Founder Resume
SUMMARY:
Confidential is a Sr. Level Architect and Delivery Manager with 20 years of architect experience and of management experience. He has ten years enterprise experience working with oracle Identity and Access Management Products. Most recently, he has led Confidential teams to design the strong security architecture and build and deliver the identity and access management solution for Department of Interior. Previously, He led Confidential teams to successfully deliver security and identity and access solutions.
PROFESSIONAL HISTORY:
Founder
Confidential
Responsibilities:
- Provide Consulting Services in Enterprise Architecture and Enterprise Security Architecture, Service Delivery Management, Business and Technology Management and Customer Relationship Management across all verticals.
Service Delivery Lead
Confidential
Responsibilities:
- Responsible for the overall technical delivery for Office of Natural Resource’s Identity and Access Management, integrations and the overall security offerings.
- Design the security and infrastructure solution for both the primary site and DR.
- Responsible for the successful rollout of Confidential - Adaptive Authentication, Device Authentication and One Time Token - solution for external environment.
- Responsible for the centralized identity management solution using OIM to automatically provision and de-prevision all internal and external users based on RBAC.
- Responsible to design OIM solution with Unix and Window Connectors to manage the lifecycle of privileged users on Unix and window platform.
- Responsible for Single Sign On rollout for multiple in-house .NET applications, PeopleSoft, OBIEE and Hyperion with the new security Framework.
- Identifies cross-team issues.
Lead Security Architect
Confidential
Responsibilities:
- Design Enterprise Provision solution based on Oracle Identity Manager, SOA for Colorado residents.
- Adopt TOGAF for the Enterprise Architecture.
- Design the virtualization strategy with primary and secondary data center.
- Design and implement the security solution with fed certified private cloud.
- Design and implement Parameter Authentication and Authorization solution based on Oracle Access Manager.
- Design and implement user life cycle management solution based on OIM & OAM.
- Design password life cycle management solution based on OAM & OIM Integration.
- Participate weekly joint work sessions with State OIT stakeholders and COHBE CISO over User Identity and security related subject matters.
- Design and implement federation solution based on SAML 2.0 for SES 2.0 with OIT’s CBMS/PEAK systems.
- Design and implement Audit for security stack.
- Design and implement Access Control and Least privilege for IDM.
- Design security regarding information exchange with various external systems - State and Federal Data Hub, for Confidential /HIX project.
- Design federated Identity Provider with Oracle Cloud.
- Design and build the exchange protocol with RightNow deployed on Oracle public cloud.
- Design and implement Single Sign On with multiple COTS and third vendor products.
- Design physical security architecture to interconnect three clouds data centers with call center.
- Ensure security design and controls in compliance with CMS, HIPAA, PII and PCI standard.
- Lead the security team to install, configure and troubleshoot Oracle IDM security architecture.
- Lead the security team to design, test code in SOA for provision.
- Work with security analysts to develop the security plan and work with hosting providers to conduct quarterly security vulnerability assessment.
- Conduct ethical pen test for each code release using BURP Suite.
- Implement OWASP-10 for web application security.
Senior Principal
Confidential
Environment: Oracle Identity Manager 10g, Oracle Access Manager 11gr1, Weblogic Server 10.3.5, Oracle Virtual Directory, Oracle database with Data Guard, Oracle Identity Directory
Responsibilities:
- Design the user provision and role-based access control and Access Solution and Single-Sign-On Solution for for George Washington University.
- Synchronize identity data to applications hosted in AWS clouds.
- Synchronize the identity data with Google mail through Web Service invocation.
Sr. Security Architect
Confidential
Responsibilities:
- Design the overall security architecture to manage user’s lifecycle, Access Control and federation capacity.
- Architect the identity solution to leverage Oracle Identity Manager and Oracle Role Manager to allow employees, trading partners to self register, to request various resources hosted within Children. Re-architect the request/approval workflow to provide better User Interface to 10K+ employees.
- Architect the access solution to leverage products from Oracle Access Suite to allow employee, trading partners to access various resources from either intranet or public internet.
- Lead a team with two developers and one infrastructure engineer. Use agile design methodology to break down software design cycle to shorter duration averaging three to four weeks. Use Visio to draw sequence diagrams for software developers and to draw deployment diagram for infrastructure engineer.
- Implement OWASP-10 for web application security.
- Conduct ethical pen test to identify and mitigate application vulnerability.
- Use MS project for the overall project schedule. Use Excel Sheet for assignment & task schedule and to track status of various assignments. Use MS SharePoint to track issues and to manage release schedule.
Sr. Infrastructure Architect
Confidential
Environment: Solaris 10, Oracle Portal Server, Oracle Application Server, Oracle Single-SignOn, Oracle Identity Directory, CA SiteMinder Policy Server, SunOne LDAP, Window Active Directory, Oracle Database. Weblogic Enterprise Suite, Sun SeeBeyond.
Language: JSP, Structs, Spring, Java, Hibernate.
Responsibilities:
- Designs and implements external and internal phasing web-based applications and various web services. Web based applications are mainly portlet implementations written in JSP, Struts and JPS and are deployed in Oracle App Server Container. Oracle portal then aggregates multiples portlets.
- Integrate and Maintain Oracle security architecture - Oracle Single SignOn with CA SiteMinder Solution, for external customers (dentist or dental provider).
- Integrate and Maintain Oracle Security Architecture - Oracle Single-SignOn with Window Active Directory and Kerberos, for internal employees.
- Maintain multiple documentations for Oracle technology (Portal, Database, Application Server, and Single Sign-On) and CA Siteminder.
- Manager three infrastructure engineers to support fifty plus zone servers to support development and testing environment.
- Work with development team to determine or diagnose various problems. Work with performance team to fine tune the applications running on the Oracle Platform.
- Plan or provide estimate for the capacity requirements to the Operation teams for various applications.
Confidential
Application Architect - Consultant
Responsibilities:
- Added single sign-on feature for federated identity management solution for members to access protected resource within Confidential domain without passing credential.
- It is developed in EJB, Struts, JSP. Responsible to set up and configure following components with DEV & QA: SiteMinder Web Agent, Sun Web Server, Policy Server, SiteMinder Add-on for passing SAML token, Websphere Application Server in ND. Using DB2 as the data store.
- Develop Workflow for FAC (federated Access Control) to replace three existing legacy applications used by various groups with Confidential to manage members.
- It is developed in Spring, EJB, Hibernate and JBPM.
- Defining multiple MQ Series Queues to bridge async communication among multiple subsystem. Using DB2 as the data store.
Application Architect
Confidential, Chicago IL
Responsibilities:
- Lead three developers to add additional software modules to detect and to block false leads.
- Migrate Confidential from ATG Dynamo to WebLogic 8.1 on Linux.
- Re-design the QA, including functional QA and Performance QA, environment.
- Retool the production stacks to handle more traffic
Confidential, Columbus, OH
Lead Web Sphere Architect
Responsibilities:
- Lead a team of one application architect and one developer from Confidential to migrate existing application from weblogic to websphere. Work with Confidential infrastructure engineers to design and implement a dual-redundancy data center.
- Design logical and physical architecture spanning two data centers. Architecture includes CISCO GSS, CISCO LSS, IBM Http Server, Siteminder Web Agent, WebSphere Application Server, Siteminder App Agent, Sun Directory Server. Leveraging existing DB2 on ISeries.
- Lead code migration from WebLogic 8.1 environment to WebSphere environment.
- Design and develop the overall WebSphere environment.
Confidential, Oklahoma City, OH
Infrastructure Architect
Responsibilities:
- Design the logical and physical architecture for Cognos 8 environment. Architecture includes two web gateways running on Solaris platform, and four Window 2003 Standard Servers running application server components with one active content manager and three standby content managers.
- Design and develop in-house customer interface to managing the new LDAP infrastructure to meet customer’s demand.
Confidential
Infrastructure Architect
Responsibilities:
- Install Cognos 8 ReportNet on Linux Platform for migration.
- Design the logical and physical architecture for Cognos 8 environment. Architecture includes installing multiple gateways and one content manager and multiple reportnet on one physical node.
- Integrate with existing security applications using JCE, LDAP, to securely encrypt and store the key financial data.
- Migrate two web applications, written in Spring, from JBoss to Weblogic 8.1 on OS/400 running on ISeries 8x0.
- Performance tuning for production JBoss cluster.
Environment: Sun Solaris, Sun Directory Server, BEA WebLogic 7.*/8.1, IPlanet Web Server
