Deepa Mohan

9+ years of experience in Identity and Access Management application support domain.

• Experience includes supporting multiple IAM solutions that includes Entra ID, CyberArk for Privileged Access Management (PAM), PingFed Authentication, Okta and RSA.
• Expertise in process improvement through automation and formulating knowledge base articles and runbooks for L1, L2 and L3 teams for better support experience.
• Mitigating risk, compliance and vulnerability issues for applications. This also includes performing Infrastructure Control Assessment, Infrastructure Risk Questionnaires, SOC2, SRMA and SSRA attestations for applications on an annual basis.
• Handling oncall rotation for crown jewel applications in RBC but also 50+ other RBC US bank applications.
• Leading walk through sessions and preparation of RFIs for both internal and external IAM application audits. This includes FRB and CUSO audits.
• Collaborated with IAM onboarding, engineering and QA teams to migrate applications from old authentication services to Entra ID SSO. Migrated 220+ apps from PingFed authentication service to Entra ID in 6 months thereby closing the risk finding against IAM.
• City National Bank, HSBC and Brewin Dolphin Cross tenant synchronization with RBC Entra ID platform: Synchronization of existing subsidiary tenant users to RBC tenant and facilitating access to RBC applications through improved conditional access policy and design changes.
• Created custom tableau dashboards for better visibility of unique user sign-in to the application thereby decreasing manual effort with running azure workspace analytics queries every month as part of management reporting. Similar tableau dashboard was created to track license usage count helping the management to make informed decisions on license purchases across IAM solutions.
• Enhanced collaboration between IT teams by standardizing communication protocols around system requirements, project progress updates, and change management processes.

• Promoted a positive work environment by fostering teamwork, open communication, and employee recognition initiatives.
• Troubleshooting complex technical support incidents and problems for the clients.
• Picked up gaps in existing AWS client infrastructures or incoming services, processes or methods
  and self-started towards solutions.
• Provided executive updates proactively to our managed service clients.
  · Monitored and analyzed customer’s environments, providing recommendations for continuous improvement and optimization of technology investments.
  · Automated installation processes in production environments using Ansible.
  · Lead the design and implementation of infrastructure for production websites hosted on AWS cloud
  platforms using load balancing and auto-scaling concepts to ensure the highest level of availability
  and scalability.
  · Developed custom bash scripts to take periodic snapshots and AMIs of servers as part of disaster
  management and implementing the same using AWS-CLI.
  · Developed custom scripts in AWS Lambda server-less environment for triggering CloudWatch
  Alarms and SNS.
  · Hands-on experience working on VPC, EC2, S3, RDS, ECS, SNS, Route53, ELB, ECS services on
  AWS.
  · Reviewed and analyzed Cloud trails and CloudWatch logs to determine and alleviate potential
  threats.
• Designed and configured Azure Active Directory to be the identity provider for SSO into AWS.
• Strong knowledge in AWS IAM management including creating custom roles and policies.
• Identified best practices for backup and disaster recovery depending on the needs of the customers.

• Installation and maintainence of physical/virtual servers and related software. Performed system and application patching, as well as kept the operating system and software up to
  date.
• Part of disaster recovery team responsible for incident resolutions and root cause analysis in
  production servers.
• Took ownership of all assigned tickets and formulated resolutions; researching and escalating to vendor
  as necessary within an agreed SLA of 15 minutes.
• Prepared detailed documentations and server infrastructure policies, standards and diagrams.
• Participated in the on call rotation and stayed after work hours for planned changes and incident
  resolution.
• Configured and managed different server monitoring systems including Nagios, Zabbix and
  CloudWatch so as to minimize downtime and outages.
• Hands-on experience working with customer hosting control panels including Cpanel, Plesk and
  Direct Admin.
• Hands-on experience working with JIRA and Confluence.
• Preparation of monthly Server Audit Reports and communicating the same with the clients.
• Experience handling Technical Support calls and working in Rotational shifts.