SUMMARY

• Over twenty - three years of experience in Information Technology including development, architecture, security and leadership in both government and commercial sectors
• Extensive experience in IT strategic planning for Web and mobile space to improve overall IT initiatives, align IT with the business and implement governance in the day-to-day IT process
• Broad experience in creating and maintaining vendor relationship to setup off-shore teams as staff augmentation and negotiating for best possible rates for human and non-human resources and services
• Proven experience in architecting and building many high-profile, extremely secure high-traffic robust systems from scratch within allotted timeframe and within/under budget
• Solid experience with both legacy and bleeding-edge technologies including migration of the legacy systems to the new technology stack
• Exceptional leadership skills in leading and building top-notch on-site and off-shore teams
• Proven experience in solving most complicated business problems with technical solutions
• Successfully lead and completed system and technology integration initiatives for mergers and acquisitions for a number of organizations
• Comprehensive understanding of Sarbanes - Oxley (SOX) Act, PII and HIPAA regulations
• Conducted advance research of the emerging technologies in the area of the Semantic Web, Web 2.0, Virtualization and Cloud Computing
• Rock-solid experience in building SOA based full-life-cycle systems including legacy and web based applications with latest open-source and commercial technologies
• Highly technical and hands-on on all aspects of SDLC to fulfill any role to support the team and to resolve any mission critical issues
• Extensive hands-on experience with architecting, designing and building enterprise applications for the Web as well as applications for the Mobile devices including Android and iPhone

TECHNICAL SKILLS

• Java
• JEE
• Objective-C
• Cocoa Touch
• JavaScript
• JQuery
• AJAX
• HTML5
• DHTML
• CSS
• Sencha
• XML
• XSLT
• ANT
• Maven
• VBScript iText
• Spring Framework
• Hibernate
• Struts
• Jive Framework
• WSDL
• Microsoft .net
• COBOL/400
• RPG/400
• COBOL
• CICS
• C
• C++
• C#
• Visual Basic
• LISP
• Prolog
• SQL
• Pascal
• Fortran
• UML
• Web Services
• RDF
• OWL
• SPARQL
• Sesame Framework
• OAuth 2.0
• SAML iBatis
• PHP
• Drupal
• RESTFul Web Services restlet
• JSON
• Mobile
• Android iPhone iOS
• GWT
• Oracle
• Sybase
• DB2
• MS SQL Server
• MySQL
• Windows
• UNIX
• Linux
• AS/400
• Mainframe OS/390
• IBM Tivoli Directory Server
• LDAP
• TCP/IP
• SSL
• HTTP
• HTTPS
• FTP
• DNS
• LAN
• WAN
• VMWare
• Linux
• Apache
• MySQL
• PHP
• MongoDB
• NoSQL
• SOA
• Cloud Computing
• MDA
• COBIT Framework
• Zachman Enterprise Architecture Framework
• TOGAF
• Scrum
• Agile
• RUP
• RAD
• Waterfall
• Extreme Programming
• EDA
• EIP
• SOX
• HIPAA
• OWASP
• NIST
• Rational Software Architect
• WebSphere Application Developer
• Rational ClearCase
• CVS
• SVN
• AccuRev
• MS Visual SourceSafe
• LoadRunner
• WinRunner
• CruiseControl
• MQSeries 5.1
• WebSphere Application Server
• WebLogic
• Apache Tomcat
• Resin
• JBoss
• Xcode
• Rational Team Concert
• Quartz Job Scheduler

PROFESSIONAL EXPERIENCE

Information Security Officer/Architect

Confidential, Warren, NJ

Responsibilities:

• Created policy standards and provided guidelines for secure mobile application development including end-to-end encryption and security controls for both client-side and server-side components
• Worked with the executive team to build strategy and roadmap to identify new tools and techniques to enhance current mobile application security and to plan for implementing controls for future threats. Plan and strategize the approach for future threat prevention and to improve security model for mobile applications
• Created and published several papers for secure application development and standards including secure Web Services and Mobile Threat Vector
• Provided risk analysis, security requirements and guidelines and scope for vulnerability assessment for global consumer mobile applications for various platforms including iOS, Android and Windows
• Perform various types of reviews including code reviews, system interaction reviews and user interface reviews to ensure proper controls are implanted to address vulnerabilities and to prevent any types of known and unknown threats
• Worked on several high-profile strategic projects specifically designed for ApplePay, iWatch and Beacons to implement security controls to provide highest level of protection against known and potential threats
• Prepared Threat Models and DREAD Risk Assessments for architectural risk analysis and evaluation
• Worked with enterprise architecture team to establish security standards to implement biometrics-based authentication for both mobile and non-mobile applications.
• Created a security model and security controls specifications to provide micro services for both internal and external consumption
• Worked with several teams following both Waterfall and Agile methodologies to provide the needed support to various development teams

Lead Mobile Architect

Confidential, Smithfield, RI

Responsibilities:

• Performed an in-depth assessment for security, best practices for architecture, design and coding, testing process and GUI design along with recommendations for improvements of the current mobile applications and the supporting infrastructure
• Created the reference architecture to build a state-of-the-art extremely secure platform to support native and hybrid mobile applications for a wide range of devices including iOS and Android based devices
• Created a roadmap to build the needed infrastructure, including mobile and server-side components
• Created a strategy to convert the current applications to the new architecture without any impact on the current deliverables and maximize the use of the reusable components
• Designed and implemented mobile and server components to implement single sign-on on the mobile device for various applications using Objective C and Java
• Designed and implemented the overall strategy for data security on the device and during data transmission
• As part of the mobile steering committee, worked with the executive team to create enterprise level mobile strategy and training process for the current teams for iOS development
• Created a test strategy to implement automated and manual testing for the mobile applications
• Established and enforced coding standards and best-practices through-out the entire SDLC process following Agile methodology

Lead Architect

Confidential, Edison, NJ

Responsibilities:

• Architected an extensible, highly scalable and highly available global solution to process over one million low-value payment transactions per day. Designed a multi-threaded pluggable architecture based framework to process high volume of transactions in a workflow manner utilizing container managed threads and MQSeries 7.0 message queues
• Designed a Web-based GUI system using latest technologies including GWT and Sencha frameworks to administer the Payment Processing System
• Created a Proof-of-Concept for the Payment Processing Engine using Core Java, Spring Framework, Hibernate, JMS and Oracle Database. Created a POC to use Oracle Coherence for Caching data objects to significantly improve the system performance and through-put
• Designed integration layers to integrate the payment processing system with several other systems including ETL and Data Warehouse
• Designed a Job Scheduler process to schedule and manage jobs
• Worked with the DBA team to architect and design the database for high scalability and optimal performance including implementing purge strategies to maximize the system performance
• Performed low-level reviews for the application and the database designs
• Prepared artifacts for global architecture reviews to satisfy organizational standards and guidelines
• Created a strategy roadmap for the complete solution including development, testing, deployment, monitoring, failover, recovery, database management including replication, purge and archive processes. Created a three-phase architecture model to support the current need for speed-to-market and also to satisfy future growth of over ten times of the current transaction volume
• Created and implemented Build and Release Process for globally scattered teams to ensure smooth deployments from Development to QA to Production. Implemented and streamlined the complete SDLC process among multiple teams including business, development and QA

Lead Architect/IT Strategy Advisor

Confidential, Raritan, NJ

Responsibilities:

• As a part of the innovation team, introduced a new product to build a network among caregivers and caretakers. Architected, lead and managed the development of the online networking site for the Web and for the mobile device including Android and iPhone. Both the Web and the iPhone Application were built and integrated with each using PKI for data security and open-source and commercial technologies such as Drupal, PHP, HTML5, MySQL, Java, RESTful Web Services, Objective C and Oracle
• Worked with the stakeholders to define vision, project scope, dates and deliverables and acted as the liaison between the business users and the technical team and provided cross-functional coordination, communication, influence and negotiation
• Review the high-level and low-level system design to make sure that the design is in-line with the defined process. Oversee all phases of the SDLC process to ensure compliance with PII and HIPAA regulations. Established and enforced best-practice through-out the entire SDLC cycle
• Collaborate with the management for all financial aspects related to the project and worked with multiple vendors for resource allocation and management
• Designed a cloud-based infrastructure architecture to create and support a highly scalable and highly available, secure and robust public Web site
• Closely worked with the off-shore team to resolve any technical issues and reviewed, validated and approved all deliverables and deployments
• Worked with multiple on-site and off-shore teams to coordinate requirement gathering, execute testing and deployments for all phases of the project
• As the lead for the Global Architecture Team, introduced and implemented complete Audit Process to audit J&J’s more than 600 customer facing sites
• The project was delivered in Agile manner to ensure quick feedback and consistent communication between IT and business

Director of Enterprise Architecture & IT Strategy

Confidential, Basking Ridge, NJ

Responsibilities:

• As part of the strategic planning team, work with the CIO, CEO and the other senior executives to develop the overall strategic plan for the organization and define the IT roadmap to align IT with Business to accomplish short-term and long-term objectives
• Advise the senior executives on technology investments and acquisitions and provide pre and post acquisition advice, support and guidance for system integration
• Establish and maintain vendor relationship for off-shore and outsourced needs. Negotiate vendor contracts to implement fixed-prices projects and for on-site and off-shore consulting needs
• Recommend and implement key technologies to support organization’s vision and objectives and to cope with dynamic business needs. Manage a $3M IT budget for infrastructure, system upgrades, employee training and development tools
• Develop and enforce policies, procedures and guidelines for SOX compliancy, application development, system backups and disaster recovery
• Implemented Scrum Agile process for all phases of the SDLC
• Responsible for all aspects of corporate-wide technology including application development and database management for more than 35 internal and external customer facing web-based applications. These applications provide capabilities to conduct online market research for more than 18 countries supporting multiple languages for each country.
• Manage a team of more than 50 people including on-site and off-shore developers and QA testers, DBAs, systems analysts, project managers and network administrators to support global panel system for more than 18 countries
• Manage Java and .Net based application portfolio including Sybase and SQL Server database, and Windows and Linux based servers
• Perform employee performance reviews for promotions and compensation considerations and identify essential education and training required for employees to fulfill on-going IT needs
• Developed an off-shore success model to cut IT cost by at least 50% and established an off-shore team of 20-25 people to support the on-going application development and maintenance
• Introduced and implemented process related methodologies such as test driven development, quality assurance and iterative development process in the SDLC
• Developed a plan and lead the effort to virtualize all servers to improve system scalability and to reduce server management cost
• Architected and designed a new state-of-the-art data-driven dynamic panel system which improved the turnaround time for content updates by 500%
• Implemented several architectural changes to improve system availability, scalability and performance and also to enforce tighter security and authorization based access to the system resources and application functionality
• Implemented several new tactics to prevent fraud in the area of online market research
• As a part of the online market research consortium member, designed and architected SOA based solution to prevent fraud and to improve data quality in online market research

Senior Architect

Confidential, Elmwood Park, NJ

Responsibilities:

• As a senior architect at the office of the CTO, participated in planning and designing to rebuild the entire enterprise system from scratch using J2EE and SOA and built a roadmap for the enterprise systems to support its vision to bring all applications into One Enterprise Portal
• Participated in strategic planning processes and to define technical strategy to setup the entire infrastructure to use WebSphere Application Server and IBM Tivoli Directory Server to build an environment to host web based J2EE applications
• Identify, evaluate and recommend new products and technologies
• Managed and lead a team of 10 people to build and deliver time sensitive applications
• Introduced enterprise level standards and guidelines to establish a structured foundation for the enterprise to build the entire enterprise system from the ground up
• Designed synchronization processes to synchronized multiple directory servers in the organization using Core Java
• Participated in database design and stored procedures implantations using PL/SQL on Oracle 10g
• Conducting architectural and security reviews to ensure robust and secure application development and ensuring appropriate technology usage and mentor application development groups for best practices, problem solving and to ensure adherence to the established standards
• Provided leadership and advice on the evaluation, development, implementation, training and support of information systems. Served as a bridge between the technology and the business people to facilitate business and technology requirements
• Created an enterprise framework to build a consistent and structured application environment for the current and for the future application development and to build secure and authentication based Web Services
• Designed and implemented processes to integrate with the Enterprise Service Bus to fully utilize the Sun Java Composite Application Platform Suite (Java CAPS) package
• Created and implemented several secured Web Services to expose selected functionality to the authenticated users and applications
• Created common components for logging, generating dynamic PDF documents and to deliver AJAX based Web pages
• Created an enterprise portal to provide authentication and authorization utilizing IBM Tivoli Directory Server as the LDAP to provide Single-Sign-on functionality for J2EE and non-J2EE applications. Implemented SAML and PKI based Single-Sign-on to setup communication between internal and external heterogeneous applications
• The team followed the Scrum Agile process to throughout the project

Senior Architect

Confidential, Franklin Lake, NJ

Responsibilities:

• Designed and created a J2EE framework to extend and simplify the usage of Spring Framework, Hibernate, logging, generating PDF reports and connecting to Siebel systems using JCA
• Designed and implemented a custom ESB solution to streamline the business process with extremely flexible and configurable notification and workflow mechanisms
• Create prototypes and evaluate new concepts, tools and technologies to implement the most appropriate solution for different applications
• Setup CruiseControl to automate application build and deployment process using ANT scripts
• Setup coding standards and guidelines for application development to provide a tight integration and consistency. Performing code reviews and enforcing standards and best practices to produce quality code. Mentored, managed, assigned tasks and provided technical assistance to the off-shore team of 14 members
• Setup and configure clustered WAS environment for load balancing and failover. Tweaked and tuned WAS configurations to maximize the use of its caching and pooling facilities for optimum performance
• Designed database tables and entity relationships for the DB2 database using ERWin Data Modeler. Created Oracle stored procedures using PL/SQL
• Provided assistance to the QA team to create scripts and perform load, regression and memory leak testing using QALoad, QARun and Tivoli Performance Viewer
• Performed code-merges from on-site team and off-shore team using ClearCase Multisite and created and deployed application builds
• Conducted technical interviews to evaluate and recommend new hires for various projects
• Created project plans and provided time estimates and resources requirements for the project
• Prepared release notes for ongoing application releases
• Layout standards and guidelines at the enterprise level for application design and development
• Work with various application teams to design the applications and provide guidance to implement best practices
• Perform design and architectural reviews to enforce consistency among different applications throughout the enterprise. Perform code reviews to validate quality of the code to maximize the code reuse and easy maintainability of the applications
• Worked with the infrastructure and the security team to define and setup resources to make them accessible for the off-shore team
• Managed an off-shore team of 14 developers