SUMMARY:

• Over 20 years of experience in IT systems analysis, architecture, design, engineering, implementation, Team Lead and Project Management.
• Current focus with Identity and Access Management projects.
• Proven technical leadership skills include the ability to manage teams, earn the respect of its members, and lead by example.
• Persuasive verbal and written communication skills compliment a proven ability to multi - task, maintain an organized approach, and ensure success, even when faced with high-pressure or high-risk situations.

SKILLS SUMMARY:

• SUSE and RedHat Linux
• MS Windows Server 2008, 2003 and 2K
• Netware 4.x 5.x 6.x
• Confidential DirXML,
• Confidential /NetIQ Identity Manager 3.6.x, 4.02, 4.5
• Confidential Access Management
• Designer for Identity Manager
• Confidential iManager
• Confidential iChain
• Apache/Tomcat (Windows, Linux and Netware),
• Oracle DB’s
• SQL Query Analysis
• Jboss
• ActiveMQ eDirectory/NDS 8.8.x
• Active Directory Server 2008, 2003…
• Sun One Directory Server
• Import/export/query,Ldif
• Apache Directory Studio
• IBM, HP, DELL Enterprise Servers
• IBM Storage Manager
• Cisco IOS Switches/Routers
• SAN infrastructure SCSI and/or Fiber
• SAN Fiber Switch Management

PROFESSIONAL EXPERIENCE:

Confidential, Union, NJ

Identity & Access Management Architect / Engineer

Responsibilities:

• Plan, architect, design, document and execute project for Upgrade of Confidential /NetIQ IDM environments from IDM 3.x to 4.5 and Access Management 3.x and 4.0.x to 4.3x.
• Analyze and Assess the entire IDM and Access Management environment, document areas of remediation not in line with industry standard practice.
• Lead SME for Access Management, Architect solutions to handle reverse Proxy for various Web Applications, including Authentication, Authorization and identity Injection (Feed Identity Info in http headers to be consumed by App Servers).
• Work closely with Security Architect to provide solutions that are highly available and secure.
• Troubleshoot/Support all aspects of the IDM Drivers and Access Management Reverse Proxies, LDAP auth issues, etc.
• Act as Technical Manager/Supervisor to two IDM Engineers.

Confidential, Brooklyn, NY

Identity & Access Management Engineer

Responsibilities:

• Lead effort to migrate and upgrade NetIQ IDM servers and services to new Data Center,
• Project size over 200+ servers and User environment of over 100,000.
• Plan, document and execute project for Upgrade of IDM environment from NetIQ IDM 3.7 to 4.5.
• Analyze and Assess the entire IDM environment to create Server/Service Migration Matrix to determine servers/services in project scope and track progress.
• Assessment of User Application environment, document plan to upgrade User App from 3.x to 4.x and move DB backend from oracle 10.x to 12.x .
• Upgrade iManager servers from 2.7 to 3.0.
• Upgrade eDirectory to 8.8.8 sp8 in 5 trees across DEV, STG and PRD.
• Provide Support for current IDM environment as needed, AD Drivers, eDir Drivers and SQL DB drivers.

Confidential, Austin, TX

Identity & Access Management Engineer

Responsibilities:

• IDM Engineer on Enterprise IDM Projects for Vermeer and HealthQuest to design, implement, support and deploy NetIQ Identity Manager 4.x environments.
• Manage project deliverables, milestones and communicate to client via weekly status resources, disciplined methodologies, and the agility required in the delivery of world-class identity management solutions meetings and reports.
• Implement IDM environment from functional and Business Requirement in Solution Design Documents agreed upon with client. Drivers involved are PeopleSoft, WorkDay, User Application, Active Directory, JDBC(Oracle and MS SQL DB’s), LDAP (OID), RBE Service Driver, Loopback Driver and Entitlement Service Driver, Data Collection Service, Managed System Gateway Service, SOAP Drivers, User Application, Roles and Resource, MSG and DCS, etc.
• Participate in initial Design Requirements, modifications/enhancements; recommend efficient design ideas to satisfy client requirements.
• Implement and test code via NetIQ Designer 4.x. Run automated tests via IDM Validator.
• Conform to SDLC by Deploy/Migrate IDM Policy Code in DEV, TEST and PROD environments.
• Document Project Plans, Design Docs, As Built Docs, Use Cases, Unit Tests and Client Install Docs.
• User Application, RBPM, Identify Reporting, Postgresql DB and Confidential Audit integration.
• Work closely with client and provide Knowledge transfer on how to support and maintain the environment.
• Create Custom iManager 2.7.x Roles/Tasks and Custom Views.
• Install entire Infrastructure in DEV, QA and Prod environments, components consist of Confidential eDirectory 8.8.x, IDM 4.5, Role Based Reporting Module, User App (Integrate with MS SQL), PostgreSQL, Tomcat, EAS, Identity Reporting and iManager on Suse/Red Hat Linux.
• Extensive experience with LDAP search queries and LDAP implementation and administration in eDirectory and Active Directory. Custom Schema Design/Deployment with eDirectory 8.8.
• Significant experience with use of DBVisualizer to access to Oracle and SQL Databases to construct SQL statements to INSERT/Create Users and rows in Tables for provisioning, UPDATE/Delete Users and Tables for de-provisioning.

Confidential, New York, NY

Senior IDM Software/Systems Engineer

Responsibilities:

• Identity Management Project, utilizing NetIQ IDM 4.5x, connecting WorkDay, Active Directory, Oracle Enterprise Business Suite, and Salesforce.
• Password Synchronization, created policies/rules to synchronize Passwords between AD, Oracle EBS, Workday and eDirectory.
• Utilized User Application Roles and Resource to automatically provision/de-provision access to system based on various events and driver Policies.
• Self Service Password Reset, utilized Netiq SSPR servlet to create Password Recovery policies. Configured SSPR to recovered passwords via Email, SMS text and Security Challenge/Response Questions. Customize Web Application for Customer Specific Branding and Themes per client specific requests.

Confidential, Austin, TX

Identity & Access Management Engineer

Responsibilities:

• IDM Engineer on Enterprise IDM Projects for PPL and Western Union to design, implement and deploy Confidential Identity Manager 3.x and 4.x.
• Manage project deliverables, milestones and communicate to client via weekly status meetings and reports.
• Utilize Agile method of Project Management with daily SCRUM meetings to track progress, thus allowing team members to identify and effectively address risks to the project as they occur. management solutions
• Implement IDM environment from functional and Business Requirement in Solution Design Documents agreed upon with client. Drivers involved are PeopleSoft, User Application, Active Directory, JDBC, JDBC Fanout (custom), RBE Service Driver, Loopback Driver and Entitlement Service Driver, Data Collection Service, Managed System Gateway Service, SOAP Drivers, User Application, Roles and Resource, MSG and DCS, etc.
• Participate in initial Design Requirements, modifications/enhancements; recommend efficient design ideas to satisfy client requirements.
• Implement and test code via Confidential Designer 3.x/4.x. Run automated tests via IDM Unit.
• Conform to SDLC by Deploy/Migrate IDM Policy Code in DEV, TEST and PROD environments.
• Document Project Plans, Design Docs, As Built Docs, Use Cases, Unit Tests and Client Install Docs.
• User Application, RBPM, Identify Reporting, Postgresql DB and Confidential Audit integration.
• Work closely with client and provide Knowledge transfer on how to support and maintain the environment.
• Create Custom iManager 2.7.x Roles/Tasks and Custom Views.
• Deployed, tested and modified complex Dirxml Script and XSLT policies, Use of Entitlements for provisioning and de-provisioning users. Use of email templates to send SMTP alerts to Audit team for successful and failed provision/de-provision events.
• Integration of IDM and Confidential Sentinel to feed Custom and Standard Event Audit info to Sentinel Database to providing Security Alerts and Historical Audit data.
• Install Confidential eDirectory 8.8.x, IDM 3.6.x, IDM 4.02, Role Based Reporting Module, User App, PostgreSQL, JBoss, EAS, Identity Reporting and iManager on Suse/Red Hat Linux.
• Extensive experience with LDAP search queries and LDAP implementation and administration in eDirectory and Active Directory. Custom Schema Design/Deployment with eDirectory 8.8.
• Significant experience with use of DBVisualizer to access to Oracle and SQL Databases to construct SQL statements to INSERT/Create Users and rows in Tables for provisioning, UPDATE/Delete Users and Tables for de-provisioning.
• Confidential Access Manager, participated in sales presentation for integration with MS Sharepoint.

Confidential, New York, NY

Server Team Technical Manager/Lead IAM Engineer

Responsibilities:

• Consultant onsite at the Port Authority of NY and NJ Manage staff of 20 Server Administrators, DBA’s, and Software Packagers.
• Team is responsible for the management of a 5000 user environment consisting of Windows 2k, 2k03, Netware and UNIX (Solaris) servers (approx 400 servers). Also responsible for all aspects of management of Active Directory and eDirectory, including Citrix environment.
• Provide Weekly and Monthly Status Reports to client.
• Verify SLA’s are met by providing detailed Uptime and MS Security patch reports. Responsible for the testing and deployment of MS Security patch
• Analyze processes for improvement and suggest how to perform more effectively.
• Subject Matter Expert for Confidential products: Netware, Identity Management, Access Management (iChain), and eDirectory.
• Subject Matter Expert for IBM SAN/Switch environment.
• Project Management, for various recent projects such as Data Migrations, Large scale Server Builds, Active Directory Domain Upgrades to 2003 Native Mode, New System Design, Identity Management Policy modifications, ESX Virtualization (ongoing), etc..

Lead Design Engineer/Systems Analyst/Project Manager

Confidential

Responsibilities:

• Meet with clients to discuss various business needs, collect and document requirements, develop project plans, define project scope, architect design and submit to client. Mange projects from design to deployment for the following:
• Client requested method of integrating PeopleSoft data into the current environment, collected requirements, suggest to create a POC in development environment, documented project plan for POC, defined requirements and scope. Received CSV file dump from PeopleSoft database, designed integration via Confidential IDM delimited text driver. Utilized Confidential ’s Designer for IDM to develop design and validate functionality, imported design into dev environment and presented solution to client.
• Client requested special case for provisioning of users that do not require Exchange mailboxes. Implemented custom Policy development to provide solutions to business needs, such as filtering of specific users from synchronizing to Exchange, this included creation of custom auxiliary attributes in eDirectory to process policies. Utilize IDM Designer to test/implement modifications to drivers.
• Completed Architecture Design and Project Management of a new File and Print environment for the client (approximately 75% completed), including collecting initial client requirements, write up of SOW and Project Plan with timelines/milestones/resources. Chief architect for all aspects of new environment design including consolidation of 7 File and Print Clusters to Three Clusters in a more streamlined eDirectory tree. Developed custom IDM connector to integrate the new environment into the current User Provisioning infrastructure. Migration method via development of a new eDirectory to eDirectory IDM connector utilizing a custom Global Configuration Value to locate new dn from source dn in custom attribute and place in the proper location in the new eDirectory design.
• Designed and Implemented, Zenworks upgrade from Zen 3.x to Zen6.5 sp2 across the agency.
• Support and Upgraded Confidential ’s Identity Manager (DirXML) 2.0 to 2.02.x, then upgraded 2.02.x to 3.01 . IDM Environment consists of three eDirectory Trees, Active Directory and Exchange. Troubleshoot and monitor current environment.
• Implemented and Administered Confidential 's Access management product iChain v2.3.5 appliance within a fault tolerant/load balanced infrastructure via a Layer 4 switch and two iChain servers. Specifically configured, administered and supported multiple Web Accelerators for access to secured and restricted data. Configured iChain accelerators to utilize multiple form factor authentication via Radius and RSA tokens. Single Sign via OLAC and XML Form fill.
• Managed project, developed design and implementation plan for seven (3) node Netware 6 Clusters to be upgraded to Netware 6.5 .
• Onsite Subject Matter Expert for Confidential ’s Identity Management (DirXML), iChain, Netware, eDirectory, Confidential Clustering, Zen Desktop Management, and Zen Server management.

Confidential, Jersey City, NJ

Sr. Systems Engineer

Responsibilities:

• A member of the American Server Management and Administration team for eDirectory.
• Supporting over 500 Netware Servers and approximately 10 NDS trees with Netware 6, DirXML and ZFD/ZFS.

Confidential, New York, NY

Senior Systems Engineer

Responsibilities:

• Providing expert level Confidential Services working with the Design and implementation of the following products: eDirectory, Netware 4.x\5.x\6.x, Border Manger, DirXML 1.x, Identity Manager 2.x (Active Directory, eDirectory and JDBC connectors), iChain, Portal Services(Extend Director), GroupWise 5.x, 6.x, Zenworks for Desktops (imaging, application distribution, policies, remote control and inventory), Zenworks for Servers, Confidential Cluster Services, Confidential Secure Login, iPrint, iFolder, Virtual Office, NFAP (CIFS/NFS) LDAP import/export for system migrations.
• Provide support and implementation services for the following: Trend Interscan Viruswall (SMTP Gateway), Various Firewalls, Symantec/McAfee/Trend Ant-Virus for Netware/Microsoft Servers, Win2k/Win2k03 Server, some Active Directory administration, Backup Software; Arcserve/BrightStor, Veritas Backup Exec/ Netbackup on Netware and Windows Servers.

Confidential, New York, NY

International Team Lead / Senior Systems Engineer

Responsibilities:

• Initial Responsibilities included provide onsite engineering support for Netware File/Print/Zenworks environment for North America across 6 offices, act as supervisor to two jr engineers .
• Responsibilities graduated to Research and Design of New Technology, Providing Secure, efficient, scalable, high performing, easily accessible engineering solutions to Business Process Needs. Develop custom integration solutions based on business rules for achieving uniform data integrity and automating tasks to eliminate the manual and repetitive tasks of creating and modifying user identities in all of the many heterogeneous SMBC enterprise systems.
• Migrated all Netware servers in North America from 4.x to 5.x and provided all Y2k patches/fixes needed. Removed IPX from all servers and configured a Pure IP environment for Netware.
• Initially utilized Zenworks 3.x to distribute all business software utilized by the entire user community, all applications were pushed out via Zen Application Explorer. Customized applications to set distribution conditions based on group, OS, disk space, registry settings, file versions, etc. Also, utilized custom variables to distribute/configure individualized parameters based on specific applications requirements. Implemented multi-layer security policies via Zen User and Workstation Policies.
• Implemented complex location based login scripts with conditions on Network Address, Group, username, last name and other identifier variables.
• Designed and implemented Confidential Cluster Services across North America and Europe to provide Fault Tolerant solutions to File/Print Services connecting to EMC and Compaq SANs. Architected and coordinated the upgrade of Netware Servers and Confidential Clustering v5.x to v6.x across North America and Europe.
• Implemented, designed and administered an eDirectory Tree across 6 North American offices and 6 European offices.
• Upgraded Zenworks 3.x to 4.x across all sites.
• Researched, designed and documented a strategy which entailed consolidation of server hardware and provides access to business applications via Thin Client technology. Utilized Confidential ’s OnDemand/Deframe thin client technology and delivered
• Designed and implemented a customized Confidential Portal Services environment to provide Single Sign on access to Web Services, Thin client applications and custom content. Including Load balance/Fault Tolerant solution via multiple Portal heads. Customized Portal Content delivery based on user identity, eDirectory attributes, dynamic and static Groups.
• In an effort to reduce administrative overhead, researched and developed Confidential ’s Dirxml integration product. First utilized the eDirectory to eDirectory DirXML Driver to integrate with the SMBC Thin Client Portal utilizing a Flat Tree design for authentication for all international users internal and remote.
• Installed and configured Confidential ’s iChain v2.x to provide identity based web security and accelerate the portal for external and internal access. Upgraded and patched appliances, created ISO and ACL objects in eDirectory.
• Designed and implemented the Active Directory - eDirectory Dirxml Driver with Password Synchronization. This implementation provided custom XML/XSL code to manipulate desired eDir and AD attributes. Thus significantly reducing administration tasks, now users created/modified in eDirectory will also be created/modified in Active Directory and vice versa. Provided User/Password synchronization for two eDirectory Trees and Active Directory (NA and EU Domains).
• Implemented the eDirectory - JDBC(SQL) DirXML Driver, utilized this driver to populate custom sql database for security reporting such as last login, account disabled, account expiration, intruder lockouts, etc…

Confidential, New York, NY

Senior Systems Engineer

Responsibilities:

• Provided LAN/WAN engineering services including Confidential, Compaq, Microsoft and Cisco software and hardware support for this New York Area Systems integrator.
• Attended Customer sales meetings and interfaced with Customers to satisfy requirements for various Small to Medium sized Businesses.