Ahmedajaz | Identity & Cloud Security

At Microsoft, I led enterprise-scale Zero Trust initiatives, architecting IAM and PAM solutions for over 200K endpoints. I developed AI-powered governance tools and automated workflows that reduced manual effort by 90% and improved operational efficiency by 60%. I modernized IAM for 200K+ users using Entra ID, implementing Access Packages, RBAC, and SoD controls to automate access lifecycles. I also designed threat models using Microsoft TMT and STRIDE methodology to strengthen product security across Cloud PC and Endpoint Privilege Management (EPM). My PAM work enabled least privilege access across 250K+ devices and 1K+ privileged users using native tools like EPM and Administrator Protection. I co-developed an AI-based Software Asset Management platform, integrating Power Apps, Copilot, and DevOps pipelines, saving 20+ hours per license cycle. I continue to drive cross-team collaboration, application security, and threat intelligence through active participation in BlueHat and other security programs.

At LTIMindtree, I led Microsoft Entra ID tenant migrations at enterprise scale—ensuring secure identity isolation, 99.9%+ uptime, and zero downtime for live services. I architected Azure subscription migrations across hybrid boundaries, reducing cutover time by 30+ hours through automation using Python, PowerShell, and KQL. I also built Power BI dashboards for real-time progress tracking and led IAM incident response initiatives that cut MTTR by 80%, driving resilience and operational excellence.

At Accenture US (2020), I led the IAM strategy for a major global cruise line, enabling secure onboarding of new brands and cutting integration time by 60% through ForgeRock (OpenAM/OpenDJ) deployment. I streamlined user onboarding and access governance using MFA, ABAC, and RBAC—reducing overhead by 48 hours per cycle. I also modernized legacy PKI to Venafi CLM, migrating 1,200+ certificates in 45 days with zero downtime, boosting visibility by 85% and cutting manual renewal effort by 70%.

At Accenture in India (2015 - 2020), I led IAM and PAM programs across healthcare, finance, and oil & gas industries, delivering enterprise-scale deployments using SailPoint, Okta, Ping, CyberArk, and AD/PKI. I built a cloud IAM team supporting SailPoint, Saviynt, ForgeRock, and IBM Tivoli, while automating provisioning tasks—saving 4+ hours/day per client. I architected secure AD and PKI environments for 10K+ users in Indonesia, and led post-breach AD/PKI recovery for 15K+ users in Saudi Arabia within 4 weeks, ensuring business continuity and strengthening enterprise resilience.

At Infosys, I supported secure infrastructure and endpoint operations, administering Active Directory, Citrix, SCCM, and RSA SecurID for thousands of users. I led OS hardening and compliance initiatives, automated backups to improve reliability, and ensured audit readiness across DCM/SCCM. My work enabled secure user lifecycle management, software compliance, and efficient endpoint provisioning in globally distributed environments.