- Reply rate:
- -
- Availability:
- Hourly ($/hour)
- Location:
- Kolkata, West Bengal, India
- Experience:
- 11 years
Sunny Kumar Sinha
Contact Profile/About Me:
Asha garden Apartments
Kolkata, West Bengal,700102
Phone: -
Email:-
10+years of experience in IT Industry. Experience of handling
large project implementations and integration in cross
technologies.Played various role from Technical Lead to
Technical manager, service delivery manger and change
agent.Undertaken many service improvement and team
building activities to reach goals and development.Had been
involved in transition and transformation, lean transformation
program,Outsourcing and setup of infrastructure project.
Dedicated outgoing and details oriented, proficient in building
and maintaining profession relation.
Education Experience
[B.tech In Electronics and Mar 2019 – Current
Instrumentation Senior Infrastructure Engineer • Salesforce.com
Year of passing:Jun 2011
University: B.P.U.T ] Oct 2017 – Mar2019
Senior Associate • Cognizant Technology Services
Aug 2016– Oct 2017
System Engineer • Colruyt India
Oct 2011– Aug 2016
IT Analyst • Tata Consultancy Services
Skills Active Directory
Identity and access management: Deployment and testing of the various application integration with
Active directory, Okta , Jumpcloud Active directory
Done integration of various application to fetch data from directory
Public Key Infrastructure (PKI) : services
Active Directory Certificate
Services; Entrust, Digicert, Assessment of Domain and sort out the issues which pops out during
Symantec assessment
Name resolution management (WINS/DNS). Troubleshooting WINS
Virtual Directory Server : Optimal
replication issue (Worked with Microsoft Engineers directly to resolve
IDM
the issue)
DHCP server authorization in parent child domain infrastructure
Email (Messaging): Microsoft Creation/deletion of Sites, subnets and SLOs
Exchange 2010 and Exchange
2003 Active Directory general health management
Office 365 Administration
Active Directory Domain Controller Management
Troubleshooting/Recovering/Rebuilding domain controllers
Outlook 2003,2007,2010,2016
Done scripting for make process automated for easy maintenance
and monitoring
BES (Blackberry) Support
Managing and creation/applying GPOs
Global Strong Authentication Looking in to the issue escalated by L1 and L2 team and documents
(GSA): RSA ACE and Radius them to use in future as a reference.
ADFS: Microsoft Windows Server
Ensured standardization, compliance and enforcement of polices
Developed project plan, served as primary task resource,
Privilege account management: implemented and migrated unnecessary elevated privilege users.
Cyberark
Worked closely with Microsoft to identify risks and perform
remediation involving domain health and future strategy (ADRaaS)
Powershell
Provides windows server systems architecture, administration,
installation, optimization, problem isolation and resolution
Windows
Server2003,2008,2012,2012R2,20 Working on different third party tool (Quest active directory recovery
16,2019 manager, change auditor) which is integrated with directory services
for various activities.
Cloud Technology: AWS, Azure
PKI/Certi cate Management
Splunk Provide Externally accessible application owners with externally
trusted third party certi cates from Entrust
Day to day certi cate management of the internal Certi cates
services infrastructure which includes the assignment and the
management of certi cate templates
Auto enrollment related troubleshooting
Troubleshooting for all internal certi cates (and x deployment
issues)
Certi cate enrollment website administration
Creating the CSR and validating it with different tools
Troubleshooting the external and internal certi cate various error
Creating New template according to the environment
fi
fi
fi
fi
fi
fi
fi
fi
fi
fi
maintenance of the Certi cate server along with deployment
Done migration from SHA1 to SHA2
Help L1 and L2 team in case of escalation to verify and solve the
issue
Manage encryption keys throughout their lifecycle, covering key
requests, generation, distribution, usage,
Certifications
Approve issuance of certi cates to network NPEs Revocations and
renewals.
Microsoft Certified Professional Create and renew objects in LDAP
(MCP)
Supports revocation and suspension of certi cates on Unclassi ed
and Classi ed networks
Microsoft Certified Technology
Specialist (MCTS—Microsoft Attend working groups and forums on PKI policy, procedures, and
Exchange Server 2010,
technologies
Configuration)
Performs third party key recovery.
Managing Office 365 Identities
and Requirements(70-346) Creation of various scripts to simplify the job.
Maintaining a database of records with certi cate request lifecycle
ITIL V3 Foundation management
Performed PKI implementation and operations support providing
Okta certified Professional general technical support to PKI development, testing and on-going
operations activities.
Cyberark Trustee
Maintained PKI server hardware and software (lockdowns, system
patches, software updates), and installed new hardware for entire
system under recapture program, installed and con gured all new
systems, lockdown systems according to requirements.
Migrated new hardware/systems into current architecture, updated all
security documentations.
Providing security oversight in change advisory board
Understanding of PKI Policy, Life Cycle management and Auditing of
PKI Infrastructure
Experience with Private Key Protection Safenet or Thales Hardware
Security Modules (HSMs)/Certi cate Policies and Certi cation
Practice Statements
fi
fi
fi
fi
fi
fi
fi
fi
Delegation of role and responsibility according to the requirement.
OKTA
Deployed Active Directory Agent to integrate on-premises Active
Directory as Source of Truth (Pro le Master) to OKTA.
Deployed various LDAP Agents to integrate on-premises LDAPs to
OKTA as Target source.
Mapped attributes from OKTA to LDAP and vice versa based on
requirements and Provisioned users to LDAP from OKTA
Integrated multiple applications into OKTA with SSO using various
methods SWA, SAML, WS-Fed, OIDC and OAuth2.0
Integrated Custom internal applications using SAML and SWA.
Worked on creating MFA polices based on user location, groups to
improve the security of organization.
Provision Groups using Group Push to multiple directories and
provisioning supported applications.
Mapped custom attributes to the LDAP directories, SSO applications
using Expression Language as per requirements.
Created rules and Sign on policies for applications based on
requirements.
Created Roles and Access Policies for auto provisioning.
Identifying various new releases from Okta and testing in lower
environment to understand functionality and moving to production
Jumpcloud
Setting up SAML applications in Jumpcloud.
Installing and Upgrading Agents
Con gured different MFA Rules based on On - Network and OffNetwork and prompt MFA based on Risk Pro le of Users coming from
IPs based on Network.
Creating and implementing Polices for device management
Gathered and analyzed security requirements, identi ed gaps in
security architecture and recommended best practice processes and
solutions in large and complex enterprises.
PAM/Cyberark
Maintenance of Cyberark server
fi
fi
fi
fi
Deployment of Cyberark in various domains to keep the elevated
account safe
Upgrade of the server
Upgrade Cyberark component on various servers and Setup
Privileged password management Policies for CPM component.
Implement CP and CCP and integrate various application.
On-boarded and troubleshoot, managed tens of thousands privileged
accounts for platforms such as Linux, AIX, Windows, SSH, Solaris
v10, Solaris v11
Performed DNA scan to identify privileged unmanaged users across
organisation.
Various maintenance work to keep the cyberark service healthy
Email
Primarily working on Microsoft exchange server 2010.
Tested various patches and hot xes before production installs and
documented operational behavior differences
Lowered spam by 90% using rewall ltering with real-time spam
black lists for incoming email by installing, con guring, and using
Proofpoint appliance and Proofpoint on demand.
Prepared labs for co-existing environment, and tested mailbox
migration, and documented the ndings.
Tracked, analyzed and interpreted trends in e-mail system data.
Added user accounts, troubleshot issues with users and monitored
usage on multiple applications
Researched new software and align management with software
purchasing decisions.
Ensured the smooth operation of Exchange servers.
Established Exchange server access procedures and security
checks.
Systems responsibilities include installation, con guration, security,
maintenance
Capacity planning of administration, backup, data recovery of Emails
Of ce365
Administered and supported Of ce 365
Exchange Online Con guration
fi
fi
fi
fi
fi
fi
fi
fi
fi
Migration of users from On-premise to cloud.
Working on complete deployment of of ce 365 using dirsync and
other third party tools.
Lync online Con guration and installation on Client machines
Azure
Create Virtual Machines through Power Shell Script and Azure Portal
Con gure Window Failover Cluster by creating Quorum for File
sharing in Azure Cloud.
Exposed to working with various issue severities, engaging
specialized teams, close deadlines.
Automate deployment and troubleshoot mechanisms for quick
service
Resolving the Sync issue Microsoft Managed Services Service
Provisioning Provider
Experience Con guring and managing AzureAD Connect, AzureAD
Connect health, Microsoft Azure Active Directory
AWS
Experienced in Automating, Con guring and deploying instances on
AWS
fi
fi
fi
fi
fi
Knowledge of AWS cloud service like Compute, Network, Storage
and Identity & access management.
