SUMMARY:

• CISSP and ITIL Certified Information Technology professional with 20+ years of extensive experience having expertise in in “User Identity and Access management” under HIPAA compliance.
• Expert level experience in Oracle Middleware products including, OIM, OAM, Federation, OID, OUD, OVD, Sun DS, Web Servers, WebLogic Application servers, OSB, BIP, Certificates etc.
• Designed and implemented the Federated solution as, “Identity Provider” and “Service Provider”.
• Designed OIM 11gR2 and upgraded to OIM 11gR2 and redesigned the complete OIM to include SOA and BI Publisher in a shared SAN environment.
• Lead and deployed LDAP based identity management system using Sun Directory Server and oracle identity & access management solution and Integrated OIM with SUNONE LDAP, AD, Google Mail, Documentum, EBS and Banner system.
• As a Lead Identity/Unix Administrator, Responsible for providing Unix/Linux new installation planning, maintenance, patching and monitoring and Installed MRTG, Nagios, and Cacti for system monitoring.
• Expertise in writing SHELL and PERL scripts for monitoring and paging services Extensively worked with technologies like, Check Point firewall, Sendmail, Postfix, Proxy, Web server, SMTP relay, IDS, DNS and other internet technologies.

TECHNICAL SKILLS:

• Identity/Access OIM/OAM/OIF 11g, TIM/TAM, Symphony WAM, Sun IDM, Portal Server, Management: OID, ODSEE, OUD, OSB, BIP, OHS, Apache, Sun DS, Novell e - Directory, AD, OVD, WebLogic, WebSphere, PKI
• Operating Systems Solaris, Aix, Linux, Windows Server.
• Hardware Sun Servers, Nokia Firewall appliance, IronPort mail encryption appliances, Limited IBM blade, Exposure to Cisco switches and routers and SAN,
• Security Software Checkpoint NGX, ClusterXL, Fortinet, Cisco AVS, Checkpoint UTM Bind, GUN Packages, Trend Micro (Virus and Spam), Cypher Trust, PostX (e-mail encryption), Websense (web content filter), Stone Beat Clustering, SSL, SSH
• E-mail Software Google Docs, Postfix, Sendmail, MS Exchange, Trend Micro for Spam and virus, Cipher Trust, PostX for mail encryption.
• Monitoring Packages Lancope IDS, MRTG, ORCA, Nagios, Cacti, BMC Patrol
• Other Software Veritas VM, VCS, VFS, Veritas Netbackup, Sendmail, Postfix, iPlanet/Sun web server, proxy server, Apache, iPlanet Application server, messaging server, Certificate management server, Netscape e-commerce products, ISA, DHCP, DNS, RAID, Mirroring, NFS.
• Languages: Unix Shell, PERL, CGI using Perl, PERLDAP HTML, limited JAVA, C, SQL
• Protocols TCP/IP, UDP, LDAP, HTTPS, FTP, SMTP, NTP, familiar with BGP, VVRP, RIP, OSPF, IGRP, and EIGRP
• DBMS Oracle, DB2, MySQL and MS access
• EDI Documents Invoice (810), Purchase Order (850), Planning Release (830), Shipping Schedule (862), Advanced Ship Notice (855), and Acknowledgement (997).
• Utilities Niku Workbench, CVS, PVCS Manager, MKS, Open Plan Professional

PROFESSIONAL EXPERIENCE:

Confidential, Reston, VA

Architect

Responsibilities:

• Designing solution for Confidential internal and External clients using Oracle Middleware Products.

Confidential Columbia, MD

IAM Architect/Engineer

• Designed and supported the entire IAM development infrastructure which includes OIM, SOA, OAM, OID, OUD, OVD, OSB, OHS, BIP, WebLogic, Certificates etc.
• Designed many applications to be protected by OAM and webgates.
• Designed the solution to integrate the external partners using Federated Identity, configured the environment for both, as “Identity Provider”, and as “Service Provider”.
• Designed and implemented the multi factor authentication for CMS.
• Ran multiple IAM related POCs, documented them and sent to the team to be implemented.
• Providing expert opinion and hands on support in issues related to production environment.
• Led the effort to separate out the FFM users (about 9 million) from CMS users (about 250k) in OID and OIM.
• Led the effort to create external WebGates for CMS users.
• Led the effort to counter the “Heartbleed” security issue for 10 million users.
• Worked with Business Analysts and QA Leads to meet the business requirements successfully.
• Synced multiple environments (OIM, OAM, LDAP) using T2P process.
• Setup new and expired server certificates for secure communications between servers and external agencies.
• Wrote many Perl and shell scripts to streamline the day to day activities.
• Deployed/configured development tool such as, Jenkins, SONAR to provide quality code development and ease of deployment.

Confidential, VA

IAM Engineer

• Designed and working on OIM 11gR2.
• Upgraded OIM 11gR2 and redesigned the Complete OIM to include SOA and BI Publisher in a shared SAN environment.
• Integrated OIM with SUNONE LDAP, AD, Google Mail, Documentum, EBS and Banner system.
• Designed and implemented the OAM environment to protect the company wide applications using OAM Webgates.
• Used Federated services to integrate external partners.
• Successfully migrated SunOne servers to the new virtual machines.
• Worked in the core team for migrating university wide directories (about 60) to an Enterprise Active Directory.
• Managed day to day work related to LDAP servers OAM, and OIM.
• Used Perl and Shell scripts to write Data Validation system.
• Designed DRP for GWU.

Confidential, Columbia, MD

Lead System Engineer

• Worked for Carefirst/FEP to migrate and upgrade Tivoli Directory Server from windows to AIX.
• Streamlined the existing replication and other data issues to establish a smooth and reliable environment.
• Upgrade the BMC/Symphony identity and access management system from version 5.5 to 5.7. Currently working on upgrade to 5.7.2
• Wrote many shell scripts and Perl scripts to smooth out many day to day operation.
• Wrote many script for bulk upload, delete or modify LDAP objects.
• Worked with LDAP ACL to create a secure infrastructure.
• Coordinated/worked with other team to have a successful upgrade on TDS and Access management system.

Confidential, NY

Lead Identity/Unix Administrator

• Responsible for providing Unix/Linux new installation planning, maintenance, patching and monitoring. Wrote many SHELL and PERL scripts for monitoring and paging services. Installed MRTG, Nagios, and Cacti for system monitoring. Used Lancope IDS for network monitoring.
• Working on the project to provide internet access to wireless users, employees and guest.
• Lead and deployed LDAP based identity management system using Sun Directory Server and oracle identity & access management solution. Integrated the LDAP with HR legacy (IBM) system using customized SHELL, PERL and PERLDAP script. Also developed PERL CGI to provide a web interface to generate unique user ID across three directories used here, SUN, Novell e-directory, AD.
• Deployed Sun’s directory, identity, Access manager and portal server for implementing “Employee web portal”. The portal provided secure access to internal applications as well as secure telnet/ftp/mail access to employees on the move.
• Lead engineer responsible for planning, development, deployment and 24/7/365 operation support for many DMZ, internet and intranet services for internal and external users.
• Responsible for redesigning the security and internet infrastructure. The redesigned structure had four Checkpoint firewalls, Stonebeat clustering, Websense content filtering, and two ISP that were connected through two Cisco routers running in two HSRP configurations. The routers used EIGRP and IGRP to receive and sync routing tables.
• Deployed Fortinet, Cisco AVS, Checkpoint UTM boxes.
• Developed security guideline and implemented it using CheckPoint firewall, Web Sense content management and Lancope IDS.
• Provided Virus and Spam free network by implementing Trend Micro on Sendmail and Postfix MTA. Also used Cypher Trust for the same purpose for another client.
• Implemented mail encryption solution and HIPAA compliance using PostX mail encryption application.
• Installed various Veritas application, such as, VM, VCS, and VFS. Working of backup system now.
• Engineered and implemented many HTTP/HTTPS/SECURE FTP services using web servers and secure ftp server.
• Provided remote access solution using Citrix.
• Managed services like DNS, Secure ftp, DHCP, Proxy server, NTP, web server etc.

Confidential, Charlotte, NC

Principal Consultant

• Worked at various client locations to provide expertise in the area of Sun Solaris administration including installation, OS hardening and writing SHELL scripts.
• Designed DIT and schema for Sun directory server and implemented it for Blue Cross Blue Shield, Massachusetts.
• Worked with infrastructure team to design and implement internal Portal site for Confidential . I provided Unix, LDAP and web server expertise for the project.
• Wrote many SHELL and PERL scripts.

Confidential, Southfield, MI

Senior Product Specialist/ Netscape Application Specialist

• Provided day to day Unix support that included new OS installation, patching and maintenance.
• Designed and implemented an ANSI 12 Electronic Data Interchange (EDI) application that allowed the EDI transaction of documents like Invoice (810), Purchase Order (850), Planning Release (830) between Ford Motors and many of its suppliers.
• Used Netscape e-commerce products to develop business to business commerce site for ford motors.
• Deployed Netscape messaging server using LDAP for Ford Motors.
• Extensively used Sun/iPlanet Web Server, Apache for many web sites.
• Evaluated BMC patrol software for centralized system monitoring.

Confidential, Windsor Locks, CT

System Analyst

• Had comprehensive training on Netscape E-Commerce products, ECXpert, BuyerXpert, SellerXpert.
• Installed and configured Office Supply Procurement System for a major bank. Used Netscape e-commerce products on Solaris.
• Wrote Perl scripts to automate the process.