Sivarama Krishna Reddy
Summary
I am an experienced cybersecurity professional with over 5 years of IT experience, including 3+ years specializing in threat detection, risk management, incident response, and compliance. Skilled in implementing and managing SIEM, IDS/IPS, DLP, and vulnerability management tools. I have hands-on experience securing enterprise and operational technology systems across multi-cloud environments including Azure, AWS, and Google Cloud. I am well-versed in cybersecurity frameworks and standards such as NIST, ISO, and CIS. I have expertise in conducting audits, third-party risk assessments, and policy development. Certified in CISSP, CISM, CEH, Security+, or CCSP. I excel at proactively identifying threats, responding to incidents, and implementing security measures that protect information assets while ensuring regulatory compliance. Excellent experience in the Software Development Life Cycle, including requirement analysis, design, development, testing, and troubleshooting as an IAM Engineer. Strong IT experience, with a large chunk focused on IAM, with a specialty in SailPoint Identity and Okta. Possess implementation and integration experience with cloud-based IAM systems (Azure, AWS, or Google Cloud). Worked on the SailPoint IIQ and PAM CyberArk module integration. Knowledge of RBAC (Role-Based Access Control), Provisioning and De-Provisioning Identity Workflows, Access Management, and Single Sign-On (SSO). Extensive practical knowledge of industry-standard SSO protocols and technologies, including LDAP, SAML, FIDO, SCIM, OpenID Connect, and OAuth. Familiarity with MFA, risk-based authentication, LDAP and Active Directory services, and privileged access management.
Overview
6
6
years of professional experience
Work History
Cybersecurity analyst
Fifth Third Bank
12.2022 - Current
- Performed Installation, configuration, and customization of SailPoint Identity IQ.
- Implemented and Customized Manage Access and Manage Identity modules as per client’s requirements in SailPoint IIQ.
- Worked with business to gather business and functional requirements and involved in documenting them.
- Serves as an SME for business-critical tasks for data migration and Business Process testing.
- On boarded different applications in SailPoint Identity using different direct connectors like Delimited, JDBC, AD, Web-services etc.
- Built real-time dashboards and drill-down reports in Brainwave highlighting SOX control exceptions (Segregation of Duties, critical user access) and delivered monthly risk summaries to stakeholders.
- Performed Integration with multiple applications such as AD, RDBMS, Flat File and LDAP. Upgraded SailPoint from 7.3 to 8.1. Currently upgrading from 8.1p6 to 8.4.
- Sets up SailPoint IIQ policy server on 4 environments, such as Dev, QA, UAT, and Production.
- Integrated feature flags application within SailPoint's SaaS product Identity Now. The app selectively enables and disables features at a very fine grain as well as enabling features for a percentage of users for operations.
- Deployed a SIEM platform to aggregate logs from servers, applications, and network devices.
- Configured alerts for suspicious activity such as failed logins, privilege escalations, and unusual network traffic.
- Conducted regular vulnerability scans and coordinated remediation with IT teams.
- Provided real-time threat intelligence and incident reporting to management.
- Outcome: Improved visibility into threats, reduced incident response time by 40%, and enhanced compliance with NIST and ISO standards.
- Developed and configured CyberArk PAS suite (Vault, PVWA, CPM, PSM) to secure privileged accounts across Windows, Unix, databases, and network devices.
- Developed custom workflows for approvals in provisioning Access to different target systems.
- Designs and implements Active Directory (AD) connectivity to extract data from AD.
- Developed and tested incident response playbooks for malware, phishing, and insider threats.
- Integrated security checks into DevOps pipelines for cloud applications in AWS and Azure.
- Conducted threat modeling and penetration testing to proactively identify weaknesses.
- Collaborated with IT and development teams to remediate vulnerabilities and strengthen access controls.
- Outcome: Faster and coordinated incident response, reduced security gaps in applications, and ensured secure cloud deployments aligned with compliance requirements.
Security Consultant - IAM Engineer
Bridge Soft Solutions Hyderabad, India
10.2020 - 06.2021
- Application on-boarding and implementation of applications and identities. Implementation of Password management of SailPoint IIQ.
- Automated DFS access review campaigns—scheduled Brainwave scans of DFS roots, generated recertification tasks for stale or orphaned referrals in line with least-privilege policies.
- Worked on the administration, configuration and management of an identity and access management system (Identity IQ), the onboarding of applications, the administration of identities, roles and entitlements, and the review of user access rights for corporate applications.
- Troubleshooting any issues and deploy bug fixes.
- Used JSP, Java Script, HTML, and CSS for manipulating, validating, customizing, error messages to the user Interface.
- Exporting Metadata, creating Adapters, Service Provider connections, Identity Provider connections, replicating configuration archive, importing, and exporting SSL certificates using Ping Federate.
- Experience in Migration from on- Prem ISAM to OKTA Cloud.
- Designed, developed, and documented IAM services including Single Sign-on, Self Service registration, workflows, user management, management dashboard, Role Base Access Control (RBAC), Attribute Base Access Control (ABAC), resource and business layers Provisioning, credentialing, federation, and auditing.
- Migrate user accounts into Password Vault using Bulk upload utility. Experienced in Privilege Identity Management, Identity & Access Management, and Single sign On, SAML, OAuth, ADLDS, ADFS, OKTA, TLS/SSL, and Active Directory. Developed authentication policy's to using Pinone authentication (Internal/External).
- Conducted audits of network infrastructure, applications, and operational technology systems.
- Performed third-party vendor risk assessments.
- Documented findings and recommended mitigation strategies for vulnerabilities and non-compliance.
- Implemented policy updates and security controls based on NIST and CIS frameworks.
- Outcome: Reduced risk exposure, ensured adherence to regulatory standards, and improved overall security posture.
- Developed REST API for ISAM virtual Appliance monitoring and maintenance.
- Installation, upgrade, maintenance, troubleshoot of ISAM.
- Collaborated with Security team to ensure Zero Trust model adoption, passing NERC CIP audits and insider threat assessments.
Security Consultant
LTI - Larsen & Toubro Infotech
05.2019 - 09.2020
- Project was aimed to Cloud Migration and Application onboarding.
- Configured custom scopes and claims in OKTA to be used by applications to authorize the users.
- Worked on provisioning users from OKTA to AD and importing users from AD to OKTA.
- Designed and implemented OKTA for internal and external applications for Password Management.
- Worked on custom workflows and email templates based on customer requirement.
- Configured various connectors such as Active Directory, Delimited file, JDBC, LDAP, Workday, SAP in Saviynt.
- Integrated Brainwave with SAS identity management connectors to ingest entitlement and role data from the SAS Viya platform for holistic access risk scoring.
- Reviewed and provided input into CIAM Capability model and Use case definition.
- Focused on key use cases that covered - Registration, Authentication, Authorization, and Policy Administration.
- Installation, integration, and deployment of SailPoint Identity IQ. Involved in knowledge sharing sessions for SailPoint Compliance Manger component and involved in creation of design documents, code reviews. Configuring Okta for user provisioning to Office 365(Azure AD), Box, Workday and SFDC.
Education
Bachelor of Science - Computer Science
Rai University
01.2019
Master of Science - undefined
Southeast Missouri State University
01.2022
Skills
- IAM solutions: SailPoint, CyberArk, Tivoli IDM, PINGID, ForgeRock
- Databases: Oracle DB, MySQL
- Programming & Scripting: PowerShell, HTML, XML, Java, Python, JavaScript, J2EE- JSP, JSF, JDBC, Bean Shell Script
- IDE: Eclipse, IntelliJ
- Web Services: RESTful, SOAP
- Application Server: Tomcat, web sphere
- Security IAM tools: IBM Security Identity Manager (ISIM), ISAM, Windows AD, LDAP
- Testing: JUnit, ISIM, ISAM, SailPoint, RSA Archer
- Ticketing and Project Management Tool: Service-Now, BMC Remedy, Jira
- Virtual Machine: Hyper-V, VMware, Docker, Kubernetes, and Virtual Box
- Logging/Monitoring tools: Splunk, Grafana, Gary Logs
- Cloud: GCP, Azure and AWS
Timeline
Cybersecurity analyst
Fifth Third Bank
12.2022 - Current
Security Consultant - IAM Engineer
Bridge Soft Solutions Hyderabad, India
10.2020 - 06.2021
Security Consultant
LTI - Larsen & Toubro Infotech
05.2019 - 09.2020
Master of Science - undefined
Southeast Missouri State University
Bachelor of Science - Computer Science
Rai University
Similar Profiles
Scott RemalyScott Remaly
Certified Financial Consultant and Account Manager at Fifth Third BankCertified Financial Consultant and Account Manager at Fifth Third Bank
Isiah BoddieIsiah Boddie
Personal Banker II at Fifth Third BankPersonal Banker II at Fifth Third Bank
Adela DzaferovicAdela Dzaferovic
Lead Customer Service Representative at Fifth Third BankLead Customer Service Representative at Fifth Third Bank
Imani DardenImani Darden
Personal Banker I at Fifth Third BankPersonal Banker I at Fifth Third Bank
James BlueJames Blue
Cybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, IncCybersecurity Analyst (SOC I) Apprentice, Cybersecurity Analyst (SOC I), SOC at Talent Solutions, Inc