PROFILE:

• Over 12 years of experience in the software & optimization industry.
• Strong skills in object oriented programming and application design, analysis, development, support and optimization.
• Strong knowledge of Windows, the .NET framework, open - source programming and relational databases.
• Motivated and self-starter, with an aptitude for learning new tasks quickly.
• Excellent interpersonal skills.

TECHNICAL SKILLS:

Scripting: Batch, Powershell, psake, Unix, Python

Frameworks: .NET 2.0-4.5, ASP.NET, PLAY 2 (JAVA8), Spring, JEE, Android SDK-NDK, AngularJS, DotNetNuke, Wordpress, Rails

Web Servers: IIS, Apache

Database Servers, RDBMS and NoSql: MS SQL  Server 2000-201 2, MySql, SQLite, Postgresql, Oracle, SSAS, SSRS, SSIS, CR, MongoDB, Migrations

ORM: Entity Framework, Hibernate, NHibernate, JPA, Ebean

Charts and Visualization: Google Charts, D3.js

Build Tools: ANT, NAnt, MSBuild, PowerShell, Maven, Grunt, Bower

OS: Windows, Linux

IDE’s: VS-2012, Eclipse, MS Web Matrix, Visio

Testing and Mocking: NUnit, xUnit, JUnit, Jasmine, Capibara, Moq, Mockito

Development Strategies: IoC and DI support (Ninject, Guice), Design Patterns

Source Control and Cloud Computing: TFS, SVN, Bitbucket, Github, AWS, Azure, Heroku

Continuous Integration and Deployment Tools and Strategies: Agile and SCRUM (JIRA), TeamCity, Jenkins

Networking: ATM, LAN/WAN, TCP/IP, UDP, FTP, HTTP/HTTPS, RTSP, RTP

Mobile Development: Native Android, Hybrid Development (Ionic), ASP.NET Mobile Web Pages, jQuery Mobile

Web Technologies and libraries: AngularJS, Backbone, KnockoutJS, Node.js, jQuery, CSS3, HTML5, XML, XAML, Silverlight, WCF, WPF, Web Services, MVC, MVVM, Web API, OWIN, KATANA, ajax, javascript, Yeoman, Telerik, SEO

CRM Synchronization/integration: Salesforce, Marketo

Mobile App Submission: Google Play and Apple Store Build and Submission processes

Development tools: Resharper

Web Security and Compliance: PCI-DSS compliance and best practices, WCAG 2.0 Compliance (Web Content Accessibility Guidelines), OWASP Penetration Testing Tools

PROFESSIONAL EXPERIENCE:

Confidential

Software Developer

WA

Responsibilities:

• Develop for a multichannel platform enabling charities and non-profit organizations to fundraise on the web, social networks and mobile devices
• Support and enhance of a large web solution (e2RM). Wide use of windows, web programming, security standards implementations, open source and scripting technologies (See Programming Languages, Frameworks and Technologies)

Mobile Development: 

•  Android and iPhone Development (Maintenance and enhance of the fundraise solution for android devices, App customization, build and submission process to Google Play). Hybrid Mobile Development with Ionic and ASP.NET Mobile Web Pages.

Database Level:

• 1. Localized used of the HashByte SHA1-512 sql function to hash SaleForce system administrator passwords and Ids.
• 2. Implemented double base64binary sql table fields for encrypted passwords for clients (legacy and hashed password).
• Granted restricted executed permissions to the related stored procedures.
• Granted write access only to database administrators (no developers).
• Granted read access only through the jump server to developers (Extra server being monitored by IT). Developers need an extra key generated by a third party application to log into the database server and then log into the related live servers for reading. Granted VIEW DEFINITION permission only to developers and administrators.

Application Level:

• All application iframe urls are encoded with an HMACSHA256 secret key (ie: facebook iframe)
• For login: Implemented class with the following functionality:
• Encrypt / Decrypt credit card numbers: Implementation of the RCA Public KeySpec class when dealing with this database field.
• Implemented a CSRF security token functionality to expire the session along with a MAC validation maximizing the protection against CSRF and session fixation attacks.
• Implementing secure coding practices all over the application by validating all user inputs against html tags white lists maximizing the protection against XSS attacks.
• Implementing secure coding practices against SQL injection attacks by using parameter validation in code and validate all user inputs. Dynamic queries are prohibit when develop code to interact with the databases.
• Implemented algorithms for parsing html to allow user to create their own microsites by submitting html and javascript into the databases. Used Jsoup as tool.
• Daily use of OWASP Zed Attack Proxy (ZAP) tool to mimic attacks to specific pages and validate those pages against these attacks. Ensuring compliance with the Open Web Application Security Project (OWASP) by following its directives.
• Security driven code review is mandatory for every code alteration.

Application Developer and Database Developer and Administrator

• Application Development and Administration
• E-Commerce Integration. Implementation of different E-Commerce APIs like AbleCommerce.
• Content Management System (DotNetNuke, Wordpress). Developed wide amount of web sites by using CMS technologies by creating rich content management tools in .NET and PHP-Wordpress open source technologies.
• Social Media Integration. Wide use of Youtube, Facebook, Twitter and Flickr by using Google and others web API allowing integrating into the web site data from those interface using javascript and RESTful services.
• Database Design, development and Administration. SQL SERVER 2000 - 200 8, SSIS, SSRS, SSAS.
• Micro-site development. Web 2.0: blogs. Developed blogs in Wordpress, PHP and Mysql.
• Google analytics integration. Set up different goals to be measured by google analytics statistics.

Engineering and Software Developer

• Workforce Management (To achieve an optimal human resources management in a Multi-Skill inbound-Call Centre to satisfy a variable service level by means of mathematical methods and models - Simulation & Optimization).
• Solved the mathematical problem of HR Optimization in a Multi-Skill inbound-Call Centre. Built a forecasting, workforce and capacity planning. Built the Multi-Skill inbound-Call Centre Simulator. Developed the related COM-enabled assemblies (.NET).
• Improvement and Optimization of the Agent Script solution:
• Issue: Due to the high traffic in a intranet network (more than 100 Call Centre agents accessing a web based solution (.NET) simultaneously to serve incoming client calls), and a poor programming design and architecture; the overall output is a server response delay and application resources starvation.
• Solution: Front-end and back-end redesign of the solution by applying programming web technologies such as javascript, jquery and AJAX as well as a comprehensive restructuring of the SQL SERVER optimization approach, the stored procedures and functions jointly with a proper use of the .NET framework 3.5 (C#).

Confidential

Engineering and Software Developer

• Designed, developed and documented solutions to find the shortest path among data terminals to improve the data transfer among them, by means of mathematical methods and models - Optimization. Developed the related software components.
• Designed, developed, documented and maintained most software components required by the organization (database, transaction servers, website, reports, and monitoring tools).
• Implemented communication interfaces with third-party software components.

Confidential

Software Developer

• Participated in the design and development of several modules for a large POS system (wireless dish-ordering application for hand-held terminals, transaction server and database access modules, communication protocols and interfaces with back-office software, monitoring and alarm-management utilities).