SUMMARY:

• Experienced in Identity and Access management tools like CA Single Single on(Siteminder) R12.52,SAML 2.0,Radiant Logic Virtual Directory, IBM Security Identity Manager, Oracle Directory Server(ODSEE), Cisco AXE XML Gateway, Directory Servers (Active Directory, Oracle Directory Server 11.x,Virtual Directory, Sun One, IBM Security Directory Server 6.1.3.5).
• Worked with a variety of platforms and languages such as Java (Servlets, JSP, JDBC, J2EE using Resin 3.0.19, Tomcat, and Weblogic/Websphere), JavaScript, SQL, Windows, Oracle, MS - SQL, Apache Hadoop 1.x and 2.x. He is Fast, efficient, and a very quick learner.

EXPERIENCE HIGHLIGHTS:

• Involved in multiple access management solution stacks involving CA Single Sign on R12.52 SP1/SP2, ISDS, Radiant Logic VDS, RACF (Blockade API),ISIM 6.1.
• Involved in supporting a huge Identity Management implementation (ITIM 4.6) with a user base of 180K+ users for Zurich IT North America.
• Implementing Web Services Security using IBM Tivoli Federated Identity Manager and CISCO ACE XML Gateway for BP USA.
• Implementing Identity & Access management solutions for various customers using Tivoli Identity Manager, Sun Java System Identity Manager, and IBM Tivoli Access Manager.
• Excellent Knowledge on Access Management products like Tivoli Access Manager.
• Excellent exposure to directory servers like Microsoft Active Directory, Sun One directory server.
• Excellent knowledge on Virtual directory products (Radiant One Virtual Directory Server), Directory replication strategies.
• Understanding businesses requirements, to come up with new innovative ideas, design, improvements & solutions which can be implemented.
• Plan, organize, prioritize the work to meet on time, the deadlines of the clients and keep customer’s satisfaction at the highest level possible.

SECURITY EXPERIENCE:

• Designing & Architecting solutions using CA Single Sign on, Cloud based federation (iDaas),Custom forms development.
• Designing and Implementing Identity Management (TIM 4.6) infrastructure which involves integration 60+ target applications (includes SAP, ARIBA, Lotus Notes, AIX, RACF). Also involved in support and fine tuning the application for Zurich NA.
• Migrating P1/P2 Java Struts based applications from Siteminder to use Oracle Access Manager for a major telecom client.
• Implementing Web Services Security (Basic Auth, SAML, and WS-Security) using products like IBM Tivoli Federated Identity Manager 6.2 and CISCO ACE XML Gateway 6.0.
• Implementing Identity and Access Management solutions using products like IBM Tivoli Identity Manager, Sun Java System Identity Manager, and IBM Tivoli Access Manager.
• Experienced in Secure Application Coding & Design.
• Was involved in Virtual Directory Solution for a major E&U client using Radiant One Virtual Directory Server.
• Implemented a web based application for managing user password and group information in 3rd Party Directory (Proprietary directory server from Radiant Logic).
• Was involved in developing a synchronization solution between various data sources (BP1, 3PD, GID).
• Expertise in directory servers like Microsoft Active Directory, Sun One.
• Experienced in various Identity and Access Management Products (Sun & IBM Tivoli Products).
• Implemented a Java API (JNDI based) for a major Insurance client.
• Implemented a POC on Role Engineering using Eurekify.

TECHNICAL SKILLS:

IT Security Services: Siteminder R12.51,R12.52,RSA Adaptive Authentication 7.x AAOP,SAML 2.0,Security Identity Manager 6.0, Tivoli Directory Integrator 6.2,, IBM Tivoli Federated Identity Manager 6.0, CISCO ACE XML Gateway 6.0,Eurekify Sage ERM,Access Control & Single Sign On, Enterprise Directory, Oracle Directory Server 11.1.3,Secure Coding Standards,SOAP SONAR,Apache Hadoop 1.x/2.x.

ECom Frameworks/Web Technologies: Apachewebserver, J2EE, JSF, JSP, Java Beans, Java Servlets, JavaScript, Struts, Tomcat Web Server, IBM WebSphere 6.1/6.2.

Verticals: Banking & Finance, Utilities.

Operating Systems: Linux (Redhat & Fedora Core), Solaris, MS-W2k - W2k3, NT 4.0, AIX.

RDBMS: Oracle, MS-SQL (7.0 / 2000 /2003 ), MySQL.

WORK EXPERIENCE:

Confidential

Risk & Compliance Associate Specialist

Responsibilities:

• Vendor Team management: Manage RSA AA team & SSO teams.
• Implement RSA deployment included custom coded AA adapters on Siteminder login infrastructure.
• Drive the complete overhaul of LB configuration setup for SSO infrastructure to resolve AA issues.
• Participate in EA initiative include new access management patterns, iDaaS POC’s, Apache Siteminder web agent upgrade, IWA/ISA replacements.
• Drive the implementation of a streamlined logging and monitoring layer using Enterprise Splunk team to provide added value.
• Drive the IWA migration project to Windows 2012.
• Drive & Implement multiple POC with different vendors.

Confidential

SSO Consultant

Responsibilities:

• Implement CA Healthcheck recommendations (Including performance tuning, user store data center isolation, SSL for user & policy store).
• Migration Federation infrastructure from R6 to R12.
• Troubleshooting the issues to complete the SiteMinder R12 SP1/SP2 POC environment and the existing 6.x environment.
• Integrate new Apache/Weblogic/Webshphere ASA applications with R12 SSO.
• Migrate existing R6 applications to the R12 policy store.
• Execute scheduled DR activities with the DR box into the secure VLAN and make sure all application hit the DR env.
• Perform regular support activities - sev 1/sev -2 issues, health check monitoring, update web agents with latest patch level.
• Coordinated with the various teams like Web Hosting, Directory Services Team, Web Logic etc for successful integration of intranet and extranet applications to SSO.

Confidential

SSO Consultant

Responsibilities:

• Migrate current Siteminder R6 infrastructure to Siteminder R12.52 SP1 CR1 env for about 1800 applications.
• Build SAML 2.0 in different envs(TAL,CERT & PROD) using Web agent option pack for Siteminder federation. Integrate partnership federation with 30+ internal and external end points.
• Build various directory environments on IBM Security directory server 6.3.1.5 for External & customer directory solutions.
• Install and configure WebSphere TAI for Siteminder, IIS 7/8 Siteminder agents, Apache 12.52 Siteminder agents for internal & external applications.
• Install & Configure IBM Security Identity Manager 6 FP 7 components, adapters.
• Troubleshoot issues around Siteminder auto login (custom IWA solution), Blockade calls (RACF custom adapter), My Info Registration, CIMS, RBAC.
• Participate in quarterly Cert refresh activities and completely rebuild EDS and WED LDAP (running ISDS 6.3.1.5) in a clustered multi-master replicated env with 1 million+ accounts.
• Perform regular support activities - Sev 1/Sev -2 issues, health check monitoring, and update web agents with latest patch level.
• Coordinate with the various teams like Web Hosting, Directory Services Team, and WebSphere etc for successful integration of intranet and extranet applications to SSO.

Confidential

IDAM Consultant

Responsibilities:

• Troubleshooting the issues to complete the SiteMinder R12 SP1/SP2 POC environment and the existing 6.x environment.
• Setting up R12 env in Confidential international data centers with policy store replication to US.
• Integrate new Apache/Weblogic/Webshphere ASA applications with R12 SSO.
• Migrate existing R6 applications to the R12 policy store.
• Execute scheduled DR activities with the DR box into the secure VLAN and make sure all application hit the DR env.
• Perform regular support activities - sev 1/sev -2 issues, health check monitoring, update web agents with latest patch level.
• Coordinated with the various teams like Web Hosting, Directory Services Team, Web Logic etc for successful integration of intranet and extranet applications to SSO.

Confidential

IDAM Consultant

Responsibilities:

• Designing and developing the web application for self service portal.
• OpenDS LDAP Performance and Capacity Management.
• Directory Access Control Configurations and SSL Certificate management.
• DIT governance and management and OpenDS LDAP Schema governance and management.
• Identity Provisioning support from ITIM 4.6 to GPD OpenDS LDAP.
• Designing and implementing the OpenDS Schema for GPD
• Coordinating with business for Automated Store Groups provisioning requirements.
• Configuring Google Apps for Directory Sync and Postini/DSS Sync.
• OpenDS LDAP backup, replication schedules and upgrades/fixes to the current OpenDS environment.

Confidential

IDAM Consultant

Responsibilities:

• Integrating and deploying new applications into the ITIM infrastructure.
• Installing, configuring and fine tuning ITIM adapters (SAP, Lotus Notes, AIX, RACF, Efax, Sametime etc).
• Supporting WAS 5.1/6.1, DB2 8.1 and ITDS on AIX environment.
• Production support for Tivoli Identity Manager 4.6. Remedy/Peregrine ticket resolutions.
• Performance tuning for DB2, ITIM LDAP (ITDS).
• Applying fixes/patches to the existing environment.
• Developing ITDI 6.1.1 Assembly lines to extract and push data to/from different sources(Sun One LDAP for agents,DB for CISS etc)
• Monitoring Reconciliation and nightly batch jobs and remediation measures.
• Coordinating with different ZNA business units for process improvement and automation including Ariba, CRN, and Agents.
• Modifying existing workflows, provisioning policies, identity policies, feed jobs for Post go-live DMR’s.

Confidential

IDAM Consultant

Responsibilities:

• Migrating all Java/Struts applications from SJ CCI/CCIX to RCDN Dev/Stage (via Kintana) CCIX framework for TCA & TCB.
• Coordinating with AFS to migrate all Siteminder access policies to Oracle Access Manager dev/stg/prod.
• Replicating Oracle Access Manager policies in SAFE.
• Applying fixes for all issue encountered during BAVA/DAVA using IBM Appscan.
• Coordinating with business/offshore to functional testing and performance testing.
• Performing ITCAM analysis and coordinating with offshore to Java and DB tuning.

Confidential

SOA Security Consultant

Responsibilities:

• Integrate/Onboard applications into the ACE XML Gateway/IBM Tivoli Federated Identity Manager infrastructure which include Confidential, Confidential, Amazon EC2.
• Developing SOA Security Use Cases for new customers.
• Implement / Configure CISCO ACE XML Gateway & Tivoli Federated Identity Manager.
• Monitoring, scheduled maintenance, and tuning.
• Operations procedures (start/stop, installation, backups, configuration, archiving, database).
• Reviewing Logs, processes, etc.
• Vendor engagement around product
• Creating and updating security configurations.

Confidential

Security Consultant

Responsibilities:

• End to End Security Design which includes,
• Enterprise Directory integration for EWAM products (IBM Maximo, P6, Ventyx and Portal).
• SSO design for Maximo & SKOTI(Oracle Stellant Content Management).
• Data Security Compliance with the Internal security policies of SPR.
• Incorporating McAfee Foundstone approach for Portal Application( for Penetration testing).
• SOX compliance for Security Design.
• Deployment Architectures for Portal. The Maximo design was validated by IBM & Portal design was validated by McAfee for Penetration testing (Foundstone approach).

Confidential

Security Consultant

Responsibilities:

• FRD(Functional Requirement Document) Review & Analysis.
• SBS (System Behavior and Specification) Design & Analysis.
• Design document (UML) written on SBS.
• Creating WebSeal virtual junctions for this application in Tivoli Access Manager 6.0
• Creating ACL for users in 3PD Forgot Password users in TAM which are integrated with Radiant Logic Virtual Directory.
• Implementation of Code & Test plan document.