CHRISTIAN STEVE NJOCK

• Work with business partners and application teams across RBC Enterprise to provide training on SailPoint, explain the onboarding process, document requirements, and submit requests for onboarding;
• Work with business partners and application teams to ensure data remediation is completed including orphan, description clean-up, role creation, Segregation of Duties (Toxic Combination) policy creation in the IAM SailPoint Tool;
• Provide Consultative services to ensure requirements are in compliance with RBC Standards;
• Identify and Report security risks in accordance with our RBC Standards;
• Participate in all aspects of onboarding testing as needed, this may include: Test case scenarios creation and assisting with test case writing, Assisting with DEV, SAI (UAT) and PIV testing;
• Provide support with tasks and ad-hoc requests as required;
• Review, analyze, and define onboarding requirements as reflected in the requirement document that application teams provide and contribute to the technical development specifications by ensuring that requirements for onboarding have been met;
• Suggest/document solutions to improve the efficiency of the onboarding process

National Bank Of Canada: Senior IAM Functional Analyst

Mandate: Refactoring of all the internal process

• Refactored internal processes within six months;
• Analyzed and prepared integrations between IdentityIQ (IIQ) system and applications;
• Contributed to the implementation of the access management process based on business roles (RBAC);
• Designed a comprehensive flowchart for the user lifecycle access request process at the business level, enhancing clarity and efficiency in access management workflows;
• Initiated and implemented suggestions for modifying the enable and disable processes, introducing robust validation procedures to ensure compliance with banking standards. This enhanced the security and integrity of access management actions;
• Produced documentation in Confluence and kept stories up to date in Jira;
• Assisted the Product Owner in the work of prioritization and preparation of deliverables.
• Utilized tools such as SailPoint IIQ, Jira, Confluence.

Infosys: Azure AD Engineer

Mandate: Support RioTinto Infrastructure

Responsibilities:

• Engineered and maintained Multifactor Authentication (MFA) solutions;
• Oversaw the integration of Enterprise Applications and Application Registrations, implementing the SAML Protocol for seamless and secure data exchange. Managed the documentation and formal processes associated with registering and onboarding applications, ensuring compliance with security protocols and facilitating smooth integration within the IT infrastructure;
• Provided comprehensive training to junior team members, imparting knowledge on Entra ID processes, security measures, and best practices for user authentication and authorization;
• Designed and created a detailed flowchart illustrating the access package process, enhancing clarity and understanding of the workflow among team members;
• Tools Utilized: Microsoft Entra ID, SailPoint IdentityNow, ServiceNow
  

Mandate: integration of the Sailpoint (leader of Identity and Access Management Solution) at Bank of Montreal (BMO).

Mission: integrate 50 in-house applications in 6 months.

Result: 80 applications were integrated.

Main responsibilities:

• Worked on implementation of Active Directory, JDBC, Feed files, Salesforce and Webservices applications and connectors;
• Onboarded Authoritative and non authoritative applications with various connectors , Account / Groups aggregation;
• Created Account aggregation & Group Aggregation;
• Worked on provisioning and Identify workflows, Access Management, RBAC (Role-Based Access controls), and Authentication and Authorization in Sailpoint IIQ;
• Worked with Information security team to integrate with applications and Role Lifecycle Management;
• Managed users certifications;
• Performed integration testing before launching applications;
• Collaborated with IT team and other support staff to develop new application;
• Worked on ticketing system using ServiceNow implementation;
• Involved in Application connector configurations like delimited, JDBC, AD, etc;
• Created documentation of each application / connector onboarded;
• Enhanced knowledge base;
• Attended Business meeting and Provide answers to technical questions asked when necessary;
• Has been on call once every three months to intervene if ever production team encounters difficulties during deployment of monthly applications/connectors;
• Worked with multiple teams such as QA Team, App Team and PROD Team;
• Prepared documents for monthly release.
• Tools utilized: SailpointIIQ, Apache Tomcat, ServiceNow, Centos, LDAP, Active Directory Jira, O365, WinSCP, Putty, RDP, SQL, Java, GIT, Excel.

Main tasks were:

• Analyzed and processed requests for access to computer systems, ensuring meticulous follow-up procedures for timely resolution.
• Managed the creation and withdrawal of user accounts on various systems, maintaining accurate records.
• Effectively dealt with access-related incidents, providing prompt resolution to mitigate potential risks.
• Analyzed cases concerning web filtering, making informed decisions to either approve or deny access based on established security protocols.
• Utilized FortiGate for web filtering and network security, contributing to a robust defense against cyber threats.
• Assisted users in navigating and utilizing the system, offering guidance for optimal usage.
• Collaborated with cross-functional groups to enhance security and access governance, fostering a cohesive and secure operational environment.
• Played a key role in the documentation and review of how-to guides and support articles, contributing to knowledge sharing within the team.
• Ensured strict compliance with established norms and standards, upholding the organization's commitment to security best practices.
• Managed access rights to users' shared folders on file servers, maintaining a secure and organized data environment.
• Reset user passwords for individuals with elevated privileges, implementing robust security measures.
• Oversaw M365 users, performing activities related to the creation, modification, and termination of privileged user accounts.
• Managed user authentication and data access authorization, ensuring a secure and controlled access environment.
• Promoted security awareness among employees and customers, actively mitigating risks and breaches through education initiatives.
• Educated users on complex IT terms using easily understandable tools, contributing to a more informed user base.
• Documented service tickets related to access management activities, maintaining a comprehensive record for auditing purposes.
• Obtained and validated approvals of user access requests in accordance with company policies, ensuring a secure access control process.
• Utilized a range of tools, including Active Directory, Azure Active Directory, Windows Server 2019, Windows 10, ServiceNow, Exchange Server, M365, Cisco Jabber, Teams, Hornet Security, and FortiGate for web filtering and network security.

Main tasks were:

• Managed user authentication and authorization of data access, ensuring a secure and controlled environment.
• Analyzed, processed, and tracked requests for access to computer systems, implementing rigorous procedures for request management.
• Executed the creation and withdrawal of user accounts on various systems, maintaining accuracy and adherence to security protocols.
• Effectively addressed access incidents, providing timely resolutions to minimize potential risks.
• Collaborated with cross-functional groups to enhance security and access governance, fostering a cohesive and secure operational environment.
• Played a vital role in the documentation and revision of procedural and supporting articles, contributing to knowledge sharing and process improvement.
• Promoted security awareness among employees and clients, actively mitigating risks and breaches through educational initiatives.
• Educated individuals on complex computer terms using easy-to-understand wording, facilitating a more informed user base.
• Utilized a range of tools, including Active Directory, Azure Active Directory, Windows Server 2019, Windows 10, ServiceNow, Exchange Server, M365, Cisco Jabber, Teams, and Hornet Security for comprehensive access management and security practices.