Saif Mohammed

McDonough,GA

Summary

IAM Engineer with over seven years of experience providing secure identity and access management solutions. Successfully integrated Okta with 20+ applications, resulting in a 25% reduction in helpdesk tickets and an 80% acceleration in onboarding through automated user lifecycle management.

Overview

years of professional experience

Certification

Work History

IAM / Okta Developer

Lowe’s

Mooresville, NC

03.2024 - Current

Engineered and deployed SSO integrations for 20+ enterprise applications using Okta as the identity provider, improving user login experience and reducing password reset-related helpdesk tickets by 25%.
Configured and enforced Okta MFA, sign-on policies, and conditional access controls to strengthen authentication security and support secure access design.
Integrated Spring Boot applications with Okta using OAuth 2.0 and OIDC, enabling secure authentication, token-based authorization, and protected API access.
Automated user lifecycle management through SCIM-based provisioning and deprovisioning, accelerating onboarding by 80% and reducing manual access errors.
Managed identity lifecycle activities for onboarding, offboarding, role changes, and access modifications across enterprise applications, ensuring compliance and security.
Integrated Okta with AWS IAM for federated access, enabling role-based access control and more secure access to AWS resources.
Supported AWS IAM access design by working with roles, permissions, and federated access patterns aligned to least privilege principles.
Troubleshot authentication, authorization, SSO, and federation issues using Fiddler, SAML Tracer, and API testing tools, reducing issue resolution time for critical applications.
Developed and integrated REST APIs to support identity workflows and application access use cases.
Participated in access reviews, compliance remediation, and audit support activities aligned with ISO 27001 requirements.
Generated automated access and compliance reporting that contributed to three successful quarterly audits with zero access-related findings.
Collaborated with security, infrastructure, and application teams to align IAM implementations with enterprise security standards, enhancing overall security posture.
Supported privileged access governance processes and PAM-related access controls for administrative accounts.
Applied identity governance concepts aligned with SailPoint IdentityIQ, including provisioning workflows, RBAC, and access governance practices.

IAM / Okta Administrator

Karvy Corporate

Hyderabad, India

10.2022 - 07.2023

Administered the Okta Identity Cloud tenant, supporting day-to-day operations for user lifecycle management, application access, provisioning, and deprovisioning.
Configured SSO integrations for enterprise applications using SAML 2.0 and OIDC, improving centralized authentication and user access consistency.
Implemented and enforced MFA policies and security controls in Okta to enhance identity assurance and reduce unauthorized access risk.
Installed and configured the Okta Active Directory Agent to synchronize identities from on-premises Active Directory and support hybrid identity federation.
Managed Okta groups and group-based access assignments using RBAC principles to enhance access consistency and streamline entitlement administration.
Architected and supported the Okta-ServiceNow integration, automating access requests and approvals and reducing average fulfillment time from 3 days to under 4 hours.
Acted as primary escalation point for identity-related incidents, resolving 95% of critical issues within 4-hour SLA.
Facilitated access reviews, audit readiness, and compliance reporting for IAM controls and user access governance.
Worked closely with cross-functional teams to implement IAM best practices and improve the security and reliability of the identity environment.
Contributed to secure application onboarding and lifecycle automation efforts across internal and third-party platforms.

Software Engineer / IAM Support Engineer

Sonata Software

Hyderabad, India

06.2018 - 09.2022

Engineered integrations with LDAP and Active Directory to centralize user authentication and support enterprise identity management strategies.
Executed user provisioning, deprovisioning, and access modifications, providing foundational experience in identity lifecycle management.
Gained early expertise in cloud identity by configuring SSO and conditional access policies in Microsoft Entra ID for several pilot applications.
Developed and maintained five core Java-based Spring Boot microservices, implementing secure authentication and authorization using OAuth 2.0 and JWTs.
Utilized AWS services, including IAM, EC2, and S3, to support cloud-hosted applications and manage secure access to cloud infrastructure.
Partnered with security teams to define the RBAC model for two major applications, establishing governance standards that informed a future SailPoint implementation.
Collaborated in a CI/CD environment using Jenkins, Docker, and Git to streamline application deployment and delivery.

Education

Master of Science - Computer Science

Judson University

Elgin, IL

04-2025

Skills

Okta
Identity management
SailPoint
LDAP AD
SSO
MFA
RBAC
SCIM
Lifecycle Management
Access Reviews
Provisioning management
PAM concepts
Least Privilege
Zero Trust
SAML 20
OAuth 20
OIDC
AWS
Azure
EC2

S3
CloudWatch
Active Directory
Azure
SIEM concepts
Python Development
Database Management
API management
Microservices Architecture
Front-End Development
ORM Frameworks
Docker
Jenkins
Git
Postman
Fiddler
SAML analysis
User Interface Design
Frontend Frameworks
Directory concepts

Websites

www.linkedin.com/in/saif-tayyeb-574a4b402