Sandip Patil

Designed and developed a Java Spring Boot back-end-based application where Access review administrators can upload Access review certification definitions in MS Excel files, up to 500 definitions per row. I developed a REST web services API at a SailPoint host, consuming Access review definitions from the RCT app, validating specifications, and creating Access reviews on the SailPoint platform while providing an API for status checks.

The Idax Risk Engine analyses access rights, highlighting which employees have access to systems they should not. UBS is one of the largest banks in the world and has a lot of entitlement management systems. The challenge was to collect heterogeneous data from these systems, feed it to the Idax analytics engine, and then generate reports for stakeholders to review for overall entitlement distribution and associated risks.

Detailed tasks included the design and development of a custom ETL tool to work in an Azure hybrid cloud environment. Create a user-centric review generation based on the risk score, and integrate this with other entitlement systems using Microservices.

Adaptive authentication provides risk analysis and step-up authentication functionality to clients. By collecting information about a user's device, their activity habits (i.e., typical login time, login location, etc.), and their past login success rate, adaptive authentication can calculate a risk score for a given login transaction. The MCAAWS application provides a web service interface for adaptive authentication. MCAAWS consists of a set of SOAP-based web services, which provide an interface for calling the functions of adaptive authentication. While MCAAWS does provide some business logic to mold the adaptive authentication product's workflows to fit with MasterCard business practices, the primary function of MCAAWS is to serve as a translator between clients and adaptive authentication.

My duties included: ISAM RBA and SCIM API configuration and the creation of SOAP web services.

The RSA® Governance and lifecycle platform help organizations meet their security, regulatory, and business access needs through a collaborative set of business processes by automating manual tasks, providing evidence of compliance, reducing access-related business risk, and efficiently delivering business access.

I provided E2E delivery for the application onboarding that included request gathering, designing, documentation, development, support, recertification, and periodic reviews. Additionally, I ensured the AWS IAM, Google cloud IAM project delivery, and developed and deployed a variety of automated provisioning projects, including RACF, SSH, and Oracle connectors

iCrypto offers authentication and verification services to protect your most valuable assets while bringing accountability back to your enterprise. Using state-of-the-art biometric technology coupled with our back-end threat engine, we offer the most flexible and secure combination of solutions that enable a tailor-fit solution for your enterprise needs. My role was to implement multi-factor authentication (MFA) for Atlassian Jira and Confluence.