PROFILE SUMMARY:

• 6.75 years of work experience as Identity & Access Management Security professional in Access Management, Identity Federation, Single Sign On, LDAP directories, Identity Management, Enterprise Security architecture, Middleware infrastructure setup and Cloud IAM solutions.
• Currently working on Microsoft Azure IDaaS project to migrate Enterprise Federated applications from on - premises IBM Federation to Azure infrastructure.
• In-depth experience in SAML2.0, SSO, MFA, Risk Based Adaptive Authentication.
• Experienced in Federated Identity propagation using JIT, OpenID, oAuth & SCIM.
• Good knowledge of Privilege Identity & Access management using various tools.
• 3 years of experience working as IAM Tech lead in managing team and delivering Identity access and federation projects.
• Continuing along wif 4 years of security consulting experience at customer sites.
• Expanding my security experience to areas of Information Security framework, Risk Assessment, Security Governance, and Data Classification & Privacy.
• Strong sense of ownership and quality control of teh security solution delivery.
• End to end IAM SSO & Federation platform rollout.
• Integrate Enterprise & SaaS applications using SAML 2.0, Oauth, SSO and MFA.
• Consulting services in integrating security systems & application web services wif existing or new SSO platform.
• Design data model for SSO backend user stores, scalable SSO solution.
• Implement Middleware & Backend components for SSO platform.
• Design & Implement Identity management solution.
• Contributed in streamlining enterprise access management for a Telecom client using SAML 2.0 based Federation Infrastructure.
• Contributed in business growth for a UK based Telecom client in digital media sector by rolling out SSO & Federation Infrastructure for Web & Mobile applications for user base of 10 million.
• Integrated all enterprise & consumer portals of Singapore based Telecom client by delivering end to end new SSO platform for user base of 5million.
• Reduced onboarding time for Cloud based Enterprise applications by integrating them wif Microsoft Azure IDaaS solution for Mastercard.

SKILLS:

Key Experience Areas: Access Management:

Architect, design and setup access management platform, access control policy, Session management, Password management, Role Based & Group based access control, 2FA, Security zones, Impersonation, Certificate management, AWS SSO platform setup

Identity Federation:

Architect, design & implement federation using CA, IBM & Azure IDaaS, IDP & SP platform setup, Integrating IDP and SP based SAML applications, Account linking, SAML assertion signing & encryption, Metadata import/export, Custom Assertion/Attribute module configurations, oAuth setup.

Identity Management:

IDM Production installation & configuration, user/role based provisioning workflows, schema creation, data migration, bulk provisioning, and LDAP/DB connector setup.

Middleware Products:

Web Server (Apache, OHS & IIS) setup, SSL setup, Reverse proxy, Configuration tuning, Auto log rollover, scripts for reports and auditing.

Application Server (WebLogic, Jboss, and Tomcat) setup, code deployment, JDK/Java EE, Batch Job setup, JDBC/LDAP connection setup, API lifecycle management.

Directory Components:

Active Directory administration, Design of LDAP products - CA Directory & OID, Installation & Configuration, Schema, Branch creation, data migration, bulk import/export, connection tuning, monitoring scripts, CRUD operations.

PROFESSIONAL EXPERIENCE

Security Services Consultant

Confidential

Technologies: IBM Tivoli Access Manager, Federation Manager, ISAM, Microsoft Azure

Responsibilities: Work on design & implementation of security solutions for internal & external applications using Tivoli products.

Solution Designer

Technologies: Middleware products including WebLogic, Jboss application servers Responsibilities: Work on design solution for migration from WebLogic to Jboss server for Onepass SSO platform.

IAM Technical Lead

Technologies: Oracle IAM Suite (OAM, OID, OIM, OHS & OIF)

Responsibilities: IAM & Federated SSO suite design, planning, implementation and support using Oracle products.

Security Consultant

Technologies: Radius Server, LDAP, Oracle DB, Middleware products.

Responsibilities: Build radius authentication platform, design business flows, data model, build security framework for SingTel Wi-Fi.

IAM solution designer

Technologies: CA Siteminder & Federation, Oracle IAM Suite

Responsibilities: Worked on design solution for migrating from Oracle IAM suite to CA Siteminder & Federation platform for Biz Portal Applications.

IAM Technical Lead

Technologies: CA Directory, Oracle Internet Directory

Responsibilities: Design and technical Implementation of migrating from OID to CA Directory LDAP for Onepass SSO Platform. Identity Management, user provisioning, self-service password management, bulk import/export etc.

IAM Technical Lead

Technologies: CA Siteminder & Federation, Oracle IAM Suite

Responsibilities: Access Management, Identity Federation, Migrating IAM platform from Oracle to CA for Onepass SSO Platform, Middleware setup, Implementing SSO flows, Performance tuning, Load testing, production deployment & monitoring.

IAM Federation Lead

Technologies: CA Siteminder & Federation

Responsibilities: Integration of SSO & SAML based Federation platform having more than 70 applications, 80 servers (Apache, Federation Servers, Policy server, Policy store etc.) and customer base of 25 million users.

CA Siteminder Administrator

Technologies: CA Siteminder & Federation, Middleware, LDAP Directory & DB.

Responsibilities: Integrating SAML based enterprise applications wif CA Platform, Role base policy configurations, server administration, production deployment etc.