Nirnaya Baral

• Resolved security events and incidents or conducted security assessments using penetration tests, ethical hacking tools, or risk mitigation methodologies to evaluate vulnerabilities.
• They are coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
• Managed company Bring Your Own Device program, onboarding employee devices and verifying absence of inherent security threats.
• They conducted threat-hunting exercises using ThreatConnect to proactively identify and mitigate potential security threats before they could impact Siemens Energy's systems and data.
• Fine-tuned ArcSight dashboards and reports to provide actionable insights to security operations team, enabling quicker response to security incidents.
• Collaborated with cross-functional teams to integrate ArcSight with other security tools and systems, such as SIEM solutions and threat intelligence platforms, for improved threat detection and response.

● Implemented Agile Methodology with Sprint teams in a highly dynamic environment.

● Rewriting workflows to encompass new ways of provisioning. Restructured entire product to reflect direct provisioning across many applications. In process of upgrading IdentityIQ product from SailPoint 6.3 to SailPoint 7.0.

● Analyzing security logs to identify security events to implement alerts to monitor & respond by the 24x7 Security Operations Center (SOC).

● Integrate Unix/Linux servers into AD (Active Directory) while extending compliance and security of Active Directory (AD) Domain Services.

● Break Glass Access Management Process, Integration with other Systems (email configuration). Change Management Process Plan (OS, patch updates). Responsible for creating new users and activating and enabling users, groups, and OU accounts in theActive Directory (AD).

● Experience using SOC monitoring devices (SIEM, IDS, DLP) to review and analyze pre-defined events indicative of incidents.

● Administration experience of CyberArk vault with Safe creation, integration with LDAP, and other authentication methods. Mitigation of risks using CyberArk, Aveksa, and policy changes on servers. Incident intake, ticket updates, and reporting of cyber events.

● Deployed several out-of-box SailPoint connectors to connect various client Systems (JDBC, LDAP, AD, RACF etc.)

● Worked with SAP system and developed BAPI functionality.

● Proficient in Administration and optimization of Meraki and Cisco switches to facilitate efficient data transmission and network connectivity.

● Implementation of fully API based SSO architecture using CA SiteMinder, CA IDM, PingFederate, and Radiant Logic Virtual Directory Server which accomplishes end applications integration with SSO easier.

● In-depth knowledge of developing, reviewing, and executing UAT test cases.

● Designed, deployed, and supported highly available and scalable Ping federate infrastructure in AWS and On-premises that provides single-sign-on (SSO) and federation solutions for internal accesses.

● Gathered business requirements to onboarding business applications into SailPoint IdentityIQ for provisioning, de-provisioning, certification, password management.

● Deployed several Ping federate integration kits for Apache, CoreBlox, Atlassian, Java, PHP, Symantec VIP, Agentless, IWA, etc., to establish federated identity's “first- and last-mile” implementation.

● Developed security policies within Palo Alto firewall, including rules for traffic filtering, application control, and threat prevention

• Implemented business logic in C# .NET, interacting with Microservices and MySQL databases to ensure seamless data integration and processing.
• Involved in all stages of Software Development Life Cycle like Application Design, Development, Debugging and Application Testing.
• Engage in performance analysis, profiling, and code reviews, tackling bottlenecks and bugs for optimal application performance.
• Enhanced interfaces to promote better functionality for users.