Leading a team of Security Architects/Developers to develop and manage Bank's Certificate and Key Management (CKMS) Platform used by 250k employees.

Designed and developed C# REST API MVC application handling more than 300 million API calls per year. Built CI/CD pipeline (Jenkins) for automated code deployment. Integrated with AWS ACM for Cloud deployments. Enabled Oauth/Kerberos authentication and ADFS integration. AD integration for user authentication. Integrated with Internal Microsoft PKI and external CA’s (Entrust and DigiCert).

Wrote Powershell scripts for automating Entrust Domain Recertifications. Report generation through Splunk and Qlikview. SQL and LINQ queries for data retrieval. Code reviews and check-ins using GIT. Developed micro-service (Ansible) for end to end certificate lifecycle management.

Built scanning utility that scans all hosts in network to identify and remediate certificate vulnerabilities. Developed synthetic monitoring scripts. Scripts for load testing using Apache Jmeter.

Leading a team of Information Security Analysts developing and managing Authentication, Authorization and Certificate Management Platforms.

Optimized LDAP queries for faster data retrieval. Wrote python scripts for automating LDAP bulk requests ( user provisioning, sending status mails).Developed and managed Certificate platform used by traders for procuring client certificates. Developed platform used for code signing. Wrote certificate policy and practice statements for department use.

Wrote Active Directory Group Managed policies for firm wide policy deployment. Automated self service password reset functionality using TAM E-SSO. Configured custom policy adapter to enforce access rules based on RBAC.

Installation and configuration of Web/Application server including Weblogic,Websphere,Tomcat, JBOSS. Configure reverse proxy servers to add custom policies and rules.

Build and maintain LDAP Infrastructure. Designed a highly resilient and redundant LDAP repository used to store employee information and credentials.

Wrote custom scripts (shell, perl) for automating user onboarding, managing password reset policies, group management.

Built IDM/IAM solutions (IBM Tivoli) for user lifecycle management and access control. Built new access control policies as per application requirement.

Design identity management solution for clients. Involved in required gathering, architecting solutions in client environment.

Also involved in managing Active Directory/LDAP environments for clients. Day to day activities included new user onboarding/offboarding, creating new groups and policies. Writing custom shell scripts for bulk user onboarding, log rotation, monitoring scripts to alert for degraded performance.