Hafeezuddin Khan Mohammed

Hafeezuddin Khan Mohammed Email and Phone Number

IAM engineer @ Verizon
Hafeezuddin Khan Mohammed's Location
Greater Chicago Area, United States, United States
Hafeezuddin Khan Mohammed's Contact Details

Hafeezuddin Khan Mohammed work email

Hafeezuddin Khan Mohammed personal email

n/a
About Hafeezuddin Khan Mohammed

● Overall 8+ years of experience in Cyber Security & Information Security, Identity and Access Management (IAM) with tools like Ping Federate, OKTA and Azure AD, ForgeRock and CyberArk.● Integrated PingOne, PingAcess, and PingID products as a part of application onboarding.● Configured Single Sign-On (SSO) using SAML2.0, OAuth2.0, OIDC.● Feature enhancements with Ping Federate SAML & OAuth SSO for over 100 connections.● Experience in Ping Directory Servers, including installation, configuration, and PSA Agents including setup and maintenance of agents.● Experienced in frameworks of information security audits (PCI DSS, NIST, ISO 27001, GDPR, CCPA, CPRA, SOC 2) Compliance and regulatory requirements with external auditors/regulators.● Monitoring tools such as Splunk to create dashboards, alerts, and reports for Ping Federate logs.● Knowledge of LDAP protocols including directory schema design and object class creation.● Implement security posture as per Zero Trust Architecture, Devsec Ops, OWASP, threat protection, AI-driven security analytics, SSL/TLS encryption, and user authentication.● Operations like Adapters, Service Provider connections, Identity Provider connections, replicating, importing, and exporting SSL certificates using PingFederate in both Production and Non-Production environments as a SAAS and also PKI-based digital certificate management.● Experience in designing, deployment, disaster recovery, business continuity and breach management, fine-tuning, replication, and maintenance of Access Manager and Directory Servers.● Integration of IAM for data governance and data loss prevention in OKTA, Ping.● OKTA’s (SSO), Multi-Factor Authentication (MFA), and User Lifecycle Management.● Understanding of Okta's security features, such as password policies and security architecture.● Okta's reporting and analytics features, real-time reporting, and logging of user activity.● Understanding of Okta's authentication protocols, such as SAML, OAuth, and OpenID Connect.● Experience in implementing and managing various CyberArk products, including CyberArk Password Vault Web Access, Central Policy Manager, and Privileged Session Manager,PAM.● Expertise in troubleshooting and maintaining CyberArk components, utilizing logs, Cluster Vault Manager Utility, and Private Ark Client to diagnose and resolve issues promptly.● Experience in integrating CyberArk with SMTP and Directory Servers,SIEMQradar servers.

Hafeezuddin Khan Mohammed's Current Company Details
Verizon

Verizon

View
IAM engineer
Hafeezuddin Khan Mohammed Work Experience Details
  • Verizon
    Iam Engineer
    Verizon Jul 2023 - Present
    Basking Ridge, Nj, Us
    ● Worked on implementing SSO solutions using PING Identity solutions with federated Protocols (SAML, OpenID Connect, OAuth, WS Federation). ● Provided Architectural design and implemented enterprise-wide Identity and Access Management (IAM) solutions using Ping Federate and PingID, Ping Access, PingOne, and Ping Directory. ● Implemented PingID MFA with Ping Federate and integrated Apigee with PingOne Authorize.● Created flows using PingOne Davinci for authentication by connectors and used PingOne for SSO configuration.● Strong experience in updating certificates client certificates, and keys.● Experience in working with cloud security for GCP, AWS for applications migration, cloud security assessments of lifecycles, and designing the cloud security policies as per SIEM, DLP.● Experience in DEVOPS principles of CI/CD with cloud infrastructure such as Azure, AWS, GCP, and Kubernetes and cloud security and virtualization.● Expertise in configuring PingID and enabling multifactor authentication using PingID adapter.● Experience in creating custom authentication policies as per client requirements.● OGNL expressions to transform attributes in the SAML assertion as per the requirement.● Familiarity with OAuth deployment to retrieve an access token, ID token, and refresh token.● Implemented PKI-based digital certificate management and authentication with OAuth client.● Configured grant types to retrieve access tokens curl and REST-based tools like Postman.● Implemented CyberArk Password Vault, Web Access, Central Password Manager, and Privileged Session Management and its connectors.● Deployment and configuration of CyberArk PVWA, CPM and PSM as per security policies.● Used CyberArk for password rotations, reconciling accounts and assigning Safes.● Implemented PAM features of CyberArk such as User Entitlements and Access policy Management.● Utilized OKTA Universal directory,Access gateway and SSO implementation for applications.
    View
  • Visual Technologies
    Iam Engineer
    Visual Technologies Jun 2021 - Jun 2023
    Plano, Texas, Us
    ● Managing and maintaining Entra ID ( Azure AD), and Active Directory (AD) infrastructure, including domains, users, and groups, authentication, health checks, and Group policies (GPO).● Creating and managing security groups, distribution groups, and organizational units within AD.● Utilizing AD Connect (Ad Sync), (CA) Conditional Access policies, PIM Privileged Identity Management, and MFA of Azure AD to enhance the security posture of applications and users.● Implementing SSO using SAML, OAuth, OIDC, Provisioning and de-provisioning user access to AD resources and web applications, including granting and revoking permissions.● Configured Azure AD connect as part of Directory sync between on-premises and Cloud infrastructure.● Managed Active Directory ( AD) 2012R2,2016, ADFS, DC ( Domain controllers), Active, Azure, and PKI with the application team.● Worked on Windows server 2016 ADDS forest preparation for schema upgrade.● Implemented Azure PIM privilege identity management and other app privileges using Ansible, Chef, Puppet, and DevOps tools.● Audited using CISA Scuba tools for conditional access policies and change related to it.● Implemented BCP failovers, AD Connect upgrades, licensing, and application permission issues.● Integrated CyberArk Connectors/plugins for various web applications.● Worked on CyberArk operational tasks related to users/groups for entitlements/access controls.● Deployment and configuration of CyberArk PVWA,CPM and PSM as per security policies.● Experience with integrating Azure AD with other services, such as Office 365, Azure AD Connect, and Azure AD Application Proxy.
    View
  • Hsbc
    Iam Engineer
    Hsbc Jan 2018 - Jun 2021
    London, Gb
    ● Expertise in configuring OAuth authorization servers in OKTA to be used by OAuth clients.● Experience with OKTA SSO, MFA, Universal Directory, and lifecycle management.● Experience in Okta Identity Life cycle, Creating OKTA workflows and managing OKTA workflow, Workflow automation, and application integration platform.● Experience in creating custom scopes and claims in OKTA for applications to authorized users.● Configured single-page applications for implicit grant type to get OpenID token.● Experience in implementing OKTA's appropriate accesses to applications, and systems with also inbuilt multifactor authentication for added security.● Experience in installing Okta’s Lightweight agent to integrate with Active Directory and Google Workspace directory.● Experience in making API calls from the Okta API to another identity provider API.● Integration of OKTA Identity Cloud with OAM( Oracle Access Manager), and ISAM ( IBM Security Access Manager) for providing SSO, MFA implementations● Proven expertise in setting up SAML applications in OKTA and installing AD/IWA agents on member domains, validating single sign-on, user provisioning, and troubleshooting password synchronization across multiple Okta platforms.● Integrated OKTA with ADFS ( Active Directory Federation Service ) for MFA.● Proven experience in building and nurturing strong collaborative relationships with key stakeholders to successfully onboard their SAAS applications into OKTA.
    View
  • Davita
    Security Identity & Access Management Engineer
    Davita Jun 2015 - Dec 2017
    ● Experienced level of understanding of Enterprise or Customer Identity & Access Management, Single Sign-On, Multi-Factory Authentications (MFA), and Authentication, Privileged Access Management (PAM), Identity Governance & Administration concepts.● Knowledge of fraud prevention and detection, identity proofing and identity verification technologies.● Worked on the entire Identity and Access Management environment data center migration from On-Premises to Azure cloud environment.● Implemented the SAML 1.1 and SAML 2.0 protocol, OAuth, OpenID, WS-Trust, Identity Injection, Form Fill based SSO Solutions.● Implemented procedures for architecture, designing, support and maintenance of Active Directory products and IT infrastructure projects.● Designed and deployed processes for service packs and security updates of Windows server instances.● Involved in troubleshooting and resolving Active Directory and DNS problems on domain controllers across the enterprise.● Experience in installing, maintaining, Token generating and Token processing in PingFederate across different environments.● Experience with monitoring and troubleshooting system issues using Splunk.● Knowledge of organizational standards and policies (ISO, NIST).● Knowledge of compliance regulations (GDPR, HIPPA, PII).● Supported and Implemented the SSO Integrations for all the on-premises and Cloud-based Diversey Applications.

Hafeezuddin Khan Mohammed Education Details

  • Northwestern Polytechnic University California
    Northwestern Polytechnic University California
    Electrical And Electronics Engineering

Frequently Asked Questions about Hafeezuddin Khan Mohammed

What company does Hafeezuddin Khan Mohammed work for?

Hafeezuddin Khan Mohammed works for Verizon

What is Hafeezuddin Khan Mohammed's role at the current company?

Hafeezuddin Khan Mohammed's current role is IAM engineer.

What is Hafeezuddin Khan Mohammed's email address?

Hafeezuddin Khan Mohammed's email address is ha****@****ons.com

What schools did Hafeezuddin Khan Mohammed attend?

Hafeezuddin Khan Mohammed attended Northwestern Polytechnic University California.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.