Summary
Overview
Work History
Education
Skills
Timeline
Generic

Pema Sherpa

New York,NY

Summary

6+years Industry experience as a Business Analyst , Quality Analyst with solid understanding of Business Requirements Gathering, Evaluating Data Sources, Translating Requirements into Specifications, and Application Design. An accomplished QA professional with extensive experience in Identity and Access Management (IAM), cybersecurity, and audit compliance. Expertise in SOX, privileged access management, segregation of duties (SoD), and audit-related issue testing. Proven track record in defining test strategies, creating test scenarios, and partnering with SMEs for remediation. Strong skills in manual testing, Excel, and risk-based access control audits, with a comprehensive understanding of enterprise policies, standards, and SDLC processes. Eager to transition into a business analyst role while leveraging deep IAM, audit, and QA experience. Experienced Quality Assurance professional with a focus on entitlement management and secure access for enterprise applications, including the implementation and validation of Multi-Factor Authentication (MFA). Skilled in ensuring accurate user entitlements, role-based permissions, and privileged access configurations to align with enterprise security policies and regulatory standards such as SOX. Expertise in testing and auditing Identity and Access Management (IAM) frameworks, with a strong focus on MFA integration and secure authentication workflows. Adept at defining test strategies, executing manual testing, and resolving entitlement-related issues to maintain the integrity of application access. Proficient in data analysis, particularly in Excel, and collaborating with SMEs and cross-functional teams to identify and remediate entitlement discrepancies, reducing risk and enhancing security Versatile Developer-Deployer with expertise in managing application entitlement quality, deployment processes, and mitigating intra-toxicity through robust Identity and Access Management (IAM) solutions. Skilled in designing and deploying secure access frameworks with an emphasis on Multi-Factor Authentication (MFA), ensuring compliant and accurate user entitlements and role-based access control. Adept at streamlining deployment pipelines, automating testing procedures, and collaborating with cross-functional teams to ensure seamless deployments while mitigating entitlement and security risks. Skilled in resolving deployment issues, ensuring accurate configurations, and optimizing access control mechanisms for enhanced security and operational efficiency. Detail-oriented Quality Assurance professional with expertise in application entitlement management and access control. Extensive experience in ensuring secure and compliant access to applications by validating user entitlements, role-based access, and privileged access controls. Skilled in testing and auditing IAM frameworks to maintain compliance with enterprise security policies, SOX, and other regulatory requirements. Proven ability to collaborate with cross-functional teams, define test strategies, and ensure accurate entitlements across complex systems. Strong proficiency in manual testing, defect tracking, and data analysis using tools such as Excel, JIRA, and SharePoint. Adept at identifying and resolving entitlement discrepancies to reduce security risks and improve application access integrity.

Overview

5
5
years of professional experience

Work History

IAM Quality Analyst

Bank Of America
05.2023 - 11.2024
  • Developed test cases and executed manual testing for IAM controls to validate accurate access configurations across systems
  • Collaborated with business units and application owners to review user access permissions and ensure least privilege principles were applied to entitlements
  • Conducted regular audits to identify and remediate toxic access combinations (intra-toxicity) within user roles, reducing security risks across critical systems
  • Implemented and validated automation scripts to streamline entitlement testing processes, improving accuracy and reducing manual effort
  • Provided detailed reports on entitlement discrepancies and remediation progress, ensuring alignment with audit requirements
  • Collaborated with cross-functional teams to integrate MFA into existing IAM systems, ensuring smooth workflows and minimal disruption
  • Defined test strategies for MFA validation, including automated and manual test cases, to ensure secure and compliant authentication processes
  • Conducted vulnerability assessments and tested the robustness of MFA solutions against phishing, brute-force attacks, and other security threats
  • Analyzed user feedback and adjusted MFA configurations to enhance user experience while maintaining high levels of security
  • Developed reporting tools in Excel to track MFA adoption and compliance across various user groups
  • Managed the development, deployment, and integration of IAM solutions, ensuring accurate entitlement provisioning, role-based access control, and secure application access
  • Automated deployment pipelines for IAM systems, improving deployment efficiency and reducing human errors during configuration processes
  • Implemented privileged access management (PAM) solutions, integrating CyberArk for secure storage and management of privileged credentials
  • Worked closely with developers and operations teams to resolve deployment issues, ensuring proper entitlement configurations and minimal security risks
  • Validated deployment configurations by conducting post-deployment audits and access tests to ensure alignment with security policies and compliance standards
  • Managed the lifecycle of deployment requests, ensuring successful rollouts of updates while addressing potential conflicts in access configurations
  • Utilized IAM tools to perform detailed role-based access analysis and flag any instances where conflicting access rights posed a security risk
  • Developed remediation plans and worked with system owners to enforce segregation of duties (SoD) principles within application entitlements
  • Automated the detection and reporting of intra-toxicity using custom scripts and tools, reducing manual oversight and improving response times to access violations
  • Presented findings to senior management and audit teams, outlining potential risks and recommending action plans for resolving toxic access conflicts

IAM Business Analyst

CGI Group, Inc
09.2021 - 02.2023
  • Hands on experience on complete implementation of SailPoint IQ
  • On boarded different applications into SailPoint IDM
  • Reconciliation with the managed resources to synchronize the entire user with the IDM
  • Excellent capability to customize SailPoint IIQ user interfaces as per business needs
  • Excellent understanding and knowledge of Identity and Access Management System
  • Excellent understanding and knowledge of Identity and Access Management (IAM) and Role Based Access Control (RBAC)
  • Excellent Understanding of Risk and Compliance
  • Good understanding of SOX and HIPPA controls
  • Well-versed with SDLC processes ranging from Waterfall to Agile methodology
  • Good understanding of Administer SailPoint IIQ policy and forms
  • Integrate/onboard multiple application with SailPoint IIQ
  • Good experience of configuring account access recertification/delegation in SailPoint IIQ
  • Strong troubleshooting experience to resolve issues around IIQ
  • Proficient in planning and execution of projects in time critical environment
  • Exceptional communication, people, documentation, analytical and problem-solving skills
  • Understanding of ITIL (Information Technology Infrastructure Library) and Project Management fundamentals
  • Experience with Change Management process
  • Good understanding of Role Based Access Control (RBAC) on different server platforms such as Windows, SQL, Oracle and UNIX
  • Familiarity with password management tools, entitlement management systems, security event and monitoring tools
  • Understanding of security administration and access control with one/more platforms: Active Directory, DBMS and UNIX
  • Oversee and report compliance with all User ID Management processes on a regular (at least quarterly) basis and review

IAM Business Analyst

Technology Ventures
09.2019 - 08.2021
  • Create long-term roadmap and consolidation of existing and strategic Identity and Access Management (IAM) technologies and platforms
  • Very good understanding of SailPoint IIQ Role Based Access control framework
  • Develop Provide business and functional requirements to for integration projects
  • Create use cases, facilitate testing, track defects, and work with team members and customers throughout the development lifecycle
  • Work with team members to develop solutions to meet Identity and Access Management objectives
  • Analyse all aspects of the existing infrastructure and recommend modifications that will enhance system reliability, availability, serviceability and scalability
  • Evaluation of emerging identity and access management industry trends and technologies and advocating initiatives to incorporate improvements to the program roadmap
  • Work with operations and support teams for SailPoint technologies to establish standard operating procedures and operational policies for SailPoint technology
  • Work with customer business and technical teams to facilitate solutions for the delivery of identity and access services
  • Good experience of configuring account access recertification/delegation in SailPoint IIQ
  • Excellent capability to customize SailPoint IIQ user interfaces as per business needs
  • Good experience in integrating enterprise or in-house developed application with SailPoint IIQ
  • Strong troubleshooting experience to resolve issues around IIQ
  • Proficient in planning and execution of projects in time critical environment
  • Analyse and document business requirements and interfacing with system/platform owners
  • Manage Role Based Access Control (RBAC) process lifecycle
  • Responsible to create RBAC template for Windows, SQL, Oracle and UNIX platforms
  • Analyse data pull (Service accounts, Sudo commands, Shares, Services etc.) from the platform team and clean up user access
  • Create and run test cases and follow defect lifecycle management in HP Quality Centre
  • Involved in Provisioning Roles in Net IQ
  • Involved in Provisioning RBAC Resource Groups in Active Directory and CyberArk Safe
  • Involved in Provisioning RBAC Resource Groups in the server Local Groups
  • Designed the test scenarios, Test Plans, Test Design, Test Execution
  • Configured SAML compliance applications in OKTA and send IDP metadata to application owner to import into SP server
  • Developed Audit Detail Report, SOX Report and Remediation Report as per client needs
  • Developed workflows for life cycle events Joiner, Mover and Leaver
  • Involved in designing and implementing Custom AD connectivity to pull data from AD

Education

Bachelor Of Administration - Business Administration

Tribhuvan University
Nepal
04.2010

Skills

  • Audit processes
  • Quality Improvement
  • Quality processes
  • Data Analysis
  • Customer Focus
  • Continuous Improvement
  • Report creation
  • Functional Testing
  • Risk Assessment

Timeline

IAM Quality Analyst

Bank Of America
05.2023 - 11.2024

IAM Business Analyst

CGI Group, Inc
09.2021 - 02.2023

IAM Business Analyst

Technology Ventures
09.2019 - 08.2021

Bachelor Of Administration - Business Administration

Tribhuvan University
Pema Sherpa