Vandana
San Francisco Bay Area,CA
Summary
- 8+ years of subject matter expertise in Identity ans Access Management, identity governance, data privacy, and cybersecurity incident management across US - based healthcare, financial, and retail sectors.
- 5+ years of experience in leading direct and cross-functional teams of engineers to drive multimillion-dollar IAM initiatives for North America's businesses at E&Y.
- 5+ years of experience in aligning solutions with regulatory frameworks like HIPAA, GDPR, CCPA, and SOX.
- Experienced in Splunk for real-time event alerting, and anomaly detection.
- Leveraged Python|PowerShell to develop scalable automation.
- Strong communicator and collaborator with experience in working cross-functionally with HR, IT, product, engineering, and compliance teams.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Security Delivery Specialist
Accenture
Bangalore, Karnataka
01.2025 - 03.2025
- Spearheaded the hiring of 20 entry-level engineers, collaborating with the HR and L&D teams to deliver training on IAM, SSO, Data Protection, and Incident Management, reducing onboarding time by 75% (from 24 to 6 weeks), and accelerating resource utilization across security initiatives.
- Led a team of six engineers to design automated reporting using the System Logs API to extract user activity data into Splunk and Power BI, delivering insights into login trends, MFA adoption, and anomalies, reducing monthly status preparation time from 40 hours to 30 minutes across various projects.
Senior Consultant
Ernst And Young GDS
Bengaluru, Karnataka
10.2021 - 01.2025
- Achieved multi-million YoY annual savings by designing IAM roadmap for US- based retail, healthcare and utility domain clients with the implementation of self-service password management, and Multi factor Authentication for over 25K users using Okta Cloud services, slashing IT support tickets from 40K to 2K per year.
- Accelerated identity provisioning timelines from a week to 2 days by designing and implementing lifecycle use cases, such as Joiner, Mover, Leaver, birthright access, app assignment, manager changes, and license optimization, using Okta Workflows.
- Improved end user experience and cut authentication management costs by 40% through centralized SSO for 500 business applications using federated authentication protocols (e.g. SAML, SCIM, OIDC) in Okta.
- Achieved 99% compliance by deploying encryption across 5,000 corporate devices using JAMF and Workspace ONE, reducing data exposure risk, and ensuring regulatory audit readiness as per the industry.
- Integrated Okta IAM logs into Splunk (SIEM) to track and alert dormant accounts, suspicious activity and failed logins, reducing incident response time, and audit failures by 70% for a healthcare organization.
- Reduced insider risk by 45% by implementing Separation of Duties (SoD) policies in the Okta platform to prevent toxic access combinations across business applications, and ensured compliance with internal audit requirements.
- Executed end-to-end access certification campaigns for over 100K entitlement reviews, collaborating with application owners to manage launch, precertification, post-certification remediation, and revocation using IGA tools (e.g., SailPoint, Okta), strengthening data compliance across enterprise systems.
- Spearheaded collaboration with Product, Legal, IAM, and Application teams during internal and external information security audits, driving 100% completion of remediation actions within audit timelines, and improving the audit score from 65 to 90.
- Reduced operational downtime by 99% by collaborating with infrastructure and application teams to proactively manage SSL certificate renewals and security upgrades from the Okta vendor.
- Led the design and rollout of cybersecurity training playbooks and knowledge base (KB) articles focused on MFA adoption and password hygiene for end users and IT administrators; promoted secure behavior and best practices.
Associate Security Consultant
Ernst And Young GDS
Gurgaon, Haryana
08.2019 - 09.2021
- Collaborated with Legal, Information Security, and Compliance teams to triage and resolve data privacy incidents via ServiceNow GRC, prioritizing response based on GDPR and GLBA exposure, preventing penalties of up to $20M.
- Contributed to SOC 2 Type II audit readiness for a financial services client by implementing privacy-aligned controls, and engineered Jira-based escalation workflows that cut incident response time by 60% (5 to 2 days), strengthening data protection and operational resilience.
- Improved SOX audit readiness score of a financial services client from 75 to 95 by reducing documentation gaps through centralizing and maintaining BRDs, FRDs, SOPs, RCAs, escalation matrices, RACI charts, and runbooks in SharePoint/Confluence, driving enhanced stakeholder accountability across Security, IT, Engineering, and Compliance functions.
- Developed detailed incident documentation and conducted root cause analysis (RCA) for the privacy breach logged in ServiceNow GRC, enabling trend identification and policy updates that reduced repeat incidents across business units.
- Collaborated with engineering, legal, IT, and compliance teams to identify control gaps in high-risk fintech systems, develop targeted remediation plans, and track implementation through closure—resulting in a 40% reduction in audit findings and a 30% improvement in control maturity scores during SOC 2 and PCI-DSS assessments.
Security Analyst
Accenture
Gurgaon, Haryana
09.2016 - 08.2019
- Managed the creation, deletion, modification, provisioning, and de-provisioning of approximately 10K user identities and over 1K groups in Active directory and SailPoint to ensure smooth operations and security compliance for an EMEA based water industry.
- Achieved 99.9% response and resolution SLA adherence in the ticketing tool by monitoring 50M+ system logs, ensuring rapid troubleshooting, and resolution of end-user issues.
- Executed and monitored normal, emergency and standard change management processes in ServiceNow, ensuring secure and compliant modifications to IAM, and infrastructure systems.
- Automated daily 100+ user account creation and group addition in Active Directory by scheduling PowerShell scripts using Task Scheduler, reducing onboarding time from 5 days to 2 days, and improving operational efficiency.
- Actively participate in the 24/7 on-call rotation, meetings to provide expert-level support, and work on incidents for PKI and IAM systems during outages, incidents, or security events.
Education
Bachelor of Technology - Instrumentation And Control Engineering
Uttar Pradesh Technical University
Prayagraj ,Uttar Pradesh, India07-2016
Skills
- Tools: Okta, IAM, CIAM, SSO, CyberArk, Active Directory, LDAP, SailPoint, Splunk, ServiceNow, Jira, EntraID
- Soft Skills: Stakeholder Management, Incident Response, Case Study, Research, Collaboration, Technical Writing, Team Mentoring
- Languages: Python, PowerShell
- Cloud Platforms: AWS, GCP, Azure
- Authentication Protocols: OAuth, OIDC, SCIM, SAML, WS-Fed, Org to Org, API
- Authorization Systems: RBAC, ABAC, PBAC, and Zero Trust frameworks
- Regulatory Compliance: HIPAA, NIST, GDPR, PCI-DSS, SOX
- Security: Incident response, SIEM monitoring, endpoint security, audit, MDM (JAMF, Workspace ONE)
Accomplishments
- Awarded the Highest Performing Team for a client facing project of public utility organization in the North Americas region where I served as the Technical Lead at EY in 2024.
- Spot Award for leading a project successfully in 2023.
- Customer Satisfaction Award for North America client in 2022.
www.linkedin.com\vandana-yadav-133161b5
Certification
- ITIL v3 Certified (Information Technology Infrastructure Library) 2018
- CompTia Security Plus (2017)
Timeline
Security Delivery Specialist
Accenture
01.2025 - 03.2025
Senior Consultant
Ernst And Young GDS
10.2021 - 01.2025
Associate Security Consultant
Ernst And Young GDS
08.2019 - 09.2021
Security Analyst
Accenture
09.2016 - 08.2019
Bachelor of Technology - Instrumentation And Control Engineering
Uttar Pradesh Technical University
Similar Profiles
Mitesh Rao APPADOOMitesh Rao APPADOO
Category Manager - Technology (UK, IE and Africa) at AccentureCategory Manager - Technology (UK, IE and Africa) at Accenture
John Jethro E. GanzonJohn Jethro E. Ganzon
Cloud Infrastructure Team Lead at AccentureCloud Infrastructure Team Lead at Accenture
Prerana JadhavPrerana Jadhav
Software Development Senior Analyst at AccentureSoftware Development Senior Analyst at Accenture
Ritika RaoRitika Rao
Media and Graphic Design Analyst at AccentureMedia and Graphic Design Analyst at Accenture
Haider KhaleeliHaider Khaleeli
Development Coordinator at American Heart AssociationDevelopment Coordinator at American Heart Association