Over 7 years of experience in security, Web Server and Application server Administration

SUMMARY

• Achieved Cross Platform Access Management and Security using Netegrity/CA Siteminder, CA Identity Manager, SunOne LDAP Directory various Third-Party Service provider applications as well with Internal Application Modules.
• Experience in Implementation of Security Management tools in an enterprise wide Applications achieving AAA: - Authentication, Authorization and Accountability.
• Experience in Analysis, Design, Securing and Support of Multi-Tier Web Applications using J2EE, Server side Technologies using XML, Java Server Pages, Tomcat,WebSphere 4.x/5.x/6.X, WebLogic Server 7.0/8.1/9.0/10.0. - 8.1, 10.3
• Working Knowledge in analyzing the logs trace logs, logs and Trouble Shooting issues in Integration of other applications using CA Siteminder Access Management and Identity Management tools along with LDAP and Web-server agents.
• Working experience in Integrating with WebSphere Portal Application Server driven Portal along with CA Siteminder as Identity Provider and External 3rd Party services as Service Providers.
• Working experience in the development of Websphere Portals, Portlets, CA-Siteminder Single sign-on Services with Siteminder configurations setting up policies, realms, rules and responses , Google Federation along with posting credentials to FCC from a custom Application Login JSP/HTML pages.
• Experience in LDAP based directory servers like iPlanet/Sun ONE Directory Server and Active Directory
• Working exposure in implementing the SAML based Single Sign-on SSO and Single Log-Out SLO involving services with GOOGLE Apps and Other Third party Applications.
• Expertise in working with application servers - IBM WebSphere Portal Server and IBM Application Server, BEA WebLogic, JBoss and Tomcat.
• Expertise in working with web servers - IHS IBM HTTP Server , Sun One Web server, IIS and Apache Web servers and configurations.
• Migrated SiteMinder 5.x to 6.x in both development and production environments QA, UAT and Production .
• Installed, configured and integrated Web servers plug-in file , SiteMinder agents and LDAP user directory with WAS.
• Solid experience in design, development of web based applications using HTML, DHTML, CSS, JavaScript and JSP.
• Installed, configured and maintained Siteminder policy servers by integrated with LDAP for Policy Store
• Experience in working with different operating systems Windows 98/NT/2000/XP, UNIX, AIX, LINUX.
• Experience in using Unix/Linux utilities for analyzing logs, and trouble-shooting the applications with Application servers and Security/Identity management servers.
• Experience in using Networking Protocols for client server applications like TCP/IP socket programming.
• Possess excellent communication, interpersonal and analytical skills along with can-do attitude and a good team Player.

Technical Skills

WORK EXPERIENCE

Client: PriceWaterHouse Coopers, Tampa, FL July'10 - Present

Role: LDAP /Siteminder Administrator

Responsibilities:

• Installed, configured and maintained CA SiteMinder Policy Server 5.X/6.X, CA IDM r6 and Sun ONE Directory Server 5.2 on Solaris, Windows platforms.
• Experience in installing, configuring SiteMinder policy server, Web agents, Netegrity Transaction Minder, Active Directory server LDAP and various Web Application servers.
• Implemented CA Identity Manager solution for provisioning, delegated administration, workflow implementation and generating audit reports to be compliant with the security regulations.
• Updated Corporate User store with the expanded user base as a result of new business acquisitions by directory acquisition and Correlation schemas using custom attributes. Extensively used web services variables to facilitate federation of web services.
• Implemented custom attributes properties to track the information about the recipients of the application site.
• Configured custom alerts and e-mail notifications based on the business needs.
• Created and updated the provisioning policies as per the change in the business environment using Policy Xpress.
• Worked extensively on creating Custom Password policies and Authentication schemes as per the requirement.
• Experience in Configuring CA SiteMinder policy server, framing Rules and Policies, Policy Server maintenance, SSO call clearance, Web Agent Application agent installations, trouble shooting production problems.
• Migration of SiteMinder 5.5 to 6.0 for advanced Load balancing, failover configurations and for facilitation of user impersonation.
• Installed, configured and integrated Web servers plug-in file , SiteMinder agents and LDAP user directory with Weblogic Server V10.
• Installation of SiteMinder Policy Server Optional Pack and Web Agent Optional Pack for Federation web services.
• Configured SiteMinder web agents, Affiliate agents and RADIUS agents to provide federation of webservices in the SSO environment.
• Configured user impersonation feature to enable Customer service department to provide a better service to the business clients.
• Experienced in assisting Web Administrators, LDAP Administrators to determine what the best values for SiteMinder parameters and tune the system to boost SiteMinder performance in the Web Tier, the Application Tier, and the Data Tier.
• Configured Ping Federate 5.x/6.x for SSO across multiple web based enterprise applications.
• Performed user provisioning in Identity Provider IdP site Service Provider SP site using SAML for SSO
• Experience with using Integration Kits and Token Translators for integrating identity enabled web services into SSO environment.
• Installation configuration and maintenance of RSA authentication manager 6.x for enabling token based authentication along with the form based authentication as a part of the security solution.
• Experience with the implementation of RSA two factor authentication tokens for the integrated web service security in a SSO environment for the service provider applications.
• Hands on experience with configuring IdP initiated and SP initiated SAML profiles with different bindings like POST, Artifact, Redirect as per the custom business and security requirements.
• Configured SSO Integration Adapters for session cleanup as part of Single Logout SLO in the SSO implementation.
• Creating OpenSSL Certificates and using the same for Federation of external Services to achieve the purpose of maintaining confidentiality, message integrity and bilateral Authentication.
• Worked on new Directory Server Schema's as per the needs of the business.
• Worked with existing user stores and new external LDAP stores. Integrated Active Directory Sun One directory servers as user stores SQL Server as Policy store.
• Experience in trouble-shooting the issues by analyzing the trace and TAI logs.
• Experience with using Wily and One view Monitor for performance monitoring of identity management servers and components.
• Experience with performance tuning of policy servers and associated components and generating performance reports using customized crystal reports.
• 24x7 production support.

Environment: JDK 1.4/1.5, J2EE, JDBC, XML, SAML 2.0, CA SiteMinder 5.X/6.X, Sun ONE Directory Server 5.X/6.X, CA Identity Manager r8/r12, Ping Federate 5.x/6.x, Tomcat 5.5, Apache 2.0, Wily Introscope 7.0/7.2, Solaris 8/9/10, Windows 2000/2003, Oracle 10g/11g, SQL Server 2005, DB2 8.X.

Confidential

Role: Siteminder Administrator

• Designed OpenSSO environments including installation/configuration of IDM software across the various enterprise tiers consisting of web servers such as Apache, Sun Web Server, IBM HTTP Server, IIS application servers such as JBoss, Tomcat, GlassFish, IBM WebSphere 7.0, and directory servers such as Sun Directory 5.2/6.3, OpenDS
• Integrated various DMV applications with identity management framework comprising OpenSSO Enterprise, Sun Identity Manager and Core JEE applications
• Performed a wide range of user provisioning related functions across Active Directory and Sun LDAP Directory Server including design of directory information tree DIT , bulk load, user creation/deletion using different ldifs, migrating users across environments
• Implemented a wide variety of provisioning tasks that included on-boarding of users, granting/revoking access to users based on user membership and role groups
• Synchronized user repositories that included Mainframe, Databases, LDAP and Active Directory to present a unified user administration view
• Setting up Windows desktop Single Sign On SSO based on Kerberos authentication tickets and Active Directory domains
• On-boarding MVC applications onto the IDM platform and establishing seamless user experience across applications using session cookies
• Enforcing user access policies based on role based access control RBAC and group membership with OpenSSO configured to read user profiles from Active Directory and Sun LDAP directory server for authorization and entitlements
• Providing support for end-to-end testing involving setting up different authentication mechanisms for various J2EE applications
• Migrating OpenSSO policies across environments and configuring failover and high availability across server and agent tiers
• Conducted end-to-end security reviews of the infrastructure across the web, application and database tiers while documenting vulnerabilities and recommending remediation
• Configuring OpenSSO J2EE agents to leverage J2EE declarative security propagating user role membership from OpenSSO to the Java application
• Programmed Tomcat filter based security leveraging the RequestDumperValve and RequestDumperFilter to restrict access to applications based on IP range and URL
• Performed security scans of the different servers supporting the DMV applications using McAfee suite of security engines and provided remediation for the vulnerabilities
• Worked with the external audit and penetration testing team to make sure that the overall architecture satisfied the security requirements for encryption, and data integrity
• Supervised any firewall rules changes and ensured that applications were given access to the servers on an as-needed basis with emphasis on maintaining a tight locked-down security model for the UNIX and Windows servers

Environment: J2EE, JSP, Servlets, EJB, JDBC, JMS, XML, Siteminder 5.5/6.0/12.0, LDAP 5.5/6.3,Oracle9i, WebLogic Server 8.1x, Windows2000 AS, Windows 2003, Linux, Rational Clearcase , Tuxedo 8.1, MQ 6.0, F5 and Array.

Confidential

Role: Siteminder Administrator

Responsibilities

• The objectives primarily deal with the Implementation and Integration of Amdocs maintained Sprint 4G WI-Max Portal driven by IBM Websphere Portal 6.0 with the CA Siteminder 6.0 along with SUN-One Ldap for accomplishing the task of Authentication, Authorization, and Accountability.
• Analysis and Identifying the components of the CA siteminder 6.0 to integrate with IBM websphere Portal
• Responsible for installation of various components involved in the setup of a standalone security setup using LDAP and SiteMinder.
• Installation and configuration of SunONE Directory Server 5.2 and SiteMinder SP 5.0.
• Installation and trouble shoot in implementation of SiteMinder Trust Authentication Interceptor TAI for IBM Websphere 6.0.
• Installation of SiteMinder Webagent plugin for Apache WebServer based IBM HTTP Server.
• Installation of eTrust SiteMinder Agent r6.0 for IBM WebSphere.
• Installation of Siteminder Policy Server Optional Pack and Web Agent Optional Pack for Federation
• Installation of ServletExec 5.0 for affwebservices of CA Siteminder Optional Pack,
• Configuration of basic LDAP Policy Store with SiteMinder.
• Configuration of basic Policy Objects using SiteMinder UI,
• Configuration of a standalone LDAP and SiteMinder environment which can be used by WebSphere portal Server.
• Configuration of WebSphere Components for SiteMinder WebAgent.
• Configuration of Portal Authorization using SiteMinder TAI.
• Creating OpenSSL Certificates and using the same for Federation of external Serivces to achieve the purpose of maintaining confidentiality, message integrity and bilateral Authentication.
• Trouble-shoot the issues by analyzing the trace and TAI logs.
• 24/7 Support of the Implementation of Single Sign-on with Amdocs AMSS 7.5 and Xohm Portal along with the Google Federation SSO and SLO.

Environment: CA Siteminder 6.0 SP5 along with Optional Pack for Federation, Siteminder Affiliate agents, JDK 1.5, IBM WebSphere Portal Server, SunONE Directory Server 5.2, IBM IHS server 6.0,HTML, JavaScript, JSP, Servlets, SAML 2.0,OpenSSL, SOAP, Sun Solaris 10 Sparc 64 bit ,AIX 5.0, ServletExec 5.0, Interwoven CMS.

Confidential

Role: Weblogic Engineer/ Administrator

Responsibilities:

• Installed configured and maintained BEA WebLogic 8.x on Linux Solaris platform and also created user roles and groups for securing the resources using local operating system authentication.
• Maintain the application data among WebLogic run-time processes in a cluster of application servers.
• Extensively Configured WebLogic Integration server 8.1 and Worked on Applications.
• Installation and configuration of Bea Weblogic Application server and IBM Cognos.
• Deployed and configured the Sun Java Access Manager across Solaris platforms to configure custom identity management for customers logging in to the enterprise application.
• Experience with Weblogic Environment Capacity Planning - for various applications and environments.
• Worked on WebLogic Integration Server 7 8 and involved in migration of Applications.
• Implemented Tibco/SOA architecture with Web Services using SOAP and deploying them on Apache Tomcat server and Apache Axis.
• Involved in migrating form WebLogic Server 7.1 to WebLogic Server 8.1.
• Involved in Load balancing and Performance tuning for various projects.
• Worked on Integration Server and Fat-Wire Content Manager.
• Installed and configured SITEMINDER on Intel machines.
• Developed and maintained pearl scripts and shell scripts that facilitate the Administration of BEA WebLogic 8.x. and IBM Web Sphere.
• Involved in JVM profiling and JVM performance tuning / JVM performance management - for enterprise applications.
• Installed and configured the Apache-Tomcat server for an application in the development environment.
• Troubleshoot WebLogic Server connection pooling and connection manager with Oracle, DB2.
• Responsible for Administration of BEA WebLogic 7.x/8.x and Websphere 3.x in Configuration, Deployment and Production environments.
• Developed shell scripts to automate the maintenance process of the WebLogic Sever and recovered the backed up WebLogic Server configuration.
• Installed and configured Netegrity CA Siteminder for Apache web Server to enable SSO single sign-on in various applications for different environments.
• Implemented Security and configuration of LDAP, single sign on, CA site minder, configuring Multi Master and Single Master configurations and replications for iPlanet Directory server.
• Configured the Sun One / iPlanet web server as a front-end proxy server to the Weblogic application servers.
• Actively involved in co-ordination efforts to integrate various enterprise applications involving multiple architectures and technologies by working with Development and QA teams.
• Involved with the customer care and deployment teams in troubleshooting and fixing day-to-day problems of the applications in production.
• Deployed application modules designed to work using the Aqua Logic Service Bus ALSB - on Weblogic Platform.
• Responsible for updating patches and installation of JDBC drivers and Servlet engines on Linux and Solaris environment.
• Involved in deploying the EAR/WAR files and scripting automated deployment of the applications.
• Administration of active applications, application performance monitoring - recycling the application server including installation of plug-ins for Apache Web server.

Environment: Weblogic7.x/8.x, BPM Tools, J2EE, JDK1.4/1.5, JRocket 1.4x, 1.5x, JNDI, JDBC, JSP, DHTML, Win-NT, AIX, HP-UNIX, Solaris 9/10