Akash A.

Identity Architect

Jan 2025 - Present • 1 yr 5 mos

Designed and implemented enterprise IAM architecture supporting 180,000+ user identities across hybrid cloud and on-prem environments, reducing provisioning time by 30%. Led deployment of SailPoint IdentityIQ governance platform, automating 85% of user lifecycle management processes and reducing manual access requests by 60%. Architected RBAC and access certification programs that reduced excessive access violations by 75% and improved SOX audit compliance scores. Designed IAM controls aligned with NIST, SOX, HIPAA, and PCI-DSS frameworks, contributing to successful external audits with zero critical findings.

Cybersecurity Engineer

Jan 2023 - Jan 2025 • 2 yrs

Engineered and managed enterprise endpoint security solutions using SentinelOne and CrowdStrike across 25,000+ endpoints, improving threat detection coverage to 98% and reducing malware incidents by 70%. Led deployment and optimization of Zscaler secure web gateway and zero trust policies, reducing unauthorized internet access events by 60% and improving remote user security posture. Administered Rapid7 vulnerability management platform to conduct continuous vulnerability scanning and remediation tracking across servers, endpoints, and cloud assets. Reduced critical vulnerability exposure by 75% through automated remediation workflows, patch prioritization, and risk-based vulnerability management processes. Developed security automation scripts and SOAR workflows using Python and PowerShell, decreasing incident response times by 50% and eliminating repetitive manual tasks.

Security Engineer - Vulnerability Management

Jun 2020 - Dec 2023 • 3 yrs 6 mos

Managed enterprise vulnerability management operations using Rapid7, Qualys, Tenable, and NinjaOne across 20,000+ assets in hybrid cloud and on-prem environments. Reduced critical and high-risk vulnerabilities by 80% through risk-based prioritization, automated remediation workflows, and continuous vulnerability scanning initiatives. Designed and implemented enterprise vulnerability management programs aligned with NIST and CIS benchmarks, improving compliance audit readiness and remediation tracking. Conducted authenticated and unauthenticated vulnerability scans for servers, workstations, network devices, and cloud workloads, increasing asset coverage visibility to 98%. Developed automated patch deployment and remediation workflows through NinjaOne and PowerShell scripting, reducing mean time to remediate (MTTR) by 60%. Integrated vulnerability scanning platforms with SIEM and ticketing systems including Splunk and ServiceNow, automating vulnerability ticket generation and remediation tracking. Led remediation efforts for critical CVEs and zero-day vulnerabilities, ensuring SLA compliance and reducing exposure windows from weeks to days.