Sr. Security Architect (contractor - Allegis) Resume
Austin, TX
SUMMARY:
- Having experience as a Technical Lead in Java, J2EE technologies in the development of Web - based and Enterprise applications
- Full length Product Development Experience and demonstrated the same with Confidential and Discovery Gate, Metric Stream ITGRC, Confidential Manager, Aspect Web Powered Agent and Field Enabled Sizing
- Worked closely with Cross functional teams like Product Management, Pre Sales, Partner Integrations and Professional Services in the respective product life cycle engagements
- Expertise in Core Java, JSP, Servlets, Struts, Spring, iBatis SQL maps, Hibernate, Web services -SOAP, RESTful, Groovy on Grails and knowledge in Enterprise Java Beans
- Experience in NOSQL databases like MongoDB
- Experience in front end technologies such as HTML, CSS, JavaScript, Ajax, JQuery, DWR(Direct Web remoting), GWT(Google Web Toolkit) and knowledge on Angular JS
- Experience in Continuation integration tools like Cruise Control, Hudson, Jenkins and Bamboo
- Experience in GRC Domain in ITGRC, Security Domain in Cryptography/PKI, Information Security, Application Security, Vulnerability Assessment, SSO and Telecom Domain in Call Centre Applications
- Design and development of web-based applications using different Web and application servers such as Apache Tomcat, Web Sphere, JBOSS and WebLogic
- Used integrated environment for java such as Eclipse, My Eclipse, NetBeans, Spring Tool Suite and experience in version controls such as SVN, Clear Case and perforce.
- Having an experience in developing middleware services with the help of Apache Active MQ
- Expertise in Security Products Architecture, Secure Product Development Life Cycle, Vulnerability Assessment, Vulnerability patching, Cryptography and PKI solutions
- Implemented Unit Testing using JUnit and Integration testing during the projects and experience in using mocking frameworks like jMock and Mockito
- A quick learner, a good team player, faster in design, implementation and meets deadlines with my hard work and self-confidence
TECHNICAL SKILLS:
Operating System: MS-DOS, Windows 98/NT/2000/Xp and UNIX
Languages: Visual Basic and Java
Web Technologies: JSP, Servlets, JDBC, Struts 1.x, 2, Boost and spring 3.0
RDBMS: Oracle, MS-SQL Server, My SQL and HSQL-DB
BigData/NOSQL: MongoDBWeb designing HTML 5.0, DHTML, CSS and XML
Distributed: RMI, EJB, SOAP and Restful Web Services
Scripting Languages: JavaScript, jQuery, JSON, Kinetic JS and DWR
Application/Web Servers: Apache Tomcat 6.0, Web Logic 9.0 and Web Sphere
ORM: My Batis (iBatis), Hibernate, JPA
Development Tools: Eclipse, My Eclipse
Others: Ant, Maven 2.0, Cruise Control, Jasper Reports
Virtualization: VMware vSphere, VMware View
Distributed Middleware: JMS (Java Messaging Service), Apache Active MQ
PROFESSIONAL EXPERIENCE:
Sr. Security Architect (Contractor - Allegis)
Confidential, Austin TX
- Done POC’s using Sansec KMS components like Sec app, Web services (SOAP and Restful)
- Tested all End Points Restful/SOAP web services using swagger client and SSL Java client and gave the feedback to the vendor
- Coordinated the DB teams for testing of Sec DB components up to the completion of POC
- Design and implementation of custom solution using Sansec Restful/SOAP with Bouncy Castle crypto provider
- Design and implementation of Cache in custom solution for the VEES china POC
- Used PBDKF2 for storing the key as per DP TSR requirements to store the key in cache
- Created load balancers in routed mode for VEES China and VEES US for Non production servers
- Done a POC connecting to Sansec KMS using open source Kmip4j (KMIP SDK)
- Configured and made up and running KMIP server provided by the source forge which can be useful for Confidential KMS proxy
Technologies Used: Java 1.8, J2EE, Tomcat 8, Log4J2, Spring 4.2, SOAP/Restful Web services using Spring MVC, Bouncy Castle crypto provider
Technical Lead
Confidential, Miami FL
- Design and Implementation of SOAP Web services using Spring MVC
- Integrated back-end services with AngularJS, Java-based web framework with AJAX support.
- Implemented exception handling by defining custom exceptions. (Business and Technical Exception)
- Used log4J2 Logging framework for logging of trace and Auditing and integrating with SPLUNK centralized Logging
- Developed Junit test cases for all the functional flows using JUnit framework.
- Used the SOAP UI for testing SOAP services
- Was involved in automating the SOAP UI automation test suite by using groovy scripts
- Good knowledge on logical and physical Data Modeling using normalizing / De normalizing Techniques.
- Creation of database objects like tables, views and DML using oracle tools like Toad, PL/SQL Developer and SQL* plus.
- Wrote SQL Queries whenever required, including inner and outer Joins
- Actively participated in code reviews, imposed best practices and mentored junior developers as and when necessary
Technologies Used: Java 1.8, J2EE, Oracle Web Logic Server 11gR1, Log4J2, Spring 4.2, Hibernate 4.2, SOAP Web services using Spring MVC, AnugularJS
Confidential
Technical Lead
- Design and Implementation of Payment Gateway related services using third party vendor Square
- Implemented Restful Web services using Spring MVC
- Designed Payment Gateway as separate component exposed Gateway façade so that multiple payment gateways can be implemented
- Implemented batch processing by using quartz scheduler for the reoccurring payments and refunds.
- Integrated back-end services with AngularJS, Java-based web framework with AJAX support.
- Implemented exception handling by defining custom exceptions. (Business and Technical Exception)
- Used logback Logging framework for logging of trace and Auditing.
- Developed TestNG test cases for all the functional flows using TestNG framework.
- Used the Postman - RestClient Restful web services
- Actively participated in code reviews, imposed best practices and mentored junior developers as and when necessary
- Good knowledge on logical and physical Data Modeling using normalizing/Denormalizing Techniques.
- Wrote SQL Queries whenever required, including inner and outer Joins
- Worked as a Scrum Master by setting up daily scrums, retrospectives, sprint reviews and sprint planning session
Technologies Used: Java 1.8, J2EE, Tomcat8, Logback, Spring 4.2, Hibernate 4.2, RESTful Webservices using Spring MVC, Quartz Scheduler, AnugularJS and Eclipse
Confidential
Senior/Lead Engineer
- Responsible for development writing Restful Web services
- Lead, Design and Implementation enhancements of various services in Authentication and authorization layers and Preference, Alias services
- Implemented single sign on using Hantweb tool which is proprietary/lighter version of OAuth tool
- Implemented end to end authorization layer using spring security annotations integrated with proprietary WAL authorization tool
- Integrated back-end services with AngularJS, Java-based web framework with AJAX support.
- Implemented exception handling by defining custom exceptions. (Business and Technical Exception)
- Used Apache log4j Logging framework for logging of trace and Auditing.
- Developed JUnit test cases for all the functional flows using Junit framework.
- Used the Postman - RestClient and SoapUI for testing the Restful/SOAP web services
- Actively participated in code reviews, imposed best practices as part of Secured Development Life Cycle and mentored junior developers as and when necessary
- Creation of database objects like tables, views and DML using oracle tools like Toad, PL/SQL Developer and SQL* plus.
- Improved the performance of the application by rewriting the SQL queries and creating indecies.
- Worked as a Scrum Master by setting up retrospectives, sprint reviews and sprint planning sessions
Technologies Used: Java 1.7, J2EE, Tomcat 7, JUnit, Spring Boot, Oauth2 for Single Sign on, RESTful Web services, AnugularJS, EalsticSearch and Eclipse
Confidential
Architect/Technical Lead
- Lead, Design and Implementation enhancements of various services in Isentris Server like Authentication, Session Manager, Message Center, Object Store Factory..etc
- Developed front-end Using Google Web Toolkit, Java-based web framework with AJAX support.
- Implemented exception handling by defining custom exceptions. (Business and Technical Exception)
- Used Apache log4j Logging framework for logging of trace and Auditing.
- Developed JUnit test cases for all the functional flows using Junit framework.
- Admin console has been developed using Groovy on Grails
- Used the Postman - RestClient and SoapUI for testing the Restful/SOAP web services
- Actively participated in code reviews, imposed best practices as part of Secured Development Life Cycle and mentored junior developers as and when necessary
- Active role played in Vulnerability Assessment team across the Biovia products and fixed vulnerability fixes in admin console of Discovery Gate product
- Good knowledge on logical and physical Data Modeling using normalizing/Denormalizing Techniques.
- Wrote SQL Queries whenever required, including inner and outer Joins
- Worked as a Scrum Master by setting up retrospectives, sprint reviews and sprint planning sessions
Technologies Used: Java 1.6, J2EE, Eclipse, Struts1.2, Tomcat 7, JUnit, SOAP, REST, GWT and Oracle
Confidential
Technical Lead
- Lead, Design and Implementation of the workflow of Various ITGRC Connectors like QyalyGuard, Nessus, Nexpose and UCF etc.
- Played a major role in product trainings to Pre-Sales, Other cross product teams from Engineering.
- Developed JUnit test cases for all the functional flows using Junit framework
- Worked as a Scrum Master by setting up retrospectives, sprint reviews and sprint planning sessions
- Develop and consumed SOAP web services which will intern call backend system
- SOAP-UI was used extensively for testing of web services
- Used Apache log4j Logging framework for logging of trace and Auditing.
- Used input from product management and marketing to develop the functionality.
- Good knowledge on logical and physical Data Modeling using normalizing/Denormalizing Techniques.
- Wrote SQL Queries whenever required, including inner and outer Joins
- Worked on POC’s to the pre-sales team for new scanning tools as plug-ins
Technologies Used: Java 1.5, J2EE, Eclipse, Tomcat 6, Spring, Hibernate, JUnit, SOAP, REST, Apache ActiveMQ and MongoDB
Confidential
Associate Principal Engineer
- Lead, Design and Implementation of the workflow of tokenization feature, including design of the token engine.
- Developed JUnit test cases for all the functional flows using Junit framework
- Mentored junior developers and collaborated with peers with a goal of functionality