Sandeep Sanam

• Design, implement, and support various Identity and Access Management (IAM) solutions.
• Led technology governance efforts, configuring connectors, application onboarding and head access certification lifecycle management.
• Review and adjust existing IAM processes (provisioning, de-provisioning, re-certifications, etc..) to ensure that they are aligned with industry best practices.
• Authored best practices documentation for use in new personnel onboarding processes and standard operation practices to unify technology/business managements within organization.
• Fostered strong relationship between development teams and sr. management to align efforts and serve as SME on identity & access management within enterprise partnering with all lines of business to identify systems to be managed by IAM solutions.
• Manage IAM Governance team and their performance, resource hiring and training.
• Lead operational and strategic planning of new authentication tools and systems. Partnering with technology managers/audit, and working with application developers to integrate commonly used applications into identity infrastructure.

Technology Audit:

• Manage technology audits for IAM, being key control owner for governance workflows Leavers / Transfers and Access Certifications. I am responsible for audit walkthrough and point of contact for this area.
• Handle access control audits from internal and external auditors, assign RFI's to team members, gather, and evaluate information, and build appropriate responses within requested timelines.
• Strong control knowledge across regulatory bodies: SOX, SOC1 and SEBI.

• Manage and secure enterprise IAM and PAM platforms, including SailPoint IdentityNow (Identity Security Cloud) and Delinea Secret Server, ensuring robust privileged access controls.
• Oversee cloud security and compliance posture using Wiz, including policy governance, risk visibility, and continuous compliance monitoring.
• Lead exception management processes, ensuring proper risk evaluation, approvals, and governance across security controls.
• Develop and enforce security policies, standards, and procedures to drive consistent adoption across the organization.
• Conduct risk assessments and implement mitigation strategies to proactively address security threats and vulnerabilities.
• Lead internal and external security audits, evaluating control effectiveness and driving remediation initiatives.
• Manage threat intelligence and third-party risk insights (e.g., UpGuard) to strengthen overall security posture.

• Responsible for administering IAM workflows (Leavers, Joiners, Transfers and Access Certifications) within Sailpoint.
• Architect Role Based Access Control (RBAC), responsible for creation of role based access policies & risk profiles for associated applications.
• Designed and implemented employee Transfers criteria within Sailpoint, complex solution recommended by audit which was successfully migrated.
• Performed internal system acceptance to deliver well-tested enhancements/workflows during upgrades and meet business requirements.
• Identifying and coordinate access account adjustments required (including account disabling) in an expedient manner, as a result of Access Governance activities; with other technology and business groups as required to adjust access accordingly within the targeted timelines.
• Involved in configuring connectors with various systems and databases for account provisioning, de-provisioning, and updates to user accounts.
• Create, document, and maintain procedures to properly and efficiently manage user access.

Compliance and IT Audit:

• Perform specialized and cyclical access reviews for the following: Root ID password validation on all the Linux Servers. Inactive / stale domain account validations. Privileged X-ZX account usage.
• Unauthorized software installations on Franklin Templeton assets, review ServiceNow tickets of unauthorized software and send email to the leaders for acknowledgement as part of Corporate Information Security Policy and Standards.
• Handle Access Control related audit inquiries from internal and external auditors, make assignments to other team members, gather, and evaluate information, and build appropriate within requested timelines.
• Create/maintain repository of technology audit responses and documents provided utilizing Archer tool and maintain repository of key internal audit contacts.

• Tier 1 Support for Desktop Issues and Creating Incidents for technical issues.
• Providing Network password for the Employees through the Active Directory and handling applications related issues.
• Managing Incidents and reviewing them to make sure client gets resolution on time. Tracking the SLA breached tickets.
• Following up with Business Users to assure quality of service by Tracking Issues/Service Request & Problems and own them till resolution.
• Creating high severity problem tickets and handing them to over to problem management and be in Regular touch with the Situation Management to get/provide updates regarding the Problem Tickets raised.
• Send Email Notifications to impacted business groups. Participate/initiate Bridge calls and help the support with necessary resources to resolve issue.