SUMMARY:

• Information Technology and Security professional with over 6 years experience in deploying Identity Management, LDAP Directories, Single/Reduced Sign - On (SSO),
• Provisioning and Provisioning/Identity Workflows, Access Management, RBAC (Role-Based Access Control), Compliance and Auditing Technologies, Federated Identity/Federation, Enterprise System Architecture, Security Infrastructure Design, Authentication and Authorization technologies, as well as custom-built security and technology frameworks.
• Engagements within many large-scale environments, as a consultant including Confidential, Confidential, T&M (consulting with TCS), Legal Craft and Confidential . Experience in the Pharma,, Healthcare, Banking, Auto and Telecom Industries. User populations have fluctuated from a few hundred to an excess of 1.3 million people.

TECHNICAL SKILLS:

IDENTITY MANAGEMENT & SECURITY: PKI, Kerberos, CA/Netegrity SiteMinder, CA/Netegrity IdentityMinder, Oracle Access Manager (OAM), CA Federation Manager, CA Business Intelligence, Sailpoint IdentityIQ, SailPont AccessIQ.

LDAP DIRECTORIES: CA Directory 8 /12, Microsoft Active Directory, ADAM, Tivoli Directory Server, and Sun One Directory Server, Oracle Internet Directory (OID), and Oracle Virtual Directory (OVD).

BACKOFFICE SOFTWARE: Database (SQL Server/Oracle/ MySQL), Webserver (IIS, Apache, IBM, IHS), Reverse Proxy, Citrix, Terminal services, Application Server (BEA Weblogic, IBM Websphere, JBoss, Tomcat).

DATABASE: Oracle, SQL Server, DB2

OPERATING SYSTEMS: Microsoft Windows up to Windows 2008 R2 Enterprise Edition, UNIX (SOLARIS 2.x, SOLARIS, AIX, IRIX, HP/UX, LINUX, MS-DOS).

PROGRAMMING: Java, JSP, PHP, .Net(ASP, VB), XML, HTML, JavaScript, Web 2.0, SQL, PL\SQL, T-SQL

PROFESSIONAL EXPERIENCE:

Confidential (Houston, TX)

Identity & Access Management, Governance Consultant

Responsibilities:

• Maintain full Identity Management system life cycle with Sailpoint (IIQ) as Governance
• Implanted SPML call to trigger Identity Manager Tasks
• Integrated SAP R3, Unix \ AIX, RACF and Active Directory Endpoints with CA Identity Minder
• Architected and implemented solutions in Identity Minder 12.5
• Worked with business compliance to implement mission critical User Life Cycle processes
• Installed, Migrated and Implemented Siteminder Access solutions
• Installed Siteminder Web agents and configured across various Web Servers (Apache, IBM Http, IIS, Sun One etc)
• Configured Siteminder solution for SAP (Net waiver portal), SharePoint and Weblogic for Authentication
• Used SAP BOXI for Identity & Access management reporting
• Solutions supported 24\7 are User account provisioning/de-provisioning, Enterprise Directory Services, Single Sign-On (web and desktop), Password Management, Role-Based access control, and Access management

Confidential (Irvine, CA)

Identity & Access Management Consultant

Responsibilities:

• Maintain full Identity Management systems
• Integration of all SAP HR systems, Active Directory, and Exchange
• Developed 3 environments on both physical and virtual hardware
• Responsible for all development and implementation of CA-IDM, CA-Siteminder, eTrust Directory, and some (Oracle, SQL Server) databases
• Deployed 50+ Applications in IDM includes custom IDM API’s, Workpoint (BPEL), BLTH & Logical Handlers
• Performed reconciliation across 3 tiers (SAP HR - IDM - AD)
• Effectively used TEWS for Dynamic IDM Task invocation & Self Service.
• Migrated Siteminder from 6.x to 12.x currently performing Proof of Concept on migrating R12sp3 to 12.5
• Migrated IDM from R12SP3CR10 to R12.5 in development.
• Performed Requirements Gathering for a Proof of Concept to be implemented into their environment in development for both IDM & Siteminder.
• Analyze current network layout, services and resources to determine required access.
• Determine user roles and responsibilities, classifying like users into groups to ease maintenance and rule implementations controlling access to resources appropriate to user and group classifications.
• Analyze and document (both existing and potential) solutions for the following: User account provisioning/de-provisioning, Enterprise Directory Services, Single Sign-On (web and desktop), Password Management, Role-Based access control, Strong \ Multi factor Authentication

Confidential (Sandiego, CA)

Identity Management Implementation Engineer

Responsibilities:

• Design was built around managing Students, Faculty, and Staff with multiple roles.
• IDM was configured to talk to two separate Authoritative PeopleSoft sources for all identities includes Students, Professors(Adjunct & regular), and other staff members.
• Configured out of the box CA IDM Connectors to fit business needs.
• In additional to being proficient with the development technologies I have expert knowledge in all of the target systems and their components that the product manages, including LDAP directories, security and databases. This helped bring the project to completing within deadline.
• Worked on designing custom workflows using CA’s workpoint designer tool for custom approval \ workitem based application access requests
• Worked with TEWS (CA’s web services core) for implementing a custom web interface for new user registration and self-maintenance packages.

Confidential

Identity and Access Management Specialist

Responsibilities:

• Initially was brought in to provide a demo and Proof of Concept (POC) on CA's Identity Manager integrated into their environment.
• Integrated IDM into Active Directory, Multiple Exchange servers, eTrust Directory, and bulk loaded all users from a flat-file dump from their Auth Source.
• Integrated Applications with CA Identity Manager 8.x
• Wrote custom BLTH modules for bulk importing and custom application provisioning.
• Rewrote a couple of CA’s out-of-the-box connectors to better fit their environment and needs.
• Worked with TEWS (CA’s web services core) for implementing a custom web interface for new user registration and self-maintenance packages.
• Developed a custom new user registration process using JSP and hooking into CA IDM through IDMManage.

Confidential

Access Management Specialist

Responsibilities:

• Reviewed current architecture and business requirements for an Access Management Solution
• Siteminder was setup to protect multiple web and application servers of different flavors
• Identity Minder was configured to work with multiple authoritative sources and provision users to various end-systems across six different sub-organizations. This included a multi-domain Active Directory infrastructure.
• Worked on both US and foreign country deployments with the main focus on deploying an globally highly available Identity Management solution for one of their clients.
• Wrote custom BLTH modules for bulk importing and custom application provisioning.
• Worked with TEWS (CA’s web services core) for implementing a custom web interface for new user registration and self-maintenance packages.