About me
I started my career in the IT industry with an Apprenticeship as IT Specialist back in 2019. After graduating I immediately found my way into the world of Identity & Access Management. Through my active participation in influential projects, I swiftly acquired essential skills both in the area of consulting and technical implementation. My active involvement in influential projects equipped me with essential skills in both consulting and technical implementation. While I appreciate the consulting industry, my true passion lies in hands-on engineering and programming — I couldn’t imagine life without it.
In addition to my full-time job in cybersecurity (IAM), I’ve dedicated significant free time over the past two years to self-teaching web development. I take pride in being a self-taught full-stack developer
Projects
Dematic Merge
Post KION’s acquisition of Dematic, our IAM team had significant tasks. We began with Active Directory, realizing it wasn’t cost-effective to merge Dematic users into KION ADs due to application dependencies. Instead, we automated user management via Omada, using Workday’s HR system as the single source of truth. Azure AD was straightforward as we were already syncing AD & AAD with Omada’s Azure AD Connector, which we implemented for Dematic as well.
SCIM API for PAM Implementation
During my inaugural project at IC Consult, I had the privilege of joining the project at Allianz Global Investors. I even assumed the role of technical project lead, expediting the integration of OneIdentity and CyberArk by two months ahead of schedule. The project aimed to enable employees to request new PAM Users or Safes in ServiceNow. These requests were then routed to OneIdentity and subsequently forwarded to CyberArk.
Omada Implementation
Following the highly successful project completion at Allianz Global Investors, I rapidly gained significant trust within iC Consult, leading to my involvement in the two largest projects at Mercedes-Benz Bank and the BMW Group. At Mercedes-Benz Bank, we were responsible for the technical implementation of Omada Identity. The existing manual processes at Mercedes-Benz Bank had to be transferred to OneIdentity and optimized
Omada to OneIdentity Migration
During my tenure at the BMW Group, I spearheaded the transition from Omada to OneIdentity, overseeing the migration and optimization of existing IAM processes. Leveraging the longstanding partnership between iC Consult and the BMW Group, we were granted decision-making authority, a key factor in swiftly achieving project milestones.
Skills
Development
Technologies
- Omada Identity
- SailPoint IdentityIQ
- SailPoint IdentityNow
- CyberArk
- OneIdentity
- MS Azure
- MS Entra
- OAuth
- OIDC
- Docker
- Podman
- Node.js
- LDAP
- REST
- SCIM
- SAML
- Linux
- MacOS
- Confluence
- Jira
- Workday
- ServiceNow
- Proxmox
- Citrix
Soft Skills
- Consulting
- Problem Solving
- Collaboration
- Communication
- Critical Thinking
- Decision Making
- Time Management
- Requirements Engineering
- Conception
- Process Optimization
- Meeting Moderation
- English - fluent
- German - native
My experience
KOGIT GmbH
10/2023 - 04/2024
IAM Solution Engineer
In my role as an IAM Solution Engineer at KOGIT, I initially faced the challenge of shifting my focus from Omada Identity to SailPoint. Thanks to my IAM expertise, this transition was swift and successful. Alongside various training courses, I was tasked with developing a new containerized IdentityIQ sandbox environment. This greatly expanded my knowledge, as IdentityIQ is entirely self-hosted and intersects with numerous IT areas. For instance, I worked on the MySQL configuration as the Identity database, addressed by the Hibernate SQL overlay, set up the Apache Tomcat server as the IdentityIQ application server, connected SAP HCM as the Authoritative Identity System, and developed the connector for Microsoft Entra where email domains were received and accounts provisioned. As stated earlier, the environment was designed to be fully containerized without any manual intervention. Given the paramount importance of security in all IAM projects, I opted for Podman over Docker due to its daemonless approach, which runs containers as a rootless user, and its capability to operate containers in a rootless environment.
Responsibilities
IC Consult
03/2023 - 10/2023
Associate IAM Consultant
Having amassed considerable IAM expertise, particularly with Omada Identity, I sought to push my boundaries and transitioned into the Consulting sector after a 4-year tenure at KION Group IT. The company’s swift and straightforward progress approach resonated with me, leading to my involvement in significant projects and even assuming the role of technical project lead for the API Development sub-project at Allianz Global Investors. Upon completing this project well ahead of schedule, I was tasked with a project at Mercedes Benz Bank, where we enhanced the Omada-centric IAM Infrastructure and concurrently participated in a second project for BMW, conceptualizing the OneIdentity Migration. Given BMW’s enduring partnership with IC Consult, we were entrusted with decision-making processes, enabling us to achieve milestones efficiently. While my primary focus at IC Consult remained on Omada Identity, I also acquired valuable experience with CyberArk and OneIdentity.
Responsibilities
KION Group IT
06/2022 - 03/2023
Junior IAM Engineer
Upon the successful completion of my final examinations, I was privileged to secure a full-time position within the Identity and Access Management (IAM) team at the KION Group. My primary responsibilities encompassed the maintenance and enhancement of the IAM infrastructure. During my tenure, the organization was in the process of transitioning from the legacy IAM systems, ISIM & ISAM from IBM, to Omada Identity. This transition was a global initiative, and I played a pivotal role in its implementation. In addition to these responsibilities, I was also actively involved in several internal projects, further contributing to the development and maintenance of the IAM infrastructure. This experience has provided me with a comprehensive understanding of the complexities and nuances of IAM systems and their critical role within an organization.
Responsibilities
KION Group IT
09/2019 - 06/2022
IT Specialist for System Integration
Apprenticeship (IHK Aschaffenburg, Germany)
Responsibilities
Contact me
Contact me directly at fabian@schlegel.one or use this form.