Cost Management: Managed comprehensive user access reviews and entitlement certification campaigns to mitigate privilege creep, manage identity access data risks, and ensure strict internal compliance.

Senior Identity Governance Engineer

3 Years 8 Months
Tenet Healthcare | 01.2018 - 09.2021
  • Information Systems Management: Supported and enhanced core IAM systems (Okta, SailPoint, CyberArk, Active Directory) for a highly regulated healthcare organization under HIPAA and HITRUST compliance frameworks.
  • Data Mining and Audit Remediation: Executed advanced SailPoint role-mining and automated database certification campaigns to identify, evaluate, and remediate structural access anomalies across critical clinical systems.
  • Operations and Risk Mitigation (PAM): Administered CyberArk Vault for privileged account management, configuring CPM and PSM components for secure password rotation, session isolation, and real-time monitoring of high-risk activities.
  • Remote

Identity and Access Management Specialist

3 Years 1 Month
Freddie Mac | 11.2015 - 12.2018
  • Operations and Infrastructure Management: Maintained day-to-day enterprise IAM infrastructure and Active Directory domains, ensuring uninterrupted access operations within a large-scale financial services environment.
  • Cloud Platform Integration Project: Spearheaded the secure onboarding of cloud platforms into enterprise frameworks, configuring Single Sign-On and User Provisioning via Salesforce Connected Apps using SAML and OAuth 2.0 protocols.
  • Strategic Professional Documentation: Authored foundational IAM team technical documentation, deployment workflows, and standard operating procedures to guide cross-functional incident resolution and onboarding processes.

IAM Systems Analyst

2 Years 9 Months
M&T Bank | 01.2013 - 10.2015
  • Information Systems Life-Cycle Management: Supported SailPoint IdentityIQ configurations to drive identity lifecycle workflows and SOX-compliant access certification campaigns.
  • Database Identity Governance: Engineered automated lifecycle and reconciliation workflows to govern Salesforce user access, utilizing SailPoint scripts to map profiles, custom permission sets, and roles while effectively eliminating orphaned cloud accounts.
  • Data Reconciliation Automation: Automated entitlement reconciliation between SailPoint, CyberArk, and Azure AD databases using Python and PowerShell, successfully eliminating orphaned accounts and stale permissions.

Education

Associate of Applied Science - Business Administration And Management

Northern Virginia Community College | Annandale, VA

Frontend Development - Web Development

Flatiron School | New York, NY

Skills

IAM and Identity Governance Platforms: SailPoint IdentityIQ
SailPoint IdentityNow
Okta
Okta Identity Governance
Okta Access Requests
Veza
Azure AD (Entra ID)
Active Directory
OpenLDAP
Enterprise Software and Cloud Integrations: Salesforce CRM
Workday HRIS
ServiceNow
AWS IAM
Azure AD Connect
Protocols
Data Structures
and Web Services: SAML 2.0
OAuth 2.0
OpenID Connect
SCIM 2.0
JSON
JWT
XML
SOAP
REST Web Services
Automation
Scripting
and Core Languages: Python
PowerShell
Bash
Java
J2EE
SQL (MySQL
Oracle SQL
Microsoft SQL Server)
Privileged Access Management and Security Governance: CyberArk Enterprise Password Vault
Central Policy Manager
Privileged Session Manager
Privileged Access Reviews
Segregation of Duties
Role-Based Access Control
Attribute-Based Access Control
Data Monitoring
Analytics
and SIEM Tools: Splunk
SIEM Log Analytics
Wireshark
IAM Syslogs
Audit Trail Mapping
Compliance and Legal Frameworks: SOX
HIPAA Security Rule
HITRUST Alliance
NIST SP 800-53 R5
Least Privilege Methodology
Project and Operations Management: Software Development Lifecycle
Agile/Scrum Methodology
Resource Optimization
Enterprise Change Management
Technical Writing
SOP Authoring

Certification

  • CompTIA Security+
  • CompTIA CySA+ (Cybersecurity Analyst)
  • CompTIA A+
  • Google Cybersecurity Professional Certificate
  • Salesforce Certified Administrator
  • Salesforce Certified Platform App Builder
  • Salesforce Certified Sales Cloud Consultant
  • Salesforce Certified Service Cloud Consultant
  • Salesforce Certified Experience Cloud Consultant

Timeline

Lead IAM Engineer and Team Lead

OneMain Financial (OMF)
03.2026 - CurrentRead More

Senior IAM Solutions Architect

Fidelity Investments
02.2024 - 02.2026Read More

Senior IAM Technical Lead

Travelers Insurance
10.2021 - 01.2024Read More

Senior Identity Governance Engineer

Tenet Healthcare
01.2018 - 09.2021Read More

Identity and Access Management Specialist

Freddie Mac
11.2015 - 12.2018Read More

IAM Systems Analyst

M&T Bank
01.2013 - 10.2015Read More

Northern Virginia Community College

Associate of Applied Science from Business Administration And Management
Read More

Flatiron School

Frontend Development from Web Development
Read More
FARZAD A DAUD