Bozhidar Kostov

- Leading the architecture, implementation and engineering activities related to the company's Identity Governance & Administration system (Saviynt)
- Leading the architecture, implementation and engineering activities related to the company's Privileged Accounts Management solution (CyberArk)
- Technical configuration and enhancements of Identity and Access Management (IAM) solutions (IGA, PAM, PSM, SSO) used in Paysafe, ensuring their alignment with IAM and security compliance requirements (PCI- DSS, SOX) and industry best practices
- Tasks distribution, prioritization, coordination and supervision, ensuring all defined strategic goals of the team are met with the required quality and timeliness
- Setup and automation of processes related to on- boarding/transfer/off- boarding of internal employees, access requests and approval workflows and other security preventive and detective controls
- Integrations of IAM solutions with various business applications, databases and operating systems;
- Define and document clear requirements for implementations done by the responsible IT architecture and operations teams
- Act as a trusted technical advisor with key security stakeholders at all levels of the organization for a variety of IAM projects that arise from current business and technological developments;
- Provide guidance to security resources, business partners, and IT staff when projects are introduced to the business through all phases of the application life- cycle;
- Engage in troubleshooting of complex issues with the supported IAM solutions
- Maintain vendor relationships and escalation of relevant incidents and enhancement requests;
- Write all relevant technical documentation (architecture, design, processes, procedures, operational guides, etc.) following all documentation standards of the organization to
ensure consistent and compliant deliverables
- Working with internal\external auditors and providing evidence for all

integrations done by the IAM team.

- Working with external contractors to establish the MS Entra ID environment to replace the current IGA Solution.

I led the architecture, implementation, and engineering of the IGA and PAM solutions, ensuring alignment with security compliance requirements (PCI-DSS, SOX). As a team leader, I managed a high-performing group, overseeing task distribution, prioritization, and coordination to achieve strategic goals. I streamlined IAM processes, including employee onboarding, access requests, and approval workflows, while integrating solutions with various business applications and systems. I also provided technical guidance to stakeholders, authored comprehensive documentation, and collaborated with auditors to support compliance efforts.

In my role, I served as a leading technical authority, guiding the architecture, implementation, and engineering of the company's IGA and PAM systems. I led the setup and automation of critical IAM processes, including employee onboarding, transfers, offboarding (JML), access recertification, and approval workflows. I was responsible for configuring and enhancing IAM solutions (IGA, PAM, PSM, SSO), ensuring they met compliance standards (PCI-DSS, SOX) and industry best practices. Additionally, I oversaw the integration of IAM solutions with various business applications, databases, and operating systems.

In my role, I served as a trusted technical advisor to key security stakeholders across the organization, supporting a variety of IAM projects driven by business and technological needs. I was supporting the architecture, implementation, and engineering of the company's IGA and PAM solutions, ensuring compliance with security standards (PCI-DSS, SOX). I supported the configuration and enhancements of IAM solutions (IGA, PAM, PSM, SSO) and managed integrations with various business applications, databases, and operating systems. Additionally, I streamlined and automated key processes such as employee onboarding, access recertification, and approval workflows, implementing preventive and detective security controls.

As an IAM Engineer at Modis, I specialized in managing and optimizing Active Directory environments. My role involved installing, configuring, and maintaining AD environments, including updating them and setting up WSUS servers for automatic updates. I wrote PowerShell scripts to automate AD tasks and manage various services such as DHCP and DNS. I was responsible for the installation and maintenance of AD LDS instances, GPO management, printer management, and implementing AD DS Sites and replication. My duties also included securing AD DS, administrating AD FS, and synchronizing AD DS with Microsoft Azure AD. I provided expertise in FIM/MIM for identity provisioning and synchronization in multi-forest domains, and I resolved complex issues related to AD replication, provisioning, and associated services. Additionally, I handled Azure SSO implementations, app registrations, and Azure Active Directory PowerShell scripting and automation. Last but not least I was configuring CA Siteminder SSO federations and internal agent deployments.

As an IT System Administrator and Integration specialist at iSystems, I was responsible for the daily maintenance and administration of System Center Configuration Manager 2012 R2, including its installation, configuration, and upkeep in both LAB and development environments. My role involved managing backups, resolving Active Directory issues, and configuring Microsoft Forefront through SCCM 2012 R2. I prepared and delivered weekly performance reports and supported the design, administration, and troubleshooting of systems, networks, and application infrastructures, such as LAN/WAN, firewalls, routers, and email systems. Additionally, I handled Windows network management, including user and computer administration, DNS, DHCP, and WINS. I provided sysadmin support for maintaining connectivity, managed server configurations, installed and updated antivirus software, and set up conference facilities. My responsibilities extended to deploying and configuring virtual machines, VMware ESXi hosts, Hyper-V hosts, and maintaining virtual infrastructures. I also assisted with Microsoft Dynamics AX, configured Windows Server roles and features, and supported Cisco L3 switches and firewalls.