SUMMARY

• Identity and Access Management solution architect in cloud and on - site.
• Currently designing and building MS Azure cloud infrastructure for CRA.
• Implemented SAML 2.0 federated access from MS Azure to on-site.
• Implementing IDM solution from on-site to MS Azure by provisioning accounts into Azure AD from onsite.
• Designing guard rails for secure and highly available MS Azure cloud infrastructure.
• Designing access control solutions for IaaS, PaaS and SaaS in Azure AD.
• Implementing operational processes around access control to cloud infrastructure.
• Experience building SSO access to Office365 and 3rd party apps in Azure cloud.
• Experience in working all phases of SDLC and DevOps.
• Experience building OAUTH 2.0 and OIDC solutions using CA API Gateway.
• Extensive experience with Broadcom (former Computer Associates) suite of Identity and Access Management software CA SSO (former SiteMinder), CA Directory, CA Identity Manager, CA API Gateway, CA Access Gateway, CA APM
• Experience working with Ping Federate.
• Certified CA SiteMinder R12.x Administrator
• 20+ years of North American experience in Information Technology.
• Experience in designing and building end to end CA SSO infrastructure interacting with cross functional teams and stake holders.
• Built CRA’s Integrated Staffing System (ISS) using CA Access and Identity Management suite.
• Built new CA SSO environment for CRA’s Internal applications
• Built new CA SSO environment for CRA’s flagship MyAccount application which helps Canadians file taxes online.
• ASP.Net and Java web application development experience.
• Experience upgrading CA SiteMinder from version 6.0 to version 12.5 and CA SSO from 12.52 to 12.6.2 enterprise wide.
• Experience using HTTP Trace tools like Fiddler, SAML Tracer, CA SSO agent logs, ASA logs, policy server logs, CA Directory logs and CA IDM logs for trouble shooting. Experience working with CA SiteMinder agents on web servers IIS and Apache and Application Server Agents (ASA) on Web Logic. Have a good understanding of firewalls, network zones, SSL, encryption, reverse proxies etc.

TECHNICAL SKILLS

• Design, Development, Architecture, Packages, Integrations, Conversions, Implementations, Knowledge Transitions, Application Management, ITIL
• Personal Computer, Mainframe, client/ server, COTS Products
• Azure cloud, AWS Cloud, Terraform, SiteMinder R6.0, SiteMinder R12.52, CA SSO R12.6 SP2, CA SSO R12.8.03, CA API Gateway 9.4, CA Access Gateway 12.8.03, Ping Federate, IIS, Apache, WebLogic, SAML 1.1, SAML 2.0 Federation, OAUTH 2.0, OIDC, SSL, AD, CA Directory R12.0, CA Identity Minder R8.0.
• Visual Basic.Net, C#, Visual Studio.Net, SQL Server, Stored Procedures, IIS, VSS, JavaScript, XML, Windows Services, Web Services, Web applications, C, Java, UNIX, Red Hat Linux 6.9, MS-Visio, MS-Project,
• VS COBOL II, DB2, IMS-DB, IMS-DC, VSAM, CICS, MS-COBOL, EASYTRIEVE, PROTERM, TSO/ ISPF, JCL, SPUFI, ENDEVOR, XPEDITOR, SAR, FILE-AID, SYNCSORT, XCOM, FTP
• Business Analysis, Software Development Life Cycle, DevOps, Project Plans, Process Development, Technical Writing, SCRUM, Agile software development

PROFESSIONAL EXPERIENCE

Confidential

Technical Architect

Responsibilities:

• Work as part of one of the core cloud teams that are tasked to deliver MVP (minimum viable product) for CRA using MS Azure.
• Assist in defining cloud architecture, design and implementation plans for hosting onsite applications.
• Architect solutions for integration of applications hosted in MS Azure from onsite.
• Provision resources in MS Azure using Terraform scripts.
• Design and implement required security controls for highly available and secure MS Azure infrastructure.
• Troubleshoot connectivity and other MS Azure issues by working with Microsoft support.
• Develop detailed technical documentation for knowledge transfer to team members and migration across the states.
• Researches new technologies and solutions to provide best possible solution for complex client requirements.
• Good at explaining and white boarding conceptual solutions to teammates and clients.
• Use Azure AD Connect to sync on-site identity information into Azure AD.
• Use CA Identity Manager (IDM) to provision user accounts into Azure AD.
• Use CA Single Sign-on (SiteMinder) for SAML 2.0 based federated access to MS Azure.
• Build OAuth 2.0 based app to app integration for an app hosted with Microsoft Dynamics for integration with CA API Gateway.

Technical Environment: Azure Cloud, AWS Cloud, Terraform, CA SSO (SiteMinder Policy Server) R12.0, R12.52, R12.62, R12.8.03, CA IDM R8.0, R12.6, CA Directory R12.0 SP 14,17 and 18, CA API Gateway 9.4, CA Access Gateway 12.8.03, SiteMinder web agents R6.0, R12.0, Application Server Agent (ASA), Apache 2.2, Solaris 10, WSS 12.52, Oracle, Weblogic, Unix, Linux, Java, SiteMinder and LDAP API

Confidential

Consultant

Responsibilities:

• Responsible to act as SiteMinder SME for all gRed ( Confidential Research Dept.) projects
• Design and architect SSO integrations for internal and external applications.
• Develop and implement SSO solutions in Dev, QA, UA and PROD regions.
• Mentor and guide junior resources.
• Coordinate with global team by working cross cultural and different time zones.
• Develop documentation for promotion of SSO solutions into UAT and Production regions.
• Trouble shoot production and non-production issues
• SAML2.0 Federation implementation with SiteMinder and Ping Federate.
• Integration with user directories Active Directory, LDAP
• SSO integrations with web applications hosted on IIS, Apache and Weblogic servers.
• Experience working with different authentication schemes. For example, windows authentication scheme, Forms based authentication scheme, Two factor authentication scheme etc.
• Research and implement innovative SSO solutions for ever changing complex requirements.
• SiteMinder maintenance and configuration of global Roche/ Confidential infrastructure.

Technical Environment: SiteMinder r12.5, Ping Federate, IIS, Apache, Weblogic, SAML 2.0 Federation, UNIX, Linux, AD, LDAP, ASP.NET, Oracle, web services, XML, SSL

Confidential

WAM Administrator/ Senior Systems Designer/ Delivery Architect

Responsibilities:

• Responsible to act as resident SiteMinder SME
• Work with project architects and enterprise architects to design and architect SSO solutions
• Provide SSO integrations for internal and external applications.
• Develop and support testing of SSO solutions in Integration and BST regions.
• Develop MOPs for promotion of SSO solutions into Pre-Prod and Production regions.
• Maintaining custom Identity Management software.
• Be available as SME backup for the outsourced on-call team
• Participates in Post Implementation Support.
• Proactively identifies problems to the LOB;
• Federation experience with SAML2.0
• Integration with user directories Active Directory, LDAP
• Experience implementing SSO integrations with web applications hosted on IIS, Apache and Weblogic servers.
• Experience working with different authentication schemes. For example, windows authentication scheme, Forms based authentication scheme, Token based authentication scheme etc.
• Research and implement innovative SSO solutions for ever changing complex requirements.
• SiteMinder installation and configuration experience.
• Worked as delivery architect on the project where SiteMinder was upgraded from r6.0 to r12.5 in the enterprise.
• Delivery Architect responsibilities include:
• Assists project manager in creating project plans.
• Provides project manager with Technical Team weekly status and proactively identifies associated risks and issues.
• Manages Technical team activities/schedule to ensure milestones are met.
• Defines the design of the solution, and responsible for the overall quality of the design.
• Provides developers with functional specifications (verbal and or written) that allow them to produce a solution that satisfies the Requirements.
• Supports the Business Analysts during Integration and BST planning and execution.
• Coordinates and performs QA on the installation of the solution into production ensuring that the application is transitioned to production on time and with minimal disruption to the business.
• Successfully delivers the solution for Confidential by ensuring the solution meets or exceeds the requirements identified in the Detailed Requirements document.
• Works with the Operational Prime to ensure the handover to Operations is smooth, i.e. ensuring completion/signoff of all components identified within the Operations Gating process.
• Developed a User Management System using ASP.NET 2.0 Authentication, Membership and Roles

Technical Environment: SiteMinder r6.0, SiteMinder r12.5, IIS, Apache, Weblogic, SAML 2.0 Federation, UNIX, Solaris, AD, LDAP, ASP.NET, SQL server, web services, XML, SSL

Confidential

Systems Analyst/ Technical Team Lead

Responsibilities:

• Supporting medium to complex applications 24 * 7 for Confidential . Some of the applications supported were Automatic Service Activation Programming (ASAP), SharePoint, Wireless Prepaid Top-up, NetConnect (Order initiation system from web to mainframe) etc.
• Work on code fixes for application bugs.
• Mentors and leads a group of technical resources from technology and process point of view.
• Works on incident and problem management tickets using Remedy and following ITIL methodology.
• Creates and rolls out processes for the team members for team building and help achieving Application Management and organizational goals.
• Transition prime for key and complex projects from delivery team into Application Management.
• Represents team at change management meetings.
• Problem tickets manager for the team using ITIL methodology.
• Attends meetings with clients and other groups on behalf of service manager.
• Acting manager for the team when service manager is on vacation.
• Assists service manager in taking appropriate decisions for general team functioning, technology related issues etc.
• Prepares systems assessment for the management.

Technical Environment: MS-Project, Microsoft Host Integration Server, VB.Net, C#, Visual Studio 2005, 2008, VS 2008 Team Foundation Server, SQL Server 2000, 2005, JavaScript, XML, Web Services, Windows Services, CSS, Visual Basic.Net, C#, Visual Studio.Net 2003, 2005, SQL Server 2000, 2005, IIS, VSS, JavaScript, XML, Windows Services, Web Services, UNIX, C, Java, VS COBOL II, DB2, IMS-DB, IMS-DC, VSAM, CICS, EASYTRIEVE, PROTERM, TSO/ ISPF, JCL

Confidential

Systems Analyst/ Transition Prime

Responsibilities:

• Transition the newly developed software, Maple Voice, by T4G to Confidential / Aliant for Aliant's VOIP service.
• Learn all aspects of the MapleVoice application in preparation of the transfer to AM for support.
• This was to be done by a combination of documentation deliverables (see below) and hands-on experience with the source code from T4G.
• Write Design Model Surveys for various sub-systems of MapleVoice.
• Participate in all team meetings/Knowledge Transfer meetings.
• Aid in the troubleshooting of the MapleVoice installation in the production environment.
• Analyze and develop solutions for the bugs identified by Aliant business team.
• Install Maple Voice software locally, test the patches locally and assist migration into production.
• Work with Visual Source Safe to maintain the integrity of source code.

Technical Environment: Microsoft Host Integration Server, Visual Basic.Net, C#, Visual Studio.Net 2003, 2005, SQL Server 2000, 2005, Stored Procedures, IIS, VSS, JavaScript, XML, Windows Services, Web Services, Reporting Services