-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsafeguard.html
60 lines (53 loc) · 3.92 KB
/
safeguard.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>OneIdentity Safeguard Implementation</title>
<style>
body {
font-family: Arial, sans-serif;
margin: 20px;
padding: 0;
}
h1 {
font-size: 24px;
margin-bottom: 10px;
}
p {
font-size: 16px;
line-height: 1.5;
margin: 0 0 20px;
}
ul {
font-size: 16px;
line-height: 1.5;
margin: 0 0 20px;
padding-left: 20px;
}
</style>
</head>
<body>
<h1><font color="#3983AB">IAM Experience:</font> OneIdentity Safeguard Implementation Project</h1>
<h2>Technical Skills:</h2>
<ul>
<li><strong>Safeguard Implementation and Documentation:</strong> Collaborated on the implementation of OneIdentity's Safeguard solution, meticulously documenting various use cases and procedures for internal IT security teams. Utilized tools like Confluence and JIRA to create detailed technical documentation outlining workflows for privileged account access, emergency access, and password management. This documentation enhanced internal processes and accountability.</li>
</ul><ul> <li><strong>Service Account Management:</strong> Orchestrated the collection, organization, and secure storage of service accounts and associated passwords within internal systems. Implemented best practices, such as password rotation policies and encryption of stored passwords, using HashiCorp Vault. Conducted regular access reviews and audits to identify and remediate security risks.</li>
</ul>
<h2>Problem-solving Skills:</h2>
<ul>
<li><strong>Internal User Education and UI Configuration:</strong> Played a pivotal role in internal user education, conducting workshops and training sessions for security teams to familiarize them with Safeguard's features and capabilities. Leveraged internal webinars and Slack channels to facilitate knowledge sharing. Assisted in configuring Safeguard's UI settings, including session recording via Syslog integration and access policies with Role-Based Access Control (RBAC), aligning with internal security policies and user needs.</li>
</ul>
<h2>Communication Skills:</h2>
<ul>
<li><strong>Use Case Documentation:</strong> Created comprehensive documentation outlining use cases across internal IT security departments. This documentation included detailed step-by-step guides on configuring Safeguard for specific scenarios, such as privileged access requests and emergency access. Used Markdown syntax within Git repositories to maintain version-controlled documentation, ensuring efficient and consistent execution of these critical tasks.</li>
</ul>
<h2>Teamwork Skills:</h2>
<ul>
<li><strong>Collaboration with IT Security Departments:</strong> Collaborated closely with internal IT security departments, actively participating in Agile ceremonies like sprint planning and daily standups to gather insights into unique requirements. Incorporated their feedback into the Safeguard configuration, ensuring tailored solutions that met internal security standards and needs. Utilized Git branching strategies for collaborative code reviews and contributions.</li>
</ul>
<ul>
<li><strong>Account Creation and Transition:</strong> Managed the creation of admin and local accounts within Safeguard, leveraging tools like Terraform for Infrastructure as Code (IaC) and Ansible for configuration management. Ensured appropriate access levels for security personnel using Attribute-Based Access Control (ABAC). Conducted thorough audits using Splunk to identify and remove old user credentials before transitioning from the previous TPAM system, ensuring a clean and secure transition of privileged access management.</li>
</ul>
</body>
</html>