John W. Baker
Raleigh,NC
Summary
Seasoned Lead Engineer with a strong background at KPMG, Inc., specializing in Identity and Access Management and SSO solutions. Demonstrated excellence in collaborative projects by achieving over 95% SLA compliance. Known for effective team contributions and comprehensive process documentation, driving innovation and project success consistently. Career aspirations include leveraging technical expertise to further enhance organizational security frameworks.
Overview
24
24
years of professional experience
Work History
Lead Engineer I, Single Sign On (SSO) Admin- Okta & IBM FIM Engineer
KPMG, Inc
Raleigh, NC
01.2016 - 01.2024
- As a member of the Identity Management and Access Team, my primary focus was on Single Sign On (SSO)
- I used two systems for Single Sign On setup (IBM Tivoli Federated Identity Manager (TFIM) & Okta), for internal and external Single Sign On
- Responsible for OKTA setup with pass through Authentication with AD, Agentless DSSO (Desktop Single Sign-on), and IBM Directory Server
- Configured and setup OKTA Radius, RSA, AD and LDAP agents on Windows Server
- Configured the following types of SSO applications - SAML, OAuth, and OpenID Connect, Mobile using OKTA Fastpass
- Collaborated with numerous teams within KPMG to set up SSO applications
- Assisted the business and vendor to trouble shoot SSO issues
- Managed requests to modify and or update existing SSO applications
- Worked on LDAP, Webseal, AAC
- Finished all my SSO projects, within the specified SLA (Consistently above 95%)
- Worked on many high profile SSO engagements (Tax, Audit, Advisory, BPG)
- Completed all paperwork in accordance with specified SLA project timelines, for every SSO project
- Recently completed a project J2DD, which is a top Corporate Initiative for KPMG ahead of schedule
- High performer on the Identity and Access Management Team
Security Engineer Security
Blue Cross and Blue Shield of North Carolina
01.2014 - 01.2016
- As a member of the Information Center of Excellence (ICOE) team
- I supported Enterprise Identity & Access Management, Single Sign on (SSO) via Federation for WorkForce (WF) and Non-Work Force (NWF)
- Part of the startup team to implement SSO within the BCBSNC environment
- Configured 3rd party web applications with Tivoli Federated Identity Manager (TFIM) gathering certificates and exchange of metadata with multiple vendors depending on applications
- Using SAML 2.0
- Ran all testing in development, and Pstage (step before production) and wrote up any supporting documentation to support the implementation process whether passing or failing
- Worked within inter-departmental teams to support implementation of Single Sign On (SSO) products
- Helped setup a SSO sandbox to test and configure SSO via SAML 2.0
- Nominated for the COO Innovation Award for the implementation of SSO
- Successfully implemented 20 SSO projects with third party vendors from discovery thru to production
Systems Administrator / Identity Management
Pfizer (formerly Wyeth Biotech)
Sanford, NC
01.2004 - 01.2010
- Supported fifty-two sites on a virtual team providing support for an $84B pharmaceutical and biotechnology company
- Managed 35K network accounts throughout the US, Puerto Rico, Latin America, and Canada
- Created and managed Active Directory, E-Directory, LDAP, E-mail, VPN Administration, and Blackberry functionality
- Collaborated with Identity Management (IdM) teams in EMEA and APAC
- Improved new-hire on-boarding processes, saving the company $4M in the first year
- Standardized account processes across Latin and North America, making sure every site was following corporate policy
- Served as subject matter expert and Project Manager for Latin America and Puerto Rico, leading initial implementation of standardized account management services across nineteen sites in four months
- Implemented a remote access token project that saved the company $150K (more than 50%) annually
- Increased speed of service from 1-5 days to one day regardless of location
- Changed procedures to accurately document for Sarbanes-Oxley compliance during the workflow, significantly reducing the amount of time spent in audit and increasing the success rate from 75% to 100%
- Served as primary point of contact for HRIS team providing global cross-company access during merger of Wyeth and Pfizer, providing Pfizer with access to business-critical data and completing all requests in less than 24 hours
- Performed account/e-mail research for Sarbanes-Oxley audits covering the Americas Regional IdM tasks, ensuring quick response to legal challenges while maintaining data confidentiality
- Researched and provided resolutions to SAP Security on role assignment problems resulting in clients being able to work efficiently without any production downtime
- Exceeded required SLAs, averaging 98%
- Built greater client trust/satisfaction with the group, making it a model for other regional identity management teams in EMEA and APAC
- Ranked top performer on The Americas Regional IdM team, closing out 26% of monthly problems and requests submitted to Identity Management work queue
Associate Engineer
Wyeth
Marietta, PA
01.2001 - 01.2004
- Served as single point of contact for clients regarding IT technology questions or problems
- Provided pager and telephone support as backup
- Ran one of the top-rated helpdesks: maximized client productivity by answering questions, resolving issues, or escalating problems to appropriate support teams
- Supported approximately 2,100 clients closing an average of 1,200 requests per month with an average client satisfaction rating of 4.9 out of 5.0
Desktop / Helpdesk Specialist
Elcom Services Group
Bristol, PA
01.2000 - 01.2001
- Served as consultant providing desktop and helpdesk support to major corporations, hospitals and school districts including Aventis Pharmaceuticals, UMDNJ, BASF, Camden and Allentown School Districts, and Wyeth in Princeton, NJ
Identity Management Specialist
ii2p, Inc
Southlake, TX
01.2011
- Lead technician for upgrades, installations, and administration of Hitachi Password Manager Software
- Versions supported 6.4.x through 7.10 (Virtual Contract Position – worked out of my home office)
Education
Diploma - Computer Technical Support
The Chubb Institute
Springfield, PAAssociate of Science - Business Administration
Bucks County Community College
Newtown, PASkills
- Identity and Access Management
- Effective Team Contributor
- Process Documentation
- Collaborator
- Two-Step Verification Implementation
- Application Deployment Expertise
- Proficient in SSO Solutions
Phone
- Mobile, 919-285-4400
- Alternate, 919-259-4986
Qualifications Summary
- Identity and Access Management
- Team Player
- Process Documentation
- Collaborator
- Two Factor Authentication
- Software Testing / Deployment
- SSO (IBM, OKTA)
References
References available upon request.
Timeline
Lead Engineer I, Single Sign On (SSO) Admin- Okta & IBM FIM Engineer
KPMG, Inc
01.2016 - 01.2024
Security Engineer Security
Blue Cross and Blue Shield of North Carolina
01.2014 - 01.2016
Identity Management Specialist
ii2p, Inc
01.2011
Systems Administrator / Identity Management
Pfizer (formerly Wyeth Biotech)
01.2004 - 01.2010
Associate Engineer
Wyeth
01.2001 - 01.2004
Desktop / Helpdesk Specialist
Elcom Services Group
01.2000 - 01.2001
Diploma - Computer Technical Support
The Chubb Institute
Associate of Science - Business Administration
Bucks County Community College
Similar Profiles
John W. BakerJohn W. Baker
Lead Engineer I, Single Sign On (SSO) Admin- Okta & IBM FIM Engineer at KPMG, IncLead Engineer I, Single Sign On (SSO) Admin- Okta & IBM FIM Engineer at KPMG, Inc
Akiko HosakaAkiko Hosaka
IT Risk Management Consultant at KPMG Consulting Co., Ltd., KPMG Business Advisory,IT Risk Management Consultant at KPMG Consulting Co., Ltd., KPMG Business Advisory,
Akshay SachdevaAkshay Sachdeva
Senior Audit Associate at KPMG Resource Centre Pvt Ltd/ KPMG Global Services (UK Division)Senior Audit Associate at KPMG Resource Centre Pvt Ltd/ KPMG Global Services (UK Division)
Bryan GambelBryan Gambel
ECommerce Assosiate at KrogerECommerce Assosiate at Kroger
Samuel GerardSamuel Gerard
Stagehand at Rock Creek EntertainmentStagehand at Rock Creek Entertainment