SUMMARY

• 9 years of experience in IAM and 6+ years of experience in SailPoint development, testing, integration and implementation.
• SailPoint development, testing, integration and implementation.
• Expertise in Identity Access and Role Management Solutions Using SailPoint IdentityIQ.
• Installation and configuration of SailPoint application across all environments development, stage and production.
• Configuring the Applications (Authoritative and Non Authoritative) using AD, Flatfile, JDBC and LDAP connectors to load the Identity cubes.
• Supported operations & maintenance of SailPoint and LDAP connectivity.
• Connector development for target Systems (Active Directory, LDAP, JDBC, CSV).
• Developed custom workflows (With multi - level approval and time-based escalation for Approval process, profile update and self-service, changing the profile of User and modifications to Groups).
• Experience in working with client interface to understand and implement Change Requests in Payroll Management system
• Experience in requirement gathering, feasibility study and technical/functional documentation.
• Prepare, recommend and review the IAM solutions architecture road map.
• Worked with vendor's Product Support team store solve issues (defects, bugs, enhancements) with product.
• Experience on RBAC (Role Based Access Control) analysis and implementation.
• Expertise in managing IBM Web Sphere and WebLogic Application Servers.
• Responsible for system maintenance and adherence to compliance rules and check the user level accesses via SailPoint.
• Highly organized self-starter with effective customer-service skills and demonstrated ability to manage technical aspects and pre-sales projects, architect tailor-made custom solutions, build relationships and product offerings.
• Involve in cross communication across functional teams, Managing Stakeholders expectation.
• Strong understanding of full software development life cycle, including troubleshooting, debugging and production support.
• Installed, configured and integrated Web servers (plug-in file), SiteMinder Web agents and LDAP user directory with Websphere Application Server.
• Proven communication and problem solving skills to help identify, communicate and resolve design challenges and issues to meet business requirements.
• Possess strong architecture and implementation experience in Identity and Access Management.
• Installation and configuration of SailPoint application across all environments - development, QA and production.
• Proven technical leadership skills include the ability to manage teams, earn the respect of its members, led by example, and thrive in an entrepreneurial environment.
• Exceptional ability to build Client relationships through frequent meetings, one on one interaction, and/with ability to converse with all facets in the client organization by utilizing elicitation techniques like interviewing, questionnaires, brainstorming.
• Relishes the opportunity to experiment, evaluate and adapt to new tools and products, including, Open Source Technologies.
• Forgerock OpenIDM, OpenAM (formerly Sun OpenSSO), OpenDJ (formerly Sun DSE), OpenIG.
• Relational databases (MySQL, MS SQL Server and Oracle)
• Responsible For Supporting Enterprise Customer in the areas of Single Sign On, LDAP and Identity Manager using protocols such as Federation, OAuth, Open IDconnect to manage enterprise identities for on-premise, cloud technologies as well as IOT solutions.
• Experienced IT professional with comprehensive technical troubleshooting skill set and expertise in requirement analysis, application design and software development.
• Experience in implementation of IAM solution from scratch.
• Hands on experience in IAM requirement analysis, implementation of Access Gateways and SAML based integrations.
• Deployments to SailPoint environment via cloud forge and bamboo and Deployments to production, Stage and UAT environments.
• Experience in collaborating with teams to determine systems requirements and functionalities needed in LDAP.
• Experience working with Active Directory using LDAP protocol and good understanding of the LDAP concepts.

TECHNICAL SKILLS

Operating Systems: IBM AIX, 4.3,5.1L,5.2,6.1, SUN Solaris 5.8,5.9,5.10, LINUX Red Hat 5.1,6.1,6.4,7.1, Windows NT, 2000,2003, 2008 server, Windows XP, 7.

Security/IAM: Sailpoint IIQ 5.x/6.x/7.x, SailpointIdentity Now, Sailpoint securityIQ, CA Identity Manager 12.5.x/12.6.x, CA SiteMinder 6.x/12.x, PingFederate 5.x/6.x/7.x, CA Governance Minder 12.x

Federation Technologies

: SAML 2.0, SAML2.0, OAuth2.0

Application Serve: IBM WebSphere Application Server 6.x, 7.x, 8.0, 8.5, Portal server 6.x, 6.1, 7.0.x, Apache Tomcat 5.5, 6.0, 7.0, WebLogic 8.x, 9.x, JBOSS 4.x, 5.0, 5.1, 6.1, 6.2, WildFly 8.

Web Server: IBM HTTP Server 6.0, 6.1, 7.0,8.0, Apache Web Server 1.2.2, 2.0,2.4 IIS 5.0, 6.0, Sun-One Webserver 6.0, 6.1,7.0.

Directory Servers (LADP): Sun Java DSEE 6.x, iPlanet/SunOne Directory Server 5.x, Directory Proxy Server, Microsoft Active Directory,IBM Access Manager, OpenLDAP, ADAM,Forgerock

Monitoring Tools: Nagios, Solar Winds, Cacti.

Database: DB2, Oracle 8i/9i/10g/11g/12c, including RAC, Microsoft SQL Server 2007/2008/2010/2012 , Informix dB

Database Tools: Quest Live Reorg, BRTools, Oracle Enterprise Manager Database Control, Recovery Manager (RMAN), Oracle iSQL Plus, SQL Loader, Designer/Developer 6i/2000, Veritas Net Backup / Backup Exec, Data Backup

Connectivity Tools: Hummingbird Exceed, Putty, Secure Shell (SSH), Telnet, FTP, Cisco VPN, Terminal Server/RDP, Remote Admin, PC Anywhere, VNC, Xmanager

Deployments and Automation: Jenkins 1.8.1

Cloud Platforms: AWS/ AZURE

Protocols: HTTP, HTTPS, SOAP,REST, LAN, WAN, SSH, DHCP, SMTP, POP3IMAP, LDAP, VPN solutions, MS Proxy Server 2.0.

Scripting/Languages: Unix Shell Scripting, Perl, Java server pages (JSP), Jacl, Jython, Git

Reporting/CaseTools: HP Open View Service Desk (OVSD), eClarify Workflow Management (WFM), ER-Win, Crystal Reports 9 and 10, Developer 2000

PROFESSIONAL EXPERIENCE

Confidential, Los Angeles, CA

IDM SailPoint Developer

Responsibilities:

• Installation of SailPoint IIQ in various environments like UNIX and Windows.
• Implemented new screens using JSF and Java Beans according to the client requirement.
• Implemented user provisioning from SailPoint and aggregating users into SailPoint from connectors like Active Directory and SAP HR.
• Involved in gathering the requirements with the customer and implementing it with the team.
• Designing custom screens for requesting additional access, approvals.
• Customizing Email Templates and configure them.
• Implemented workflows in IIQ and provisioning in SailPoint IIQ using SAP HR and Active Directory connector.
• Creating task definitions, task schedules, rules, custom objects and workflows.
• Worked on Workflows, Rules, Custom User Form, Account and Group Aggregation.
• Worked on the tasks like approval workflows, customizing on boarding workflows, Job change workflows.
• Designed and developed rules like Build Map, PreIterate, PostIterate, Correlation, Customization, Exclusion, Identity Creation, Policy Violation, exclusion, escalation etc.
• Preparation technical specification documents and deployment documents for various environment releases.
• Provisioning application's requests in IIQ to Create/Amend/Delete user access for the on boarded applications.
• Involved in installation and updated the patch from 6.4 to 6.4p4.
• Worked on Jasper Reports.
• Done different levels of testing like unit, Integration and system testing in development environment.
• ForgerockOpenIDM, OpenAM (formerly Sun OpenSSO), OpenDJ (formerly Sun DSE), OpenIG.
• Relational databases (MySQL, MS SQL Server and Oracle)

Environment: SailPoint 6.4 & 6.4p4, JBoss Application Server, Mysql DB, SAP, ForgeRock, Microsoft Active Directory Server, Eclipse, JSF, Siteminder SSO, Java and SVN.

Confidential, Houston, TX

Sailpoint IIQ /IDM Developer

Responsibilities:

• Manage SailPoint installation, integration, provisioning and connectors (AD, PeopleSoft HRMS (read).
• Scheduling and implementing various type of User Entitlement Reviews (UER) for applications and databases in a timely manner to all the business areas across the organization.
• Creating Populations and Work groups in IIQ.
• Configure scheduling parameters for each UER to define their Basic, Life cycle, Notifications, Behaviors and Advanced functionalities.
• Generating various reports in Sailpoint IIQ like Identity Reports, Orphan Account reports, Account Discrepancy reports, Role composition report and Application attribute reports etc.
• Before on boarding we will get extract of application with the user unique ID, access levels and permission and do deep dive sessions to analyze the application.
• CreatingRoleModelTemplatesbasedontheapplicationsonboardedbygettingengagedwithvarious business people as well as with TS.
• Coordinating with existing Provisioning Team for the application in order to get the existing User Access Management (UAM) model to make it fit in to IIQ.
• Define application in IIQ and upload application data feed on to IIQ.
• Configuring new IIQ based roles for the application on to IIQ.
• Tracking the completion status of various certification types like manger, application owner, entitlement owner, advanced and so on.
• Responsible for coordinating stake holders and end user in implementing IIQ.
• Provisioning application's requests in IIQ to Create/Amend/Delete user access for the on boarded applications.
• Raising and tracking incidents raised for system issues raised with Technology team.
• Identifying the risks and its root cause to mitigate the existing risk in our process.

Environment: Java, JSF, Hibernate, SailPoint Identity IQ, Oracle 10g, Apache Tomcat 6.0.32, XML.

Confidential, Dallas,TX

SailPoint /IAM Engineer

Responsibilities:

• Working as a Senior Oracle Identity and Access Management (OIAM) Analyst in developing and supporting identity and access management solutions per client infrastructure requirements.
• Upgraded Oracle Identity Manager (OIM) and Oracle Access Manager (OAM) from 11gPS2 to 11gPS3.
• Implemented a Secure Identity and Access Management (IAM) infrastructure design, authentication, authorization and business application integration, custom-built solutions and technology frameworks.
• Implemented Multi-Factor Authentication (MFA) by Configuring One Time Pin (OTP) through Email using OAM Adaptive Authentication Service.
• Installed and configured Oracle Unified Directory (OUD) in a highly available configuration using multi-master replication mode.
• Worked on development of OAM customizations related to login pages, error pages and page flow, authentication and authorization plugins, setting up OAM policies, installing components.
• Deployed Multi-Data Centers (MDC) using OAM 11g to distribute load between applications and for data recovery.
• Upgraded and enhanced applications that improve the reliability, performance, and capabilities of the application.
• Created User Defined Fields (UDF) for the catalog metadata and customized the Catalog UI to display the custom metadata.
• Designed Role Based Access Control (RBAC) in very complex environment.
• Developed multiple application instances and deployed them to next level environments.
• Registered and Deployed Event Handlers in OIM by using Plug-Ins, Upload Jars Utility, Mbeans from Enterprise Manager (EM) console.
• Coded custom Java classes by extending Identity Connector Framework (ICF) to take care of entitlements bulk provisioning to users.
• Developed Scheduled jobs as part of connectors to keep the entitlement data up to date and for reconciliation of user profile data with OIM users.
• Extended Out-Of-The-Box (OOTB) ICF based connectors and performed provisioning workflow.
• Performs troubleshooting, resolves system issues& routine technical problems of limited scope.
• Performance improvement by resolving Database related reconciliation issues, Provisioning failures, SOA related issues, Orchestration event failures.
• Experience in developing Single Sign-On (SSO) Solutions leveraging Oracle Access Manager (OAM) for traditional authentication and risk based authentication.
• Installed and configured OHS servers and Web Gates to protect both OIM and OAM applications for Single Sign On integration for users accessing the application from intranet and internet.

Environment: 11gR2 PS3, OAM 11gR2 PS3, Unix, WebLogic, WebSphere, OPAM, Windows 2008, SOA, LDAP, AD SSO, MDS, MDC, Exchange, OAM Web Gate, OHS, ADF, Java APIs OID 11.1.1.9, ICF, ODSEE 11.1.1.9, Oracle 11gR2, SOAP, Java 1.7, BI Publisher

Confidential, Dallas, TX

LDAP Admin

Responsibilities:

• Worked onPingFederateClustering with Engine and console servers being part of cluster by maintaining multiple clusters for the high availability.
• Experience in implementing LDAP security models. Utilized Resource Analyzer and Log Analyzer for performance testing and troubleshooting and Knowledge managing LDAP Policy Store.
• Configured Open LDAP with UNIX pam, and enabled users to authenticate against LDAP.
• Installed, configured and integrated Web servers (plug-in file), SiteMinder Web agents and LDAP user directory with Websphere Application Server.
• ConfiguredPingFederation Environment for SAML Federated Authentications for users coming from partner sites by configuring ID Provider/Consumer using SAML 2.0 POST binding.
• Configured AD pass-through authentication for Identity Access Manager (IAM).
• Configured and supported SAML 2.0 with various partners to create SSO/FEDERATION between our Identity Provider Landing page and Service Provider's Applications.
• Installed and configured the IAM suite components in production environments.
• Developed few scripts to update attribute in E-directory using ice import.
• Scheduled chron jobs to run LDIF scripts to update attributes.
• Worked on Single Sign on for the applications to use the third-party services usingPingFederation.
• Created policies, realms, rules and responses to protect the applications and configure them to work under the SSO environment.
• Designed and Implement application API Gateways for Company wide application services.
• Documented all design, development and upgrade efforts in testing, staging and production environments.
• Strong troubleshooting skills in various technologies like F5 load balancers, MQ 6.x, Sun ONE LDAP directory server 5.2 as part of production support.
• Provided 24x7 support for Identity Manager Infrastructure in staging and production environments.
• Experience in Troubleshooting urgent priority tickets with minimum response time.
• Coordinated with testing team to perform load and regression tests on applications in different environments.
• Configured Authorization code and Resource Owner Grant in OAuth 2.0.
• Generated ID token in Authorization code flow which is used for authentication by application teams.
• Worked with testing teams to imported user accounts from production environment to staging environment to validate different test cases.
• Executing Backups and Recovery strategies for directory data (DIF), resolving backup and recovery issues in a High availability environment.

Environment: SAML 2.0, OAuth2.0, E-directory, SunOne Directory Server,Pingfederate7,PingAccessApache 2.x, Webserver 6.1, Tomcat 4/5.

Confidential

Web Sphere Server Administrator

Responsibilities:

• Experience using Jenkins as a full cycle continuous delivery tool involving package creation, distribution and deployment onto tomcat application servers via shell scripts embedded into Jenkins jobs.
• Automated deployment of builds to different environments using Jenkins.
• Manage deployment automation using Ansible, Automated the build and release management process including monitoring changes between releases.
• Implementing a continuous Delivery framework using Jenkins, Ansible and Maven in Linux environment.
• Writing Ansible playbooks for automating tasks and managed Ansible to configure Web Apps and deploy them on AWS server.
• Configured and maintained Jenkins to implement the CI process and integrated the tool with Maven to schedule the builds.
• Involved in writing parent pom files to establish the code quality tools integration. Installing, configuring and administering Jenkins CI tool on Linux machines.
• Worked on build scripts using ANT and MAVEN build tools in Jenkins to move from one environment to other environments.
• Used MAVEN as a build tools on java project for the development of build artifacts on the source code.
• Monitoring of Linux servers and applications via Nagios.
• Worked on Docker and created virtual instances with Docker.
• Container management using Docker by writing Docker files and set up the automated build on Docker HUB and installed and configured Kubernetes.
• Experience working on several docker components like Docker Engine, Hub, Machine, Compose and Docker Registry.
• Hands-on Experience in Maintaining automated environment by using Chef Recipes and cookbooks.
• Worked on setting up the life cycle policies to back the data from AWS S3 to AWS Glacier.
• Involved in configuring AWS EC2 instances on cloud platform using Ansible.
• Hands on experience in deploying the content cloud platform on Amazon AWS using EC2, S3, EBS and worked on various services like Glacier, ELB (Load balancing), RDS, SNS, Route 53 and SWF.
• Established processes and tools to maintain code base integrity, including check-in validation rules and branch/merge processes.
• Worked in setting up the repositories to various projects in GIT involving migration from SVN to GIT repositories and worked with Linux system administrators for the same.
• Supported and developed tools for integration, automated testing and release management.
• Automated build and deployment process using Ruby and Shell Scripting.