SUMMARY:

Insightful, results - drivenIT professional with notable success directing a broad range of corporate IT security initiatives while participating in planning, analyzing, and implementing solutions in support of business objectives. Excel at providing comprehensive secure network design, systems analysis, and full lifecycle project management. Hands-on experience leading all stages of system development efforts, including requirements definition, design, architecture, testing, and support. Outstanding project and program leader; able to coordinate and direct all phases of project-based efforts while managing, motivating, and guiding teams.

AREAS OF EXPERTISE:

• Network and Systems Security
• Enterprise Monitoring Solutions
• Authentication & Authorization
• Policy Planning / Implementation
• Cost Benefits Analysis
• Identity Management
• Data Integrity / Disaster Recovery
• Regulatory Compliance
• Team and Project Leadership
• Cyber Security Consultant
• Technical Specifications Development
• Risk Assessment / Impact Analysis
• Research and Development
• Cryptography
• Service Oriented Architecture
• Privacy and Data Protection

TECHNICAL SKILLS:

RDBMS: ORACLE 9i/10g/11g, SQL Server, MS Access, DB2

Languages: C, C++, Java, Shell Scripting

J2EE Technologies: JDBC, JNDI

Web Technologies: Servlets1.2, JSP1.2, JavaScript1.2, HTML, XML, XSL, XSLT, SAML 2.0, WS Trust STS

Web Servers: IIS, Apache, IHS

Markup Languages: HTML, DHTML, XML

Platforms: Windows NT/2000/XP/7/Server, UNIX, Linux

Other Tools: CA SiteMinder, RSA Authentication Manager, RSA Access Manager, RSA Adaptive Authentication, RSA Federated Identity Manager, RSA Certificate Manager, Active Directory, ADLDS, Ping Federate, PingOne, Venafi Director, Splunk, Centrify, Nagios, MS Office365, Cognos Report Studio 8.2, Actuate Reports 9.0

PROFESSIONAL EXPERIENCE:

Confidential

INFORMATION SECURITY SINGLE SIGN-ON SPECIALIST

Responsibilities:

• Setup federations to 3rd party vendors / suppliers using SAML 2.0.
• Integrate RSA Adaptive Authentication with SSO solution.
• Support enterprise SSO solution and infrastructure.
• Build roadmaps and strategies for the authentication services for the enterprise.

Confidential

SENIOR INFORMATION SECURITY ANALYST

Responsibilities:

• Efficiently build, set-up & configure PING Federate servers in DMZ & Core Network.
• Setup federations to 3rd party vendors / suppliers using SAML 2.0, OAuth and WS-Trust.
• Setup & configure connection to MS Office365 in Ping Federate using WS Trust STS.
• Setup Idp connections on PingOne to 3rd party vendors / suppliers.

Confidential

SENIOR INFORMATION SECURITY ANALYST

Responsibilities:

• Adeptly built, configured Dispatcher/Authentication & Entitlement servers for multiple environments.
• Successfully set-up the RSA Access Manager console on Tomcat & upgraded the agents to 5.0 & reconfigured the system to use DNS alias instead of hard coding to hostnames or IP’s.
• Masterfully designed/developed a custom Property Provider Interface (PPI) to retrieve additional properties using a web service; Build ADLDS instances to store the policies.

Confidential

SENIOR INFORMATION SECURITY ANALYST

Responsibilities:

• Systematically work with internal application teams & Salesforce to set-up SAML 2.0 federation & act as an Identity Provider (IDP); also set-up RSA Access Manager internally to force associates to authenticate internally before federating over to Salesforce.
• Efficiently built & deployed custom attribute plugins in RSA Federated Identity Manager (FIM) to send attributes as required by Salesforce & work with Salesforce to resolve any SSO issues.

Confidential

SENIOR INFORMATION SECURITY ANALYST

Responsibilities:

• Accurately installed Venafi agents on all servers to perform a file system level scanning (physical scanning) of SSH keys & Certificates under a particular path or location.
• Efficiently performed a network scanning of IP’s & ports to discover & renew SSL certificates.
• Successfully managed all the certificates & SSH keys & customized to send certificate expiry notifications to customer & application teams; used Bigfix to rollout agents to homeoffice & store systems & custom built drivers to provision certificates to IIS, Apache, Websphere and tomcat servers.
• Systematically configured the Certification Authority inside Venafi Director & Set-up certificate templates & profiles in RSA Certificate Manager as well as service accounts (both local & Active Directory) for Certificate provisioning; Systems that had Centrify installed used Active Directory accounts, others used local accounts.
• Meticulously reconfigured Tectia SSH client in non-interactive logon from Venafi Director for provisioning.

Confidential

INFORMATION SECURITY ANALYST

Responsibilities:

• Efficiently worked on cutting edge SSO solutions like RSA Access Manager & RSA Federated Identity Manager (FIM) to globally support Wal-Mart (ISD) business using state of the art technologies.
• Productively installed cleartrust agents & protected new resources/applications on MS Threat Management Gateway Servers (TMG) & IIS boxes; Also worked on RSA Adaptive Authentication which is a step-up authentication mechanism using site-to-user images & Q&A’s to secure access to information.
• Successfully built associations/trusted relationships to 3rd parties/partners using RSA FIM solution.
• Effectively installed SSL certificates on Threat Management Servers (TMG) & Microsoft IIS boxes.
• Systematically developed a Global Authentication solution for all the global associates to access secure information hosted on public cloud;

Confidential

SYSTEMS ENGINEER

Responsibilities:

• Support all the trading applications like Charles River and Long View Trading System and the decision support systems like Perform and Vision.
• Effectively supported the Wall Street Office (WSO) application which is used for mortgages & supported the Settlement Applications like Oasys & Synergy; develop custom, client specific External Interfaces.
• Attend design walkthroughs for new application / interface build; worked extensively on IBM Web sphere MQ series; supported the Oracle, SQL & DB2 databases.

Confidential

ASSISTANT SYSTEMS ENGINEER

Responsibilities:

• Successfully updated & enhanced the systems used for various American Express Loyalty Platform functions & Travel Related Services (TRS), a part of AMEX Technologies; involved in credit card business.
• Efficiently designed, developmental & supportive operation for the client as well as render reports in Actuate with Oracle database; responsible for Unit & Integration testing.
• Effectively created back-end scripts for bonus correction in STAR application & the triggering reports for UAT scenarios; responsible for setting up Corporate Membership Rewards in STAR.
• Successfully upgraded & secured File Transfer Protocol (FTP) using Tumbleweed Secure Client.
• Meticulously invoked shell scripts from java in order to transfer files via SFTP.
• Effectively practiced agile methodology for software development projects to rapidly evolve changing expectations & competitive markets; interacted & coordinated with product team, QA team & release team in making weekly release builds & handled Change Management Record (CMR) & Information Management Record (IMR).

Confidential

ASSISTANT SYSTEMS ENGINEER

Responsibilities:

• DOTS II applications capture, monitor & report on developmental impact & other performance measures throughout the life of the Leading Bank projects; DOTS II is developed as a part of the iDESK application of Leading Banks.
• Efficiently set-up Leading Bank to identify the objectives & achieved impact from both positive & negative projects; Leading Bank seeks current development impact of each project for management reporting, allocation of performance awards & in order to be accountable to the Board.
• Successfully participated in the design & development of Reports in Cognos Report Studio 8.2; also developed External Interfaces for customization specified to this client.