SUMMARY:

• Build IAM Strategy, Roadmaps, Use Cases, Gap Analysis, Assessment for customers globally. Help in Technology selection.
• Design and Implementation of solutions based on leading Enterprise Security and Service Management product vendors.
• Customization and Integration of software for delivering enhanced solutions.
• Providing day - to-day administration to deployments and troubleshooting technical problems.

TECHNICAL SKILLS:

Security Management: ForgeRock OpenAM, OpenIDM, OpenDJ, OpenIG, Okta, Oracle Identity Manager, Oracle Identity Analytics, Oracle Entitlement Server, Oracle Access Manager, Oracle Internet Directory, Oracle Virtual Directory, Oracle Identity Federation, Ping Identity, Ping Federate, Unbound ID, Gigya, Omada IAM, RSA Aveksa Governance, SailPoint Identity IQ, CA Identity Minder, CA SSO (SiteMinder), CA Identity Governance, CA Cloud Minder, CA Privileged Access Manager, CA Identity Portal, CyberArk Privileged Identity Management, SailPoint Identity IQ and other products, Microsoft ADFS, Azure, LDAP, Network Associates PGP and Gauntlet Firewall, Snort IDS, Rainbow Ikey hardware tokens and Smart Cards (Schlumberger Cards), etc.

Hardware: Intel, SunSparc, HP, DELL

Database: Oracle r11g, 10g, 9g, MS SQL 2008, 2005

Web Technologies: Apache Web Server, Tomcat, Microsoft IIS, Weblogic, Websphere, JBoss

Operating System: Windows 10, 8, 7, Windows 2008, Windows 2003, Windows XP, Vista, Red Hat Linux 6.2 / 7.1, Solaris 10, 11 (non - administration knowledge)

Mail Server: Office 365, MS Exchange Server 2010, Lotus Notes, Qmail

Documentation: Office 2007/2010/2013 , Visio 2007/2010/2013 and MS Project

Programming: Working knowledge of JAVA, .NET, XML

PROFESSIONAL EXPERIENCE:

Confidential, Princeton, NJ

IAM Solution Architect, Advisor & SME

Responsibilities:

• Understanding Confidential current IAM Architecture and Environment
• Understanding Confidential IDaaS Strategy for future
• Conducting interviews to list the detailed requirement for use cases such as Authentication, Authorization, SSO, Federation, Identity Lifecycle, SLAs, MFA, Self-Service, Reporting, etc.
• Review the IDaaS RFI and vendor responses from 10 different IAM vendors and provide scoring and feedback
• As IAM SME, evaluate IDaaS and Managed Services Providers (MSP) capabilities, experience and limitations
• Building RFP based on Confidential requirements and scope of the initiatives
• Work with various stakeholders, internal and external teams during this process
• Present the Confidential management with findings and evaluation results
• Working with the Confidential team on building POC for various IDaaS platforms
• Working with the Confidential team to build Investment Proposal
• Reviewing RFP responses, evaluating the MSPs and scoring them
• Finalizing with the Confidential management, the IDaaS platform and MSP provider that Confidential will be using for moving the on-premises IAM solution to cloud based IDaaS platform.

Confidential, Atlanta, GA

IAM Solution Architect & SME

Responsibilities:

• Built reference architecture for IAM at Confidential to define and describe the IAM to utilize the common framework
• Built roadmaps and phases of both internal and external IAM
• Defined Roles based on Job Functions, demographics and business rules, as part of Confidential solution. Build solution using SailPoint IIQ for access governance and compliance, data view and auditing. Running certification campaigns using SailPoint Identity Analytics solution every quarter to figure out the gaps and tighten the governance.
• Designed the automated feed process, complex workflow using CA IAM product suite.
• Gathered Requirements, Architecting and designing the solution, producing Solution Requirements Specification (SRS) and Solution Design Specifications (SDS) and presenting it to the Confidential team.
• Provided expert comments and advise on the various IAM engagements at Confidential
• Worked with the Confidential team to design and implement the Radiant Logic Virtual Directory solution (VDS).
• Worked with Confidential team to prototype CyberArk solution and compare with CA PAM.
• Worked on Omada IAM product, as part of IAM product evaluation, by gathering requirements from stakeholders. Built Omada IAM prototype in Non-Prod environment with Prod data for required workflow, access provisioning and deprovisioning for key systems and users. Worked with the application team to test the PoC on Omada IAM.
• Built process flows, use cases and prototypes for IAM including access governance, enforcing compliance, identity lifecycle, SSO, Multi-factor authentication (MFA) and Privileged Access Management (PAM) using SailPoint IIQ and CA IAM product suite including CA SiteMinder, CA Advanced Authentication, CA Privileged Access Manager (PAM).
• Helped Confidential to define the IAM process flows that needed to be fixed for GDPR
• Demonstrated the capabilities of Gigya solution from both GDPR and CIAM perspective
• Worked with various teams to co-ordinate the Gigya solution efforts.
• Worked with Enterprise Architecture, Cyber Security and Operations team to define, design and implement the IAM solution based on Best Practices.
• Designed and implemented integrations of IAM system with various end points including AWS, Office 365, Active Directory, Azure, SaaS applications, internal, B2B and B2C applications.

Confidential, Atlanta, GA

Oracle IAM Architect and Lead

Responsibilities:

• Worked with the Okta team to put together integration qualifying questionnaires
• Worked on Multi Factor Authentication (MFA) deployment at Confidential .
• Designed, Develop, Integrated, Customized, Administrated and Supported the Okta solution at Confidential
• Worked with the Help Desk team to streamline the processes with respect to issues and calls
• Assisted to build the Tier Support model for Security related tickets for identity mismatch or access issues.
• Worked with the Monitoring team at Confidential to streamline the monitoring processes for all Security tools.
• Worked with the Pega team to build use cases for integration requirements of Pega with OIM and OAM.
• Understanding business and technical requirements of the consolidation project and understand the existing environment, processes, tasks, performance and system.
• Interviewing stakeholders, data owners, DBAs, project sponsors, system administrators, application owners to gather requirements, information and details of current and consolidation system.
• Designed, implemented and tested solution for consolidating the Oracle Identity Manager (OIM) 11gR1 at Autotrader and Oracle Identity Manager (OIM) 11gR2 PS2 tools at Manheim into one instance of OIM 11gR2 PS2
• Worked with Cox and Oracle team on doing a demo and small POC for OIM 11gR2 PS3.
• Worked with Cox’s team handling external identities to design, architect, protype, deploy the SSO solution using Ping Identity.
• Designed best practice solution to integrate and provision into target systems such as two Active Directory instances, Oracle EBS systems, Revenue Management and Billing system, Employee Master System, Oracle Unified Directory (OUD) system.
• Defined PeopleSoft feed process, provisioning process and reconciliation of target systems.
• Designed and Implemented High Availability (HA) / Disaster Recovery (DR) solution for Confidential ’s Oracle Access Manager (OAM) project that included architecture of multi data center instances.
• Designed and Implemented Okta integration with several Confidential applications including JIRA, SharePoint, Salesforce, CA Project Portfolio Management (PPM) and many more.
• Prepared Technical and Functional Design Specification documents and presenting the solution to the entire team.
• Captured Confidential design decisions and architecture in cohesive Technical Design Documentation to fit the standards of Gigya project methodology.
• Worked with various teams at Confidential for understanding the necessary integration points of Gigya with the respected apps.
• Designed and helped implementing Gigya solution at Confidential for proving the solution.
• Prepared Test Plans, Test Conditions, Project Plans, Task List, Roadmap, Effort Estimations.

Confidential, Chicago, IL

Oracle IAM Architect and SME

Responsibilities:

• Understanding business and technical requirements of the upgrade project and understand the existing environment, processes, tasks, performance and system.
• Interviewing stakeholders, data owners, DBAs, project sponsors, system administrators, application owners to gather requirements, information and details of current and upgrade system.
• Providing Hardware Specifications of the new system that included Oracle Identity Manager (OIM) 11gR2 PS2, Oracle Identity Analytics (OIA) 11g R1, Oracle Business Intelligence (BI) Publisher 11gR1 and Oracle Database 11gR2.
• Defining governance and compliance of identities and their access management using Oracle Identity Analytics (OIA) 11g R1 tool, as part of Confidential solution.
• Designing best practice solution to integrate and provision into target systems such as Microsoft 2008 Active Directory (AD), Microsoft Exchange 2010, PeopleSoft HR system, IBM RACF Mainframe, UNIX systems, RDS Secure ID, EPS LDAP system based on OIM 11gR2’s ICF Framework.
• Defining PeopleSoft feed process, provisioning process and reconciliation of target systems.
• Designing Workflow Approval process for multiple stages and escalation type approvals.
• Designing out of box and custom Request Catalog process.
• Designing High Availability (HA) and Disaster Recovery (DR) solution for Confidential ’s upgrade project.
• Defining the retain process of existing Provisioning and Compliance data for Audit purpose.
• Defining Single Sign On configuration with CA SiteMinder R12.5
• Assisted building prototype of PAM solution using CyberArk PAM solution for linux and window systems and also Omada IAM for identity lifecycle and workflow requirements.
• Designing Closed Loop Remediation process for immediate revocation between Certification and Provisioning process with target systems.
• Preparing Technical and Functional Design Specification documents and presenting the solution to the entire team.
• Preparing Test Plans, Project Plans, Task List, Effort Estimations (LOE), Cost Estimators and more for Confidential .
• Building Sandbox environment for demonstrating new features and functionalities of OIM 11gR2 PS2, OIA 11gR1, Oracle BI Publisher 11gR1 to the Confidential team.

Confidential, Phoenix, AZ

Oracle IAM Specialist

Responsibilities:

• Understanding business and technical requirements and overall high level and functional design of Confidential program.
• Understanding current process flows, data security, PCI compliance requirements and accessibility targets.
• Assist building architecture of Oracle Identity Manager (OIM) 11gR2 and Oracle Access Manager (OAM) 11gR2 for reconciliation, provisioning, integration with applications and systems, request catalog, secure web access and single sign-on.
• Building architecture of Oracle Identity Analytics (OIA) 11gR1 based on Confidential ’s requirements for Role Mining, Role Engineering, Attestation, Compliance, Identity Audit, Identity Warehouse population, SOD and Reporting.
• Working with the stakeholders, interviewing, discussing various options and presenting the overall solution.
• Working with Confidential Business team (EAM) to determine gaps and mitigate solution risks. Becoming single point of contact for product resolution including OIM 11g R2 Sandbox issues.
• Building strategy to integrate Oracle Identity Manager, Oracle Access Manager and Oracle Identity Analytics with the target systems and applications.
• Implementing OIA 11gR1 in Development environment by populating users, roles, policies from different sources by importing jobs and using ETLs. Integrating OIA with OIM for closed loop remediation, as part of the Confidential solution.
• Implementing OIM 11gR2 and OAM 11gR2 in Development environment for integrating and testing applications and systems for access definitions and rules, provisioning, single sign on, password management, reconciliation, business rules. Applications such as Active Directory, Exchange, RSA Token, Oracle PeopleSoft, CMDB and other home grown applications.
• Working with developers for connector development and other integration and customizations.
• Development of event handlers for use with User Creation/Update/Delete/Enable/Disable
• Develop/Configure event handlers for asynchronous execution of post-processing activities
• Implement custom event handlers
• Create plugs-in and bind to custom event handler for password validation (pre and post process)
• Preparing usage guide, release notes, deployment guide, test reports, test plans and satisfying use cases.

Confidential, Washington, DC

Security Architect / Senior Consultant

Responsibilities:

• Understanding business and technical requirements of overall Confidential IAM engagement.
• Understanding current process flow and technologies specific to the initial and future IAM phase.
• Implementing the solution with CA Identity Manager R12.5 SP14, basic and advanced configurations and customization in development environment.
• Promoting the development environment to test, pre-prod and production environments.
• Preparing environmental migration plans, deployment guide, test plan and satisfying use cases and test cases.

Confidential, San Francisco, CA

Security Architect

Responsibilities:

• Understanding business and technical requirements of overall Confidential requirements for Confidential readiness and Data Analysis.
• Using Sailpoint IQ system, analyze the data and provide reports. Activities with Sailpoint included -
• Getting raw data from Confidential and parsing the data files based on Sailpoint requirements
• Importing the data files for Oracle HR as authoritative source of records and creating new identities
• Importing the data files for AD, LDAP and ERP systems into Sailpoint and correlating these identities with parameters with the Sailpoint identities.
• Extracting reports, analyzing for orphan accounts.
• Analyzing group membership of user accounts and providing list of high risk group membership.
• Building account relationships between AD, LDAP, ERP and Oracle HR data for concise reports.
• Providing list to Confidential for review, taking feedback and revising Sailpoint rules and filters accordingly.
• Defining new roles based on existing data and Best Practices for Confidential readiness.
• Preparing presentation with graphical reports for each of the above analysis.

Confidential, Seattle, WA

Security Architect & Senior Consultant

Responsibilities:

• Understanding current physical and logical architecture of overall Confidential production and test IAM setup.
• Understanding current process flows, scope, security, domain structure specific to the IAM.
• Gathering flaws in the current architecture perform analysis and presenting to Confidential the new revised architecture and process flows for IAM including OID.
• Assisting Confidential to diagnose production issues with CA IAM and OID systems.
• Building use cases, effort estimation, recommendations document for a robust, reliable, scalable architecture.

Confidential, Atlanta, GA

Security Architect & Senior Consultant

Responsibilities:

• Understanding business and technical requirements of overall Confidential requirements for Confidential based on Oracle’s IAM product suite.
• Understanding current process flows, scope, security, domain structure specific to the Automated Workflow phase.
• Gathering Requirements, Architecting and designing the solution, producing Solution Requirements Specification (SRS) and Solution Design Specifications (SDS) and presenting it to the Confidential team.
• Implementing the solution with OIM, basic and advanced configurations and customization in development environment. Specifically loading initial feeds, defining scope of roles, tasks, workflow process, integration with Active Directory, self-service.
• Preparing environmental migration plans, deployment guide, test plan and satisfying use cases.

Confidential, Atlanta, GA, USA

Security Architect & Senior Consultant

Responsibilities:

• Understanding business and technical requirements of overall Voyager program that includes Confidential .
• Understanding current process flows, data security, business and domain models, application security models, application development.
• Building authentication and fine-grained authorization system using Oracle Internet Directory (OID), Oracle Identity Manager (OIM), Oracle Access Manager (OAM), Oracle Entitlement Server (OES) and Oracle Service Bus (OSB).
• Defining strategy to build Oracle Identity Manager (OIM) as the front end provisioning system for Oracle Internet Directory (OID) and custom Oracle schema. These stored data in custom Oracle schema was then used to authorize users using Oracle Entitlement Server (OES). Also managing and controlling access through Oracle Access Manager (OAM).
• Architecting and designing the solution, producing Solution Architecture Document (SAD) and presenting it to the team.
• Building Role Management solution using Oracle Identity Analytics (OIA) to develop role engineering, role definition, attestation, compliance, etc.
• Implementing the solution with different products, basic and advanced configurations and customization in development, test, QA, Disaster/Backup and Production environments.
• Assist developing services based on Weblogic and SOA with developers to provide single sign on secure token and other secure services.
• Preparing usage guide, release notes, deployment guide, test reports, test plans and satisfying use cases.

Confidential, Atlanta, GA

Security Architect / Advisor

Responsibilities:

• Understanding business and technical requirements of the Security assessment based on Oracle infrastructure including Oracle Single Sign-On, Oracle Internet Directory, Oracle Portal.
• Understanding current process flows, data security and application security models.
• Creating process flows, defining actors and their interactions for existing Oracle environments.
• Building Gap Analysis for any and all Security flaws in existing Design and Application code.
• Providing Future Recommendations on Oracle Access Manager (OAM), Oracle Identity Manager (OIM) and Oracle Identity Analytics (Oracle Role Manager).

Confidential, Birmingham, AL

Security Architect / Advisor

Responsibilities:

• Defining Use Cases for Employee Onboarding / Offboarding as part of User Provisioning cycle, Password Management, Role Based Access Control, Enterprise directory.
• Conducting meetings to describe POC Guidelines with the team and documenting the same
• Defining Use Cases for IAM Workflow, High Availability, Access Management, Auditing / Reporting, Self Service and Delegated Administration.
• Assisting Confidential of Alabama on setting up POC environment for different vendors.
• Providing sample flat file for HR Feed and template for setting up roles in IAM system and assisting them to fill up info in the templates.
• Presenting complete POC Design doc to the team and discussing each Use Case in detail.
• Determine what could be feasible to achieve and prove for IAM vendors during the POC timeframe.

Confidential, Dallas, TX

Security Architect / Advisor

Responsibilities:

• Define processes and procedures to improve current IAM system to satisfy Audit and Regulation requirements
• Define Role Based Access Control processes and procedures including Role Definitions, Role Mining, Role Engineering, etc to mitigate risk of continuous compliance and provide an easy way to setup IAM roles based on job functions
• Design processes for request access through approvals, maintain job templates, deprovisioning and issues around ID Administration
• Develop strategies to define phases for IAM to achieve business objectives and goals
• Support development and implementation of make changes to the IAM based on the designed Functional and Technical requirements
• Provide high level IAM solution based on vendors such as CA, IBM, Novell and Oracle products.
• Provide expert comments and suggestions to define and in corporate all the job functions for Confidential and for IAM system automation

Confidential, Kansas City, MO

Security Architect / Senior Consultant

Responsibilities:

• Designing IAM architecture for Confidential & Confidential ’s 1700+ Franchisees and 30k+ Tax Professionals using Sun Identity Manager r8.0
• Creating Component Architecture, Use Cases, Process Flow with sequence diagrams, attribute and screen mappings, consolidating all in one design specification document as part of IAM Strategy plan
• Building Sun Identity Manager r8.0 infrastructure with Siteminder 6.0 as authentication module and Active Directory 2003 as an authoritative repository
• Creating organizational structure within Sun Identity Manager corresponding HRB’s AD structure for Franchisees and Tax Professionals. Importing users from AD into Sun Identity Manager and configuring AD Connector
• Creating ActiveSync process for new Tax Professional account, in corporate changes dynamically for AD group or OU change
• Implementing basic and advanced configurations in Sun Identity Manager as per Solution Architecture.
• Preparing test reports, test plans and satisfying use cases.

Confidential, Alpharetta, GA

Security Architect

Responsibilities:

• Designing architecture of Sun Identity Manager r8.0 solution for managing namespaces
• Building Sun Identity Manager r8.0 and Sun Directory r6.x infrastructure with high availability configurations
• Building Sun Identity Manager r8.0 and Access Manager r7.1 on Tomcat
• Initial loading of users, delegating user administration, workflows, customization in web pages, automation of user provisioning, creating and managing roles, policies and users, etc
• Implementing basic and advanced configurations in Sun Identity Manager, Directory and Access Manager as per Solution Architecture.
• Preparing test reports and satisfying use cases.

Confidential, Memphis, TN

Security Architect / Senior Consultant

Responsibilities:

• Designing architecture of Oracle Identity Manager r9 solution for managing Active Directory, Exchange 2007, SQL Server, RACF, Top Secret, Native LDAP
• Building Oracle Identity Manager r9 and Oracle Directory r9 infrastructure on standalone system
• Building Oracle Identity Manager (OIM) r9 and Oracle Access Manager (OAM) r9 on Tomcat
• Successfully completing IP’s Use Cases including designing, implementing and demonstrating of User Provisioning, Resource Provisioning, Delegated Administration, Auditing & Reporting, Password Management, etc
• Implementing basic and advanced configurations in Oracle Identity Manager, Directory and Access Manager as per Solution Architecture and Use Cases
• Presenting executive summary and technical details to IP team