SUMMARY

• Around 7+ years of professional experience in administering and managing Identity Management solutions on various platforms like Solaris, Windows and Linux.
• Expertise in installing, configuring and developing using Sun Java Enterprise System Architecture/System Integration/LDAP and Web Application Integrations.
• Experience in Directory Server Configuration/Administration Directory server 5.x/6.x/7.x, MS Active Directory).
• Good understanding of LDAP protocol, designing of schema, planning teh directory data according to teh enterprise need
• Expertise in Installation, Security & Performance Design and Configuration of teh SiteMinder policy server, web - agents and app agents.
• Ability to create and execute an upgrade plan for various CA/Broadcom SiteMinder versions (4,5 and 6,R12.x,R12.8).
• Extensive noledge of software applications, their specification, deployment, configuration and maintenance in both Single and Multiple platforms.
• Experience in Developer Integration Support, Quick Problem Resolution using RCA (Root Cause Analysis), Tools Development, Design Template Development and single sign on implementation using SiteMinder.
• Experience in configuring SSO for various applications using Ping Fed or Ping Access IAM & Azure portal.
• Experience in designing and implementing migration from SiteMinder environment to ForgeRock OpenAM environment.
• Experience on various ForgeRock OpenDJ migrations from Oracle or CA Directory successfully.
• Extensive noledge in building and configuring various LDAP products like Oracle ODSEE/ForgeRock OpenDJ/Ping Directory/CA Directory/RedHat LDAP according to requirement.
• Experience in setting up ForgeRock OpenIG & OpenIDM to syncup teh data between various data sources.
• Sound Knowledge of directory servers (Sun One/iPlanet Directory Server Administration/Configuration) and LDAP v3 commands/ search strings to manage and troubleshoot user issues. Experience in creation of LDIF files to change attributes or bulk-add/delete users from User store manually.
• Experience in setting up MFA using RSA Secure ID/SMS/ForgeRock authenticator for various customer facing applications.
• Knowledge of software applications, their specifications, deployment, configuration and maintenance in both Single and Multiple platforms.
• A result-oriented strongly motivated team player with excellent communication, interaction, coordination and people skills.
• Ability to manage multiple tasks, works independently, and adapts to new technologies quickly.
• Extensive noledge of creating policy domains, realms, policies and rules, configuring access to User directories, setting up response attributes and cookie variables, defining authentication schemes in a SSO Environment.
• Good Knowledge in Multi-tier and Cross-platform environments.
• Expertise in Troubleshooting using log files from policy server or OpenAM logs, web agent logs, webserver logs, directory server logs
• Excellent written & oral presentation, interpersonal and communication skills

TECHNICAL SKILLS

SSO Management: ForgeRock OpenAM 13.5/5.5/6.x, SiteMinder 4.5/5.5/6.0/R12.x, Siteminder Web Agent 4.x/5x/6.0/R12.x,ForgeRock Web Agent 3.x/4.x/5.x, Sun Access Manager

Directory Servers: Sun DSEE/iPlanet Directory Server 5.x/6.x/7.x,/11g, Microsoft Active Directory, ForgeRock OpenDJ 3.x/5.x/6.x, CA Directory R12.x, RedHat LDAP

Middleware Solutions: Apache web server 2.2.x/2.4.x, IIS 6.x/7.x/8.x/10.x Web Server, iPlanet Web Server 5.x/6.x/7.x, Tomcat

Hardware/OS: Win 95/98/2000/2003/2008/2012/2016/2019/XP/NT,Red hat Linux 4.x/5.x/6.x/7.x/8.x, Solaris 8/9/10

Application Servers: BEA Web Logic 8.x, IBM Web Sphere, jboss, Sun Application Server, Vfabric or JWS Tomcat 3.x/5.x

Programming: C, C++, Shell, HTML, Perl

PROFESSIONAL EXPERIENCE

Confidential, TX

IAM Consultant

Responsibilities:

• Working as a IAM Engineer as part off teh Cybersecurity engineering team to support and administer ForgeRock OpenAM/OpenDJ or Oracle LDAP/SiteMinder infrastructure of various applications.
• Involved in implementing teh B2B portal, which includes building teh SiteMinder/ ForgeRock or Oracle LDAP/ForgeRock OpenAM servers and Reverse proxy servers for SiteMinder or ForgeRock web agents.
• Involved in implementing various SAML SSO setup where SiteMinder acting as Service Provider or Identity Provider and external vendors acting as Identity Provider or service provider using SAML 2.0 in IDP/SP initiated method.
• Involved in Design and building ForgeRock OpenAM & OpenDJ environments from scratch as part of migration from SiteMinder infrastructure for B2B & B2E portals.
• Involved in planning and implementing migration from SiteMinder to ForgeRock OpenAM environment for various portals.
• Worked with various application teams to migrate from SiteMinder Web Agent to ForgeRock Web Agent for various portals successfully.
• Worked on setting up ForgeRock J2EE Agents on various application servers like Tomcat/IIS.
• Worked on various ForgeRock Web agent upgrades from 4.x to 4.2 & 5.x as well and resolved any issues.
• Worked with various vendors or banks or application team to implement SSO using SAML or OIDC where ForgeRock can act as IDP or SP & authorization servers
• Worked on design, build and migrate environment from Oracle ODSEE LDAP to ForgeRock OpenDJ where OpenDJ will act as authentication provider for almost 60k+ Linux clients.
• Involved in upgrading and building a new environment globally across 4 data centers with ForgeRock OpenAM 6.x along with deploying authentication modules & trees and migrated almost 300+ applications to teh new platform without any issues.
• Worked on upgrading ForgeRock OpenAM versions from AM 13.5 to 6.x and also agents from 4.x to 5.x
• Involved in various project meetings to analyze teh requirements and implement them accordingly to integrate with B2B Portal.
• Installation and configuration of 6.x/R12 SiteMinder Web agents for various Web Servers in different environments. (Apache, IIS and ERS).
• Worked on building ForgeRock OpenIDM environment by setting up standalone OpenIDM along with IDM store.
• Worked on building and configuring servers with replication across multiple data centers globally for Checkout environment using CA Directory using synchronous & asynchronous methods.
• Configured various LDAP connectors to SyncUP data between various LDAP servers as part of migration from Oracle ODSEE to ForgeRock OpenDJ LDAP environment.
• Worked with CA/Oracle/ForgeRock/Broadcom vendors to troubleshoot teh various issues as part of integrating applications with B2B Portal.
• Worked in documenting teh various applications for integrating with B2B Portal and handed over to teh operations team for implementing in higher environments.

Environment: Red Hat Linux 5.x/6.x/7.x/8.x, Solaris 8/9/10, IIS 6.x/7.x/8.x/10.x, AIX 5.x/6.x, SiteMinder 6.x/R12, SiteMinder Web agent 6.x/R12.x,, Web Sphere Application Server, Oracle Directory Server 5.x/6.x/11g,ForgeRock OpenAM 13.5/5.x/6.x, ForgeRock OpenDJ 3.x/5.x/6.x/7.x, CA Directory R12.x, Red Hat LDAP.

Confidential, Austin, TX

IAM Engineer

Responsibilities:

• Working as a IAM engineer as part of teh engineering & operations team to support and administer LDAP/SiteMinder infrastructure of different Confidential portal applications.
• Involved in various ping identity and federation integrations with different application team
• Involved in implementing various federation agreements where SiteMinder acting as Service Provider or Identity Provider and external vendors acting as Identity Provider or service provider using SAML 2.0 in IDP/SP initiated method.
• Involved in implementing Azure Conditional access policies according to application requirement
• Involved in Windows Hello for Business POC with various application teams and MSFT vendor for troubleshooting.
• Involved in doing POC on implementing OAUTH 2.0 integrations using Ping Fed as part of migrating from SiteMinder to Ping Fed.
• Configuration management of servers using Chef and utilizing scripting languages such as Python or Ansible.
• Working experience of ForgeRock SSO SME as part of setting up environments.
• Implemented various Federation implementations on SAML/WS-Fed using Ping Fed by setting up connectors and selectors.
• Experience in setting up various connectors and selectors or policies and policy contracts as part of setting up MFA for various applications.
• Involved in implemented various SSO integrations using Ping Product suite as per application requirement.
• Experience in automating LDAP deployments using Jenkins or CI/CD pipelines as part of new LDAP environment builds
• Involved in setting up variety of splunk dash boards as part of monitoring teh system performance.
• Involved in configuring Prometheus and Grafana dashboards to monitor teh various LDAP server environments
• Implementation experience with multi-tenant SSO solution including ping or Oracle directories.
• Experience in implementing OUATH 2.0 integrations for various applications using Ping Fed.
• Installation and configuration of R1252 Web agents for various Web Servers in different environments. (Apache, IIS and Oracle HTTP).
• Created physical and logical architecture solutions using Ping Access/Federate/Directory services solutions with client business processes and technologies.
• Involved in implementing various ping federation agreements as part of integrating applications.
• Implemented of DevOps model of Ping Identity suite of products at cloud and on-perm SSO solutions.

Environment: Ping Access 9.x, Ping Federation 9.x, Azure, Red Hat Linux 5.x/6.x/7.x, IIS 6.x/7.x, AIX 5.x/6.x, ODSEE 11g R1/R2/R3, Oracle Unified Directory, SiteMinder R12/R12.52/R12.8, SiteMinder Web agent R12/R12.5, SAML 1.x/2.x/ADFS, Web Sphere Application Server

Confidential, Baltimore, MD

SSO Engineer

Responsibilities:

• Working as a SSO engineer as part of teh Wholesale Authentication Services team to support and administer LDAP/SiteMinder infrastructure.
• Involved with teh team in installing & configuring Sun directory server 5.x/6.x
• Involved in upgrading sun directory server 5.x to directory server 6.x in various environments.
• Assisted in setting up mixed mode replication between directory server 5.x and 6.x in different environments.
• Designed and implemented teh Sun Directory server 6.x which involves teh schema modifications & migrate authorization groups and external users.
• Worked on troubleshooting forLDAP and SiteMinderissues with Support Teams for newer initiatives at organization level.
• Installed & configured Directory Server Console Center (DSCC) on various platforms in various environments.
• Involved in writing teh scripts like backup, replication monitoring and configuration statistics in directory server 6.x.
• Built two new datacenters with Policy Server and Sunone LDAP Servers to reduce network traffic for Wachovia applications.
• Provided 24x7 production support for SiteMinder and LDAP infrastructure.
• Installed and configured SAML SiteMinder infrastructure on Windows environment.
• Assisted in discussions of redesigning LDAP architecture for older environments.
• Worked in upgrading SiteMinder 6.x to SiteMinder R12 in different environments.
• Assisted in migrating LDAP from one data center to another data center.
• Involved in upgrading Oracle directory server 5.2 to Oracle 11g.
• Involved in upgrading teh siteminder policy servers & agents from R6 to R12.
• Involved in migrating teh siteminder R6 environment to R12.5 in teh federation environment.
• Involved in troubleshooting various performance issues with Portal LDAP.
• Involved in planning and designing teh Portal upgrade from directory server 5.2.
• Worked with operations team to integrate teh applications with Portal in higher environments.
• Involved in performance tuning of teh directory Servers by tuning cache size, replication, indexes and log file settings to improve modify etimes.
• Involved in troubleshooting various Advance Password Issues with operations team for Portal.
• Configured various Web servers like IIS and IHS with Single Sign On(SSO) using Siteminder.
• Configured teh Siteminder Policy servers for failover to multiple user directories and policy stores
• Worked on troubleshooting variousLDAP and SiteMinderissues with operations team
• Worked with CA/Oracle vendors to troubleshoot teh various issues as part of integrating applications with Portal.
• Worked in documenting teh various applications for integrating with Portal and handed over to operations team for implementing in MTE/PROD environments.
• Assisted in deleting large chunk of data in LDAP to accommodate for licensing purpose.
• Performed hands on tasks such as planning installs, patch upgrades, and Sun LDAP tuning, maintenance, patches and other daily administrative tasks on teh various environments.
• Developed documentations for teh upgrades, installation and management of teh directory server.
• Worked in documenting LDAP topology in different environments as part of acquiring Wachovia.

Environment: Solaris 9/10, Sun JES Directory Server 5.x/6.x, Sun Web Server 6.x/7.x, Red Hat Linux 4.x/5.x.Windows 2000/2003, SiteMinder 5.5/6.0/R12.

Confidential

Jr. Identity Administrator

Responsibilities:

• Responsible for teh design of teh rules, realms, policies and responses for 2 domains in SiteMinder 5.
• Changed existing rules and responses in SiteMinder policy server as requested by teh development team.
• Install and Configure Web agents in Linux environment.
• Involved with teh LDAP team in teh LDAP replication of teh iPlanet directory server 5.1.
• Designed teh LDAP schema and replication to support SiteMinder Policy, User store and Key Store in highly available mode.
• Maintained teh SiteMinder deployment on a day-to-day basis.
• Monitored log files and system security on a day-to-day basis.
• Member of team dat designed enterprise SiteMinder and LDAP architecture
• Analyzed system problems to determine their root cause and then develop solutions including, potentially new configurations, advice for software or scripts and documentation as required mitigating future occurrences in SiteMinder.
• Changed teh rules and responses in SiteMinder policy server as requested by teh development team
• Responsible for teh design / configuration of Global Policies, Global Rules, Global Responses.
• Participated in 24/7 call support to Provide support for application developers to help integrate their applications with SiteMinder Single Sign on.
• Created rules and policies to implement authorization permissions to web resources.
• Maintained teh SiteMinder deployment on a day-to-day basis.
• Involved in configuring and converting MS SQL server 6.5 databases to MS SQL Server 7.0.
• Member of team dat designed enterprise SiteMinder and LDAP architecture
• Enabled load balancing and failover mechanisms for various SiteMinder components in QA and Production Environments.

Environment: SiteMinder 4.5/ 5.0, Web agents 5.X, Solaris, Sun ONE LDAP and iPlanet web server 5.1