SUMMARY

• Experienced Identity Management Consultant with over 8 years of IT experience in Identity Management/CA Siteminder/ CA Federation Manager /CA TransactionMinder/ SAML 1.1 & 2.0/ PKI/ WS*-stack Security Standards (SAML, WS-Security, WS-Federation, SSL), Internet and Intranet Applications design and development.

TECHNICAL SKILLS

CA Siteminder, CA TransactionMinder, CA Federation Manager, Shibboleth, Vignette Application Portal

Specifications

WS-Security, SSL, PKI, SAML, WS-Federation, XML-Encryption, XML-Signature

Datastore

LDAP, Oracle, SQL Server , ADAM

Web/ App Server

JBoss, WebSphere, WebLogic, Tomcat, Apache , JRun, IIS

Languages

JAVA, .NET, AJAX,PHP, SQL, XML, PERL, JavaScript.

Source Control

ClearCase and Visual Source Safe

Operating System

MS-Windows 95/98/NT/XP, Windows 2003 Server ,Unix, Sun Solaris

EDUCATION
Bachelors of Science
Graduate Diploma in Commercial Computing

PROFESSIONAL EXPERIENCE

Senior Consultant Jan’07 to Present

Federated Identity provides CONFIDENTIAL staff with the means to collaborate with colleagues from outside CONFIDENTIAL,including those from universities, other Department of Health and Human Services (HHS) Operating Divisions (OPDIVs), and other federal agencies. The service allows external customers to access CONFIDENTIAL internal resources and applications by asserting identity using certificates.

Role:

• Designed and developed WAYF [Where Are you From] application that allows users from external universities posted on InCommons list that are federating with CONFIDENTIAL to access CONFIDENTIAL internal applications using SAML certificates.
• Implemented validation of SAML certificates asserted by Identity Providers using CA Siteminder and Federation Manager.
• Implemented tokenizer and validation framework to prevent cross-site-scripting (XSS) and CSRF attacksacross the application.
• Implemented the User Activation process that allows registration of external users.
• Designed a process for synch up between SQL Server and LDAP that allows external users UPN’s to access the application.
• Setup test Shibboleth clients on local end for testing the SAML certificates.
• Secured the ISC wide web services by setting up WS-Security Authentication and Authorization policies in Siteminder and configured TransactionMinder to return SOAP fault messages for invalid users.
• Created a user-activation module for external users federating with CONFIDENTIAL by extending Siteminder API’s.
• Extensively involved in requirement capturing, design, data analysis and testing of web services.

Software: CA Siteminder, TransactionMinder, Federation Manager, SAML 1.1, SAML 2.0, PKI, Federal Bridge, AJAX, , SQL Server, ADAM, LDAP

Senior Consultant Jan’05 to Jan’07

Confidential leverages Service Oriented Architecture [SOA] to provide the ability to perform end-to-end provisioning of Constellation Energy (CE) Access Requests (AR\'s) for Fileshares, Licensed Applications, Remote Token etc. Access Requests will be initiated via a form on the CE corporate portal. CEG WorkQueue solution provides a centralized, reliable, and secure approach to publish and manage work requests and task assignments. Tasks can be assigned to individuals or groups as necessary and they are managed and removed from the task list once completed.

Role:

• Secured Constellation wide web services by setting up WS-Security Authentication and Authorization policies in SiteMinder.
• Installed and Configured CA SiteMinder and Transaction Minder and extended SiteMinder API’s for custom implementation.
• Designed, developed and secured WorkQueue Portlet that allows the users to view Requests inside the portal.
• Extensively involved in requirement capturing, data analysis and support of Portal.

Software: CA Siteminder, TransactionMinder, SSL, PKI, AJAX, , Oracle, LDAP

Senior Consultant Jan’04 to Jan’05

Confidential was created to offer BP’s customers a variety of information resources easily and customizable to their needs. Within the External Portal, customers can find news releases, weather reports, NYMEX prices and other useful information and allows customers to do online trading. This information can be customized to fit each customer’s needs and the customer can easily format the screen presentation in various ways. The portal also allows the customers to register for events and dispute invoices online. 
Role:

• Designed and developed Dispute Management System that allows the customers to dispute invoices online and allows Accountants to track the disputes.
• Implemented tokenizer and validation framework to prevent cross-site-scripting (XSS) and CSRF attacksacross the application.
• Provided support for external and internal production sites.
• Designed and developed Event Registration Module that allows the customers to register for events via the portal.
• Developed custom modules that use default Content Management System to automate document uploading.
• Developed custom portlets / modules using Java2, JSP, JavaBeans and Vignette API.
• Extensively involved in migration and of Portal from 3.5 to 4.1.

Software: Vignette Application Portal v7.0, WebLogic 6.1, J2EE, JSP, Java 2, C#, UML, XML, XSLT, SQL ,Rational Rose, Oracle 8i, SQL Server 2000

Senior Consultant April’03 to Dec’03

Confidential is the gateway portal to a range of WellsfFargo financial reports that are generated on a quarterly and nightly basis. The data is populated in SQL Server database from Business Objects Universe and PeopleSoft. The reports facilitate Wells Fargo manager’s decision-making. 
Role:

• Developed custom portlets / modules using J2EE API .
• Customized default portal Authentication mechanism to Windows Domain.
• Administered the Portal Server by creating new user accounts, setting authorization and authentication for users and improving the performance of Portal.
• Implemented Design Patterns in the portal framework.
• Used Oracle 8i and SQL Server 2000 as the backend database.
• Extensively involved in requirement capturing and data analysis.

Software: Vignette Application Portal 4.5, WebSphere 5.0, J2EE, JSP, JavaBeans, 2, UML, XML, XSLT, SQL ,JAXP, JDBC, Rational Rose 2000,Oracle 8i,

Member Of Technical Staff Apr’00 to Apr’02

Confidential is a system that will integrate a range of Lucent Tech voice messaging applications with Business to Employee (B2E) portal server from Vignette (formerly Epicentric Inc.) to facilitate communication between employees in the area of conferencing, call monitoring and collaboration .The portal is made more secure by using SiteMinder. IBM’s WebSphere Server was used to write and run the middle tier. The project made use of the Vignette Application Portal Java API and customized it to user requirements.
Role:

• Design, Development and testing Portal modules through various J2EE design patterns using JAVA, EJB, JSP and XML.
• Used portal’sAPI to provide personalization and develop modules.
• Created policies using SiteMinder to provide Single Sign On (SSO) to the portal users within same cookie domain.
• Involved in customer support and customer requirement capturing throughout the project.

Software: Epicentric Foundation Server v4.0, Struts, WebSphere 3.5.2, MQ-Series, Visual Age 3.5, J2EE, JSP 1.2, EJB 2.2, JavaBeans, Tomcat, JAXB, JAXP, Servlet, Oracle 8i

Senior Software Developer Apr’99 to Apr’00

Confidential is a system that will capture cost savings for high running shipping models in the global market. This tool will enable the intended users to enter cost savings information, and use the information to further improve products and manufacturing processes at a reduced cost. This tool will also enable BOM (Bill Of Materials) changes to be tracked for some specified (monthly, weekly, etc.) for those shippable models.

Role:

• Design, Development and testing the CRIS system through J2EE Technology.
• Designed Use Case, Sequence, Class and Deployment diagrams with UML using Rational Rose.
• Designed the different components of the application and its services that are mainly implemented in Entity Bean and Session Bean.
• Stored information in XML/XSLT form. Used JAXP to process the XML document using JDOM.
• Used RMI (Remote Method Invocation) for making middleware calls.
• Cached and retrieved user preferences from LDAP Directory Server using JNDI.

Software: J2EE, Swing, JSP, EJB, WebLogic 6.0, Servlets, Rational Rose, LDAP, JDBC, Java Beans, JScript, DHTML, Rational Rose 2000, JBuilder 4.0, Oracle 8i