Objective

Seeking a position as a technical architect/consultant in the IT enabled environment to optimize leverage IT investments to support business functions more effectively.

Summary

11 years of experience spanning across various prjoects such as

Software Development for Web And Mobile Applications

Java Platform .Net CF C/C and J2ME

Involved in the design coding testing of the J2EE web application J2ME and SMS base mobile application and other mobile platform applications.

Expertise in XML base tech. such as SAX DOM Parser JAXB Exposure to web services base applications Understanding about Web Service Standard WS Security SAML and SPML.

Securtiy Projects

Owned Identity and Access Management Process and CA SiteMinder Product Implementation Migration Design and Multi - master Replication topology design where new VMware environment to be introdcued.

Good understanding to CA IM CA RCM CA AC PUPM and CA ELM UARM

Managed Patch Management Process Implementation and Issue Risk Management in Patch Management

PCI DSS oriented server configuration baseline documentation involves Windows and Unix Platform

Exposure to Application Security Projects

Good understanding of Cloud Security concepts w.r. to Cloud Security Alliance Guide.

Understanding of Web Service base integration of IAM and legacy applications.

Infrastructure Projects

NFR Development AS-IS envirionment assessment Project Transitioning

Product Implementation Integration and Production Support

Design for NFR such as High Availablity Capacity and Sizing Planning

Datacenter Migration Project involved Business Understanding and criticality AS-IS environment assessment of Applications Interfaces and key dependencies to defined up/down stream application and data flow and Approach Development to migrate datacenter.

Reportig to senior management such as Directors VP and cross functional Communications

Having good understanding of CISSP domains

Worked with international clients at USA China Saudi Arabia and UK.

Worked in diverse verticals such as Retail Finance and Telecom

Certified in various industry recognized certifications.

Sound understanding and experience of Project Management and Quality Management Practices Project Life Cycle Managementent and worked on prodcution support projects.

Skill Set

Design Tool Rational Rose MS Visio MS Power Point

Programming Language J2SE J2EE J2ME

Mobile App. Development Platform J2ME MIDP CLDC C on .Net CF Platform BREW Symbian

Internet / Intranet Java Servlets JSP HTML JavaScript Web Services SOA.

Web Tech. Application Servers Tomcat Servlets JSP XML XSL JMS JNDI SOAP UDDI WSDL AJAX AXIS SAML SPML

Parser JAXB Regex Package

Operating Systems Windows XP 2003 WMIC for Windows Internals

Domain Security

Identity and Access Management

Process Owner User ID Mgmt. CBN EV PAR PAuthzR Shared ID Issue and Risk Management in area of IAM Automation Design Decisions Awareness Communication with Presentation Guidance/FAQ

Patch Management

Patch notification Risk Communication Patch tracking by system Patching timeline and SLA adherence Artifacts management

Application Security Achieved SANS GPEN

Manual Architecture Design Code Review Testing approach alignment with OWASP Risk Assessment for applications Application Assessment Template Development Risk rating w.r.t. DREAD model App Scan and Fortify Tool Static code analysis tool with ITS4 Conceptual understanding of other tools Poras Nikto Wikto and Jikto Web Crawling type programming with HTTP Client Package of apache. Year 2001 to 2003

Other Security Area

DLP Data Leak Prevention Risk Management with COBIT OCTAVE Conceptual understanding of DRBCP Disaster recovery and business continuity planning Worked on Security Compliance Standards such as PCIDSS ISO

Domain IT Service Management Post production support in alignment with ITIL framework Strong understanding of ITIL processes.

Security Tools Fortify SCA App Scan 7.6

Estimation Technique Function Point Estimation Technique

Projects

Confidential

Title Security Architect

Description

At Tech Mahindra I am responsible for the hands on lab setup of CA IM and CA SiteMinder. I am contributing towards the Go to Market strategy planning coordination and execution. Responsible for the proposal writing optimized effort and resource estimation project pricing costing and meeting with client where required.

Project CA Arcot Solution Implementation at Bell Canada

Role Consultant

Project Description

I am accountable for implementation of CA Arcot Solution at Bell Canada which involves following major building blocks of implementation

3 Environment setup includes CA Arcot Weblogic Apache Web Server and Tomcat Application Server and Oracle DB. SSL Certificate setup for application URLs and internal communications. Go Live Planning and Coordination Supporting application and client team for the UAT Support operation procedure definition system monitoring requirement identification coordination with various teams Team mentoring and development with knowledge management.

Confidential

Role Tech lead

Project Description

As a lead I executed CA Identity Management implementation at client location at Abudhabi UAE and delivered following features in pre-production environment.

Custom User Directory Schema Configuration With CA Directory User Provisioning and De-Provisioning for various user roles Identity policies for various user roles Password Management Capabilities with Synchronization feature Self Service Capabiliites includes Password reset recovery with secure question and answer profile update for selected fields Workflow setup for multi level approvals Integration with MS Active Directory Business rules for auto generate user ids password email address for various type of users.

Confidential

Title Security Delivery Specialist

Team 6 Members and extended team size 15-20

Role Technical Functional Manager Process Owner User ID and Patch Management Issue and Risk Management

Location Pune India

Duration Oct 2010 Apr 2011

Description

Identity and Access Management

As a process owner of User ID Management I am responsible for the overseeing the performance of the User ID management process in the account which involves various key activities such as

ID Creation Deletion Access Modification Privilege ID creation modification approvals. Shared ID identification consulting to target team to eliminate the same Risk assessment on the deviation of the process Issue and Risk management in the area of Identity and Access Management. Quarterly Or Half yearly employment verification and user id validation covers privilege non-privilege shared IDs. End user awareness communication with presentation and key notes to deliver understanding at ease. Identity verification approval communication and checks on server activation.

Risk Assessment Management and Remediation

Process deviation and violation management with the issue and risk management processes to ensure practical approach for the risk reduction and remediation. Time bound action plan for the closer of the risk Risk communication and approval from the customer where required.

Audit Management

Coordinated communication to get the validated audit artifacts Timely responses with artifacts Artifacts validation method definition and timely review of artifacts.

Automation of User ID Validation Processes

Feasibility study and solution options identifications Estimation of the project work resource planning Framework development assessment and identification of independent modules as work item for the development

Patch Management

As a patch management process owner I work with various team such as server team network team and other tools and application team where the patching processes are applicable.

Key aspect of the Patch Management processes covers

Patch notification to internal perform team customer and managing the same for the artifacts. Patch implementation planning Timely implementation base on the patch severity and base on the device categorization aligned with risk profile. Issues and Risk Management where patches cannot be performed. Risk Communication to customer and coordination for the risk assessment. Patch artifacts review and validation extending helps where perform team faced with issues.

Project Management

Tracking Reporting of patching progress Issue Risk assessment and planning Customer approvals for the risk where required. Coordination with server/network team change management team and customers. Improvements to the process/procedure of execution where required. Patch verification on the new server activation.

Confidential

Title Tech Lead

Team 4 members and extended team size is about 8-10 members

Role On Site Tech Lead

Platform/Languages Windows 2000 Server XP 2003 Linux

Location Phoenix AZ USA

Duration Mar 2010 Oct 2010

Description

As a member of Security Engineering team responsible to execution of migration project assessment of various aspects of migration vendor interaction in the area of Web Access Management with CA SiteMinder Web Access Management product.

Key Responsibilities

CA SiteMinder - Project Life Cycle

Requirement Development Project Estimation Key findings of current issues risk and planning for the same SLA understanding and design to meet SLA requirements Testing Strategy Test Plan Authentication Authorization Test Resource Protection Test Password Service Test FYP FYID Change Password Session Management Policy Server Failover Compatibility Test Co-Existence of SM6 and SM12 Servers Go Live Planning and Operational Readiness Intranet and Internet Application Test Cases Policy Configuration for Web Resource Protection

CA SiteMinder Setup

Server Setup Requirements Implementation and Tracking Installation Policy Server Web Agents Web Agent Option Pack Application Agent Support For Web Sphere 6.1 Policy Setup and Management Policy Store Setup Web Agent Proxy Solution Installation and SSL Setup One View Monitoring Setup Log Level Setup Log Assessment and Debugging HTTPWatch Tool Setup SiteMinder Test Tool Detailed level instruction for the error free server setup in production environment. Folder Structure Definition Apache Server Setup with Web Agent

CA SiteMinder Migration

SiteMinder 6 to 12 Migration Requirements Approach Definition Design development Consideration of agents versions federation design and current architecture to minimize the issues failure cases and meeting SLA needs Impact assessment on internet intranet federation service and proxy solutions Impact remediation plan readiness with solution steps. Customer code impact assessment and mitigation plan Identification of potential challenges issue management and risk communication Compatibility issues Platform differences Scalability assessment with the VMware solution SLA impact and solution design to minimize the impact Web Agent Installation Certification to install agents successfully on various platforms. Web Agent Proxy solution base on apache proxy solution. Solution design and repeatable method document Impact of load balancer and design impact Implementation time challenges and solution Team composition for the success of the solution RACI development to define clear roles and responsibilities Service Delivery Framework

Service Offering Details

Service Implementation procedural details

Service Transitioning to the implementation team

Service Offering improvement feedback system

Agent proxy solution design consideration training material for the implementation team Policy Store replication design consideration and planning.

CA SiteMinder Migration and Load Testing

Both internet and intranet infrastructure supporting request volume in millions request per month and testing with same volume is one of the top priorities. HP Load Runner Tool used for the performance and load testing. Test Planning and scheduling volume centric testing of applications.

Capacity Planning

Request volume in intranet and internet sites VMware solution consideration and to reasonable mapping with physical server design

MS Azure and Integration with CA SiteMinder

WS Security Standard Understanding and Mapping to MS Azure Specific components and integration planning SOA Stack Understanding Leading integration track involves assessment of J2EE components in AS-IS system design CA SiteMinder specific integration in intranet and internet applications and MS Azure capabilities. Involved into the POC development of MS Azure and SiteMinder Integration which is based on SAML 2.0 protocol. Cloud Computing adoption challenges in the as-is solution approach for the solution implementation Knowledge session to the team on basics of Cloud Computing and how to go about with current AS-IS architecture.

SOA Strategy Definition Planning

SOA Basics Web Services Basics Architectural Understanding WS Security Standard Infrastructure Requirements Why SOA Life Cycle SOA Components Understanding of Datapower SOA Software CA SOA Security Manager Datapower >> Conceptual Understanding covers Web Service Proxy Multi Protocol Gateway XML Firewall Web Application Firewall XSL Accelerator Understanding of SOA Software Portfolio Manager Policy Manager Repository Manager Service Manager SOLA

RSA Product Assessment

RSA Envision

Overview of Technical Architectural Understanding of RSA Envision Log Smart IPDB architecture Even Source Integrator Patch Management in alignment with RSA notification Reporting Base on Logs Domain Level Details Application Integration with Event Source Integrator.

Risk Base Authentication Product Assessment

Assessment and Study of RSA Adaptive Authentication Arcot Risk Fort Solution

Mobile Application Security Assessment

>> Assessment of current key threats for the mobile applications

>> Risk rating base on the threat modeling

>> Evaluating security control such as technical solution process and procedure and user awareness.

>> Risk Base Approach for Mobile Application Development

>> Product Evaluation such as Arcot and RSA

>> Application Security Consideration

Secure Code Review Best Practices for Mobile Applications Data Security at All Level

Confidential

Title Consultant

Team 4 members

Role On Site Offshore Consultant

Platform/Languages Scripts base WMIC for Windows 2000 Server XP 2003 Linux scripts

Description

Server data collection to develop server configuration details to support PCI DSS Compliance needs that involve Windows Linux and AS400 servers.

Server data collection with the broad scope to collect details about Hardware Software System Accounts Services Program Installed and Network Protocol lists.

WMIC commands Linux OS Commands Data Formatting and Reporting

Executive summary for the Head of IT and Head of Operations. Technical in-depth information for the administrators for future references of the other IT audits such as ISO 270001.

Enabled team on the approach for data collection provided automated scripts for the future use to minimize the operational cost and to avoid future consulting cost.

Confidential

Title Consultant

Team 4 members

Role On Site Support Lead

Platform/Languages Windows 2000 Server

Description

Business applications and Network integration on the event of merger of the business entities.

Definition of the application grouping for the network integration and enabling user access in phased manner to avoid large scale impact.

Supporting the on-site team guidance on issues and mentoring for the work-load management.

Key Responsibilities

Estimation of the size of the project for the data center migration Working with Application Architects Support Team Server and Network Team Impact assessment and analysis for about 50 applications Identification and categorization of the critical and non-critical systems applications Grouping of network segments system applications and databases Compliance requirement consideration such as Identity and access management server and application patch checks server hardening vulnerability checks and application security consideration. Data center migration approach development while managing SLA requirements communication and coordination planning to ensure optimize implementation of the group wise migration.

Confidential

Title Enterprise Document Generation System Support

Team 8 members

Role On Site Support Lead

Platform/Languages Windows 2000 Server

Description

Development and baseline for production support processes for the document generation system which involves production support comprising of incident/problem management change release management.

Defined Developed standard approach and strategy for new application on-boarding service offering for the internal customer.

Define staged involvement of support team to enable production support proactively.

Process procedure improvement in daily operational activity and communication to strengthen production support and operational activity.

Develop knowledge base to reduce learning curve and better effectiveness.

Confidential

Title Date E-Discovery Tools for Enterprise Email Archival Storage Optimization

Team 8 members

Role On Site Application Analyst

Platform/Languages Windows 2000 Server

Description

Development of non-functional requirements for the business team and compliance team

Impact assessment of the email archival software on current As-Is MS Exchange and outlook usage environment.

Assessment and Analysis of Compliance Requirements

Development of RFP questionnaire and vendor response assessment process and developed excel base for vendor score card.

Vendor Product evolution and recommendation to choose the product for the demonstration and for the POC phase.

Following Products have been explored and assessed within product selection process

Symantec Enterprise Vault Unified Discovery ZL Technologies IBM eDiscovery Manager Records Manger from CA eDiscovery Archiving from Mimosa System eDiscovery Solution from Autonomy

Confidential

Title Production Implementation of Good Mobile Motorola Intellisync Nokia

Team 4 members

Role On Site Support Lead

Platform/Languages Windows 2000 Server

Description

Assessment of deployment architecture and recommendation for fail-over support.

Production Support setup for the Good Mobile users and implementation of Intellisync software in integration with Contact Management Software.

Standardize approach strategy to enable support by leveraging help desk team which involves knowledge case development and help desk team education.

Managed vendor communication and server deployment team to implement fail-over working setup for the Good Mobile software.

Title Security Assessment for Financial Application

Team 4 members

Role Offshore Project Manager

Platform/Languages Windows XP Visual Basic Applications

Description Responsible for the technical aspects of the project which includes security assessment of an application for the financial domain generating report for the security gaps with risk ratings and matrix to apply framework approach for recommending the solution to address security gaps.

Assessment of number of applications and recommendation of solution framework to address multiple gaps with platform independent layer such as Java or .Net

Impact analysis for performing the remediation activities to address security gaps.

Effort estimation for the remediation activity for the security gaps with the help of the FP analysis.

Confidential

Title Buddy Field Force Automation Version 1 2 Jan 2004

Team 10 members

Role Project Leader

Platform/Languages Windows XP .Net CF

Description

Involved in requirement gathering and architecture design activities.

Gaining knowledge about server side application development of mobile version of pricing and promotion with in resource constraint environment.

Very responsive with Rich UI application base on the design pattern

Responsible for the executing the project from inception stage to release and warranty support time period.

Module to capture on-device signature to confirm the order.

Involved in the UAT at client location China.

Confidential

Team 1

Role Technical Specialist

Platform/Languages Windows XP MS VB MS .Net SQL and TOAD for Oracle

Description

Assessment and analysis of the legacy application and tuning of the database query for the efficient reporting requirements.

Identifying the performance issues and recommending the solution which involves migration of Access base application to .Net application and Access Database to SQL server.

Knowledge transfer for ongoing support.

Confidential

Role Software Developer

Platform/Languages Windows 2k J2ME Wireless Toolkit Symbian OS

Duration Jan 2004 Nov 2004

Description It includes analyzing the code in case of enhancements required by client in B2T application.

Involves in designing of UI for Symbian enable mobile phone 3650 6600

Maintenance Feature Enhancement and Bug Fixing for Symbian C Source Code.

Good understandings of SIP Protocol

Developing B2T application for J2ME Platform with the use of MIDP 2.0 CLDC 1.1 WMA API Push Architecture MMA API jsr 180 SIP API.

Understanding Requirement Document for POC Push to Talk over Cellular and involves in Application Design.

Confidential

Role Software Development Support Optimization Testing Maintenance

Platform/Languages Windows 2k J2ME Wireless Toolkit

Description Very exciting and fun on job which include playing games develop for mobile phone and lookout for the area of improvements in terms of graphics smoothness in the game user experience and ease of user interaction. The key success measure is responsiveness of the game.

Game porting is the challenging area when porting games from one mobile phone to other that involves differences of capability of mobile phone such as screen size memory available and layout of the keys and screen.

Other major challenging aspect of porting is Platform Porting where J2ME Application to Brew Platform. Fortunately framework developed by the team and available for the application porting and each J2ME API mapped to custom J2ME style API in the BREW platform.

Confidential

Role Designer/Developer

Platform/Languages Windows 2000 JSP and JavaScript

Description Design and Development of the External Short Message Entity which supports the CIMD protocol for communication with SMSC and integrating this SME application with Avtaar to provide Avtaar Services on SMS. Value added service includes e-Mail News Stock Weather and Horoscope.

Confidential

Role Designer/Developer

Platform/Languages Linux Java Mail API Oracle Jboss 2.4

Description The three major functionalities provided are 1 Email to SMS 2 SMS to Email and 3 SMS base POP Mail Client. The application also enables user to maintain his/her address book on the server can append a signature to the outgoing mails. Application is divided into multiple components each performing one of the functionalities listed above. The sending/receiving of the messages is handled using Orange HTTP Gateway. The processing is being done in the message driven beans and all database access is being done through CMP entity beans.

Confidential

Role Designer/Developer Maintenance

Duration Dec 2000 Aug 2003

Platform/Languages Windows NT JDK1.3 Java Servlets

Description Design and Development of the URM Universal Resource Manager base application which helps users manage various online accounts at single place and make various online services interact with each other. Design and Development of various modules of this application including Message Center News Center Assorted Services Calendar Services and Value added services Interactive Querying and etc.

My role is to develop content parser to extract content from the web pages after performing auto logon process based on Java wrapper classes. Content parser will perform extraction based on regular expression and produces the Java Object to use it in UI rendering.

Confidential

Role Designer/Developer Maintenance

Platform/Languages Windows 2k JDK1.3 Java Servlets JSP J2ME Wireless tool kit

Description URM Universal Resource Manager application is implemented on J2ME platform. Users can manage various online accounts on his mobile and make various online services interact with each other. Design and Development of various modules of this application including Message Center News Center Assorted Services and Portfolio Services.

Confidential

Role Designer/Developer Maintenance

Platform/Languages Win 2k JDK1.3 J2ME Wireless tool kit 1.4 RAP API

Description Developing applications for the Reliance Mobile with the use of J2ME Platform and with the use of Reliance API for the J2ME platform. Project includes varieties of application such as Stop Watch Income Text Calculator Calendar EMI Calculator and Financial Ratio. The scope of the application usage is all level of users.

Confidential

Role Developer Maintenance

Platform/Languages Windows NT JDK1.3 Java Servlets

Description Design and Development of the URM Universal Resource Manager base application which helps users manage various online accounts at single place and make various online services interact with each other. Design and Development of various modules of this application including Message Center News Center Assorted Services Calendar Services and Value added services Interactive Querying etc.

Confidential

Role Designer/Developer Maintenance

Platform/Languages Linux JDK1.2.2

Description Development of the application that provides 3 of the Avatar services. The application provides the requested user information in the form that can be easily displayed on standard GSM handset. Write JSP pages for user registration and configuration of various services.

Confidential

Role Designer/Developer Maintenance

Platform/Languages Windows 2000 JSP and JavaScript

Description Design and Development of the External Short Message Entity which supports the CIMD protocol for communication with SMSC and integrating this SME application with Avatar to provide Avatar Services on SMS. Value added service includes e-Mail Festival Leave dictionary horoscope train ticket status timings.