Security Consultant Resume
PROFESSIONAL SUMMARY:
- Over 12+ years of solid experience as Security Consultant Specializing in IAM ( IBM Security Access Manager (ISAM 9.0.6), IBM Tivoli Identity manager and Tivoli access Manager (ITIM / TAM), IBM Directory server (IDS), IBM Tivoli Directory Integrator (TDI) with Enterprise/Consumer security Applications .
- Setup End - to-End Federated SSO solution with (SAML or oAuth2) integrated with different vendor solutions.
- Developed and customized orchestration Framework for deploying ISAM configuration using Ansible.
- Implementing MFA using Mobile notification, TOTP and SMS gateway.
- ISAM 9.0.6 integrated with Mobile Self Authentication, Finger print authentication, RSA and VPN authentication, radius authentication.
- Strong development experience in Custom AAC Plug-Ins, custom mapping modules (Security trust services) and custom adapters using Advanced Java and Java script.
- Good Experience in WebSEAL configuration, Junctions, ACL, POP and Proxy servers.
- Strong development experience in DevOps orchestration implementation for ISAM configurations (WebSEAL configuration, Junction, ACL, upload AAC Jars, mapping rules and renewal certification)
- Good Experience in MSSL setup and custom JAAS properties in JBOSS and WebSphere and WebLogic.
- Played as Solution designer, for developing large scale enterprise Application (E2E) using oAuth2, JWT token authentication in Micro service Architecture .
- Solid experience on Native SDK SSO flow using Hybrid oAuth Flow (Roku, Xbox)
- Had experience in migration 120 million users in consumer vertical from TAM 6.0 into ISAM 9.0.5.
- Interaction with client for Setup End-to-End Federated SSO concept or new partner on-boarding and customizing and integrated their requirements.
- Worked with DevOps SME on shell script and Python script, developed automation frame work for deployment releases and monitoring tools and backup process.
- Strong development experience in JEE application development using Micro services, Spring Framework (Boot, Core, Security, AOP, Webservices, MVC), SOAP Services with SAML an oAuth.
- Developed custom CI/CD, web Service testing tool using SOAP-UI pro and JBehave, Junit
- Excellent conceptual base in Object-Oriented Design and Implementation Methodologies, Design Patterns, Web based architectures and Service-oriented architecture (SOA)
- I have been involved in Solution/Architecture Design, Business Process Development, Data Modelling and Batch Jobs of Business Application extensive experience in large scale and highly integrated J2EE software solutions.
- Expertise in various frameworks such as Struts, Spring MVC, Spring Security, Hibernate (ORM)
TECHNICAL SKILLS:
Programming Languages: Java 8, Perl and Python
Security Products: IBM Security Access Manager (ISAM 9.0.5)IBM Tivoli Identity manager (ITIM) Tivoli access Manager (TAM)IBM Directory server (IDS)IBM Tivoli Directory Integrator (TDI), WebSEAL
Middleware: Micro Services, Web services (SOAP & Rest)
Application Servers: Tomcat 7/6, JBoss7.2.0, WebSphere 7.1, WebLogic
Databases: Oracle, PLSQL, IBM DB2, LDAP
Frameworks: Spring cloud (Core, Boot, MVC, JDBC, Ldap, Security)JPA, Hibernate 4.x
Testing Tool: Junit, Mockito, SOAP-UI pro and JBehave
Integration Tool: ESB, Apache Camel routing
Development Tools: Eclipse, IntelliJ IDEA 11.0
UI Technologies: HTML5, JSP, Bootstrap, Angular JS and JQuery.
Services: Apache CXF SOAP Web services, Restful-API, JMS, JAXBJAX-WS.
Big Data: Hadoop, HDFS, HBase, Hive, spark, Impala and Map-Reduce.
Scripting: Bash Shell Script, Python
Web Technologies: HTML, DHTML, HTML5, Java Script, Ajax, JQuery
Devops: Maven, Gradle, Jenkins, Bamboo, GIT
Domain Knowledge: Enterprise Security, Card Management, Banking, Telecom (BSS/OSS)
PROFESSIONAL EXPERIENCE:
Confidential
Security Consultant
- Working with CSO Architecture team for common solution in Confidential &T
- Developed high performed Custom AAC PlugIns using Java 1.8 and spring framework
- Implement micro service for validating access-token and refresh token for MFA and password reset, password update services and userInfo services of client basis.
- Developed Custom crypto vault for JWT token validation and decrypt the JWT token for user Info.
- Developed Custom mapping module using java script
- Developed Ansible scripts (playbooks) for configure deployment in appliances.
- Developed jobs for OAuth token purging using python scripts
- Developed Hybrid flow for Native, SDK, Device auth and Web flow
- Involved into cutover changes (Performance testing in go-live)
- Involved into Rapid response team for production trouble shoot calls.
- Involved into On-Boarding third party client discussion for implementing FSSO
- Developed scripts for appliance monitoring tools for Health and certificate renewal
Confidential
Security Consultant
- Working with Principle Architecture team for common solution in Confidential &T
- Developed high performed Custom AAC PlugIns using Java 1.8 and spring framework
- Developed JWT token generation and validation for userInfo
- Developed Custom mapping module using java script
- Developed Ansible scripts (playbooks) for configure deployment in appliances.
- Developed jobs for OAuth token purging using python scripts
- Developed Hybrid flow for Native, SDK, Device auth and Web flow
- Involved into cutover changes (Performance testing in go-live)
- Involved into On-Boarding third party client discussion for implementing FSSO
- Developed scripts for appliance monitoring tools for Health and certificate renewal
Confidential
Solution Designer & Individual Contribution
- Installed and configured ISAM 9.0 appliance in cloud, reverse proxy, LDAP components for development and integration testing.
- Create trust chains, developed java script, and configure mapping module.
- Created ACL, POPs, proxy server and reverse proxy and junctions.
- Configured IDP and SP federation and partners.
- Migrated TAM 6.2 STS modules to ISAM STS modules like IV-creds2SAML, SAML2SAML, USERNAME TOKEN2SAML
- Developed automation framework using Python for deploying components in SIT/UAT/PROD
- Configured single sign on solutions for migration applications.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAM/Identity Management space.
- Developed Web pages using Spring MVC, Angular JS, HTML5, and Bootstrap to create the rich user interface.
- Involved into cutover changes (Performance testing in go-live)
Confidential
Solution Designer & Individual Contribution
- Installed and configured ISAM 9.0 appliance in cloud, reverse proxy, LDAP components for development and integration testing.
- Create trust chains, developed java script, and configure mapping module.
- Created ACL, POPs, proxy server and reverse proxy and junctions
- Migrated TAM 6.2 STS modules to ISAM STS modules like IV-creds2SAML, SAML2SAML, USERNAME TOKEN2SAML
- Developed automation framework using Python for deploying components in SIT/UAT/PROD
- Configured single sign on solutions for migration applications.
- Configured IDP and SP federation and partners.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAM/Identity Management space.
- Developed Web pages using Spring MVC, Angular JS, HTML5, and Bootstrap to create the rich user interface.
- Expertise in development, deployment and implementation of dynamic web applications using Application servers like Web sphere, Apache tomcat in UNIX environments.
- Used Spring Core Annotations for Dependency Injection Spring DI and Spring MVC for REST API s and Spring Boot for micro-services.
- Created architecture towards a micro-services approach using RESTful java web-services framework.
- Micro services used as a strategy gradually replace a core monolithic application while still adding business features.
- Experienced first-hand the best/worst practices for integrating micro services into an existing system architecture.
- Involved into cutover changes (Performance testing in go-live).
Confidential
Solution Designer & Individual Contribution
- Installed and configured TAM 6.2, TFIM, LDAP instances in cloud for development and integration testing (build process).
- Create trust chains, developed java script, and configure mapping module.
- Created ACL, POPs, proxy server and reverse proxy and junctions
- Migrated TAM 6.2 STS modules to ISAM STS modules like IV-creds2SAML, SAML2SAML, USERNAME TOKEN2SAML
- Developed automation framework using Python for deploying components in SIT/UAT/PROD
- Configured single sign on solutions for migration applications.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAM/Identity Management space.
- Developed Web pages using Spring MVC, Angular JS, HTML5, and Bootstrap to create the rich user interface.
- Expertise in development, deployment and implementation of dynamic web applications using Application servers like Web sphere, Apache tomcat in UNIX environments.
- Used Spring Core Annotations for Dependency Injection Spring DI and Spring MVC for REST API s and Spring Boot for micro-services.
- Created architecture towards a micro-services approach using RESTful java web-services framework.
- Microservices used as a strategy gradually replace a core monolithic application while still adding business features.
- Experienced first-hand the best/worst practices for integrating microservices into an existing system architecture.
Confidential,
Solution Designer & Individual Contribution
- Installed and configured TAM 6.2, TFIM, WebSEAL, LDAP components and ISAM 9.0 appliance in devcloud
- Created ACL, POPs, proxy server and webseal junctions
- Configured single sign on solutions for migration applications.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAM/Identity Management space.
- Developed Web pages using Spring MVC, Angular JS, HTML5, and Bootstrap to create the rich user interface.
- Expertise in development, deployment and implementation of dynamic web applications using Application servers like Web sphere, Apache tomcat in UNIX environments.
- Designed and developed web site application using AJAX, AngularJS, Bootstrap, CSS, HTML5, JQuery, JSP, Tiles framework and XML.
- Developed all client-side logical implementation part of applications with AngularJS.
- Used Spring Core Annotations for Dependency Injection Spring DI and Spring MVC for REST API s and Spring Boot for micro-services.
- Created architecture towards a micro-services approach using RESTful java web-services framework.
- Microservices used as a strategy gradually replace a core monolithic application while still adding business features.
- Experienced first-hand the best/worst practices for integrating microservices into an existing system architecture.
- Developed the UI using Angular JS, and Bootstrap for Single page application.
- Created branches in GitHub and used Team city for continuous integration.
- The middleware interaction used JMS/IBM WebSphere MQ series for transferring messages between different components using the JMS/Mail API framework.
- Incorporating enhancements in the existing functionality.
- Development, deployment, configuration of the Java Messaging Services (JMS) on WebSphere 6.
Confidential
Solution Designer & Individual Contribution
- As Security Consultant Specializing in IAM (IBM Security Access Manager (ISAM 9.0), IBM Tivoli Identity manager and Tivoli access Manager (ITIM / TAM), IBM Directory server (IDS), IBM Tivoli Directory Integrator (TDI) with JEE Applications in Enterprise/Internet Infrastructure using IBM WebSphere, JBoss.
- Strong development experience in JEE application development using Apache camel Microservices, Spring Framework (Core, Security, AOP, Webservices, and MVC), SOAP Services with SAML and Username Token.
- Installed and configured TAM 6.2, TFIM, WebSEAL, LDAP components and ISAM 9.0 appliance in devcloud
- Created ACL, POPs, proxy server and WebSEAL junctions
- Configured single sign on solutions for migration applications.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAM/Identity Management space.
- Developed Web pages using Spring MVC, Angular JS, HTML5, and Bootstrap to create the rich user interface.
- Expertise in development, deployment and implementation of dynamic web applications using Application servers like Web sphere, Apache tomcat in UNIX environments.
Confidential
Java Lead & Individual Contribution
- Requirements & feasibility study in inception sessions and iteration planning meetings to provide design solutions, technical and function inputs and estimation
- Worked as a developer and followed the pair programming.
- Performing code deliverable review & unit test plan reviews.
- Setup the environment for continuous integration (Jenkins), Job Scheduling
- Handover stories to QA, UAT Team.
- Support QA, UAT and Prod.
- Offshore co-ordination with client for design discussions
- Integration with Site Minder in QA and PROD
- Co-ordination with product Manager, Architecture Team to discuss issues & gap analysis and knowledge transfer to other team members.
Confidential
Solution Designer & Individual Contribution
- As Security Consultant Specializing in IAM (IBM Tivoli Identity manager and Tivoli access Manager (ITIM / TAM), IBM Directory server (IDS), IBM Tivoli Directory Integrator (TDI) with J2EE Applications in Enterprise/Internet Infrastructure using IBM WebSphere, JBoss.
- Designed LDAP schema structure for organization level migration (Merrill lynch to BOFA) and migrate data from Sun One Directory server to TDS
- Developed bash shell scripts for LDAP daily monitoring tools, DB2 backup process, report generations and bulk upload process from LDAP
- Customized landing page, redirect page and sign out pages as per application.
- Provide Fine Grained Access (FGA) to resource as per business requirement and generate the daily basis reports
- Strong development experience in J2EE application development using Spring Framework (Core, Security, AOP, Webservices, and MVC), SOAP Services with SAML and Username Token.
- Installed and configured TAM 6.2, TFIM, WebSEAL, LDAP components created ACL, POPs, proxy server and WebSEAL junctions
- Configured single sign on solutions for migration applications.
- Provided trouble-shooting and configuration of WebSEAL and all components with-in the TAMe/Identity Management space.
Confidential
Java Lead & Individual Contribution
- Developed webservices and explore payment gateway services using Confidential API.
- Designed Screens and developed code for Consumer Customers, Admin Users, and Customer Care Users.
- Done Unit testing for the developed code and prepared Unit Test.
- Involved in fixing defects raised by Internal Testing, SAT, UAT and Production