SUMMARY:

• Identity and Access Management professional having 13+ years’ experience with core expertise in Oracle Identity and Access Management Suite 11g R1, R2 and 10g.
• 9+ yrs of solid experience in the realm of Information Security, this includes Identity and Access Management, Vulnerability Assessment, Data Management/Data classification, Data Security and Security Testing.
• Solid experience in architecting and implementing Identity and Access Management solutions using Oracle Identity Manager 11g R1/R2 and 10g, Oracle Access Manager 11g R1/R2 and 10g, Sun Identity Manager, Forefront Identity Manager, OpenSSO specializing in multi tier and client/server architectures.
• Expertise in building Approval Workflows with OIM 11g and SOA.
• Certified Information Systems Security Professional (CISSP)
• Solid experience (8+ years) in building and deploying large scale Web Applications developed in Java, J2EE, JDNI, JDBC, EJB, JSP, JMS, Java Script, Ajax, XML, XSLT.
• Solid understanding and implementation knowledge of object oriented design methodology, design patterns in Java.
• Clients worked include large financial corporations - World Bank, Travelers Insurance, GMAC, State Bank of India and Automobile companies - Ford Motor Company, Mazda, and OEM companies - Honeywell, Caterpillar and Government Oraganizations - Confidential and Refining Companies - Tesoro Companies and Security Organization - McAfee.
• OIM 11g custom deprovisioning connector which disables Employees Badge access real time with control triggered by the HR department.
• Involved in installation, configuration, deployment, troubleshooting and implementation of Oracle Access Manager, Oracle Identity Manager and Oracle Identity Federation, Oracle Virtual Directory, Oracle Internet Directory, Sun Identity Manager.
• Working knowledge of Directory Services like DSEE 6.0, Sun ONE Directory Server, Active Directory (AD), Active Directory Application Mode (ADAM), and Oracle Virtual Directory, Oracle Internet Directory (OID).
• Real Time Monitoring and Metrics collection using Oracle Enterprise Manager (OEM) 11g. Installed and configured OEM 11g.
• Integration of Oracle Identity Manager with Oracle Fusion Applications Compensation Management and Role Mapping, Role Provisoning User Sync with OIM, Define Data Security.
• Setting up secure connection to all web applications HTTPS/HTTP.
• Performed Vulnerability Analysis - Network Vulnerability Scanning, Advanced Web Application Scanning, Detecting Rogue Access Points, Auditing and Security Testing.
• Implemented UNIX based SSO/Account Centralization using PAM based tools like Centrify.
• Implemented SSO solutions and Security for Cloud Service Solutions like Service Now, Office 360.
• Solid experience in implementing and handling Security Compliance and Governance projects.
• Implementation experience of practical security including SSL, PKI, s.
• Proven expertise in Federation using SAML 2.0, SAML 1.1, WS-Federation, Kerberos Authentication and SNC, Oracle Identity Federation, Oracle Virtual Directory and Oracle Internet Directory.
• Experienced in Web Services (SOAP), SOA, OWASP and associated security.
• Good understanding and application of ITIL Processes.
• Good background in handling UNIX systems.
• Implemented the ITIL Processes like Request Management, Change Management.
• Strong experience in managing, leading and implementing large Information security projects for multiple clients like HoneyWell, Ford motors, Mazda, Travelers Insurance, GMAC, Tesoro, LCRA and McAfee.
• Currently involved in designing and developing a project of interest named “Impassible” which is a concept of using Image passwords as a factor of authentication and also developing Custom connector for cloud Based Identity Provisoning (IdaaS).

TECHNICAL SKILLS:

Identity Management: Oracle Access Manager 11g R1/R2 and 10g, Oracle Identity Manager 11g R1 and 10g, Sun Identity Manager, Forefront Identity Manager, Centrify, Microsoft Identity Integration Server (MIIS), Novell Identity Manager, Oracle Identity Federation, OpenSSO, SAML 2.0, SSO, AD/AM, AD, Sun ONE Directory Server, PKI, Cryptography - Password Encryption & Decryption Techniques, Image Passwords, Image Steganography.

Vulnerability Assessment: Nessus, GFI LanGuard.

Security Testing: Wireshark, Wapiti, Scrawlr, Watcher, HP Webinspect, Dev inspect.

Password Management: KeePass, RoboForm, Sharepoint

Remote Access: Juniper SSL VPN concentrators.

Web Technologies: J2EE, Java, JSP, Servlets, HTML, XML, XSL, XSLT, Java Script, C#, Sharepoint.

Data Bases: Oracle 7.x/8i/9i, SQL Server, MySQL, MS Access

Operating Systems: Solaris, Windows 98/NT/2000/XP, UNIX

Version Control: VSS, CVS

Application & Web servers: Weblogic Application Server, Oracle HTTP Server, Apache Web Server, IBM Websphere Application Server, JBOSS, Microsoft IIS, Sun Java App Server.

Tools: & IDEs: Microsoft Visio, Microsoft Project, MS Office Suite, VSS, CVS

PROFESSIONAL EXPERIENCE:

Confidential, Santa Clara, CA

Responsibilities:

• Implementation of Oracle Access Manager 11g R1/R2 and Oracle Identity Manager 11g R1 integrating with Oracle Compensation Management, SAP, OVD, OID, and Active Directory.
• Implementation of Oracle Access Manager 11g with Windows Native Authentication (WNA).
• OIM 11g and SOA Workflows.
• Customization of Authentication mechanism and Provisioning process of the 11g implementation.
• Install OIM, OAM. SOA Suite 11g.
• OAM/OIM Administration and Customization.
• Registering OAM 10g and 11g webgates.
• Load Testing, Performance Testing and UI Testing (Automated) of the security components (IAM Stack and its protected applications) using JMeter and Selenium RC.
• OAM Policy Component Management and SSO with web applications, Oracle Webcenter.
• Real Time Monitoring and Metrics collection using Oracle Enterprise Manager (OEM) 11g. Installed and configured OEM 11g.
• Integration of Oracle Identity Manager with Oracle Fusion Applications Compensation Management and Role Mapping, Role Provisoning User Sync with OIM, Define Data Security.
• OIM Connectors installation, configuration and customization. Transfer of connectors using Test to Production (T2P).
• OIM Password Policy configuration and enforcement.
• OAM integration with EBS R12.
• Oracle Diagnostic Logging Framework (ODL) in lower environments.

Confidential

Responsibilities:

• Architecting and the Implementation of Oracle IAM Suite 10g and then migration of the entire stack to 11g R1 integrating with PeopleSoft, OVD, OID, and Active Directory.
• OIM 11g and SOA implementation and BPEL Human Workflow implementation.
• Implementing SSO with OAM 11g and Windows Native Authentication.
• OIM 11g custom deprovisioning connector which disables Employees Badge access real time with control triggered by the HR department.
• Architected and implemented the entire Application Security Infrastructure in LCRA, which includes implementation of Oracle Identity Manager, Oracle Access Manager, Oracle Virtual Directory and Oracle Internet Directory.
• Currently leading a team implementing Enterprise Digital Rights Management (EDMS) which involves Data Classification and Data Security and Password Management in LCRA.
• Implemented SSO solutions for Cloud Service Solutions like Service Now, Maximo, PeopleSoft and also implemented Unix based SSO/Account Centralization using PAM based tools like Centrify.

Confidential

Responsibilities:

• Migration from MIIS to Oracle Identity and Access Manager 10g implementation integrating with SAP, OVD, OID, and Active Directory and then upgrading to Oracle Identity and Access Manager 11g.
• Successfully implemented AD2SAP Password Synchronization solution in Tesoro along with the implementation of OIM, OAM and OIF.
• Oracle Identity Federation and OAM implementation (Identity Provider IdP) with partner applications with Ping Identity Federation on the Service Provider (SP) End with SAML 2.0 as the protocol.

Confidential

Responsibilities:

• Architected, Designed and Implemented Sun Identity Manager replacing Microsoft Identity Integration Server and also implemented OpenSSO and Sun Role Manager in Travelers Insurance.
• Recruited to manage and lead a multimillion dollar security initiative (Sun Identity Manager, Oracle Access Manager and Security Testing) for GMAC. Brought project back on time and 5% under budget through internal staff development as opposed to lateral expansion.

Confidential

Responsibilities:

• Roles played are Developer, Project Lead and Technical Manager.
• Performed Vulnerability Analysis - Network Vulnerability Scanning, Advanced Web Application Scanning, Detecting Rogue Access Points, Auditing.
• Designated Technical Manager for multiple projects with FORD India.
• One of the key members in instituting the Centre of Excellence for Program Management for Satyam Computer Services in order to manage multiple client and vendor dealings.
• Strong skills in Java/J2EE development and Automation Testing.
• Involved in the design and implementation of Web Single Login (WSL) in Ford and Mazda Motor Corporations.

Confidential

Responsibilities:

• Role played is Developer.
• Strong skills in Java/J2EE development, Web development and Automation Testing.Completed a project in Sales Monitoring and Retail trading systems