Santosh Kumar

• Ensured compliance with applicable laws, regulations, policies, and procedures across all business units.
• Directed cross-functional teams in developing innovative solutions to complex problems.
• Collaborated with external vendors to negotiate contracts that met company requirements while minimizing costs.
• Managed a team of 10+ employees by providing guidance, setting goals and objectives, delegating tasks, and monitoring performance.
• Developed and implemented strategies to improve operational efficiency, reduce costs, and increase productivity.
• Developed long-term relationships with key stakeholders including customers, suppliers, regulatory bodies.
• Participated in recruitment initiatives by interviewing potential candidates and selecting suitable hires.
• Conducted regular performance appraisals for direct reports to provide feedback on their work performance.
• Established effective communication channels between different departments within the organization.
• Provided strategic direction to departmental heads regarding resource allocation decisions.
• Leadership role in planning annual budgets for each department based on forecasted sales volumes.
• Created detailed reports on project progress for senior management review.
• Identified and pursued new business opportunities to expand market presence and revenue streams.

• Continued to consolidate disparate IAM work into the centralized team and ensure all new IT systems were included in IAM processes from initial design and implementation.
• Define a holistic view of IAM/PAM for enterprise users with inputs from technical and business stakeholders.
• Analyze current processes and identify gaps in IAM capabilities comparing against SOX standards
• Collaborate with Client to define a vision for a modern IAM program identifying their current state nuances
• Define a multi-year roadmap for IAM to enhance platform capabilities and recommend process improvements to enhance user experience in a cost-effective manner.
• Collaborate with Client to identify potential vendors who can assist in achieving envisioned IAM use cases and requirements. Outline the tactical and strategic initiatives to translate the objectives into practice.
• Supported financial director with special projects and additional job duties

• Managed large-scale business projects and introduced new systems, tools, and processes to achieve challenging objectives.
• Evaluated and defined the PAM/IAM roadmap to align with current and changing business goals and objectives including migration of key PAM/IAM solutions to cloud-based environment reducing the on-prem footprint to support eliminating legacy data centers while improving availability and redundancy of the systems to align with the cloud-first strategy.
• Rebuilt the PAM/IAM team staffed with PepsiCo employees to provide improved IAM efficiency and output.
• Evaluated and selected a non-employee lifecycle management solution to modernize and better support the greatly increased non-employee workforce that resulted from outsourcing of IT.
• Evaluated application scoping with respect to risk based approach for onboarding and governance to provide comprehensive identity security services
• Supported CyberArk implementation including SSO and automated provisioning integration. Key member of the core collaborative team defining governance plan and executing project implementation for Digital, Innovation, and shared services efforts.
• Collaborated on design and implementation of a standards based SSO solution and an automated provisioning solution for a new SaaS CyberArk solution provider.
• Evaluated hiring, firing, and promotions requests
• Managed large-scale projects and introduced new systems, tools, and processes to achieve challenging objectives
• Developed proposals and presentations for internal and external audiences
• Implemented productivity benchmarks across all departments to maximize company revenue
• Brainstormed and developed sales strategies to achieve short and long term sales revenue objectives
• Conducted performance evaluations, compensations and hiring to maintain appropriate staffing requirements

• Working manager who successfully led an extremely lean team to implement and manage a wide array of PAM/IAM system and process to support priority business projects ensuring highly skilled team members were aligned accordingly across the multiple efforts.
• Implemented CyberArk PSMP and migrated from *nix environment.
• Provided consulting services (the "Services") to PwC Network Information Security group (“NIS” or “you”) as set forth herein. We will provide services to help with analysis, strategy, design, architecture, and implementation of NIS' CyberArk environment, specifically focusing on Unix/Linux privileged account management across 13-20 environments.
• Technical point of contact and as well as Project Manager
• Used predictive modeling to increase and optimize customer experiences and revenue.
• Drove timely and successful delivery of service to customer needs and objectives.
• Participated in contract negotiations and client close agreements.
• Identified new business opportunities from existing accounts

• Provide support and guidance to resource(s) towards
• Development of relevant test plan and test cases for in-scope privileged accounts (
• Performing User Acceptance Testing in QA/PROD environment with users having below mentioned accesses.
• Enterprise Admin Account, Domain Admin Account Performing User Acceptance Testing in QA/PROD environment with users having below mentioned accesses SQL Server Administrator (Windows Login) SQL Server Administrator (SQL Login) Linux root or root equal accounts , Out of box Oracle privileged accounts (e.g. sys, sysdba), Interactive accounts with privileged access on oracle systems
• Implemented enterprise Privileged Account Management solution and migrated to new PAM solution to support key system PAM API requirements.
• Implemented MFA solution across our SSO IDP and internal Windows and Linux servers improving our security posture while meeting regulatory compliance requirements.
• Supported complex integrations with many on-prem and cloud solutions as part of "Migration" projects that supported the key functions of the business.
• Key team for the AWS implementation to support BSM digital initiatives responsible for defining and managing IAM policies to provide access to users and system accounts.
• Participated in the transition to outsourced IT workforce including utilizing the PAM solution to provide secure session privileged system access. Adjusted the enterprise GA solution to facilitate the onboarding and managed of hundreds of non-employees.
• Managed a combination of on-shore and off-shore outsourced IAM /PAM resources to support the IAM/PAM function. Managed agile-based enhancements program to support IAM/PAM roadmap goals.

Responsibilities and key deliverables: -

• Deployment, Implementation and Administration of Cyber-Ark PIM Suite
• Troubleshooting, Infrastructure Design and Service Improvement.
• Managing administration and operations of Cyber-Ark PIM, CPM, PVWA, PSM, and AIM.
• Configuration of password policies through CPM.
• Safe Creation and management.
• Creation and onboarding of accounts on multiple platforms. • Integration of different business applications with CyberArk.
• Assisted in creation of connection components for PSM.
• Provide BAU support to the end users after successful implementation.
• Migration and management of user accounts and groups in to vault.
• On-boarding/Managing 3000+ production Users of UNIX, Windows, Databases etc. in terms of privileged access.
• Incident Handling & Response, Event Analysis, Risk Treatment / Mitigation
• Providing in-house CyberArk training to internal resources.
• Preparing Technical Documentation such as Runbooks, Service Improvement Plans, Implementation Plan, TestPlan, and Rollback Plan.
• Preparing IR and RCA Of the Priority 1 infrastructure security incidents
• Providing training to newer member of the team and making sure that they understand the product better, also providing them feedback on the security incident picked up at random for checking the quality of the service provided.
• Providing consulting services on the technical issue, replicating customer issues, finding bugs in existing products and developing test cases
• Well versed with Backups, Upgrade, DR, Bulk uploads,
• Customization of Scripts and component configuration as per Customer requirements in AutoIT.
• Responsible for Managing the Vault Workload, Specifying Administration Settings, Monitoring the Vault,
• Managing the CyberArk License, Information Recovery, and CyberArk HA Vault Cluster and CyberArk Disaster Recovery etc.
• Responsable for DR, upgrade, CyberArk administration etc.
• CyberArk Server/Component installation/configuration.
• Integration of LDAP for external directory.

Project : Database Security (Banking Domain)

Role: Database Security Analyst and Event Management on iMPERVA

Responsibilities and key deliverables:-

• Monitoring all the Suspicious Database Activities with ArcSight Tool.
• Managing all the Suspicious Database Activities with iMPERVA.
• Handling Incident Tickets and escalating it to the higher Level.
• Working on Change Management called GCM(Global Change Management) Providing Incident & Problem Management, Change & Release Management • Designing Blue Print and services for identified critical Threats.
• Involve in Capacity Management for Agents (Database services).
• Enabling Audit Trail for gathering Database information from ArcSight
• Working with Privileges, Profiles and Roles (User Administration) through Imperva On Boarding of New client (Application) in the iMPERVA.
• Involved creating Rules, Policy, Reports through iMPERVA.
• Involved in user administration in iMPERVA environment.
• Deployment of Test Environment for every security solution.
• Resolving the production tickets in DB Environment.
• Sending the weekly status report to the customer/client for critical alerts
• Identifying the performance bottlenecks and resolving performance degradation.