PROFESSIONAL EXPERIENCE:

Confidential, Dallas, Texas

Senior Cloud Identity Management Engineer

Responsibilities:

• Responsible for the daily support of the Cloud GMA lighthouse Identity Management application, includes researching Logs for WebSeal, WebSphere, TDI, TDS, HTTP, DB2 for ticketed issues.
• Standard TFIM Federations, SAML Assertions, OAuth and 2 Factor Authentication creations and support including Junction Management, ACL, and certificate management for Partners and Domains for ISAM 8 and 9.
• TDS Maintenance, writing LDAP scripts to administrator TDS. Running Reorg/Runstats on all TDS instances, resolving Replication Issues, schema changes, new installs and architecture.
• ISIM/ISAM/TDS/TDI/TSIEM/TCIM/TFIM administration, design architecture and support.
• WebSphere MQ installations, support of Queues, day to day management of message queues.
• PostGres Database with PGPool and PostGres Database with RepMgr installations, support, administration.
• Urban Code Deployment (UCD) standard administration and support, executions of processes, Support of UCD and Ansible servers and deployment file management.
• Redis database servers standard operation support and administration
• TDI/SDI Directory Integration support of servers, Assembly Lines, Instances, code deployment, monitoring, standard day to day maintenance and troubleshooting.
• Jetty server standard deployment, configuration and support.
• QRadar support of appliances and standard process restarts.
• Upgrade Patch Management for all these platforms, ISIM, TDI, TDS, DB2 all versions, WebSphere all versions, TFIM patching all versions, WebSphere MQ, Postgres DB, Redis DB, SUSE Linux OS Patching, RHEL Linux OS Patching.
• Cloud Identity and Access Management concepts and architecture design.
• Gather Business Requirements with customer and document and obtain sign off, create Technical Solution Design Documents, Provide Gap Analysis, implemented best practice Phase Approach Methodology. Apply SDLC model for all design and development work.
• In - depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.
• Certificate Administration, expiring certificates updates, import and configuration of new certificates.
• Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.
• Embedded Operating Systems security controls for platforms including Windows 7, Windows 2003-2008, AIX, Solaris, Z/OS, AS/400, RHEL Linux, and others
• Remedy Ticketing daily administration to include change ticket creations, support ticket management.
• NewRelic familiarity with functions, monitoring, and usability.
• Confidential Cloud for ISIM proof of concept, included integration in the cloud and prototyping.
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Apply methods to systematically create architectures based on the analysis of known functional requirements, quality requirements and constraints.
• Drive innovative solutions to reduce technology costs, and improve performance and scalability resulting in business flexibility and growth.
• Assume responsibility for developing, implementing a completing highly complex often unique or pioneering projects.
• Streamline manual ID Admin processes to a fully automated Identity Management solutions, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Confidential, Dallas, Texas

Senior Solutions Architect ISIM/ISAM Solutions Architect

Responsibilities:

• Design and Development of Collectors, Reviews, Roles, Rules, Email’s, and Workflows
• Enterprise Role Development, Application Role Development, and other Roles
• Architecture Requirement gathering requirements
• SQL queries to analyze and update attributes and tables
• Ongoing of onboarding of Applications to MyAccess

Confidential, Milwaukee, Wisconson

Senior Solutions Architect ISIM/ISAM Solutions Architect

Responsibilities:

• Upgraded current CA IDM 12.5 environment to 12.6 SP4
• Designed and Implemented new architecture for CA IDM 12.6 SP4
• Implemented new Provisioning for AD Groups
• Implemented enablement of Encryption across all of CA IDM 12.6 SP4 infrastructure
• WebSphere Clustering with 4 Nodes and Deployment Manager
• Implemented CA Directory Server Replication and Load Balancing

Confidential, Detroit, Michigan

Senior Solutions Architect ISIM/ISAM Solutions Architect

Responsibilities:

• Complete Architecture Design of Day 1 Birthrights Automated Provisioning
• RBAC/ABAC Requirements gathering
• Developed RFP Process for new Identity Governance Tool, including pre-eval of all tools available.
• Conducted onsite evaluations of 4 different vendor’s tool sets and offerings.
• Produced analytics as a results of the Tools RFP evaluation process.
• Leading team of 8 Technical consultants for the new design of Day 1 automated provisioning.
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Ability to effectively convey ideas through oral and written communications; ability lead and work in a group or work independently; excellent analytical skills, detail oriented; ability to understand, and resolve issues.
• Deployed and Integrated with Latest Confidential SIM RMI Adapter's, SAM Adapters with ISIM Provisioning Policies, Adoption Polices, workflows, etc.
• Extension of ISIM LDAP to support custom attributes where needed.
• Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ISIM 7.0
• ISAM/ISIM Testing Cycle Support for each environment (UAT/Staging/Production)

Confidential, California

Senior Solutions Architect ISIM/ISAM Solutions Architect

Responsibilities:

• Installation/Configuration of TrustBuilder Servers. (Development)
• Configuration of Workflows, HTML Pages, Java Scripts for TrustBuilder Server
• Step-up Authentication for Administration Groups
• Browser Finger Printing, to enforce 2-Factor re-authentication, upon different machine or different browser detected.
• 2-Factor Authentication using OTP via Nexmo Service
• Integration with TAM EAI for TrustBuilder Re-Direct

Confidential, Baltimore, MD

Senior Solutions Architect ISIM/ISAM Solutions Architect

Responsibilities:

• Installation/Configuration of ISAM 7.0 Policy Servers. (UAT/Staging/Production)
• Installation/Configuration of ISAM 7.0Webseal Servers (UAT/Staging/Production)
• Installation/Configuration of ISAM TDS 6.3.0.17 Internal, External, Proxy Servers with SSL (UAT/Staging/Production)
• Installation/Configuration of WPM 7.0 and components (UAT/Staging/Production)
• Installation/Configuration of SMS, XPS 7.0 ISAM Components (UAT/Staging/Production)
• Installation/Configuration of SSL for all ISAM Components (UAT/Staging/Production)
• Apply Fix packs to all ISAM components. (UAT/Staging/Production)
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Ability to effectively convey ideas through oral and written communications; ability lead and work in a group or work independently; excellent analytical skills, detail oriented; ability to understand, and resolve issues.
• Deployed and Integrated with Latest Confidential SIM RMI Adapter's, SAM Adapters with ISIM Provisioning Policies, Adoption Polices, workflows, etc.
• Extension of ISIM LDAP to support custom attributes where needed.
• Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ISIM 7.0
• ISAM/ISIM Testing Cycle Support for each environment (UAT/Staging/Production)

Confidential, Westlake, TX

Solutions Architecture ITIM Architecture Team Lead

Responsibilities:

• Assumed currently deployed ITIM 5.1 infrastructure steady state support.
• Currently designing an upgrade strategy for ITIM 5.1to ITIM 6.0 with added design of implementing new FlexPLM Adapter to support FLEX PLM databases to include SQL Group/Role development.
• Designing business requirements and architecture strategy for Active Directory/Exchange ITIM automation of ID creation/lifecycle management.
• Developing customization for ITIM Self Service applications to perform Hot Button Terminations.
• Design, deployment and automation of Active Directory/Exchange mailbox ID creation from HR Feed processing and Non-Employee feed processing.
• Streamline manual ID Admin processes to a fully automated Identity Management solutions, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Ability to effectively convey ideas through oral and written communications; ability lead and work in a group or work independently; excellent analytical skills, detail oriented; ability to understand, and resolve issues.
• Deployed and Integrated with Latest Confidential SIM Active Directory Adapter's, with ISIM Provisioning Policies, Adoption Polices, workflows, etc.
• Extension of ISIM LDAP to support custom attributes where needed.
• Requirements Analysis for Solution design to resolve current existing issues along with enhancement of their current deployment under ITIM 5.1
• ISIM 6.0 Proposal and cost analysis with correct ROI statistics for currently deployed solution for downtime resolutions, manual reporting switching to automated reporting mechanisms, improved efficiency for Compliance and Audit remediation of accounts.
• Confidential Cloud Proof of concept Research for ISAM and ISIM products.

Confidential, Manhattan, NY

Senior Identity Management and Access Management Solutions Architect

Responsibilities:

• Responsible for the design architecture of the Tivoli Stack including ISIM/SAM/TDS/SDI/TSIEM/TCIM, and QRadar
• Gather Business Requirements with customer and document and obtain sign off, create Technical Solution Design Documents, Provide Gap Analysis, implemented best practice Phase Approach Methodology. Apply SDLC model for all design and development work.
• Technical Lead of a Team 5 developers, implementers, architects for solution designs.
• In-depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.
• CA SiteMinder, ControlMinder, IdentityMinder design of high availability solutions architecture. Implementation with workflow design, email notification and approval nodes. Federation integration with SAML assertion and PKI technologies.
• Confidential Cloud research for ISIM integration, lease space, and training.
• Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.
• Embedded Operating Systems security controls for platforms including Windows 7, Windows 2003-2008, AIX, Solaris, Z/OS, AS/400, Linux, and others
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Apply methods to systematically create architectures based on the analysis of known functional requirements, quality requirements and constraints.
• Drive innovative solutions to reduce technology costs, and improve performance and scalability resulting in business flexibility and growth.
• Assume responsibility for developing, implementing a completing highly complex often unique or pioneering projects.
• Streamline manual ID Admin processes to a fully automated Identity Management solutions, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.
• Developed all Training and Functional Testing Documentation for Healthnet
• Technical Solution Design documents for United Rental, with Use case development
• Deployed and Integrated with Latest Confidential SIM Active Directory Adapter's, with ISIM Provisioning Policies, Adoption Polices, workflows, etc.
• Extension of ISIM LDAP to support custom attributes
• TDI/SDI skills are utilized on both of these accounts for integration of PeopleSoft feeds, custom feeds, SunOne Sync LDAP Directories Assembly Lines.

Confidential, Coppell, TX

Responsibilities:

• Assumed currently deployed ITIM 4.6 infrastructure steady state support.
• Currently designing an upgrade strategy for ITIM 4.6 to ITIM 5.1 with added design of implementing new Oracle Adapter to support Oracle 11g databases to include Oracle Group/Role development.
• Designing business requirements and architecture strategy for Active Directory/Exchange ITIM automation of ID creation/lifecycle management.
• Developing customization for ITIM Self Service applications to perform Hot Button Terminations.
• Design, deployment and automation of Active Directory/Exchange mailbox ID creation from HR Feed processing and Non-Employee feed processing.
• Streamline manual ID Admin processes to a fully automated Identity Management solutions, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.
• Ability to effectively convey ideas through oral and written communications; ability lead and work in a group or work independently; excellent analytical skills, detail oriented; ability to understand, and resolve issues.
• Support of ISAM/TFIM Functional Components including Junction creation/ Customization of TFIM Self-service pages, Authorizations, etc.
• SAML Assertion integration’s with Confidential business partners through TFIM

Confidential

Senior Identity & Access Management Solutions Architect

Responsibilities:

• Responsible for the design architecture of the Tivoli Stack including ITIM/TAM/TDS/TDI/TSIEM/TCIM/SAM/TFIM
• Gather Business Requirements with customer and document and obtain sign off, create Technical Solution Design Documents, Provide Gap Analysis, implemented best practice Phase Approach Methodology. Apply SDLC model for all design and development work.
• Technical Lead of a Team 8 developers, implementers, architects for solution designs.
• In-depth expertise in development of enterprise authentication, authorization, and identity solutions from the requirements/design to implementation phases.
• Oracle Identity Manager (OIM) 11G support in steady state administration and migration activities to ISIM infrastructure, tasks included updates to workflow designer for the approval and provisioning workflows, Registration managements of fine grained entitlement’s. Agentless adapter upgrades and installations, configurations. Utilized Adapter factory for integrations with legacy custom applications. Implemented Generic Technology Connectors for Process flow for business processes. Established recertification processes for fine grained entitlements.
• Oracle Access Management (OAM) updates, configuration, migration’s, administration of SSO enabled applications to ISAM infrastructure.
• Oracle Identity Federation (OIF) updates, configurations, steady state support administration and migration activities to IFIM infrastructure.
• Knowledge of inner workings and security aspects of variety of Application Servers, Web Servers, Media/Content Servers, Messaging Servers, Database Servers, Integration Servers, etc.
• Oracle Unified Directory and Oracle Internet Directory, Oracle Virtual Directory (OUD/OID/OVD) LDAP V3 technology, design and implemented schema changes and updates, administration of application ID’s for authentication and LDAP group authorizations. User’s updates, password and access administration, migrations of users and groups to TDS infrastructure.
• Embedded Operating Systems security controls for platforms including Windows 7, Windows 2003-2008, AIX, Solaris, Z/OS, AS/400, Linux, and others
• Confidential Cloud for ISIM proof of concept, included integration in the cloud and prototyping.
• Stellar technical writing, documentation development, process mapping, and visual communication skills.
• Excellent interpersonal and verbal communication skills, customer interaction skills.
• Apply methods to systematically create architectures based on the analysis of known functional requirements, quality requirements and constraints.
• Drive innovative solutions to reduce technology costs, and improve performance and scalability resulting in business flexibility and growth.
• Assume responsibility for developing, implementing a completing highly complex often unique or pioneering projects.
• Streamline manual ID Admin processes to a fully automated Identity Management solutions, improves performance, reduction in manpower costs, reliability, audit ability, and reporting.

Confidential

Responsibilities:

• Assumed steady state and re-architecture design of current IDM solution, which was implemented with Sun IDM, java code and Perl code automation creation scripts to be replaced with a fully automated Confidential Tivoli Identity Management solution.
• Technical Lead of a Team 4 developers, implementers, architects for solution designs.
• Evaluation of current solution, design more automated solution to decommission current Sun IDM, execution code, and MIIS strategy.
• Designed a new Tivoli Directory Server (TDS) solution to replace and decommission current Sun Directory solution, with full corporate directory functionality to include all schema, LDAP groups’ authorization strategy for legacy application authorization.
• Multi-Master directory server solution design and implementation.

Confidential

Technical Lead

Responsibilities:

• Developed a fully automated Identity Management solution from scratch. Beginning with architecting the data center implementation of the servers all the way through deployment and steady state solution.
• HR feed automated processing, workflow design for each target, identity algorithm for user ID creation, password policy design for each target and inclusive policies.
• TDI coding for automation conception, through execution, comparison lookups, HR Feed validation code.
• Designed a fully automated ID creation, email, approval nodes, exception routing, RFI workflow routing engines.
• Creation of Use Case test scenarios, Test execution process, and validation process. Designed a complete implementation and go live execution plan.