PROFESSIONAL SUMMARY:

• Over 8+ years of extensive experience in analysis, design, development, implementation and maintenance of enterprise wide Security Middleware and SSO solutions with CA SiteMinder Policy based services.
• Proficiency in configuration of SiteMinder Authentication Schemes, Policies, Realms, Rules and Responses.
• Involved in creating Federation connections using Active Directory Federation Service (ADFS), SiteMinder and Pingfederate.
• Configured SiteMinder Web Agents on Web Servers like IIS, Apache, Sun One Web Servers and Application Servers like Tomcat, WebLogic and WebSphere.
• Experienced in CA SiteMinder Environment Upgrades from R12 to R12.52, 6.0 to R12.x and 5.5 to 6.0
• Experience in SAML 1.1 and SAML 2.0
• Configured and defined the policies for SAML Affiliate Agents for federated authentications for users coming from partner sites. Used SAML to implement security to external web applications.
• Worked on supporting and debugging issues with and implementing SSO solutions with Business Partners using CA SiteMinder and PING identity solutions for the federation setup.
• Experience in using SiteMinder Federation services and web agent option packs to build and maintain Federation infrastructure to provide SSO functionality to external applications.
• Maintaining and providing OPS support to large scale Access Management systems on both Enterprise and Consumer level.
• Experienced in installing and configuring Sun One Directory Services, Directory Tree, Schema, Indexes and Replication.
• Experience in programming using Java, JSP, Servlets, XML and HTML and UNIX shell Scripting.
• Configured LDAP servers in Multi/Single Master - Consumer configurations and monitored the smooth replication performance.
• Proficiency in SiteMinder Administration, Load Balancing, Performance Tuning and High Availability in both UNIX and Windows based environments.
• Worked with CA core teams to understand and analyze corporate infrastructures to provide performance improvement suggestions.
• Proficiency in managing, maintaining, troubleshooting, and resolving User Authentication and Access issues in a 24x7 production environment.
• Experience in working with CA Wily and SPLUNK to handle the issue resolutions more efficiently and quickly.
• Experience in working multiple monitoring systems to understand and analyze various logs and reports to provide a more reliable and efficient support infrastructure.
• Provided close support to Identity management teams w.r.t SiteMinder.
• Experience in Identifying process improvements and provide recommendations for more effective troubleshooting of complex hardware and software problems.
• Excellent client facing and customer interaction skills.
• Strong organizational, interpersonal, and project management skills.

TECHNICAL SKILLS:

CA SiteMinder:CA SiteMinder Policy Server 4.x/5.x/6.0/12 SP1, SP2, SP3, and R12.52 Web agent 4.x/5.x/6.x/12.x/12.52

Web Servers: IIS 6.0/7/7.5, Apache2.2/2.4, iPlanet Web Server 6.x and other Sun One Web Server6.x

Directory Servers: Sun ONE Directory Server 5.x, 6.x, Netscape Directory Server 4.x, Microsoft AD, CA Directory Servers R12

Operating Systems: Windows Server 2003/2008/R2, Red Hat Enterprise Linux 3-6, UNIX (AIX, Sun Solaris 7-10)

Application Servers: WebLogic Server 8.x/9.x/10.x/12c, Tomcat 5.x-8.0, JBOSS, CA SPS

Programming and Scripting: Java, C, HTML, XML, Unix Shell scripting, Perl, Java Scripting

Monitoring Tools: HP BAC, CA WILY Introscope. Usage of Splunk and NewRelic for Log monitoring.

PROFESSIONAL EXPERIENCE:

Tampa, FL

IAM Engineer

Responsibilities:

• Configure security and manage access to internal and externally hosted applications utilizing a variety of industry standard protocols such as OAuth 2.0, SAML, and WS-Federation.
• Responsible for Federation via Identity Broker, Global External Authentication, Global Internal Authentication, Group and User Management, PKI & Non Web Authentication.
• Responsible for conducting IDAM integrations and implementations throughout the organization for internal and external clients.
• Work & Support (Staging and Production) with various vendors to create SSO/FEDERATION between the Identity Provider Landing page and Service Provider’s Applications.
• Used a combination of Ping Federation and SiteMinder to provide SSO solutions to SOA applications like Salesforce.
• Worked on Ping Federation in conjunction with SiteMinder adapters to implement various flows of authentication to provide SSO solutions to different clients in different scenarios.
• Partner with vendors and internal development teams to setup and maintain federated single sign on solutions for internal, external and web services applications.
• Use of Microsoft Forefront Identity Manager (FIM).
• Use of load balancing and replication techniques as they relate to high availability systems.
• Managed user domain accounts and security in an active directory environment.
• Managed user mailboxes and distribution lists on the Exchange mail servers.
• Resolve issues with user accounts, permissions, and password problems/changes.
• Registering single external users and multiple external users (i.e. in bulk)
• Registering external users directly in an application via an API. Managing existing external user account details, e.g., phone, email, resetting passwords.
• Certificate-based authentication, Forms-based authentication and Multi-factor / strong authentication.
• Responsible for Single sign on (SSO) between IdAM applications. Web application support, Web open standards support and Third-party federation.
• Create and maintain user and email accounts in Microsoft Active Directory.

Environment: OFIS, VIS, CA SiteMinder 12.5x, Windows 2012R2, Red Hat 6.x, Microsoft AD, IIS 7.x/8.x, Apache 2.2.x, WebLogic 12c.

Minneapolis, MN

IAM Engineer

Responsibilities:

• Worked on the project to design, develop and enforce the upgrade of the Enterprise infrastructure from CA SiteMinder R12 to R12.52.
• Integrated multiple internal applications with CA SiteMinder.
• Implemented Single Sign-on across multi-domain infrastructure.
• Performance tuning for SiteMinder to provide better response time, high availability and maximum throughput.
• Worked on a POC with CA Secure Proxy Server to implement CA SiteMinder Federation services.
• Configured SiteMinder for SAML Federated Partnerships as ID Provider using SAML 2.0.
• Worked with PING Identity Solutions to facilitate Federation with 3rd party vendors and external applications.
• Implement password policies for all the applications using SiteMinder.
• Created SiteMinder Agents for Federated Authentication and Authorization with partner sites.
• Worked on Ping Federation in conjunction with SiteMinder adapters to implement various flows of authentication to provide SSO solutions to different clients in different scenarios.
• Configured SSO for multiple applications using OptumId.
• Monitor of SiteMinder server logs for identifying problems with Authentication and authorization of users.
• Configured load balancing and failover mechanisms for various SiteMinder components in different environments.
• Day-to-day maintenance of SiteMinder policy servers and troubleshooting production issues.
• Involved in setting up monitoring tools for real-time monitoring of SiteMinder Infrastructure.
• Used to manage AGP deployments to facilitate customizations for the federated solutions.
• Helped application teams to design and implement the SSO solutions for both internal and external applications.
• Provided support and troubleshooting facilities to existing SAML federation partners for issues and quick fixes.

Environment: CA SiteMinder 12.5x, Windows 2008R2, Windows 2012R2, Red Hat 6.x, Oracle Directory Server, IIS 7.x/8.x, Apache 2.2.x, WebLogic 10.x.

San Jose, CA

SiteMinder Engineer

Responsibilities:

• Worked on the projects to design, develop and enforce the Single sign on multi-domain infrastructure.
• Worked on a project to add additional infrastructure capacity to increase the load handling capability in the Production environment by adding 4 new servers in the Production environment.
• Worked on SiteMinder Upgrade from R12 sp3 to R12.52.
• Install and configure CA secure proxy server R12.5 and setup SiteMinder Federation services using SPS.
• Assisted the team to upgrade SiteMinder policy servers, policy stores and web agents on multiple platforms as part of the SiteMinder upgrade project.
• Co-ordinate the changes for an optimized plan to minimize downtime across the DEV, TEST, STAGE and PRODUCTION environment.
• Worked on day to day tasks including creation of SiteMinder configuration objects and working with application teams to resolve issues.
• Worked on creating policy objects as required by the application teams to implement sound and secure SSO solutions.
• Configured Multi factor authentication for SiteMinder protected Applications
• Integrated LDAP with Netegrity SiteMinder to access user stores and policies.
• Experienced in installing, configuring SiteMinder policy server Web agents, ASA agents, Domino Agents, Active Directory server (LDAP) and various Web & Application servers.
• Worked on integrating new applications with SiteMinder by creating the required realms, rules, and policies as required. Completed the protection and provided support as needed
• Worked on multiple projects to provide SSO with SiteMinder federation setup with 3rd party vendors using the SAML protocol.
• Responsibilities included attending the preliminary discussions and further work with the technical teams to gather requirements and attend multiple calls to complete the integrations.
• Worked on a large corporate project from initial stages to design and build the SSO solution to support the project until it was pushed live.
• Worked on a project with the CA core team to discuss and design health check suggestions to improve the health and performance of the SiteMinder environment within the Infrastructure.

Environment: CA SiteMinder r12.52 Sp1, CA Secure Proxy Server r12.5, Oracle Directory, IIS 6.0/7.x, Apache 2.x, JBOSS app servers, Windows Server 2003/2008, and RHEL 5.

Cleveland, OH 

SiteMinder Consultant 

Responsibilities:

• Worked on the project to design, develop and enforce the upgrade of the Enterprise infrastructure from CA SiteMinder R12 SP3 to CA SiteMinder R12.52
• Participated in the planning and implementation phase of the upgrade project and successfully worked thru the implementation in the DEV, TEST and also the Production environment.
• Worked with PING Identity Solutions to facilitate Federation with 3rd party vendors and external applications.
• Upgraded CA SiteMinder 6.0 to SiteMinder R12 SP3 in the initial stages of my project start.
• Design CA SiteMinder r12 Enterprise infrastructure and provide high availability by configuring Clusters across two different data centers.
• Created Policies, Realms, Rules and Responses in SiteMinder policy server to protect the applications and validate the users to work under SSO environment.
• Provided solutions for custom Authentication schemes developed by the App teams as part of the requirements.
• Worked with various vendors to develop SSO solutions for federated setups with external applications.
• Worked on developing a common across the board Enterprise login scheme in conjunction with Windows authentication using enterprise login server architecture.
• Performance Tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.
• Work with IIS 6, IIS 7, IIS 7.5, Apache Web Server 2.xx Web servers, JBOSS App server to deploy the Admin UI for Policy Server.
• Provided OPS support to the SSO architecture and provide monitoring and L2 support for the applications.
• Used tools like SPLUNK, CA WILY and HP BAC to provide the above mentioned support.
• Worked towards building, maintaining and providing high availability and the best quality of support for any issues within the scope of the Enterprise and Consumer Infrastructures.

Environment: CA SiteMinder r12 Sp3, CA Directory Server 5.2, IIS 6.0/7.x, Apache 2.x, JBOSS app servers, Windows Server 2003/2008, Solaris 10 and RHEL 4/5.

Detroit, MI

SiteMinder Consultant

Responsibilities:

• Design and Architecture CA SiteMinder r12 SP2 Version for Access and Federated Security Services, includes Configuring Admin UI and Configuring the Policy Server with Session Server.
• Setup policy servers and web agents and webagent option packs for SiteMinder Federated Web Services.
• Apply Option Packs and Servlet Exec on IIS for Federation with other PHP Products and SAML 2.0.
• Upgraded CA SiteMinder 6.0 to SiteMinder 12.0.
• Design CA SiteMinder r12 Enterprise infrastructure and provide high availability by configuring Clusters across two different data centers.
• Created Policies, Realms, Rules and Responses in SiteMinder policy server to protect the applications and validate the users to work under SSO environment.
• Work with SAML 2.0 for Federation between partner web sites.
• Worked with SiteMinder federation services to provide the necessary SSO solution for SSO with external partners.
• Work & Support (Staging and Production) with various vendors to create SSO/FEDERATION between the Identity Provider Landing page and Service Provider’s Applications.
• Use Integrated Windows Authentication (IWA) Scheme and Form based Authentication (FBA) scheme with Different vendor’s requirements.
• Work with Metadata, Entity ID’s and Assertion Consumer Service (ACS) URL to configure SAML 2.0 Federation.
• Skilled in Search Filters, Performance Tuning, Custom Objects, Creating ldif files.
• Performance Tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.

Environment: CA SiteMinder r12 Sp2, Sun One Directory Server 5.2, IIS 6.0/7.0, Apache 2.x, JBOSS app servers, Windows Server 2003/2008, Solaris 10 and RHEL 4/5.

SiteMinder Consultant

Responsibilities:

• Installed web agents and created SiteMinder Realms, Rules, Responses and Policies to protect the applications and validate the users to work under SSO environment.
• Responsible in Performance Tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.
• Installed, configured and designed CA/ Netegrity Site minder policy server.
• Created rules, rule groups, response, response groups, realms and policies for Directory Server users, implemented SiteMinder policy based security.
• Monitored heartbeats and refresh rates for various components of SiteMinder.
• Implementation of SSO and authentication services using CA/ Netegrity SiteMinder.
• Upgraded CA Netegrity SiteMinder policy server from 5.5 to 6.0 SP1.
• Designed the LDAP schema and replication to support SiteMinder Policy, User store and Key Store in highly available mode.
• Assisted in architecting LDAP schema designs and directory tree structures from SiteMinder perspective to merge and migrate authorization groups and external users.
• Designed the LDAP schema and replication to support SiteMinder Policy, User store and Key Store in highly available mode.
• Involved in setting up Sun One Directory Server and SiteMinder Web Agent in a Windows 2000/ IIS environment.
• Installed and configured SAML 2.0 which enables to pass the authentication information between the affiliates and the main portal. Configured SAML Affiliate agent.
• Administer policy server: Session management; handled user session tickets, maintained sessions across multiple cookie domains in the SSO environment.
• Proxy service protection for internal Web infrastructure by providing SSL, fault tolerance and load balancing.

Environment: CA Netegrity SiteMinder Policy Server 6.0 SP4 and 5.5, Solaris, Windows 2003, Sun One Directory Server 5.1/5.2, Apache Web Server 2.2.6, IIS 6.0 and Linux, Java JSP, HTML and PERL scripts.