Summary
Overview
Work History
Education
Skills
Timeline
Generic

Sushma Thumma

Buckeye,AZ

Summary

CyberArk PAM Engineer with experience in privileged access management, password vaulting, privileged session management, and enterprise authentication integrations. Hands-on experience supporting CyberArk components including PVWA, CPM, PSM, PTA, EPM, and AAM in enterprise environments. Experienced in privileged account onboarding, password rotation, access governance, and PAM operational support across Windows, Linux, databases, and cloud platforms. Prior background in Java backend and API development with exposure to authentication workflows, secure application integrations, and distributed enterprise systems.

Overview

5
5
years of professional experience

Work History

PAM Engineer

Deloitte (State of Arkansas - TRIPS), Remote
2023.04 - 2023.07
  • Implemented onboarding and lifecycle management of privileged accounts into CyberArk PAM including safe provisioning, account linking, and credential vaulting
  • Configured and managed CyberArk Safes, platforms, and policies to enforce segregation of privileged credentials across enterprise environments
  • Administered CPM for automated password rotation, reconciliation, verification, and failure remediation
  • Supported PSM configuration for secure privileged sessions with session recording enabled for audit and compliance requirements
  • Integrated CyberArk with Active Directory and LDAP for centralized authentication and user provisioning
  • Implemented Application Identity Management (AIM/AAM) to secure hardcoded credentials in applications and scripts
  • Performed CyberArk infrastructure health checks, monitoring, and routine maintenance activities
  • Resolved privileged access issues including password rotation failures, safe permission issues, and onboarding errors
  • Generated vault audit reports for compliance, risk analysis, and security governance reviews
  • Collaborated with infrastructure and security teams to enforce least-privilege access and PAM governance standards
  • Automated operational tasks and reporting using PowerShell and CyberArk REST APIs

Application Security & IAM Support Engineer

Wells Fargo, Addison, Texas
2021.05 - 2023.03
  • Supported application integration with enterprise authentication systems (SSO, LDAP-based identity providers)
  • Assisted in user and service account access management through identity and access workflows
  • Worked on resolving authentication failures, token validation issues, and access policy misconfigurations in APIs
  • Supported secure handling of application credentials using enterprise secret management practices
  • Assisted in maintaining environment configuration security across CI/CD pipelines
  • Participated in troubleshooting service account access issues across distributed applications and backend systems
  • Supported access validation activities and coordination with security teams for application onboarding

Security Integration Support Engineer

Deloitte (State of ARKANSAS (ARIES), Lake Mary, Florida
2020.06 - 2021.04
  • Supported privileged access activities across application, batch, and reporting systems
  • Assisted in maintaining secure access for service accounts and backend job executions in enterprise environments
  • Worked on credential lifecycle activities across DEV/QA/PROD environments under guidance
  • Assisted in access control practices for application and batch processing workflows
  • Supported validation of access requirements for scheduled jobs and integration pipelines
  • Worked with development, infrastructure, and security teams for access-related activities
  • Assisted in ensuring controlled access to sensitive data sources used in reporting and eligibility systems
  • Participated in resolving access issues for application and service accounts
  • Supported audit and compliance activities by tracking and documenting access usage across systems
  • Assisted in applying least-privilege principles in application and deployment environments

Java Backend Developer (API Development)

Comcast, West Chester, PA
2019.10 - 2020.05
  • Designed and developed RESTful and event-driven microservices using Java and Spring Boot for scalable backend processing and system integration
  • Worked on API Gateway integration for routing and managing service requests
  • Built backend services to replace legacy database-driven workflows with API-based architecture
  • Implemented input validation and request handling for API reliability
  • Worked on CI/CD pipeline integration for build and deployment automation
  • Assisted in Docker-based containerization of microservices for deployment consistency
  • Participated in debugging API failures, integration issues, and production support

Java Backend Developer (Integration Developer)

Bank of New York, New York
2019.04 - 2019.09
  • Developed backend services for financial data processing and reporting applications
  • Designed and implemented RESTful APIs for internal system communication and data exchange
  • Worked on batch processing jobs for scheduled data updates and reconciliation workflows
  • Built service-to-service integration components for enterprise applications
  • Implemented data validation and transformation logic for financial transactions
  • Assisted in deployment activities across development, QA, and production environments
  • Supported troubleshooting of API failures, batch processing issues, and runtime exceptions

Java Full Stack Developer (API Development)

BBVA Compass, Irving, TX
2018.06 - 2019.03
  • Implemented RESTful APIs using Java, Spring Boot, and Microservices architecture
  • Built backend services for lending workflows including loan application, approval, and balance tracking
  • Integrated external credit bureau services via REST APIs for credit evaluation and decision processing
  • Developed event-driven services using message queues for transaction-based event processing
  • Implemented input validation and request/response handling to ensure data integrity in APIs
  • Worked on token-based authentication at application level for securing API endpoints
  • Participated in Agile ceremonies including sprint planning, code reviews, and release activities
  • Assisted in debugging API failures, performance issues, and production support activities

Education

Master of Science - Computer Science

University of New Haven
West Haven, CT
2018-05

Skills

  • Privileged Access Management (PAM): CyberArk Privileged Access Manager, PVWA, CPM, PSM, PTA, EPM, AAM, Password Vaulting, Session Monitoring, Password Rotation, Privileged Session Management, Secrets Management
  • IAM & Security Technologies: Active Directory, Azure AD, LDAP, SAML, OAuth 20, OpenID Connect (OIDC), MFA, SSO, RBAC, Zero Trust Security, SSH Key Management, PKI, Certificate Management
  • SIEM & Security Monitoring: Splunk Enterprise, Microsoft Sentinel, IBM QRadar, Log Monitoring, Threat Detection, Incident Response, Audit & Compliance Reporting
  • Scripting & Automation: PowerShell, Python, Bash/Shell Scripting, REST APIs, CyberArk REST API Integration, Ansible, Terraform, Jenkins
  • Operating Systems & Platforms: Windows Server, UNIX, Linux, VMware, AWS, Azure, GCP, Docker, Kubernetes
  • Databases: Oracle, SQL Server, MySQL, MongoDB
  • Tools & Ticketing: ServiceNow, Jira, Putty, WinSCP, GitHub, Jenkins, JMeter, SoapUI
  • Compliance & Security Standards: SOX, PCI-DSS, HIPAA, NIST, ISO 27001, CIS Controls, ITIL

Timeline

PAM Engineer

Deloitte (State of Arkansas - TRIPS), Remote
2023.04 - 2023.07

Application Security & IAM Support Engineer

Wells Fargo, Addison, Texas
2021.05 - 2023.03

Security Integration Support Engineer

Deloitte (State of ARKANSAS (ARIES), Lake Mary, Florida
2020.06 - 2021.04

Java Backend Developer (API Development)

Comcast, West Chester, PA
2019.10 - 2020.05

Java Backend Developer (Integration Developer)

Bank of New York, New York
2019.04 - 2019.09

Java Full Stack Developer (API Development)

BBVA Compass, Irving, TX
2018.06 - 2019.03

Master of Science - Computer Science

University of New Haven