SUMMARY

• Strong Experience with API management platforms (AZURE & APIGEE), Confidential API Connect.
• Strong integration experience with Mulesoft, Confidential Datapower & Salesforce.
• Strong experience with building cloud solutions, Cloud Automation building multitenant Ansible Tower setup.
• Professional with a unique combination of integration technologies, product development, systems analysis, enterprise - grade architecture research, and management experiences on global enterprises.
• I have held various roles in the development, management and execution of strategies in the adoption of technologies, frameworks and processes at the enterprise level within and across enterprise boundaries. I have experience in solving problems through the practical use of technology as a developer, architect, strategist, instructor and evangelist.
• Strong experience with design, development, and architecting enterprise solutions and products based on modern modeling languages and transformation techniques.
• Strong experience in implementing Digital API Solution, Micro services in container platform.
• Strong experience with implementing ESB integration solution using Confidential DataPower appliance, WebSphere Message Broker and Confidential MQ Series.
• Strong expertise in implementing application security including WS-Security, XML Digital Signatures, XML Encryption, SAML2, OAUTH 2.0, WS-Trust, WS-Security Policy, AES, 3DES, AAA, LDAP/AD integration, authentication, authorization, digital signatures, SSL/TLS, X509, PKI, HSM modules, and others.
• Experienced with WebSphere Business integration technology including WBI Message Broker, using Java Compute Node and developing Web Services using Message Broker, other Message broker nodes like Timer node, JMS nodes, integrating applications using WebSphere TX.

TECHNICAL SKILLS

• C/C++, Java, Unix Shell Scripting (sh, ksh, bash), JACL, Perl,
• Visual C++, JACL, Jython, XSLT, Javascript/Node.js, Python, x86
• Assembly Language on Dos & Linux
• Solaris, AIX, Linux (Suse, Red Hat, Fedora), Windows
• Oracle, DB2, SQL Server, MySQL
• Confidential Websphere (v7.0, 8.0, 8.5), Tuxedo, Weblogic, Confidential
• WebSEAL/TAM, Apache Web Server, Red Hat JBoss 4.3/5.x,
• DataPower (XI50, XS40, XG45, XG45 Virtual Edition), CA API
• Management, Apigee Edge, 3Scale API Management, MQ Series
• 7.x, Message Broker 8.x, Grails, Spring Boot, Spring Framework
• Snoop, truss, strace, lsof, Process Commands, debuggers (dbx & gdb)
• CA Introscope, VisualGC, jdb, jad, Jasmin, D-Java, nmon, svmon, topas, top, prstat, DTrace, dtruss, strace, Confidential Heap
• Analyzer, Confidential GC Monitor, Make, Ant, WSRR, SoapUI, Ansible,
• WS-Security, WS-SecurityPolicy, WS-Trust, SAML2,
• WS-Federation, OAuth2, OpenID Connect, JWT, JWS, JWE,
• ACE, OpenGL, CORBA, Java Servlets & JSPs, JDBC, Jakarta
• Struts, EJB, Hibernate, Spring Framework, Posix Threads, Unix
• Sockets, Windows Sockets, Windows threads, Unix System V IPC, Cygwin

PROFESSIONAL EXPERIENCE

Principal Consultant

Confidential

Responsibilities:

• I’m currently leading a Blockchain multi organization implementation of a Health Care and Billing Enterprise.
• As a lead Security Architect, I’m responsible to build a Blockchain Application architecture; AWS hosted; cloud native, Services layer implemented as Spring Boot Microservices running in Docker containers.
• Developed application security model
• Implemented Secure Distributed health care Ledger Technologies using Hyperledger frameworks 1.4.
• Participated in discussion forums with PaloAlto Network and client to explore options for future road map of cyber Security stack. Design and implemented a solution to Secure the Blockchain API via PaloAlto network virtual Firewall.
• Implemented Prisma Cloud for continuous monitoring of the Blockchain infrastructure in AWS. Configured events like security status and audit in AWS cloud. Design and implemented a geographical dispersed VPC across multiple cloud Datacenters.
• Design and implemented highly secure Messaging architecture in AWS cloud, for topic publication and consuming. Enabled end to end Certificate DN based Access control list to protect un authenticated traffic.
• Enabled TLS 1.2 between HLF framework, Rest API and Zookeeper and Kafka instances.
• Design and implemented token Vault to secure credential.
• Design and implemented a containerized end to end Docker solution.
• Orchestrated HLF containers in AWS cloud Kubernetes architecture
• Design and implemented end to end Kubernetes security architecture to protect API and containers.
• Implemented Application security enforcer to monitor and proactive protection from security threats by enabling AI/ML on API request metadata.

Principal Consultant

Confidential

Responsibilities:

• Worked as a lead IAM consultant, implemented APIGEE Privilege access, password management, enable logging for Audit purpose.
• Implemented Role based Access, and developed an automatic key management solution for certificate renewal and issuance.
• Implemented IAM principals including: least privilege access, password management, Audit logging, RBAC, certificate issuance and revocation, and AAA solutions.
• Worked on building a solution to migrate on premise ADFS to cloud (AWS and Azure AD
• Perform day to day operation to Develop, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions within operations
• Worked closely with Application teams and stakeholders to ensure compliance, security and operational functional requirements are met or exceeded
• Developed tools and scripts using Java, ADAL Java Libraries to automate processes and reduce manual efforts and increase overall efficiency and scalability
• Developed monitoring and reporting on the health, effectiveness and efficiency of IAM services running in Azure Cloud and also in premise.

Confidential, O’Fallon MO

Principle Technical Consultant/ Senior Middleware Architect

Responsibilities:

• As a Senior Technical consultant I was responsible to Led research and development of a vendor and technology agnostic service-based architecture (SOA) for cross business group application to application communication. Architecture included, but not limited to, capabilities such as virtualized endpoints, enterprise/domain intermediaries, security, repository/registry, load balancing, protocol switching, transformation, routing, and caching.
• Implemented WebSphere DataPower Integration Appliance XI50 performing as an ESB for complex orchestration, transformation & routing of XML messages. I was responsible for building DataPower DEV/Stage& Production environment.
• Perform administrative tasks on DataPower appliances using the command-line interface (CLI), Web GUI, and XML Management Interface
• Download and upgrade the firmware on the DataPower appliances
• Create and manage user accounts and domains
• Configure Secure Sockets Layer (SSL) to and from WebSphere DataPower SOA Appliances
• Ensure high availability of DataPower appliances using load balancer groups and clustering
• Monitor the performance of the DataPower appliance using service level monitoring and Simple Network Management Protocol (SNMP)
• Troubleshoot and debug services using the problem determination tools, logs, and probes provided with the DataPower appliance
• Configure logging of messages to external locations
• Implement security functionalities to protect mission-critical information - Support for SAML assertions & LDAP directory.
• Implemented End-To-End Security model integrating with existing Security environment (TAM)
• Implemented SOA architecture patterns using core DataPower services like Web Service proxy, MultiProtocol Gateway.
• I was responsible to onboard following complex business services on to ESB.
• Account Management System- Lost& Stolen Accounts.: real time customer Account inquiry B2B service.
• Performed service onboarding, include defining enterprise service WSDL, Schema.
• Developed integration pattern at MasterCard to Integrate MasterCard core/legacy systems (Mainframe CICS / IMS).
• Architected end to end implementation using DataPower MQ and CICS MQ.
• Implemented an orchestrated service using DataPower Web Services proxy. Transform message from consumer format to Core System specific fixed length COBOL copy Book.
• Develop WTX map for message transformation from XML to COBOL copy book.
• Implemented protocol transformation using Multi-Protocol Gateway from SOAP over HTTP to SOAP over JMS.

Confidential, Charlotte NC

Senior SOA Solution Architect

Responsibilities:

• Worked on a Global Treasury Monitoring System, to integrate Banks internal DDA system using a common DDA faced. As a lead architect, I'm responsible to provide a Middleware solution to Bank integrations efforts. I was also responsible for managing SOA development and implementation of multiple projects throughout project life cycle.
• A single user interface to inquire Banks commercial accounts and with a capability to generate report on account balances, apply holds/release on account, receive exception directly from wire system. I was responsible for the following:
• Engaged as the Lead Architect to implement SOA solution for GTMS application
• Developed a middleware design solution for GTMS solution based upon “Exposed ESB” design patterns with a secure Web Service (SOAP/HTTP) gateway using Data power XI50 XML appliance and WebSphere Message Broker
• Develop and design canonical Data schema for each of services identified for GTMS. These schema are based on IFX, SWIFT MT series, ISP pain schema and IFW standard framework approach
• Provided technical leadership during entire development life cycle
• Identified a need for a common hub to handle business functions related with International wire system
• Design and develop a common hub using DataPower (XI50) and WebSphere Message Broker, using XSLT as transformation and Java as programming language.
• Part of the SOA team who created and engineered Bank's SOA initiative, involved with banking transactions and security
• Design and deploy identity management solutions mainly utilizing the Tivoli Security Product suite
• SOA integration with the DataPower appliance and some custom development
• Responsible to configure XML Firewall to protect Bank services against new class of XML-based threats, build WebService proxy to virtualize WebService applications. Also configure SSL to and from DataPower Appliance
• Responsible for management/monitoring functionality of Confidential WebSphere DataPower SOA appliances Infrastructure, developed the custom-built script for managing and monitoring DataPower appliances, providing network security, and enabling the creation of Web Services gateways and legacy system inter-op with web applications
• Responsible for setting up standard development environment, develop a automatic issuance script to install the Eclipse Management plugin for the DataPower appliance
• Responsible to troubleshoot development and Production problems through a appliance's WebGUI interface. Use the MultiStep Probe to view the data as it passes through the appliance. Monitor the system resources on the appliance. Also responsible for Collecting MustGather data and contacting Confidential .
• Responsible to develop best practices and architectural scenarios for effectively using DataPower Appliances in the SOA architecture. Integration with Confidential WebSphere MQ and WebSphere JMS, using FTP, enriching messages with database data, and performing any-to-any or binary transformation using Confidential WebSphere Transformation Extender (WTX using XI50 3.8.1 firmware), WSRR and Contivo Analyst mappings.

Confidential

Senior Architect/Solution Expert/consultant

Responsibilities:

• As a Senior Middleware Architect / Technical expert at State Farm Insurance Companies and a senior member of Enterprise Messaging and direction team at State Farm. Also an active member of Leading Middleware Quality Assurance and Quality Control team at State Farm Insurance. Lead SOA Architect roles responsible for software architecture, design and implementation of large-scale mission critical enterprise applications using Messaging, Java and J2EE Platform. Engagements include
• Perform High Level and Detail level application design review, suggest Middleware solutions and provide design guidelines
• Maintaining the quality of Middleware application development - perform Code review of State Farm applications which are using Middleware products
• Develop governance across enterprise to in corporate Enterprise Integration Patterns with application design solutions
• Developed a reusable JMS application development framework. JMS framework implements both point to point and publish and Subscribe JMS models. It also encapsulates the JNDI lookup and provides easy to use standard interface for writing JMS application at State Farm.
• State Farm Insurance Enterprise Customer Relationship Management applications (ECRM) - represented EAI Solution Expert, task includes:
• Architected ECRM application using J2EE/ Message Broker
• Define Message broker routing and transformation strategy and reusable framework
• Develop a Java code in message broker to invoke IMS transaction using MQSeries IMS bridge, building IIH header RFH header
• Designed a Web Service interface WSDL for ECRM, to allow it to communicate with non Java application
• Architected Highly available MQSeries infrastructure for ECRM applications