PROFESSIONAL SUMMARY:

• Senior Technology Lead wif 7 years of experience in Identity and Access management.
• Specialized in Oracle Identity Management (OIM) 10g, 11g, Oracle Access Manager 11g (OAM), Oracle API gateway (OAG), Oracle Mobile and Social server (OAMMS), Oracle Identity Federation (OIF), Oracle HTTP server (OHS), Oracle Virtual Directory (OVD), Oracle Directory Service Enterprise Edition (ODSEE), Oracle BI Publisher (OBIEE), Oracle Enterprise Manager (OEM), Oracle Unified Directory (OUD), Java/J2EE and Webservice.
• Integrated B2E application using SAML pattern. Configured application using B2C premium features - SAML-OAuth conversion, Group-Role mapping and several customization on sign-in/sign-up policies and message customization.
• Extensive knowledge and skills in Oracle Access Manager Integration wif applications for Single Sign On capabilities. Skilled in troubleshooting OAM/SSO issues.
• Integrated IIS, OHS and Apache webservers based applications wif 10g and 11g webgates.
• Experience in configuring Windows Native Authentication(WNA) for OAM SSO wif multiple AD forest as backed AD.
• Experience in design, implementation and architecture of Role Based Access Control(RBAC).
• Wide range implementation knowledge in Oracle Identify federation. Skilled in integrating and troubleshooting partner applications using both IDP and SP use cases.
• Knowledge in Oracle Identity Governance.
• Installed and configured multiple trusted source connectors, target connectors, reconciliation, Event handlers, and schedulers. Experience in configuring GTC connectors, Active Directory, LDAP, customized connector using OIM API’s and Database connectors. Implemented LDAP Sync between OIM to ODSEE.
• Experience in configuring replication agreements between different nodes of ODSEE, creating Object classes, attributes, indexing and tuning ODSEE for performance improvements.
• Installed and configured AD connector server, OIM password sync connector to sync password from AD to OIM.
• Experience in integration application wif Microsoft Azure AD for various B2E and B2C use cases. Integrated applications using OAuth pattern - Auth Code grant flow, Implicit Grant and Client Credentials.
• Created custom application using Microsoft Graph API to perform user management operations, fetch audit logs and B2C reports.
• Expert in Customization out of the box connectors (OOTB) per the business requirements for the provisioning and reconciliations procedures.
• Exposed REST based Oracle Mobile and Social services (OAAMS) for user authentication, authorization and validation of JWT token issued by OAAMS.
• Implemented various security pattern for service protection using Oracle API gateway.
• Extensive skills and knowledge in Oracle Weblogic server administration. Experience in managing datasources, Identity stores, MQ server, MQ modules, security configurations and application deployments.
• Skilled in configuring OHS as reverse proxy. Installing certificates for OHS, tuning connection parameters, virtual host configurations.
• Installed OEM agents for oracle suite of products. Configured dashboards, metrics, alerts, health check monitors and logs monitors using OEM.
• Configured OBIEE reports for capturing audits trials and to capture OIM connector failures for easy of support operations.
• Implemented log monitoring solution using Open source ELK stack.
• Involved in executing Change Request, Problem Request and resolving tickets in the shortest possible time, wif the best quality of response.
• Possesses the ability to TEMPeffectively deal wif all levels of individuals in an organization in order to gather requirements, communicate changes or train users.
• Able to work both independently and in a team-based atmosphere while being self-motivated and TEMPeffective at multitasking.

TECHNICAL SKILLS:

Identity and Access Management: Oracle Identity Management 10g, 11g, Oracle Access Manager 11g, Oracle API Gateway, Oracle HTTP Server, Oracle Identity Federation, Oracle Mobile and Social server, Oracle Virtual Directory, Oracle Directory Service, Oracle BI Publisher and Oracle Enterprise manager 12C an Microsoft Azure AD.

Database: Oracle 10g, 11g.

Application Server: Oracle Weblogic 10.3, Jboss 6.2 EAP

Monitoring: Oracle Enterprise Monitoring and ELK Stack for log monitoring.

Programming Languages: Java, SQL

Frameworks: Struts 2.0

Web Technologies: Webservices, JSP, Java Script and HTML.

Tools: /IDE: Eclipse, jmeter, IBM Rational Performance tester, Clearcase, Zephyr, Jira.

PROFESSIONAL EXPERIENCE

Data Center Migration

Confidential

Technologies/Products: Oracle Identity Management (OIM) 11g, Oracle Access Manager 11g (OAM), Oracle Mobile and Social server (OAMMS), Oracle Identity Federation (OIF), Oracle HTTP server (OHS), Oracle Virtual Directory (OVD), Oracle Directory Service Enterprise Edition (ODSEE), Oracle BI Publisher (OBIEE), Oracle Enterprise Manager (OEM), Oracle Unified Directory (OUD), Java/J2EE Jira, and Webservice.

Responsibilities:

• Defects fixing, implementing vendor recommended performance tuning changes to stabilize newly built environment.
• Writing test cases and leading environment validations sign off effort wif offshore team.
• Working wif vendor(Oracle) on critical defects causing environment unavailability or service interruptions.
• Environment migration to new data centers wif enhanced logging.
• Migrated more TEMPthan 160 Applications to new multi data center setup and enabling MDC. Includes creating web gates, application domain configurations, Authentication and authorization policies and whitelisting.
• Migrated more TEMPthan 60 federation(SAML2.0) applications.
• Troubleshoot and lead to successful cutover of applications.
• Providing after migration support for all the migrated applications. Include addressing issues like latency, application invoking, OAM error.

Integration applications

Confidential

Responsibilities:

• Configured Client and resource server application in Azure AD using Oauth pattern - Auth Code grant flow, Implicit Grant and Client Credentials.
• Integrated B2E application using SAML pattern. Updated manifest to perform group-role mapping and also using Graph API.
• Configured premium policies in B2C by creating custom extension and custom sign-up/sign-in policies.
• Configured custom login pages and error messages customization.
• Implemented AAD Groups to Role Mapping for Resource server application.
• Implemented access token in implicit grant flow to add Role Claims in access token.
• Integrated Azure AD and OAM where OAM acts as IDP. Azure AD converts OAM SAML response to Oauth token. Trust framework policies is used for dis.
• Implemented custom application using Graph API call to perform User management operations. Implemented reports using Graph API to pull out B2C reports.
• Created power shell scripts to extract users.
• Enhanced user journey to capture audit trails in Azure AD.

Oracle API gateway

Confidential

Responsibilities:

• Installation of Oracle API gateway.
• Configured security filters such as Content-Validation, threat protection filters against various attacks such as SQL Injection, OR attach etc.., and throttling filters to limit the number of transaction, XML schema validation, message size validation and Attachment size validation.
• Implemented caching in OAG to increase performance and for certain validation wif past record.
• Implemented many custom validation using scripts.
• Implemented several security patterns such as Web service security, web service security + digital signature, Attribute authentication, Attribute authentication + digital signature, HTTP basic and Mutual SSL.11g

Confidential

Oracle Identity manager

Responsibilities:

• Creation of resource object, process form, provisioning work flow and IT resource.
• Creation of pre-populate adapters and process task adapters.
• Creation of event handlers to capture update and provision to target system.

OAM and OIF

Confidential

Technologies/Products: Oracle Access Manger 11g R1, R2, Oracle Identity manager 11g R1, R2, Oracle Identity federation 11g, Oracle HTTP server, IIS server 7, Ping Identity.

Responsibilities:

• Protection of web applications - Creation of Web gate, Host Identifier, Application domain, Resources, Authentication policy and Authorization Policy.
• Creation of LDAP Sync rules in OIM to sync roles under separate organization specific to application.
• Creation of OIM roles and implemented delegated admin functionality in OIM to manage user and roles.
• Installed web gates in OHS servers and IIS servers.
• Creation of OHS instance and virtual host configuration.
• Integrated PING federation wif OAM.
• Integrated many external applications using Oracle Identity federation (Salesforce, Workday, Air Watch, Apperian etc…)
• Creation of service account, index, Access Control list, custom object classes and attributes, organization and password policy in ODSEE.
• Creation of Password policy in OIM.
• Creation of Rule Membership in OIM.

Oracle Mobile server

Confidential

Technologies/Products: Oracle Access Manger Mobile and Social service 11.1.2.0, Oracle API Gateway 11.1.2.1.0, Oracle WebLogic 10g.

Responsibilities:

• Installed Oracle Access Manager 11G R2 and Oracle Mobile and Social server.
• Installed Oracle API gateway.
• Enabling telematics features for vehicle authentication, authorization and many features by utilizing Mobile and Social server feature of Oracle access Manager 11g R2.
• Secured the OAM Mobile REST services using Oracle API gateway.
• Implemented various validations such as Content Validation, throttling attacks, secured the services from several types of injection attacks. Secured the service using multi-level authentication and authorization.

Target System connector

Confidential

Technologies/ Products: Oracle Identity Manager 9.1.0.2 BP 19, Oracle Weblogic 10g, Oracle Database 10g, Eclipse, LDAP Browser

Responsibilities:

• Developed the detailed design for Revocation Repository-OIM integration.
• Developed a sturdy fail over mechanism which prevents the data loss in case of any failure which reduces the handing of redundant data.
• Daily running scheduler for fetching the revocation request and revoking the same in OIM and target systems.
• Creation of multiple workflows to a resource object and a rule to decide the workflow based on the logged in user.
• Creation of scheduler to trigger the revocation process.
• Creation of a scheduler to trigger a Custom email notification using java code to send the data in case of failure.

Connector Integration

Confidential

Technologies/Products: Oracle Identity Manager 9.1.0.2, Oracle Weblogic 10g, Oracle Database 10g, Eclipse, Clear case.

Responsibilities:

• Creation of webservice client which fetches the information from an external DB and dynamically loads the OIM resource form based on the webservice results.
• Integration of a webservice client wif approval work flow using adapters which updates the user information on the external-DB once the request is approved.
• Creation of Process task adapters for triggering webservice calls to External DB on event completion and also dynamic level of approvals based on form values.
• Creation of Task assignment adapters for dynamic approval and provisioning group based on form values.
• Creation of applications resources involving creation of resource objects, object forms, process forms, approval and provisioning workflow, Email templates and several lookup.
• Creation of Access Policy which involves creation of groups, Rules, associated permissions and Access Policies to automate various Role-based provisioning.
• Creation of pre-populate adapters and entity adapters.
• Customization of oracle 10g Custom UI code to incorporate new end-end work flow changes along wif many UI validations using struts 2.0.
• Addition of new request types in request type page, restrictions of resource according to the request type and modification of the data presented to the manager of the user in users manage page.
• Dynamic loading of the custom form page based on the webservice results.