SUMMARY:

• A strong and diversified background in distributed, network and desktop technologies, with extensive experience in, Identity and Access Management, Security, Emerging Technologies, Infrastructure architecture and Project Management.Committed, resourceful technology professional with strong ability to conceptualize problems and develop a workable solution.

TECHNICAL SKILLS:

Software: JAVA, J2EE, PingFederate, CA Siteminder, CA Identity Manager, Directory Server, Juniper, Oracle 10g, LDAP, Solaris 10, AIX, Windows, Linux, shell scripts, IIS, Apache, Webservers, PKI, SAML 2.x, VPN, Secure FTP, PGP, SSH/SC, HTTP/S, IBM Websphere and Portal, Weblogic, JBOSS, SSL, MS Project, AntiVirus, AntiSpam, RADIUS, Security Scanners, Wireless Security, LAN/WAN Security, Internet Firewall Security.

PROFESSIONAL EXPERIENCE:

Confidential

IAM Architect

Responsibilities:

• Provided architect over sigh for Access, Federation and Identity infrastructure( IAM).
• Responsible for the delivery of products and solutions to implement Single Sign - On.
• Architect multi Factor security solutions to integrate application into SSO.
• Act as subject matter expert for access management, SAML 2.0, Identity Management.
• Evaluated and reengineer SSO solutions using Siteminder, CA IDM and Federation.
• Worked with IBM, Oracle and third party Identity and access management solutions.
• Install, configure and maintain server, database and federation components.
• Implemented Third party security integration and develop code for customization.
• Worked with Secure proxy server, SunOne LDAP, Advance and Risk authentication.
• Integrated Cloud based multi factor solutions and various custom solutions.
• Supported multiple projects concurrently including major IAM component upgrades.
• Worked with Oracle DB, LDAP, AD, Directory server (Sun/CA) and their use as data stores with IAM servers.

Confidential

IAM Architect

Responsibilities:

• Implemented PingIdentity, PingFederate, Identity & Access Management and Directory services.
• Act as subject matter expert for PingFed, and Security multi factor technologies.
• Work on PingFed integration with Microsoft sharepoint and office 365 suites.
• Install, configure and maintain PingFed 6.x and 7.X.
• Strong experience and expertise in Federation SSO.
• Worked with PingIdentity, PingFederate, SunOne LDAP, Adaptive Federation, which includes Authentication Chaining and Authentication Rules.
• Integrated Symantec VIP and other Cloud based multi factor solutions. worked with SSO Login page concepts, Ping federation, RSO concept, OAuth, OpenID and PKI authentication services
• Supported multiple projects concurrently including major Siteminder/LDAP/Ping/IDM integration and upgrades.

Confidential

Security Engineer

Responsibilities:

• SupportedFederal Reserve Bank s Single sign - on applications solution with Computer Associates (CA) SiteMinder, Federation and Identity Management Solutions and PKI.
• Supported SSO infrastructure components including siteminder R12 policy servers, agents, databases, and directories.
• Maintain and support federations with both internal systems and external organization.
• Establish and document standards for authentication, authorization, federation, and web services security as related to the SSO environment.
• Provided day to day support for all SSO issues.
• Worked on various projects to integrate new applications and technologies.
• Migrated siteminder from 6.x to 12.x environments.
• Configured and implemented Ping Federation with other Federal agencies.
• Implemented IDM provisioning, work flow, policies and .
• Worked with development team to customize and integrate various custom solutions.
• Provided 24x7 support and participate in root cause analysis.
• Supported PIVI and other PKI technologies integration with access control.

Confidential

Senior Engineer

Responsibilities:

• Provide technical support for enterprise - wide access management and single sign-on infrastructure built on CA, IBM and Oracle products. Work closely with application teams to implement coarse- and fine-granted access control on Java portal platform.
• Administer and support production SSO infrastructure components including policy servers, proxies, databases, and directories.
• Maintain and support federations with both internal systems and external organization, providing assistance to partner IT staff where necessary.
• Establish and document standards for authentication, authorization, federation, and web services security as related to the SSO environment.
• Write scripts where necessary to automate BAU process and Supported J2EE development and deployments.
• Possess 10+ years of experience of implementing security on a large scale systems, integrating projects through the entire software development life cycle from concept to post implementation.
• Work closely with Identity Management teams including Directory and CA IDM to ensure proper provisioning of SSO users.
• Supported both Enterprise and Ecomm SSO infrastructure. Supported Verisign Managed PKI infrastructure.
• Maintain and supported Federated Identity Management solutions for CA and Ping products. Understands Federated identity and Web Services security concepts such as SAML, Shibboleth, Liberty ID-FF and ID-WSF, WS-Federation and WS-Security.
• Provided technical support for message flows applications, utilizing MQ and/or HTTP transports. Familiar with SOA-based security and WS standards including WS-Security.
• Provided Subject matter expertise in various security fields including access control, authorization, identification and authentication, public key infrastructure, network, IDM and enterprise security architecture.
• Supported complex multi-dimensional enterprise architectures at the bank. Participated in implementing and troubleshooting with integration of heterogeneous environments and systems. Experience with detailed requirements gathering and documentation, writing approach documents, whitepapers, and design documents

Confidential

Senior Engineer

Responsibilities:

• Implemented and configuredUNDP s Application single sign - on solution with access management, Federation and Identity Management Solutions.
• Installed, maintained, and troubleshootApplication Servers,Security software, and application code. Performed UNIX Administration with Weblogic, IIS 7.0, Apache, Iplanet webservers. Performed UNIX administration on Solaris and Linux. Integrated new technology software with UN agencies and provided day to day technical support for internet and intranet applications and web services.
• Performed required server installation, configuration and troubleshooting to grow and maintain Confidential infrastructure. Provided hands on technical support and consulting services to infrastructure support teams, application developers and users while providing engineering support for application performance and functions. Performedall required software configuration to implement Single Sign-on to SharePoint 2010 environment.
• Made enhancements to custom code on a needed basis. Wrote and customize scripts to enhance and automate environment. Manage failover testing in multi-Tier Application failover scenario. Performed failover analysis, planning, and implementation for complete application stack with various regions, while documenting success and failures.

Confidential

Senior Engineer

Responsibilities:

• Implemented Identity and Access Management solutions (IAM) at General Motors. Applications included car dealership and manufacturing applications. Provided subject matter expertise for Identity and Access Management products. Architected security solutions which integrated with Federated technology, Multi factor authentication and third party solutions.
• Build IAM servers on windows and UNIX and integrated identity and access software. Identified technical issues, provided solution and updated configuration files to implement changes.
• Created design documents and build environments to implement design.
• Performed actual software install and configurations to build proof of concept environments to deploy business solutions. Created work flows, setup provisioning, compliant and reporting functions at all tiers globally; database, windows, Linux, UNIX, Web Server.

Confidential

Engineer

Responsibilities:

• Provided technical support for Confidential Treasury applications and websites. Implemented projects included integration with Single Sign - on, Weblogic, Oracle, Juniper, Apache webservers. Performed hands on install and configuration of software to integrate and support financial applications.
• Provided day to day technical support for internet and intranet applications and other web services. Diagnosed problems and make necessary configuration changes to ensure availability of all environments.
• Developed and implemented test plan to analyze clustering and load balancing implementations across the application portfolio
• Performed application monitoring and escalation and created highly detailed support procedures. Measured latency from DMZ to Intranet and WAN application calls.
• Worked with various deployment technologies and responsible for researching deployment products. Worked with team which supports Oracle,Network procedures, multi-cast, load balancing, VIPS, and DNS.

Confidential

Architect

Responsibilities:

• Developed designs for qualified opportunities to be included in statements of work. Created detailed implementation plans, ensuring critical architectural requirements. Acted as a subject matter expert for IT Asset Management and Identity and access management products. Performed product scoping and solution recommendation for CA Siteminder, Identity Manager and Federation. Gathered customer requirements and translated conceptual design and detailed implementation.
• Performed customer delivery engagements to ensure project success and profitability. Worked extensively with data center teams which include Operations, development, network, database, engineering, Quality assurance and management.
• Engagements also include day to day support of applications. Performed delivery tasks which include installation, configuration and support. Developed security solution extensions and customization code. Diagnose and fix issues with application servers, webservers, databases and Enterprise Firewalls.

Confidential

Technical Project Manager (Consultant)

Responsibilities:

• Provided project and technical support to maintain and grow Confidential Universal infrastructure, applications and websites.
• Managed projects and provided technical direction and support for web hosting infrastructure. Provided project and technical support for web servers, application servers, Security and databases.
• Provided daily project and technical support for Confidential web applications. Provided project and technical leadershipfor supportinginfrastructure.
• Managed maintenance and patching of servers, End of Life initiatives, and Cost Reduction initiatives.

Confidential

Technical Specialist

Responsibilities:

• Participated in large scale projects to deploy Confidential web applications and implement new technologies. Lead team and provided support for Confidential .com infrastructure, including resolving production issues.
• Provided subject matter expertise for application servers, web servers, UNIX, PKI, Ldap, and access Management. Configured operating system, security software, Web servers, application servers and all related software to build servers and integrate applications.
• Provided hands on support for Tivoli Access Manager (TAM), Lightweight Direct Access Protocol (LDAP), Netegrity Siteminder, X509 s and SSL.
• Provided technical support to migrate applications to Websphere portal infrastructure. Installed and supported VeriSign MPKIinfrastructure. Conducted requirement analysis for applications and develop plans for exploiting new technologies.
• Provided daily Weblogic, webserver and SSO administration and support. Monitored, and track vulnerabilities and their mitigation. Evaluated and selected tools which performsapplication and network security reviews and assessments.
• Participated in periodic code reviews to ensure applications are in compliance with standards and strategic architectural direction. Identify applications for reengineering and implemented automation using Bladelogic