Rakesh Yeddula
Identity And Access Management Architect
Chicago,IL
Summary
Accomplished Identity and Access Management (IAM) architect and developer with over 9 years of experience in designing and implementing enterprise-grade security solutions. Demonstrated success leading large-scale migrations, including seamless transition of millions of users to advanced IAM platforms and successful deployment of passwordless authentication across 500+ applications. Specializing in developing zero-trust frameworks, enhanced security by implementing risk-based multi-factor authentication and optimizing identity governance using industry-leading tools such as Ping Identity Suite, Saviynt IGA, and CyberArk. Extensive expertise in authentication protocols like SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), WS-Federation, and LDAP, focuses on streamlining user access and improving authentication processes in complex, high-traffic environments.
Overview
10
10
years of professional experience
5
5
years of post-secondary education
Work History
Lead Identity & Access Management Engineer
Zebra Technologies Corporation
Chicago, Illinois
04.2022 - Current
- Spearheaded the migration of a 5.5M+ token repository from a relational database to Ping Directory in AWS, enhancing performance and scalability
- Architected the migration of 2M+ users from on-premise Ping Directory to Ping Advanced Services Ping Directory, including migrating data sync services, performing data validation, and configuring alerts for sync issues, service disruptions, and certificate expirations
- Led the deployment of FIDO2 biometric and security key authentication with PingFederate and PingOne MFA, driving adoption of passwordless authentication
- Architected and implemented AWS infrastructure to support identity services, enhancing scalability and reliability.
- Developed and enforced IAM policies in AWS to ensure secure access management and compliance across cloud resources.
- Architected and enforced risk-based multi-factor authentication policies across cloud and on-prem applications, reducing MFA fatigue by 80% and enhancing security while ensuring seamless user experience
- Architected authentication policies for adapting to passwordless authentication across 500+ applications, enhancing security while streamlining user experience
- Implemented passwordless authentication policies as part of a strategic initiative to migrate towards a zero-trust security model
- Designed and implemented zero-trust strategies to strengthen enterprise security posture
- Built advanced workflows and role-based access control (RBAC) models in Saviynt IGA, optimizing user lifecycle management
- Architected the migration off on-premises database dependency by transitioning Java API code for CRUD operations to PingOne SSO, enhancing performance and reducing infrastructure complexity
- Managed privileged account security using CyberArk Vault, CPM, and PSM, ensuring protection of sensitive credentials
Senior Identity & Access Management Engineer
Zebra Technologies Corporation
Lincolnshire, Illinois
04.2018 - 03.2022
- Designed and implemented Saviynt IGA use cases for joiner, mover, leaver processes, improving user lifecycle management
- Onboarded new applications into Saviynt IGA, enhancing automated provisioning and access review processes
- Provided operational support and troubleshooting for Saviynt-integrated applications
- Engineered robust identity federation solutions with PingFederate, enabling secure SSO across multi-domain environments
- Developed custom authentication flows and integrated diverse applications via SAML, OAuth, and OpenID Connect protocols
- Implemented dynamic access controls using PlainID to enforce least privilege principles and minimize security risk
- Optimized PingFederate environments through load balancing, clustering, and performance fine-tuning to handle high traffic volumes
- Configured and streamlined the PingID user enrollment process for MFA, reducing onboarding friction
- Enhanced security with primary refresh token-based authentication leveraging Azure AD
Identity & Access Management Engineer II
Zebra Technologies Corporation
09.2016 - 03.2018
- Implemented reverse proxy-based authentication using PingAccess for legacy ERP and CRM applications, enhancing security and enabling fine-grained access control
- Implemented Splunk SIEM tool for log analysis, enhancing security monitoring and incident response
- Developed dashboards and reports in Splunk, providing actionable insights into system activity and security events
- Led the enterprise-wide implementation of PingFederate SSO, securing internal and external applications
- Integrated PingOne MFA to enable seamless multi-factor authentication across the organization
- Analyzed machine data with Splunk, identifying security threats and optimizing incident response
- Designed custom OAuth/OIDC token configurations to fortify web app security
- Orchestrated the platform certificate management of IDP for about 350 applications, ensuring seamless integration and security
IT Consultant
Avula Consulting Services
08.2015 - 08.2016
- Supported end-to-end IAM system implementations, enhancing security and compliance for enterprise environments
- Managed user lifecycle processes, including onboarding, provisioning, and de-provisioning for applications like Oracle ERP and ServiceNow
- Developed role-based access policies and integrated IAM with web applications
- Designed database components, including tables, views, triggers, and procedures, streamlining data management
Education
Master of Science - Computer Science
State University of New York
Binghamton, NY 07.2014 - 12.2015
Bachelor of Technology - Computer Science
GITAM University
07.2010 - 05.2014
Skills
- IAM Solutions: PingFederate, PingAccess, PingOne, PingID, Azure AD, CyberArk, Saviynt IGA, PlainID
- Protocols: SAML 20, OAuth 20, OpenID Connect (OIDC), FIDO2, PKI, WS-Federation, LDAP
- AWS: IAM, User Management, Policies, Roles, Identity Federation, Access Management, Security, CloudWatch
- Security & Authentication: Zero Trust, Passwordless Authentication, Risk-Based Authentication, MFA
- Infrastructure: AWS, Ping Advanced Services, Active Directory, SQL Server, Oracle DB
- Development: Java, J2EE, Restful Web Services, HTML5, CSS3, JavaScript
- Tools: Splunk, Apigee, Grafana, Kibana, GitHub, SVN
Timeline
Lead Identity & Access Management Engineer
Zebra Technologies Corporation
04.2022 - Current
Senior Identity & Access Management Engineer
Zebra Technologies Corporation
04.2018 - 03.2022
Identity & Access Management Engineer II
Zebra Technologies Corporation
09.2016 - 03.2018
IT Consultant
Avula Consulting Services
08.2015 - 08.2016
Master of Science - Computer Science
State University of New York
07.2014 - 12.2015
Bachelor of Technology - Computer Science
GITAM University
07.2010 - 05.2014
Similar Profiles
Glenys FernandezGlenys Fernandez
Customer Service Representative at Zebra Pen CorporationCustomer Service Representative at Zebra Pen Corporation
Joseph WagesJoseph Wages
Lead Electronics Technician at Zebra TechnologiesLead Electronics Technician at Zebra Technologies
MARIE EDENMARIE EDEN
Lead Management II at Zebra TechnologiesLead Management II at Zebra Technologies