SUMMARY:

• 15+ years of diverse experience in architecture, design, development of Enterprise Applications based on the Java platform
• 8+ years of experience in providing security architecture, Secure SDLC services in area of Information Security, Application Security Assessment, Identity and Access Management, Risk Management and supporting leading standards like NIST, OWASP, WASC, BSIMM and OSTMM.
• Extensive experience in Application Security, Vulnerability Analysis and Penetration Testing, Vulnerability Management, Enterprise Risk Score Assessment, developing strategy and roadmap for implementing technical and process recommendations and risk mitigation strategies
• Expertise in Threat Modeling (STRIDE, DREAD), Secure SDLC, Vulnerability assessment and Penetration testing
• Expertise in SAST, DAST, IAST, RASP tools, continuous Security integration in CI / CD pipeline and Secure SDLC.
• Expertise in Solution architecture, Application Architecture, TOGAF framework, Agile product development, experience in conceptualize, design, articulate enterprise class solutions, architecting for cloud and mobile, Architecture Documentation, ATAM, experience in RFP and RFI responses and pre - sales.
• Expertise in DDD, Cloud native architectures, Microservices, 12 factor app methodology, full stack architecture, API Design, DB design
• Strong expertise in Architecture, OOAD, Design Patterns, Refactoring and functional programming.
• Hands on experience in Big data solutions, Compute and Data Grid products, MapReduce and Data replication and partition. Knowledge in analytics
• Strong p to Security and Solution Architecture, Security product development, Design and coding.
• Experience in handling teams, people management, mentoring and grooming.
• Exposure to diverse verticals: Networking, Telecom, Banking and Insurance, Government, Reverse Logistics and Retail and diverse work cultures.

TECHNICAL SKILLS:

Methodologies: Agile, Waterfall, SCRUM

Frame Works: Spring, Spring Boot, Hibernate and other in java ecosystem

Operating Systems: Windows, Unix, Linux

Database: Oracle, Mysql, DB2

Servers: Web Sphere 7, Tomcat 7, JBoss 6

Languages: Java 8, Ruby, SQL, UML

Front End: HTML5, Bootstrap 3+, Javascript, CSS, Thymeleaf, AngularJS 1x

Technologies: Java8, J2EE

Architecture and Design: TOGAF ADM, ATAM, SOA, MicroServices, OOAD, Design Patterns, Refactoring, Application and Security Architecture, Threat Modeling, Penetration testing

Tools: AWS, Cloud Foundry, EhCache, Eclipse, Maven, Gradle, Jenkins, JIRA, JUnit, JRebel, New Relic, yeoman, bower, grunt, AngularJS, Splunk, IBM appscan, Kali Linux

Grid Computing: Grid Gain, Gem Fire, Giga Spaces Knowledge in Hadoop

Configuration Tools: SVN, Git, Bit Bucket

PROFESSIONAL EXPERIENCE:

Confidential

Architect, Developer

Responsibilities:

• Part of solution group from Confidential for Confidential services portfolio modernization based on microservices.
• Design and development SOAP based services
• Developed and presented a full stack app for tracking DMs using spring boot for hackathon.
• Secure SDLC and Secure development with tools like Fortify SCA, secure assist, sonar qube, black duck, S3 etc

Confidential, Columbus Ohio

Responsibilities:

• Overall Design leadership and ownership of product development
• Design and Development of REST services
• Lead development team

Environment: Java 7, Tomcat 7, Spring 3.5, SOAP, Spring REST services, JIRA, Git, Splunk, Websphere 7, DB2, Tortoise SVN, Junit, Mockito, JISI Framework, Windows

Confidential

Architect, Developer

Responsibilities:

• Architect and Developer
• Understand the business objectives and requirements from the business stakeholders.
• Defined the technology stack, created the baseline architecture
• Identified modules and shared development plans
• Bootstrapped the entire development infrastructure with Spring back end and javascript front end.
• Scaffolded the front end using yeoman, bower, grunt and angularJs.
• Articulated the design decisions to team members to follow the development plan

Environment: Java 8, Tomcat 6, Spring 4.0, Hibernate 4.0, HTML5, bootstrap, angularJS, yeoman, bower, grunt, Eclipse, Git, maven, SL4J

Confidential

Architect, Developer

Responsibilities:

• Architect and Developer for Entity Manager
• Developer for Data migration from mysql to mysql to adapt schema changes, attribute changes
• Jenkins setup for Dev environment
• Security Architect for other internal products to setup SSO

Environment: Spring 3.0, Hibernate, Liferay, Mule, REST API, Tomcat 6, Mysql, Git, maven, Jenkins, New Relic, JRebel, Log4j.

Confidential

Architect, Developer, Tester

Responsibilities:

• Identify and articulate Application Security and compliance requirements and Technical architecture.
• E2E Security Architecture creation, E2E Security assessment
• Provide Response for RFPs to address security concerns of customers.
• Threat Modeling (STRIDE/DREAD)
• Security Design Review, Security Code Review.
• Penetration Testing ­ Optimal mitigation strategies, Recommendations based on industry standards.
• Client relationship, team management

Environment: Tomcat 5.0, JBoss 5.0, Java 7, JEE 6, Spring 3.0, Hibernate, Grid Gain, Giga Spaces, IBM Appscan, Backtrack linux, Eclipse, Maven, SVN, Log4J etc