Summary
Overview
Work History
Education
Skills
Timeline
Generic

Nischal Aryal

IAM SME
Fort Worth,TX

Summary

Dynamic and results-driven leader and engineer with a proven track record in Identity and Access Management (IAM), successfully overseeing projects from start to finish. Demonstrated expertise in lifecycle management, governance, and compliance, ensuring robust security and streamlined processes. Adept at navigating and integrating various IAM components, driving efficiency and innovation. Passion for technology drives constant engagement with the latest trends, especially in blockchain, artificial intelligence, and emerging tech. Known for strong engineering skills and relentless curiosity, with a commitment to continuous learning and research. Recognized for being warm and approachable, fostering collaborative environments and empowering teams to achieve their best. Organized and dependable, successful at managing multiple priorities with a positive attitude, and willing to take on added responsibilities to meet team goals.

Overview

7
7
years of professional experience

Work History

Sr. Associate, Cyber

Capital One
Plano, TX
06.2023 - Current
  • Led proficient team in Identity and Access Management (IAM), guiding efforts toward successful project completion, issue resolution, and smooth release management, ensuring adherence to timelines and quality standards.
  • Provided mentorship and leadership to development teams, fostering a culture of collaboration, innovation, and continuous improvement, while effectively managing project lifecycles through comprehensive Agile methodologies such as JIRA, Kanban Boards, and PI Plannings.
  • Worked with auditors, liaising with auditors and providing comprehensive evidentiary documentation, enhancing organizational compliance and security posture.
  • Acted as subject matter expert (SME) in IAM technologies and practices, providing guidance, support, and mentorship to team members and stakeholders, fostering a collaborative and knowledge-sharing environment.
  • Collaborated with cross-functional teams to gather requirements, analyze business needs, and translate them into technical solutions, ensuring alignment with organizational goals and objectives.
  • Demonstrated problem-solving skills, troubleshooting complex technical issues, and implementing innovative solutions to overcome challenges and improve system performance.
  • Played a pivotal role in documenting product details and processes, facilitating comprehensive understanding and knowledge sharing among team members, stakeholders, and end-users.
  • Actively contributed to knowledge management initiatives, creating and maintaining repositories of technical documentation, best practices, and troubleshooting guides, fostering a culture of continuous learning and improvement within the team.
  • Designed performance enhancement strategies, significantly boosting platform efficiency by 20% through optimizing workflow cases, resolving deadlocks, and implementing best practice design patterns in the codebase.
  • Collaborated extensively with Active Directory, LDAP Context, CyberArk for password vaulting, and Ping for Single Sign-On (SSO), ensuring seamless integration and robust access control across diverse platforms.
  • Directed implementation of advanced functionalities, including automated access revocation tailored to application-specific requirements, improving operational efficiency by 85% and reducing risk.
  • Developed and deployed a Native Change Detection mechanism, automating access flow remediation and reducing manual intervention by 92%, thereby enhancing security protocols and minimizing human error.

Sr. IAM Engineer (Consultant)

Capital One
Plano, TX
01.2022 - 03.2023
  • Involved in SailPoint migration and development of Lifecycle Manager Workflows, Lifecycle Events, Certification Events, Custom Email Templates, and Task Definitions.
  • Implemented Access Certification, Automated Provisioning, and Governance aspects of SailPoint IdentityIQ; responsible for design and implementation.
  • Solved production issues recorded in Jira Stories by the L3 team, ensuring swift resolution and system stability.
  • Prioritized backlog stories by closely working with Product Owner and Scrum Master, ensuring timely delivery of critical tasks.
  • Hands-on experience with AWS EC2 Instances, managing and maintaining cloud infrastructure.
  • Worked with CI/CD pipeline, Jenkins build process, and extracted WAR files from AWS S3 Bucket, ensuring smooth deployment cycles.
  • Experience with native LDAP Context Directories and classes, utilizing Apache Directory Studio and LDAP Filters for efficient directory management.
  • Implemented the provisioning function of SailPoint IdentityIQ using various connectors such as LDAP and Workday.
  • Planned and configured SailPoint Life Cycle Events (LCM), ensuring seamless integration and functionality.
  • Implemented Targeted Certifications and Ad-hoc Certifications as per client requirements, enhancing compliance and security.
  • Developed complex workflows and service adapters in the SailPoint IdentityIQ configuration interface, streamlining identity management processes.
  • Established connectivity with various application teams (AD, PeopleSoft, Salesforce, and ServiceNow), ensuring seamless integration.
  • Implemented self-service, password management, provisioning, and forgot password change features in SailPoint, enhancing user experience.
  • Implemented Role-Based Access Control (RBAC) and served as liaison between Business, IT, and Testing teams throughout the IAM RBAC project lifecycle.
  • Managed SailPoint administration functionality, including loading data, creating roles and policies, scheduling tasks and certifications, and generating reports.
  • Improved Identity and Access Management (IAM) capabilities by controlling access to applications and systems containing critical and sensitive information.
  • Assisted in executing the implementation and upgrade of IAM systems, ensuring enhanced security and functionality.
  • Utilized IIQ Console for operations such as checkout, import, and connector debugging, maintaining system integrity and performance.

IAM Engineer (Consultant)

Gap Inc.
San Francisco, CA
10.2021 - 12.2021
  • Designed and executed a detailed migration plan, including data migration, configuration mapping, and integration setup between IdentityIQ and IdentityNow
  • Implemented data migration strategies to transfer user identities, entitlements, roles, and access policies from IdentityIQ to Identity Now, ensuring data integrity and minimal disruption to business operations
  • Worked on creating REST APIs for Vault called Venafi
  • API functionalities included Creating SubCA, Creating SubCA with Devices, and so on
  • Worked with Microsoft Azure, mostly focusing on Azure Key Vault, Azure App Registrations
  • Worked on complete automation of Azure Certificate Secret Expiration Notification process
  • Leveraged Microsoft Graph API to create Azure REST APIs like SPN Cert and Key Expiry notifications, renewal, access policies update, IP restrictions and update
  • Overviewed and worked on migration of legacy AD to new Cloud AD
  • Migration involved changing in the Sailpoint Workflows, Tasks, Custom Java Methods, Provisioning Deprovisioning Logic, Changes in the JML process, RBAC Process, Request Access, policies, etc
  • Worked on creating Password Reset API which leverages Sailpoint Workflow that provisions to the user account, modifies the password for AD and LDAP then sends an notification back to the user
  • Worked on creating REST API for Ping ID authentication using Push Feature as well as Passcode Feature
  • Worked on Distributed Group Migration as well as Nested DGs migration
  • Worked on TX2-AD Account creation which is used for Store Tablets (Android / Apple) both
  • Experience working with native LDAP Context Directories and classes
  • Experience using Apache Directory Studio, LDAP Filters, etc

SD-II / SailPoint Engineer

Cambridge Investment Research
Fairfield, IA
02.2020 - 09.2021
  • Worked with SailPoint IIQ and various types of connectors, including custom connectors and their integration into SailPoint
  • Client specifications were managed, and SailPoint connectors were designed for a variety of applications
  • Data import of different types of data files from internal and external target sources for validating access levels was designed and implemented
  • Client specifications were managed, and SailPoint connectors for 23+ applications were configured
  • SailPoint deployment and solution architectures were designed
  • Onboarded various types of applications using OOB Sailpoint connector like IBM i connector, Webservice Connector, Servicenow Connector
  • Assisted customers in integrating, deploying, and maintaining the Okta service, providing well-thought-out and dependable guidance, both in technical and non-technical terms
  • Worked on Provisioning and deprovisioning for joiners, movers, and leavers in high-risk market areas
  • Worked with IIS Server, Splunk, Framework specific Extractor and Consumer Service, Windows Service, WCF
  • Experience working with TFS, Sonarqube for Product Backlog and solving Code Smell
  • Experience in Unit Testing, Integration Testing using NUnit, XUnit, Rhino Moq, etc
  • Worked with SAML 2.0, OAuth 2.0, OpenID link (OIDC), and WS-Federation for SSO and federation

IAM Engineer

Metahorizon Inc
Irving, TX
11.2019 - 12.2020
  • Involved in SailPoint IdentityIQ Installation and Configuration as required by the design solution
  • Developed build map rule, creation rule and customization rule to create Employee and Contractor user accounts into SailPoint from their current application's exported feed file
  • Developed a custom form in the SailPoint UI so that various admins can create
  • Developed a creation rule to run update, terminate and rehire transactions on specified Employee and Contractor user accounts based on the feed file data
  • Developed a scheduler using Java that will periodically run to terminate contractors on their specified contract end date
  • Developed Audit Detail Report, SOX Report and Remediation Report as per client needs
  • Implemented Life Cycle events (Joiner, Mover, Leaver) for the user provisioning and deprovisioning in the target system Active Directory
  • Involved in designing and implementing Custom AD connectivity to pull data from AD
  • Developed custom certifications to cater client needs
  • Designed and deployed Identity & Access Management solution to improve user experience, meet compliance, and reduce costs
  • Worked on various Certifications, developed custom tasks and reports

Java Developer

Metahorizon Inc
Irving, TX
04.2017 - 07.2019
  • Designed and developed Microservices using REST framework and Spring Boot and used Bootstrap along with Angular in creating the Application
  • Reviewed code and debugged errors to improve performance.
  • Ensured seamless integration of Java-based applications with databases, APIs, and other systems.
  • Used Java8 features in developing the code like Lambda expressions, creating resource classes, fetching documents from the database
  • Used Spring framework including spring core/IoC, Spring Web, Spring Security and implemented the authentication, authorization, and access-control features by using Spring Security
  • Implemented REST based web services using JAX-RS annotations, Jersey provider and consumed using HTTP services from angular modules
  • Created unit tests using Junit and easy mock
  • Worked with the quality assurance team in testing the application
  • Created PL/SQL based stored procedures, functions, queries and triggers for the Oracle 11 G database
  • Develop and execute Unit Test plans using JUnit, ensuring that results are documented and reviewed with Quality Assurance teams responsible for integrated testing
  • Provided extensive pre-delivery support using Bug Fixing and Code Reviews
  • Environment: JAVA 8, Microservices, REST, Spring Boot, Spring Security, Spring web, Spring core/IoC, Angular, NodeJS, HTTP, Junit, PL/SQL, Oracle 11G.

Education

Bachelor of Science - Computer Science

McNeese State University

Skills

  • Identity and Access Management (IAM): SailPoint IIQ 6x, 7x and 8x, SailPoint IdentityNow,Okta Admin, CyberArk Admin

  • Java & J2EE Technologies: Core Java, Servlets, JSP, JDBC, JNDI, Java Beans, Hibernate, spring, Tiles, Struts

  • Connectors: JDBC, LDAP, AD, RACF, Service Now, Flat Files

  • Frameworks: MVC, Struts, Hibernate, Spring

  • Programming Languages: Java, UNIX, Linux shell scripts, Bean Shell

  • Databases: Oracle, MySQL, PostGres, MS-SQL Server

  • Web Servers: Web Logic, Web Sphere, Apache Tomcat

  • Front-End Web Technologies: HTML, XHTML, DHTML, CSS, JavaScript, AJAX, and AngularJS

  • JIRA, TFS, NewRelic, Confluence, Jenkins

  • Amazon AWS S3, EC2 Instance, AWS IAM

  • Team Leadership, Project Management

Timeline

Sr. Associate, Cyber

Capital One
06.2023 - Current

Sr. IAM Engineer (Consultant)

Capital One
01.2022 - 03.2023

IAM Engineer (Consultant)

Gap Inc.
10.2021 - 12.2021

SD-II / SailPoint Engineer

Cambridge Investment Research
02.2020 - 09.2021

IAM Engineer

Metahorizon Inc
11.2019 - 12.2020

Java Developer

Metahorizon Inc
04.2017 - 07.2019

Bachelor of Science - Computer Science

McNeese State University
Nischal AryalIAM SME