Rohit Ahuja

• Orchestrating Enterprise Security Architecture alignment with organizational OKRs and cyber strategy, incorporating SABSA framework principles and NIST CSF.
• Developed Enterprise Data Loss Prevention strategy with comprehensive controls spanning governance, implementation, and operationalization.
• Supervising IAM strategy, roadmaps, and governance to ensure alignment with KB's technology principles and vision, while guiding Solution Architects and the wider hub team.
• Leading the Remote Access Strategy, incorporating advanced security protocols and transitioning from VPN to a Zero Trust Networks solution in sync with bank technology standards.
• Delivering over 20 architectural artifacts, including Tier ratings, Direction settings, Options analysis, discussion papers, and HLSD, and actively contributing to and collaborating on many others.
• Partnering in the design and implementation of Single Page Applications, enhancing security identity workflows and access management solutions for Apple/Google Pay's card central solution.
• Redesigning the Azure landing zone, improving the security and scalability of cloud services in collaboration with the infrastructure architecture team.
• Establishing guardrails for RPA unattended modes, identifying and mitigating potential security vulnerabilities to transition it to an enterprise capability.
• Driving discussions with the Infosec team to integrate risk considerations into security settings and asset protection strategies.
• Developing a GRC roadmap with vendors, contributing to the comprehensive upliftment of the Risk & Reg program.
• Gaining a deep understanding of Operational risk and ServiceNow IRM.
• Fostering governance improvements, aligning policies, standards, and controls with operational risks in collaboration with Data governance and Infosec.
• Managing an asset list of over 120+ applications, ensuring their technical health and alignment with our strategic roadmap.
• Liaising with a diverse range of stakeholders across the bank to fortify business partnerships.
• Excelling in the end-to-end management of security services, from defining requirements to overseeing the delivery of solutions.
• Initiating critical discussions on Endpoint Security solutions, and phishing. email security bolstering KB's defence against emerging threats and focusing on Endpoint Privilege Management and Microsoft.
• Translating complex technical concepts into tangible actions to enhance understanding and implementation of the secure design framework.
• Communicating various hub initiatives across all levels, from the engineering team to leadership and board members.
• Advocating for strategic investment in comprehensive platforms over isolated point solutions, championing a holistic and resilient security posture.
• Recognition for my contributions within the team and across D&T, receiving the Nga Kauwaka award.

Excelled in collaborating with customers, sales, engineering, and product teams to design, demonstrate, and deploy Oracle Cloud architectures that effectively address customer business challenges and facilitate the rapid adoption of Oracle Cloud services through comprehensive discovery, design, and deployment phases. My achievements include:

• Partnering with several APAC clients, guiding them through the implementation and migration of their workloads from on-premises to Oracle Cloud, demonstrating adeptness in cloud transitions.
• Designing Oracle Landing Zone and conducting CIS benchmarking against it, to enhance cloud security and architecture optimization.

• Collaborated with Oracle Consulting team on architecting and delivering an Oracle Cloud ERP project for ACC, crafting a highly available and secure IaaS/PaaS solution to bolster ERP/HCM/EPM services.
• Spearheaded ACC IaaS design and setup, including compute instances, VCNs, firewalls, security lists, routing gateways, and dedicated fast connect setup from on-premises to Oracle Cloud. This also encompassed Integration of cloud service (OIC - PaaS) and integrating various security services with Azure.
• Contributed to a leading bank's identity strategy for Workforce IAM by designing a solution using SailPoint IdentityNow and ServiceNow for Azure cloud, showcasing my capability in Identity and Access Management.
• Engaged with the Risk Advisory team to enhance security frameworks and IAM strategies, furthering the security posture for critical financial institutions.
• Drove revenue generation from both new leads and existing clients through strategic financial change requests, highlighting my ability to contribute to business growth.
• Served as a Security Architect with Deloitte on an NZ government cloud security project, leveraging both Oracle and Azure technologies to fortify government digital infrastructure.
• Led pre-sales activities with prominent vendors like Sailpoint, Okta, and Oracle, underscoring my skill in crafting compelling solutions that meet diverse client needs.
• Dedicated to team development and mentoring, fostering a learning environment and ensuring the continuous professional growth of team members.
• Took charge of Statements of Work (SoW), planning, and resourcing, ensuring projects were delivered with precision and aligned with client objectives.

• Collaborating with leading retail group's Digital Transformation Program, aligning technology with business strategies to drive digital innovation and operational excellence around ERP finance and retail inventory integrations.
• Reviewing and optimizing their Integration Strategy in conjunction with a team of Enterprise Architects, ensuring seamless connectivity and efficient data flow across the organization's IT ecosystem.
• Leading pre-sales activities, demonstrating the value and capabilities of our solutions to potential clients, thereby fostering business growth and enhancing client engagement through strategic solution presentations.

During my tenure at Deloitte as a Specialist Lead, specialized in IAM and cloud security projects, contributing significantly to the architectural design and integration of complex IT ecosystems. My key accomplishments in this role include:

• Architecting and delivering comprehensive high and low-level design solutions for IAM and cloud security, ensuring robust security frameworks and compliance with industry standards.
• Leading Oracle integration development teams in the seamless integration with external applications, facilitating the efficient transformation of data for ERP SaaS applications without compromising the integrity of source applications.
• Collaborating with a leading bank on ERP SaaS application integrations and spearheading Identity and Role Management through GetIT using Oracle Integration Cloud, enhancing security and operational efficiency.
• Contributing to PCI DSS compliance, focusing on the security of data in transit and at rest through advanced encryption methodologies.
• Working with the Enterprise Architecture team on the Salesforce security roadmap and implementations for a leading NZ Insurance Company, addressing the security needs for their digital platform, Oracle FMW integrations, and AWS Infrastructure services.
• Managing project delivery using an Agile framework, involving daily standups, andcollaboration with product owners, developers, and analysts to ensure timely and successful project outcomes.
• Driving the creation of a new digital platform for external insurance advisers, showcasing my ability to lead and innovate in the development of digital solutions.
• Facilitating integrations using REST APIs, and SOAP web services, and overseeing patching and configuration activities utilizing Ansible, Jenkins , Puppet, and Terraform.
• Implementing enterprise monitoring and dashboarding with OEM across server fleets, integrating reporting using Splunk, and enhancing incident management through email integration into SNOW.
• Delivering an Identity Roadmap for a large health organization and executing multiple API security implementations using OAuth for both B2B & B2C scenarios.
• Leading Oracle Presales activities for prospective clients, demonstrating the value and capabilities of our solutions.
• Mentoring a team in support of a significant public sector project in Wellington, underlining my leadership and knowledge-sharing capabilities.

Successfully spearheaded an IAM upgrade project for a premier Australian telecom company, highlighting my adeptness in navigating complex security landscapes. My contributions to this and other projects encompass:

• Implementing Oracle FMW products , primarily focused on IDAM (including OIM , OAM , OID , OIF , etc.), showcasing my deep expertise in Oracle's identity and access management suite.
• Executing onsite implementations for a diverse portfolio of clients as part of a dedicated consulting group, ensuring tailored solutions that address unique client needs and security challenges.
• Leading the development and integration of multiple projects using SCIM REST APIs , which facilitated seamless interoperability and enhanced security protocols across systems.
• Configuring IDCS , CASB , SIEM , and PAM solutions , further strengthening organizational security postures and compliance with regulatory requirements.
• Providing specialized consulting on database security and auditing , offering strategic insights into securing sensitive data and ensuring integrity across databases.
• Offering consulting advice on a range of Oracle products for current and future projects, guiding clients through decision-making processes to optimize their technology stacks.
• Delivering both high and low-level design documentation for solutions, ensuring clarity and comprehensive understanding of proposed architectures and their implementations.
• Playing a primary role in assessing and upgrading current IDM setups from 11gR1 and 11gR2 releases , demonstrating my capability to manage and modernize legacy systems.
• Designing a comprehensive roadmap for the upgrade of all SSO products to the latest 11gR2PS3 versions , including OAM , OHS , and Webgate , which underscores my strategic planning skills and deep technical expertise

• Conducting comprehensive requirement gathering, analysis, and development of applications, followed by support in functional testing, ensuring the delivery of fully functional and reliable software solutions.
• Creating ICF connectors and developing connectors for flat file reading and provisioning services, demonstrating my ability to tailor solutions to specific data management needs.
• Engaging in audits and adhering to processes established at the client side, thereby maintaining high standards of quality and compliance throughout project lifecycles.
• Leading construction of a similar 10g environment for a spinoff of the same client, showcasing my capacity to replicate and adapt environments in line with strategic business expansions.
• Completing production cutover to a separate OIM setup amidst company division, which involved meticulous planning and flawless execution.
• Integrating third-party applications by invoking OIM APIs and implementing custom request-based provisioning, further highlighting my expertise in extending the functionality of existing systems.
• Managing a team of 8, overseeing client communications, effort estimation, responding to RFPs, and mentoring in IDM skills, which not only underscores my technical proficiency but also my leadership and team management capabilities.

Focused on project delivery and support for customers in the U.K., I played a pivotal role within a specialized team of Web & Middleware experts. This role encompassed deep involvement in Identity Management, Access Management, Application Servers, Directory Servers, and Single Sign-On (SSO) solutions. My key contributions and responsibilities included:

• Conducting requirement gathering directly from clients to ensure a thorough understanding of their needs and objectives, laying the foundation for successful project outcomes.
• Developing detailed design documents, meticulously documenting the proposed solutions to guide the development process and ensure alignment with client expectations.
• Coordinating with Oracle to finalize licensing requirements, ensuring that all software and product deployments comply with legal and financial regulations.
• Designing Application Security frameworks utilizing Oracle Identity Management products, emphasizing the creation of secure and robust IT environments.
• Collaborating closely with architects to design comprehensive solutions, integrating my specialized knowledge of middleware with overarching architectural goals.

Part of project delivery for multiple clients in the U.S., I was an integral member of an IDM team composed of specialists. This team was deeply versed in critical areas such as Sun Identity Manager 8.1 development, application servers, directory servers, and databases. My contributions to this team were pivotal in ensuring the seamless execution of projects from inception to completion. My role involved:

• Collaborating with specialists to harness collective expertise in Sun Identity Manager 8.1 and other foundational IDM technologies, ensuring deployment of sophisticated identity management solutions.
• Guiding projects through every phase, from initial sign-off to project completion, guaranteeing that all project deliverables met the high standards expected by our clients.
• Ensuring a comprehensive understanding and responsibility among the team for end-to-end delivery of projects, fostering a culture of accountability and excellence.