Amadou Tidiane Aw

• - Analyze business and technical requirements for application integration into SailPoint IdentityIQ. Design and implement connectors for application integration, including provisioning and reconciliation.

• - Configure application access rights, roles, policies, and access request workflows.

• - Work closely with application owners, IAM architects, and security teams to define integration strategies.

• - Develop custom rules, workflows, and BeanShell scripts in SailPoint IIQ.

• - Ability to write scripts (e.g., Java, PowerShell, Python, BeanShell, Groovy).

• - Perform data mapping, attribute normalization, and identity correlation.

• - Troubleshoot integration issues and support end-to-end testing and validation.

• - Document integration configurations, technical designs, and integration procedures.

Company: International insurance group | Senior Consultant

AD and PKI Infrastructure

Strengthening AD/PKI infrastructures in a critical migration and security compliance context.

Volume = 250 sensitive users at global headquarters, difficulty = bringing stakeholders into the firewalling cutoff domain, how to manage internal and visitor badge management, role management, sensitive user migration, separation of duties.

Hardening and integration of sensitive user workstations. Monitoring and vulnerability management (Qualys).

Integration of EDR solutions (Symantec, Cybereason). Solution documentation (DAT, etc.). Maintenance of integrated security solutions. Isolate access between third parties.

Apply the principle of least privilege and separation of privileges. Log analysis.

Update and adaptation of AD security policies. PKI deployment (AD CS).

Definition of the security roadmap and monitoring of technical milestones. PKI maintenance.

Supervision of the certificate lifecycle and contribution to proactive incident management.

Security assistance to network and video surveillance production teams. Technical environment: Windows Server 2022, Credential Management System, Qualys, Symantec (EDR), Cybereason (EDR), Telnet, PowerShell.

Administration of the infrastructure for the new AXA GIE headquarters - Matignon site (Segmentation)

August 2024 AXA Matignon

Management of Active Directory Domain Services (AD-DS) and Public Key Infrastructure (PKI) directory services.

Design, deployment, and administration of forests, domains, and organizational units (OUs) in Active Directory.

Administration of Domain Controllers, including replication and FSMO Roles management.

Monitoring of infrastructure changes in accordance with applicable site security and compliance standards.

Patching, security updates, and documentation of changes made.

Development, formalization, and updating of operating procedures for infrastructure administration.

Windows Server installation (AD CS), Certificate Authority configuration, and implementation of a certification policy for stakeholders (CCTV, BMS, Secure Systems).

Implementation of a PKI (Public Key Infrastructure) for issuing and managing digital certificates.

Implementation of certificates for user, server, and device authentication.

Implementation of security restrictions via GPO (account lockout, software restrictions, etc.).

Management of Administrative Templates for advanced configuration.

Support for network and video surveillance teams in deploying assets from an AD perspective (object addition, telnet tests, etc.).

Technical support for network and video surveillance teams for the integration of new equipment (adding objects to the directory, configuring access rights, etc.).

Performing connectivity tests (Telnet tests, firewall validations, etc.) and diagnosing communication problems.

Verification of new assets' compliance with AD policies