SUMMARY

• Over 5 years of experience in, Workforce and Customer Identity and Access management solutions, in IAM, IGA 2.0, PAM, PAS, PIM, IDAAS and End point security solutions using tools SailPoint, Saviynt, OKTA, CyberArk, Thycotic, HYPR on AWS Cloud, Azure Cloud, and on Premises, integration of Sass Cloud solutions to Identity management solutions.
• Over 10 years of experience in Administration and Architecting solutions on Cloud and Application Servers IBM WebSphere, WebLogic, Tomcat, JBoss on Linux and Windows environments, which includes Installation, Configuration, Deployments, Application Hosting, Continuous Integration/Continuous Deployment (CI/CD), Workload Management, Clustering, Security, Availability, Scalability, Scripting, and troubleshooting. Extensively worked on Software engineering, Designing, Development, Implementing and Testing of software applications.
• Demonstrated experience in Installation, Configuration, Implementation, Maintenance & Troubleshooting of SailPoint IIQ, Saviynt, OKTA, CyberArk, Thycotic, HYPR IAM solutions on on - Prem and Cloud. Implemented SAML 2.0 based integration of Okta Identity cloud with Sailpoint and Various other Sass products ServiceNow Cloud, Salesforce Cloud, Workday integration.
• Demonstrated experience in IT industry with involvement in Deploying Workforce and Customer Identity Management, LDAP Directories, Single Sign-On (SSO), Provisioning and Identity Workflows, Access Management, RBAC (Role-Based Access Control), Security Infrastructure Design, Authentication and Authorization, and in addition Password Less authentication solutions using FIDO2 solution based on CTAP2.0 Protocols.
• Experience in IAM (Identity and Access Management), development, testing, integration, and implementation using SailPoint 8.1/8.0/7.3 and Design and Development of custom Reports in SailPoint IdentityIQ.
• On- Boarding and Configuring the Applications (Authoritative and Non-Authoritative) using Active Directory, Flat file, JDBC and LDAP connectors, Salesforce, ServiceNow, Workday, OOTB connectors to load the Identity Cubes. Supported operations & maintenance of SailPoint IIQ and LDAP connectivity.
• Configured and Deployed SailPoint IIQ Connectors, Aggregation, ID refresh, Schedule Tasks, Correlation for various target systems. Configuration and Management of SailPoint Life Cycle Events (LCM). Participate in all SailPoint deployment activities - Connector Configuration, Custom Rule Development, Workflow Configuration and Development third party system integration.
• Design-level and hands-on skills with the technologies CyberArk Privileged Access Suite, Enterprise Password Vault (EPV), Password Vault Web Access (PVWA) and Safes, Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Session Manager for SSH (PSMP), Application Identity Manager (AIM), On demand Privilege manager (OPM).
• Hands on experience in Saviynt Security Manager (SSM), Experience in integrating Saviynt Security Manager with target applications - Microsoft Active Directory, Exchange, O365, Salesforce, Workday, Oracle ERP, CRM, Databases, Unix, etc.
• Centralized Identity data and leveraged one model for Policy, Risk, and Roles across all IAM processes and Experience on RBAC (Role Based Access Control) analysis and implementation.
• Strong understanding of LDAP, SAML2.0, WS-Federation, Kerberos and OAuth2.0, OpenID Connect (OIDC), SCIM, FIDO2 industry protocols which shape the authentication and identity landscape including Experience working in Security, Cryptography, and Authn experience with authentication concepts (Multi-Factor Authentication, Adaptive/Contextual Authentication, Risk-Based Authentication) and the supporting strong authentication technologies U2F/UAF/FIDO2, Hard Tokens, Soft Tokens, Biometrics. Extensive knowledge on Duo security, CyberArk Alero, OKTA Verify, SailPoint Webapp and various other MFA authentications.
• Extensively involved in Management and lead roles in various implementations and worked on various RFP’s proposals, requirement specification, customization, integration, and administration, end-user support in Cloud, Mobile, Web, client/server, and financial applications.
• Strong experience in working with Application Servers like Apache Tomcat, WebLogic, JBOSS, IBM WebSphere and open-source tools and webservers.
• Expertise with RDBMS Databases including Oracle 12c,11g DB2 UDBV 8.1/7.1, MS-SQL Server 2017/2015, and NO SQL Databases such as MongoDB, PostgreSQL, and MySQL 8.x/5.0/4.0 using all types of JDBC Drivers.
• Extensively involved in Public, Private, Hybrid, Co-Cloud environment setups, Data Center Migrations, Server consolidation activities in Management and lead roles in various implementations
• People and process simplification, Onsite and offshore co-ordination and team setup, Team building, Setting up of center of excellence (COE) for various clients.

SOFTWARE SKILLS

IAM/PAM/PAS Security tools: SailPoint Identity IIQ 8.1/8.0/7.3/7.0, SailPoint IdentityNow, Saviynt IGA, Cloud PAM, Data Access Governance, OKTA Identity Access Management, CyberArk Privileged access Manager, Endpoint Privilege Manager, DUO Security, Thycotic Secret Server.

Directories Technologies: OKTA, Okta Universal Directory (OUD), Microsoft Active Directory (AD), Azure AD, LDAP, Open LDAP server, IBM Directory Server IDS 5.2/5.1, Federated Identity Manager (FIM 6.1), CA eTrust Site Minder, IBM Tivoli Identity Manager, Apache Directory studio, JExplorer, Sun One Directory Server 5.2

Access management Tool: OKTA, DUO Security, Google Authenticator, RSA Secure ID, Symantec VIP, OKTA Access Gateway, API Services, SAML2.0, OpenIDConnect (OIDC), OAUTH 2.0, SSO, MFA, DSSO, IWA, FIDO2, CTAP2.0, HYPR, Virtual MFA Devices, YubiKey, Soft Token, Okta Verify, SailPoint webapp, CyberArk Alero, DUO Mobile Security.

Cloud Technologies: AWS EC2, S3, ELB, ECS, EKS, IAM, Route 53, Cloud formation, Cloud Trial, Cloud Watch, SES, SQS, VPC, RDB, DynamoDB, Lambda, Auto Scaling, Redshift, and Security Groups; Microsoft Azure AD, Azure Resource Groups Azure Virtual Networks, Virtual Machine, SQL Databases, Cosmos DB, Kubernetes Services. Google Cloud, GCP engine, IBM Cloud, OPEN STACK private, Hybrid and Co-cloud implementation, ServiceNow Cloud, Salesforce Cloud, Workday Cloud, CyberArk Identity Cloud.

Application/Middleware: IBM WebSphere AS, Portal Server, WebLogic Server12.x, WildFly, JBOSS AS, IHS, MS-IIS Apache Tomcat Server, Glass Fish, MQ, AppConnect (IIB), MQSeries Integrator.

Database Technologies: MySQL 8.0/5.X, PostgreSQL, MariaDB, Cassandra, MongoDB, Oracle11g/10g, DB2, MS SQL Server 2019/2017,2015, Amazon Redshift, Elastic cache, Memcached, Redis.

Operating Systems: Ubuntu Linux 18.10/17. XX/ RHEL Linux (RHEL) 8.0/7.x/6.x, SUSE Linux 15/12.X/11.x, Unix Windows 2019/2016/2012/, CentOS 7.x/6.x, AMI, Solaris 10/9.and MS-DOS.

Dev OPS tools: Chef, Puppet, Ansible, Jenkins, Bamboo, Ant, Maven, Gradle, Subversion (SVN), GIT, GitHub, confluence, Atlassian JIRA, Confluence, Bitbucket, Cruise Control, Rundeck. Docker, Kubernetes, Vagrant, Jira 7.x/6.x, Nagios 3.x, Cloud Watch, Splunk, Splunk cloud, Log Stash, AppDynamics, Data Dog.

Language/Web Technologies: JAVA EE, Servlet3.0/2.x, Microservices, EJB Beans, JSP, JDBC, JNDI, XML, HTML, JavaScript, SOA, jQuery, Bootstrap, AngularJS. Shell (Bash) scripting, Powershell, Jython, Phyton.

Special Software: Info man, Postman, Remedy User, ServiceNow, Putty, Site Scope, CMG, Visual Source Safe, WinSCP, FTP, Citrix ICA Client, Hummingbird, Exceed, Ultra Edit, Forte, Rational Rose, Microsoft Visio, XML Spy, HomeSite4.5/5.0, CA Wily Introscope, LDAP, TeaLeaf, Kerberos, Spenego, Tangosol, Nagios, Tableau 9/8, TFS, Elastic search, Kibana, Apache Solr 5/4

PROFESSIONAL EXPERIENCE

Confidential, Sterling VA

IAM Architect / Administrator /SME Consultant

Responsibilities:

• Involved in initiation kickoff along with requirements gathering workshops, to start the project, set the expectations, review the timeline, understand the business use cases, and most importantly conduct a series of requirements gathering workshops. All this data was collected, along with the completed questionnaires, system analysis conducted and ad-hoc emails to clarify details are the basis for this design.
• Created the solution deployment, high level design, and architecture documentation for the SailPoint IIQ solution. This document is intended for the project team members, and production support and operations personnel to provide sufficient details to understand what will be installed and configured.
• Involved and developed high-level design / Architecture for the IIQ Solution, providing information such as, Solution Overview - a high level overview of the IIQ-based account certification Solution, and the relationship between the solution components.
• Created an architecture/high level design document, this document describes the intent and the functionality to be delivered rather than presenting detailed configuration and/or installation and configuration steps. Detailed configuration was addressed in a subsequent update to this document which will transition it from a Design Document to an As-Built Document.
• Implemented the IAM solution (Identity and Access Management), in Setting upSailPoint IIQ on 4environmentsDev, QA, UAT & Production using SailPoint 8.1/8.0/7.3.
• Implemented identity federation connectors fromSailPoint to target systems, along with subsequent access control by Okta.
• Involved in installation and upgradation of ofSailPoint IIQ from 7.3 to 8.1 in variousenvironmentslike UNIX and Windows.
• Participated in allSailPoint deployment activities connector configuration, custom rule development. Implementation of Self-Service feature, Password features (PTA, forgot password, Change Password), provisioning feature.
• Implemented Multi Factor Authentication, LDAP, and Work closely with Sailpoint Development team and engineers for design and solution architecture Implementation of Self-Service feature ofSailPoint IIQ.
• Performed Access Re-Certification, Automatic Manual Remediation for applications managed bySailPoint for Employees and Contractors.Developed and architected Access Governance and Compliance, techniques using SODS.
• Implemented provisioning, de-provisioning, end-user self-service, and other related functionalities for a new application.Designed and implemented solutions which manage the Identity lifecycle of almost all applications with the enterprise, without directly controlling the identity store within the application.
• On boarded various applications like Delimited file, AD, LDAP, Workday, ServiceNow, Salesforce, JDBC applications.
• Build and ConfigureSailPoint in-built tasks like aggregation, Identity cube refresh, schedule tasks, correlation, etc,
• Implemented Configuration and development ofSailPoint Life Cycle Events (LCM).
• Implemented and ran the Aggregation task to bulk load authoritative source data from Active Directory, Exchange, and LDAP and WorkDay Cloud.
• Implemented a creation rule to run update, terminate and rehire specified Employee and Contractor user accounts based on the feed file data and Joiner, Mover, Leaver events.
• Implemented custom workflows with approvals and modified OOTB workflows as per client requirement
• Analyze/Refine Requirements with Product Management, Work with engineering management to scope and plan engineering efforts.
• Test-driven development, design and code reviews, Collaborate with QA, Product Management, Technical Support, Documentation and UX team
• Resolve problem tickets requiring basic/minor product configuration changes.
• Update and maintain documentation for repeatable tasks (Infrastructure drawings & Run books)
• Support change management process for IAM change deployments, manage integration with Splunk and generate out of box reports for OKTA.
• Strong understanding of LDAP, SAML2.0, OAuth2.0, OpenID Connect (OIDC), WS-Federation, Kerberos and, SCIM, FIDO2 industry protocols which shape the authentication and identity landscape including Experience working in Security, Cryptography, and Authn experience with authentication concepts (Multi-Factor Authentication, Adaptive/Contextual Authentication, Risk-Based Authentication) and the supporting strong authentication technologies U2F/UAF/FIDO2, Hard Tokens, Soft Tokens, Biometrics. Extensive knowledge on Duo security, CyberArk Alero, OKTA Verify, SailPoint Webapp and various other MFA authentications.
• Monitoring of all Okta services that are on premise and/or in public cloud environments and associated data stores.
• Implemented and supported CyberArk PAM Infrastructure and Managing Password Safes.
• Implemented developing/deploying Privileged Access Management solution based on CyberArk technology.
• Lead Consultant with demonstrable experience of CyberArk Privileged Access Management solution experience
• Created HLD and LLD documents and ability to work with the internal Project team and end customer to continue design and deployment activities and further enhance the PAM solution.
• Documentation skills, Security Policy and Governance experience and appreciation, Identity & Access Management/IDAM experience and knowledge
• Design-level and hands-on skills with the technologies: CyberArk Privileged Access Suite, Secure Password Vault Web Access (PVWA) and Safes, Central Policy Manager (CPM), Privileged Session Manager (PSM), Privileged Session Manager for SSH (PSMP), Application Identity Manager (AIM) and On demand Privilege manager (OPM).

Environment: SailPointIIQ 8.1p1/7.3p3, Hibernate, jQuery, MYSQL, Tomcat 6, Apache, XML., SailPoint INOW SaaS, PAM, Custom Connector, ServiceNow, Salesforce, Workday. Governance, CyberArk PAM, PVWMA, CPM, PSM, OKTA, SSO, OpenID connect, SAML2.0, Oauth2.0

Confidential, Vienna, VA

Responsibilities:

• Involved in initiation kickoff meetings along with requirements gathering workshops, to start the project, set the expectations, review the timeline, understand the business use cases, and most importantly conduct a series of requirements gathering workshops. All this data was collected, along with the completed questionnaires, system analysis conducted and ad-hoc emails to clarify details are the basis for this design.
• Created the solution deployment, high level design, and architecture position for the SailPoint IIQ solution. This document is intended for the project team members, and production support and operations personnel to provide sufficient details to understand what will be installed and configured.
• Involved in the development of Solution Design Overview document and technical document, Involved in upgrade ofSailPoint 7.0 toSailPoint IIQ 7.3
• Created and implemented Static/Dynamic roles, configured entitlements and policies. Sound knowledge and hands on experience on onboarding the Cloud native SAAS applications such as ServiceNow cloud platform, Salesforce Cloud platform and Microsoft Azure Active Directory and on prem AD.
• Configuring the Applications (Authoritative and Non-Authoritative) using AD, Flat file, JDBC and LDAP connectors to load the Identity Cubes.Deployed several out-of-the-box(“OOTB”) SailPoint connectors to connect various client Systems (JDBC, LDAP, AD etc.)
• Analysis of the specifications provided by the client and help to estimate the effort required. Established measures, metrics, and goals to drive performance as per business, security, and IT need.Participated in and/or User Acceptance Testing and bug-related reengineering efforts.
• Installed, Configured and Implemented SailPoint Identity and Access Management Solution Components such as compliance manager, Life Cycle manager.
• Integrated SailPoint Identity IQ with multiple external databases and applications for provisioning and de-provisioning using Active Directory and LDAP. Integrated application utilizing SailPoint IIQ OOTB connectors.
• Configured and Deployed SailPoint Identity IQ for use in a multi-tenant network and security environment.
• Implemented Federation with IdP and SP using SAML2.0, OAuth2.0, OpenID Connect (OIDC) based integrations and other industry standard authentication/authorization solutions.
• Understanding of directories AD and group structures, policies etc, SAML 2.0, Frame set up for enterprise level Role mining, Role Based Access Control (RBAC), Multi Factor Authentication (MFA), Single Sign on (SSO), PAM (Privileged Account Management)/ (Privileged Identity Management), Entitlement Management and Identity Management.
• Update and maintain documentation for repeatable tasks (Infrastructure drawings & Run books), Configuration based defect fixing including Rules, provisioning, Workflows, Tasks, Policy's etc.
• Monitoring of all Okta services that are on premise and/or in public cloud environments and associated data stores. Resolve problem tickets requiring basic/minor product configuration changes.
• Assist the lead Architect/Specialist with architecture design and implementation of the Thycotic Secret Server PAM Product
• Worked with other engineering team members to fix issues, release patches, and install in customer environments, Assist with test cycle coordination and validation of releases against known customer environments and configurations.
• Coach and guide client staff in implementing best practice policies and procedures when needed.
• Experienced implementing or supporting enterprise software systems in a complex technical environment, including deployments in high-availability web environments leveraging SQL Server and installing agents on endpoints.
• Supported Linux based operating systems, Experience in IAM technologies / Single Sign On / IBM Security products
• Knowledge of IT infrastructure including databases, firewalls, load balancers, proxy servers and IIS web servers.

Environment:SailPointIIQ 7.3p4 7.0p1, J2EE, Hibernate, jQuery, MYSQL, Tomcat 6, Apache, XML., IAM, DevSecOps, DAST, SAST, SailPoint INOW, SASS, PAM, ServiceNow, Salesforce, Workday, Thycotic Secret Server, Password Reset Server, Account Lifecycle Manager, DevOPS Secrets Vault, OKTA, SSO, OAUTH2.0, OpenID Connect, SAML2.0.

Confidential

Lead Consultant / Cloud SME/Architect

Responsibilities:

• Responsible for partnering with internal stakeholders and providing strategic, technical leadership, ensuring that all Cloud solutions and architecture adhere to industry best-practices for scalability, maintainability, usability, performance, security, and portability.
• As a Lead service provider to the client ensured that third party companies such as HP, Verizon, and IBM, Accenture have complied with the logistics, power requirements, network, and other requirements are met prior to the Data Center move out to cloud and handling the security authentication and authorization, auditing, applying system maintenance, and so on. Monitoring tasks include looking at the overall system utilization, bottlenecks, and making the necessary adjustments.
• Involved in designs, deploys and overseen the implementation and integration of systems for cloud-based infrastructure and taken responsibility for relationship management for cloud vendors, including monitoring SLA's and tracking performance, troubleshooting, and reporting.
• Provided technical project leadership and assembles teams as needed for support of cloud- based initiatives (i.e., Database, Infrastructure, Development, Data Security).
• Lead the design and implementation efforts of AWS Amazon Web Services solutions, AZURE Cloud solutions to meet business requirements. Create documentation around the setup, implementation, and design of the environment.
• Monitored installations, upgrades, maintenance and tuning, monitoring, and capacity planning. Involved in application deployments and assisted in troubleshooting application and platform issues.
• Deployed Azure IaaS virtual machines (VMs) and Cloud services (PaaS role instances) into secure VNets and subnets, Exposed Virtual machines, and cloud services in the VNets to the Internet using Azure External Load Balancer.
• Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
• Designed Network Security Groups (NSGs) to control inbound and outbound (Ingress and egress) access to network interfaces (NICs), VMs and subnets.
• Setup Azure Virtual Appliances (VMs) to meet security requirements as software-based appliance functions (firewall, WAN optimization and intrusion detections). Utilized NSGs for layer 4 Access Control List (ACLs) for incoming and outgoing packets.
• Leading team of 15+ engineers to deliver highly scalable robust large Solutions in Azure Cloud
• Managing team which overseen 100+ of Virtual machines which are on PROD, STAGE, QA, DEV, DR, environments, and Work with a global team to provide 24x7 support and 99.9% system uptime.
• Extensively involved in migrating all the J2EE Applications, from on premise to Cloud environments and setting up SaaS connectivity to third party Salesforce and SAP Cloud environments as a HYBRID Cloud setup.
• Project lead on sales and service transformation projects that leverage Cloud (AWS) as an enabling technology to drive business results. Provide thought leadership and evangelism for the AWS Amazon Web Services solutions, mentorship for Systems Engineers and Technical Consultants
• Designed Virtual Private Clouds, Subnets, and implemented all the security groups worked with the Cloud implementation team to setup all the resources such as EC2, ELB, ASG, AWS Direct Connect, subnets, WebProxy’s, Databases instances in AWS cloud.
• Deployed AWS virtual machines (VMs) and Cloud services (PaaS role instances) into secure networks and subnets. Exposed Virtual machine Images and cloud services in the to the Internet using AWS ELB service and maintained the availability 100%.
• Lead the design and implementation efforts of AWS Amazon Web Services solutions to meet business requirements. Create documentation around the setup, implementation, and design of the environment.
• Created Vendor Assessment documentation for several PASS/IAAS based solutions. Identify and develop new opportunities within the customer environment where they can continue to scale the cloud environment, maintain technical certifications as required by the organization.
• Responsible for introducing potential methods for automating and improving infrastructure, using shell, PowerShell, and Cloud formation and ARM templates.
• Provided 24/7 support for Production Systems and monitoring and clearing the queues and teams by conducting bridge calls for situations like escalating issues, high priority issues, tasks involving many teams, and project integration.
• Built various technical teams for clients and Lead Knowledge Transitions form various vendors while consolidating different Service providers over the years which are spread across India, US, Europe, and Asia Pacific region
• Played a major role in RFP creations and reviewed for the Growth plan projects across Industry Solution verticals.
• Capable of successfully manage time, projects, and multiple priorities, provide root cause determination for enterprise-wide issues, and able to work well under pressure and time constraints and be able to adjust to a constantly changing, fast paced environment.

Environment: AWS Cloud: EC2, S3, ELB, ECS, EKS, IAM, Route 53, Cloud formation, Cloud Trial, Cloud Watch, SES, SQS, VPC, RDB, DynamoDB, Lambda, Auto Scaling, Redshift, and Security Groups Virtual Machine; Azure Cloud: Microsoft Azure AD, Azure Resource Groups Azure Virtual Networks, Virtual Instances, SQL Databases, Cosmos DB, Kubernetes Services. IBM SoftLayer Cloud, GCP Cloud, Hybrid and Co-Cloud implementation, ServiceNow Cloud, Salesforce Cloud, Workday Cloud, Kubernetes, Dockers.

Confidential, New York, NY

Sr. WebSphere Administrator/Architect

Responsibilities:

• Installing and Configuring IBM WebSphere Application Server 8.0/7.1. Portal, ODR and HTTP server on multi-tier architecture on SUSE Linux11,10 Virtual servers, AIX 6/5.x, Windows 2012/2008. Configuring HTTP Plug-Ins and Open Servlet Engine (OSE) protocol used to communicate from the web server plug-in to a Remote Servlet engine. F5 is used for DNS routing mechanism.
• Deploying and configuring for J2EE Application Deployments, Plug-in Configuration, Data Source Creation, Virtual Host Creation, Session management, server groups & clusters, Deployment Manager Configuration, Web Applications on multiple Servers using Jython, Python Scripts and using wsadmin scripting mechanisms in Dev, Integration, QA, UAT, JVC and Prod environment.
• Coordinate the monthly implementation process. Maintain a consolidated implementation plan. Move source code to production servers. For WebSphere applications, review & edit deployment documents, create appropriate zip files packages and stage for production implementation.
• Provided 24/7 support for Production Systems with company provided resources like Laptop and Black Berry.
• Responsible for Site Minder Application Support, this includes Web Agent Support like how the agents are plugged into the web server, Policy Server like how the policy server will talk to LDAP user store schemas that the policy server uses for authentication, authorization, LDAP user store like configuring the user store, modifying the user profiles.
• Responsible for Managing, Monitoring and Creating Change Management Records (CMR), Critical System Support (CSS), Problem Management reports (PMR), to install Web Applications. Clearing the problem and ticket queues, solving problems, and reassigning to concerned groups by end of the day.
• Responsible for conduction of bridge calls for situations like escalating issues, high priority issues, tasks involving many teams, and project integration.
• Implemented the Clustering Topology for Application Server that meets High Availability and Failover requirement for performance and functionality.
• Supported MQ teams when they conduct stress testing to calculate messages throughput and performance tuning on ESB and DataPower appliance components to meet the SLA requirements.
• Involved in Security Configuration for SSO, Web Agent, Web Seal, Policy Server, and User store Configuration, Siteminder TAI Cookies.
• Capable of successfully manage Teams, Time, multiple projects, and priorities, provide root cause determination for enterprise-wide issues, and able to work well under pressure and time constraints and be able to adjust to a constantly changing, fast paced environment.

Environment: IBM WebSphere 8.0/7.1, WebSphere ODR, Portal Server 7.0/6.1.x, WebSphere MQ 7.0, CA SiteMinder 5, IBM HTTP/IIS Web server, LDAP Services, TPV, TIM, TAM, OPTIER, EJB, JSPs, Servlets, ESB, DataPower, Hibernate, Business Objects, XML, JDBC, Java Script, HTML, DB2/UDB v 8.1, AIX 7.x/6.x, SuSe Linux 11, 10/9/8, Windows 2012/2008.