SUMMARY:

Senior IT professional with 28 years of experience. Extensive full Project Life Cycle skills including Project Leadership, Requirements Definition, Systems Design, Prototyping, Programming, Testing, Documentation, and User Training. Experienced as an IT Security Analyst, DB2 Database Administrator, Sybase Database Administrator and Systems Middleware Administrator with a focus on Websphere and WebLogic. Worked with EMC and Hitachi Data Systems on installs/migrations of Midrange & Mainframe storage systems and installed Security software. Installed various AIX, Solaris and Linux software administrative products. Solid Project Management experience from Project Planning through delivery. Very good communication and interpersonal skills.

TECHNICAL SKILLS:

Hardware: AIX 4.3.2, 4.3.3, 5.1, 5.2, 5.3, Solaris 5.10, Linux 2.6, DataPower XI50 3.6.1.8 & 3.7.x.x, AS/400, RAMAC DISK SYSTEM, IBM 9121 - 190, DELL PENTIUM 100Mhz (32-bit system), IBM 3090, 3380 & 3390 MVS environments, MAC II CX, MAC II SI, COMPAQ DESKPRO, COMPAQ ARMADA 4130T & 486DX2-66 IBM COMPATIBLE PC, HDS 30710 & 43148, EMC CX600, Windows 2003

Software/Languages: Midrange WebSphere 5.3, 6.0 & 6.1.0.13, WebSphere Process Server 6.1, WebSphere Portal 6.1.0.2, Jython, IntroScope and LogReader, MS SQL Server 2005, DB2 UDB, DB2Connect v7, v8 & v9 prep, MQ 5.3, 6.0 & 7.0, SYBASE, SiteMinder - Netegrity Policy Server 5.5, 6.5 & 12.0, SAML2.0 SSO, Softerra LDAP Administrator v3, CA Identity Manager R.12, CA Provisioning Manager 12.0, MS Active Directory 5.2, Vordel Soapbox, Toad for Oracle 9.0.1, Lotus Notes 8, Citrix, EMC RSA Security/DB Adapter, Documaker RP & IDS, Sybase Open Client, IBM Migration Toolkit, AS/400 CL, E3TRIM, UNIX-KSH & Jython scripting, Continuus/Synergy, DCE/Encina, Tuxedo, DataPower XI50 Encryption Security software, GnuPG 1.4.9, Apache, XML, HTML, Mantis, BladeLogic, CyberArk, httpwatch, kornshell, OEM v12, Oracle WebLogic (various versions), SunOne, Oracle Exalogic (X3-2), SOA, EBS.

Mainframe: DB2, OS/COBOL, COBOL II, DOS, ROSCOE, TSO, DOS JCL, OS JCL, SAS, Culprit, IDMS 10.2 & 12.0, ADS/O 10.2 & 12.0, WYLBUR, TOTAL/E1, VSAM & TELON

PC: DB2 UDB PC version, RMCobol, First Publisher, Harvard Graphics, ABC Flowchart, LOTUS 1-2-3, DOS, WINDOWS 3.11 ‘95/97, 2000 & 2003, MS Word, MS Excel, MS Powerpoint, MS Project, Netscape Navigator, MS Internet Explorer, LOTUS Approach 3.0, POWERBUILDER 3.0, VISUAL BASIC 3.0/4.0, Visio Pro.

EXPERIENCE:

Confidential, Worcester, MA

Senior IT Security Analyst

Responsibilities:

• Provide management of the Computer Security Incident Response Plan (CSIRP) process which provides guidance, direction and documentation on incident response handling and communication requirements. This includes a newly formed Incident Response Team, a new global crossing bridge line and use of NotiFind for corporate spawned notification communications. In addition, provide management of the CSIRP Policy Document Artifact which captures the Security incident response standards and best practices per release & CSIRP Playbook that catalogs all approved Security Incident Attack Scenarios.
• Serve as AIX (Hanover partner) Liaison which entails Security awareness alignment between Hanover & AIX; functioning as a steward in the Security Posture Council that serves as the group responsible for managing information security posture by receiving prioritizing, recommending & tracking all security control enhancements; & participate in gap analysis of IS 27001 for 2015 AIX Security Roadmap.
• Research & report on active security threats including Ransomware, Data Breach Exfiltration & Phishing email vulnerabilities.
• Prepare Situation reports for Phishing email, stolen laptops and a unique case of a compromised laptop due to user impersonation and maintain these within the Security Incidents & Investigations Register.
• Research & document specific malware threats such as CryptoLocker, Cryptoblocker, and Bitcoin failure points.
• Analyze Risk Management Vulnerability Reports on Linux servers relating to assets identified as having vulnerabilities due to out of date software life cycles, requiring OS patching.
• Maintaining team site registers to include Assessment & Research Projects, Remediation Assurance Projects & Operating Model Enhancements on active and proposed projects.
• Create knowledge base articles for the Help Desk personnel to assist in Phishing email information gathering.
• Participate as an Incident Rapid Response Team member who is responsible/on - call for analysis and containment of compromised systems to eliminate the cause of an actual security incident.
• Educate by examining Symantec Internet Security Threat reports and joining into SANS published WebCasts.

Confidential, Rancho Cordova, CA

Computer Science Analyst - Middleware

Responsibilities:

• Bestow leadership and partnership in the delivery of the Rocketdyne acquisition by successfully completing all tasks associated with the acquisition of Rocketdyne and ensure a smooth transition by identifying requirements early and delivering effective solutions to meet Rocketdyne s system requirements.
• Prepared documentation specific to our WebLogic SOA architecture and appropriate appserver configuration. Investigated application tier hardening and prepared documentation to review with Cyber Security from initial Rapid7 vulnerability findings. Involved in all levels of troubleshooting as the project makes its way to Production status from a Systems Administrator and Developer perspective.
• This includes efforts in the SOA and OSB layers of the current environment.
• Participated & provided recommendations in hardware/software planning meetings for new EXA platform software suite including Exalogic/Exadata/Exalytics. Took associated Oracle training sessions, as offered. Prepared RBAC (role - based access control) matrix for planning for upcoming uid/group creation in Exalogic. Assisted DBAs in AMP plugin issue tied to OEM Production to include new CA certificates. Assessed performance and tuning of existing Test and Production environments via Oracle recommendations and specific parameters configured for usage in OEM QA & OEM Prod. Participated in WebLogic application deployments. Addressed CPU issues by analyzing statistics and proper recycles of the environment. Prepared documentation for reference on deployments, architecture and miscellaneous notes. Made recommendations for tighter security methods by creating a specific Middleware
• Unix/Linux group placed on servers supported.
• Worked with team & Fishbowl vendor to set up configurations in QA & Production
• WCC domains, MS Office, IIS & Notepad, Application pools, ADF group mappingcredential maps, user roles & Apache SSL certificates using OpenSSL & server certificates for URLS.
• Added specific WebLogic application servers and components to both OEM QA & OEM Prod. Corrected issue with custom identity and trusted keystore certification in OEM QA to remediate vulnerabilities posted within Rapid7 asset findings. Worked with Oracle on-line support as various documents needed to be pieced together to alter the OEMQ for Rapid7 vulnerability findings. Created a new ruleset specific to WebLogic servers, clusters and domains to capture specific server statistics to be emailed to me directly including: heap usage, vm growth, CPU usage, agent stats, memory utilization, blackouts, targets up/down. Reviewed Oracle recommended performance statistics via OEM QA console with Oracle rep. Worked issues with overall server’s WebLogic start and stop application scripts.
• Worked with DBAs, Data Center Ops to assist in WebLogic remediation efforts identified by Cyber Security team. Remediation crossed into OEM QA, OEM Prod and OVM where configuration changes and recycles were necessary.
• Improve business efficiencies via the use of IT s project management practices and customer engagement.
• Provide continual active improvements for Middleware services including research, planning, and implementation of service upgrades and enhancements.
• Manage time by scheduling meetings and configuration changes/deployments appropriately and tracked progress via documentation.
• Diagnose and correct/debug issues within Aerojet s WebLogic & SOA application domains.
• Support Oracle Enterprise Manager (OEM) server monitoring to ensure general system operation health within the WebLogic Middleware tier by following best performance monitoring practices for key applications including SOA, EBS, IPD, Team Center & WCC applications.
• Perform capacity planning and performance tuning to prevent issues and minimize service disruptions across all Middleware environments following Release Management standards.
• Build relationships with enterprise - wide customers and Oracle representatives to create clear and effective communications and to address customer needs across the systems we support.
• Create and maintain documentation for configuration changes and service desk requests within the Web Admin s team SharePoint site locations.

Confidential, San Francisco, CA

Web Authentication Administrator

Responsibilities:

• Configured SiteMinder Impersonation for the CCO (Customer Connection Online) Web Portal application to include Realms, Rules, Policies, Auth Scheme and Webserver components.
• Utilized the SunOne Webserver 6.1 Admin Server consoles to request, manage and install Entrust web server certificates, as required.
• Configured Webserver files for static content redirects and proxy paths for Weblogic dynamic content.
• Debugging efforts to diagnose and correct issues within WebLogic ASA domains.
• Participated in POC for evaluating Oracle Enterprise Manager (OEM) Cloud Control 12C rapid server provisioning, server monitoring and diagnostics (JVMD).
• Worked in conjunction with Enterprise Risk Management team in Compliance Reporting for company s Linux/Unix/Solaris webserver stack including versioning and product release deliverables for auditing purposes.
• Project involvement in standardizing OEM monitoring in support of Oracle s WebLogic application suite and installing Oracle 12c OEM agents as part of the project (100+ servers).
• In multiple environments including Production and Non - Production, provided support and maintenance of existing web systems and applications as directed through BMC s Incident Management tracking system.
• Produced quality documentation for relevant environmental configuration changes and maintenance requests.
• Created team SharePoint site in sandbox for Online and Middleware Application Operations.

Confidential, Watertown, MA

IT Security Analyst

Responsibilities:

• Architecting, Risk Assessment & Planning of new systems, rollouts & upgrades to existing systems
• Supported the implementation of security controls and recommend areas for risk assessment utilizing the theory of Principle of least privilege and related controls including tokens, biometrics, intrusion detection, digital certs, 2 factor authentication & bastion host servers
• Aided and advised in the development of internal standards and security policies including transactional data review for compliance and ongoing monitoring of business activities related to company ISO 17799/27001 & Sarbanes Oxley standards
• Produced top quality documentation for assigned projects, scheduled Releases and Disaster Recovery purposes
• Data obfuscation/Data Masking project engineering for Corporate initiative to preserve PHI sensitive client abiding by HIPAA guidelines
• Supported RFP (Request for Proposal) process by assessing internal security and business requirements and analyze product offerings of 3rd party clients
• Built systems at ever tier: Lab, Proof of Concept, Development, Quality Assurance and Production
• SiteMinder and SAML configurations as applicable to business initiatives
• Implemented Java patching upgrades as required on Identity Manager EIM servers (jdk1.5.0 32) - DoD requirements.
• Configured SiteMinder Realms, Rules, Policies, Auth Schemes, Password Policies and Agents in all environments. Agents installed on Linux & Windows 2003 platforms.
• SiteMinder and Identity Manager design incorporated into Technical Requirements and Technical Design documentation including Use Cases, Activity Diagrams, Data Contract, LDAP Directory Attributes, User Migration, Shadowing/Impersonation, Identity Manager rules, FirstTimeUser & TEWS web service calls.
• Debugging efforts & associated system monitoring to support application team with password services login validation and Shadowing/Impersonation functionality.
• Created test and active users via Softerra LDAP Administrator.
• Installed Tumbleweed software version 4.8.1 on Secure Transport Server including SiteMinder 6qmr5 configuration.
• Validated configurations and debugging, exploring logs to determine SSO issues to backend transport server.
• Created new roles for multiple external vendor applications (Caremark/CVS) to access internal data stores.
• Prepared documentation and associated RBAC matrices to accommodate business technical requirements.
• Analyzed business requirements to prepare associated IT Security technical requirements and design documentation including RBAC matrices.
• Prepared SiteMinder SAML 2.0 configuration interface in order to configure transmission of Broker Commission user identities.
• Successfully transmitted SAML Assertion to business vendor Acom3 with required LDAP attributes specific to setting up new brokers and employees on the vendor interface in all environments.
• Participated in vendor training sessions to prepare for Tufts IT Security systems integration.
• Attached appropriate Actek specific roles to Tufts internal user base utilizing Identity Manager and LDAP interfaces.
• Provided comparisons from existing LDAP UID (SQL queries) base to in corporate into the new Broker Commission system.