Sudhakar S

SailPoint IdentityIQ Specialist | iamsudhakar49@gmail.com
Bengaluru, Karnataka, India.

Enterprise Security Specialist with over of experience designing, building and scaling enterprise Identity Governance & Administration (IGA) platforms for global organizations. Proficient in Identity Management(IDM) and Governance concepts, delivering robust security solutions to mitigate enterprise risks. Led large-scale identity ecosystems managing 500,000+ workforce identities and 3,000+ enterprise applications. Architected end-to-end IAM transformation programs including migration, building JML lifecycle automation and provisioning frameworks from scratch. SailPoint Certified Identity Security Leader and ISO/IEC 27001:2022 Lead Implementer with strong expertise in audit compliance, least-privilege enforcement, RBAC design and security automation. Experienced in DevSecOps, CI/CD implementation and cloud-hosted IAM infrastructure (GCP). Passionate about exploring and adopting new technologies to enhance security postures and streamline identity solutions. Open to Lead / Staff / Principal IAM Architect opportunities in Bengaluru, Chennai and Coimbatore.

Experience

Sr Security Engineer - IAM

CME India Pvt. Ltd., Bengaluru

Senior Security Engineer within the Identity & Access Management team, leading enterprise identity governance for 3,000+ integrated applications using SailPoint IdentityIQ. Design and customize Workflows, Lifecycle Events (JML), Beanshell Rules, Access Requests, Certifications and Provisioning Policies to support scalable access governance. Implement multiplex and logiplex connector integrations for JDBC and directory-based systems, ensuring reliable aggregation and provisioning. Support and maintain SailPoint IdentityIQ infrastructure hosted on Google Cloud Platform (GCP). Support CyberArk Privileged Identity Management including safe and account creation, configuration and management.

February 2024 - Present

Sr Engineer, Information Security

Lowe's Services India Pvt. Ltd., Bengaluru

Senior Security Engineer within the Identity Governance & Administration team, playing a key architectural role in the enterprise migration to SailPoint IdentityIQ. Designed and implemented end-to-end Joiner–Mover–Leaver (JML) lifecycle automation, RBAC framework and provisioning workflows supporting 500,000+ workforce identities. Developed and customized SailPoint components including Workflows, Reports, Beanshell Rules, Certifications, Provisioning Policies and Identity Mappings. Integrated systems using AD Direct, LDAP, JDBC and Delimited connectors, and established CI/CD-based deployment pipelines using Jenkins for multiple non-prod and production environments. Also mentored the legacy IAM team during transition to SailPoint IIQ.

September 2020 - January 2024
3 years and 5 months

Security Senior Analyst

Accenture Solutions Pvt. Ltd., Bengaluru

Security Senior Analyst supporting entitlement governance for a global banking client using RSA Identity Governance & Lifecycle (IGL). Designed and managed access review campaigns, entitlement models and governance workflows to strengthen compliance controls. Developed Java-based utilities using JNDI API for LDAP data extraction and transformation across Windows and Unix environments. Leveraged QlikView for entitlement reporting, managed scheduling via Autosys and maintained source control using Git, while contributing to DevOps automation initiatives with Jenkins.

January 2017 - September 2020
3 years and 8 months

Programmer Analyst

Cognizant Technology Solutions, Kochi

Started career at Cognizant Technology Solutions and transitioned into the Identity & Access Management (IAM) domain within the Security practice. Contributed to IAM implementations using SailPoint IdentityIQ and Microsoft Forefront Identity Manager (FIM), supporting identity lifecycle management and access governance initiatives. Gained hands-on experience in SQL, LDAP, directory services and automation testing using Selenium. Completed internal certification in Digital Security and built foundational expertise in identity governance, provisioning workflows and directory integrations.

July 2014 - December 2016
2 years and 6 months

Education

Info Institute of Engineering

Bachelor of Technology
Information Technology

CGPA: 8.0

August 2010 - April 2014

Ramnagar Suburban High School

Higher Secondary
Maths, Physics, Chemistry and Computer Science

Percentage: 74

April 2010


Victory Vidhyalaya Matric School

Secondary School

Percentage: 86

April 2008

Skills

Core Competencies

  • Identity & IGA Platforms: SailPoint IdentityIQ (6.x–8.x), RSA IGL, Microsoft FIM

  • Privileged Identity: CyberArk

  • Architecture & Development: Core Java, Beanshell, LDAP, SQL, Active Directory

  • DevSecOps: Git, Jenkins, CI/CD Automation

  • Cloud: Google Cloud Platform (IAM Infrastructure Hosting)

  • Governance & Compliance: ISO/IEC 27001:2022, Role-Based Access Control (RBAC), Access Certification, Policy Enforcement


Other Tools & Technologies
  • Selenium Web Driver
  • Basic UI
  • Unix
  • Service Now
  • Remedy
  • Qlikview
Interests
  • DevSecOps
  • Penetration Testing
  • Federation

Projects

Identity & Access Management

SailPoint IdentityIQ, Beanshell and CyberArk
  • Led end-to-end application onboarding in SailPoint IdentityIQ across diverse connector types including JDBC, LDAP and Active Directory using multiplex and logiplex connector frameworks. Enabled automated provisioning, deprovisioning and certification capabilities for integrated enterprise applications.
  • Designed and implemented access request models for non-day-one requestable roles with multi-level approval workflows, leveraging Lifecycle Manager (LCM), QuickLinks and Provisioning Policies to support complex business processes.
  • Developed and customized Joiner–Mover–Leaver (JML) lifecycle workflows including Identity Refresh, event-driven provisioning. Built and maintained Beanshell Rules such as Before/After Provisioning Rules, Correlation Rules, Validation Rules, Identity Attribute Rules and Util Libraries to enable dynamic entitlement mapping and attribute transformations.
  • Configured and managed Access Certification campaigns including Manager, Entitlement Owner and Targeted certifications to enforce least-privilege access and governance compliance. Designed and implemented Access Policies and policy violation rules.
  • Developed custom SailPoint reports to enhance audit readiness, operational visibility and compliance reporting.
  • Contributed to enterprise cloud migration initiative by supporting the transition of on-premise SailPoint IdentityIQ virtual machines to Google Cloud Platform (GCP), including installation, configuration, environment setup and deployment of IIQ resources and artifacts.
  • Supported CyberArk Privileged Identity Management operations including onboarding of accounts, creation and management of safes, application IDs and privileged accounts aligned with enterprise access governance standards.
  • Collaborated with cross-functional global teams across time zones to deliver secure identity solutions, provide architectural guidance, knowledge transfers and operational handovers.
February 2024 - Present

Identity Governance & Administration

SailPoint IdentityIQ, Beanshell and Jenkins
  • Led enterprise migration from Legacy Identity solutions to SailPoint IdentityIQ, onboarding authoritative (HR) and non-authoritative applications using Workday, JDBC, LDAP, Active Directory (Direct), Salesforce, Webservice, ACF2 and Delimited connectors.
  • Designed and implemented end-to-end automated provisioning and deprovisioning framework supporting 500,000+ workforce identities across enterprise applications.
  • Architected and customized Joiner–Mover–Leaver (JML) lifecycle workflows, Identity Refresh processes and event-driven provisioning logic using SailPoint Lifecycle Manager (LCM) and QuickLinks.
  • Developed and maintained complex Beanshell Rules including Correlation Rules, Before/After Provisioning Rules, Identity Attribute Rules and Creation Rules to support advanced entitlement mapping and business transformations.
  • Engineered scalable Role-Based Access Control (RBAC) model including IT Roles, Business Roles and entitlement modeling to enforce least-privilege access governance.
  • Configured and managed large-scale Certification campaigns (Manager, Application Owner and Role-based reviews), along with Access Policies and policy violation remediation workflows.
  • Designed and developed custom SailPoint reports and dashboards to enhance audit readiness, compliance reporting and executive visibility.
  • Single-handedly built and managed multiple non-production and production SailPoint environments, including installation, configuration, performance tuning, upgrades, patching and eFix deployments.
  • Implemented CI/CD-based deployment automation using Jenkins and Git for SailPoint artifact promotion across environments, improving release reliability and reducing manual errors.
  • Collaborated with cross-functional teams for requirement gathering, solution design and seamless IAM transition with zero major production incidents.
September 2020 - January 2024

Entitlement Governance

RSA IGL, DevOps, QlikView, Java
  • Led onboarding of applications into RSA Identity Governance & Lifecycle (IGL), configuring entitlement models, data feeds and access Review campaigns to support enterprise governance controls.
  • Developed QlikView scripts to extract and normalize entitlement data from unstructured sources, and built Java-based utilities to generate monitor and reviewer coverage files using data from databases, LDAP directories and delimited file sources.
  • Designed and implemented automated build, release and deployment pipelines using Jenkins to streamline RSA IGL code promotion across environments.
  • Developed custom HTML/CSS email notification templates for review campaigns and system alerts, and created JIL scripts to manage and schedule Autosys batch jobs supporting governance data processing workflows.
January 2017 - September 2020

Identity Management Support

Microsoft FIM 2010, AD, Service Now
  • Provided 16x5 operational support with on-call coverage for Microsoft Forefront Identity Manager (FIM) environments, ensuring high availability and SLA adherence across production systems.
  • Monitored and maintained FIM infrastructure including SQL Server databases, Synchronization Service (Sync Engine) and FIM Portal services, ensuring successful execution of synchronization jobs and identity lifecycle processes.
June 2016 - December 2016

Identity Lifecycle Management

Sailpoint IIQ, Microsoft AD, SQL Server, Core Java
  • Onboarded enterprise applications into SailPoint IdentityIQ using Active Directory (Direct), Delimited and JDBC connectors, enabling automated aggregation and provisioning workflows.
  • Customized Lifecycle Event workflows for Joiner, Leaver, Transfer and Attribute Change scenarios to support dynamic identity lifecycle management.
  • Developed Beanshell Rules to implement business-specific logic including entitlement transformations, correlation logic and provisioning validations, and engineered Business Roles and IT Roles to support Role-Based Access Control (RBAC).
  • Configured and executed Manager Certification campaigns to strengthen access governance and enforce least-privilege principles.
February 2015 - May 2016

IAM Testing

Aveksa (a) RSA IGL, Selenium Web Driver, Core Java
  • Performed end-to-end functional and integration testing of identity lifecycle processes including provisioning, deprovisioning and role-based access assignments.
  • Automated regression and functional test cases using Selenium WebDriver and Core Java to improve testing efficiency and reduce manual validation effort.
December 2014 - January 2015

Learnings, Certifications & Awards

IAM Architect, Staff IAM Engineer, Principal IAM Architect, SailPoint IdentityIQ Architect, CyberArk Engineer, Identity Governance Architect, IGA Specialist, Joiner Mover Leaver Automation, RBAC Design, Zero Trust Identity, Privileged Access Management, ISO 27001 Security, DevSecOps IAM, CI/CD Identity Deployment