SUMMARY

• A results - driven Information Technology Professional with over 17 years of successful experience in Enterprise Architecture, Systems Design, Implementation and Integration, Data Warehouse, Disaster Recovery, High Availability, Networking, Security, SOA based Architecture, Cloud Architecture, Legacy Remediation, Virtualization, Risk Management and HIPAA compliance. Strong record of success in designing and deploying IT infrastructure solutions to numerous multi-million dollar projects simultaneously.
• Enterprise Modernization and IT Alignment with Business.
• Server Virtualization Technologies, Service Oriented Architecture, Web Services, Apache Hadoop and Cloud Computing.
• Federal Enterprise Architecture, ITIL Frameworks and Agile/Scrum methodology.
• Security and Compliance - NIST 800 Publications, FISMA, FedRAMP, HIPAA, SOX, PCI-DSS

TECHNICAL SKILLS

Development Technologies: C, C++, PERL, Java, COBOL, XML, Web Services, WSDL, UDDI,XBRL, Shell Scripts, Java Script, HTML PL/SQL, RichFaces, Subversion, Serena VM, Serena TeamTrack and Eclipse(IDE).

Operating Systems: Linux (RHEL), Solaris, Windows.

Database: Oracle, Sybase, SQL Server,MySQL, MS Access, Data Warehouse (Informatica, DataStage and SSIS ETL tools), Hyperion SQR, Microstrategy and Documentum.

Virtualization: VMware ESXi (vSphere), VMware SRM, VMware View (VDI), vCloud Director, OpenStack,Citrix XenApp.

Middleware: Enterprise Service Bus (ESB), JMS (Java Message Service), CORBA, Webmethods, Weblogic, Apache Tomcat, Apache Web Server, JRun, IIS, JBOSS, and BEA WebLogic Portal.

Network & Security Tools: Internet Security Scanner, Portsentry, ipchains, tcpdump, Penetration Testing (Nessus / Nmap), SSH, Intrusion Detection (Snort), IBM TAM/WebSEAL, F5 BIG IP, AWSTATS Web Analytic Tool, Nagios Performance Management Tool, Server cluster and Load Balancers.

Hardware: Sun SPARC Enterprise M5000 Server, HP ProLiant BL460c Gen8 server Blade, HP 9000, EMC Symmetrix VMAX, NetApp NAS Filers (NFS v4 with Kerberos) Cisco PIX firewall, Cisco 7200/4500 series, Cisco Wireless LAN Controller, Cisco NAC server and Bluecoat Web Proxy.

Software and Utilities: Symphonia EDI mapping and translation of ANSIX12N ((837, 835, 270, 271, 276, 277, 278, 834,820, 997 HIPAA Transactions), MS Project, Enterprise Architect, Visio, Chart Logic EMR (Electronic Medical Record).

PROFESSIONAL EXPERIENCE

Sr. Cloud Solutions Architect

Confidential, Fairfax, Virginia

Responsibilities:

• Responsible to support and streamline government access to FedRAMP compliant CGI’s Cloud Infrastructure as a Service (IaaS) that gives agencies the ability to provision processing, storage, networks, and other fundamental computing resources to create environments in which they can deploy and operate their applications.
• Determining IaaS requirements and provide solutions to meet the functional and business requirements of a range clients of various sizes and across verticals.
• Defined necessary security controls for CGI’s Health Cloud service environment to safe guard electronic protected health information (ePHI) to meet the requirements of HIPAA and HITECH Act.
• Developed solution architectures for more than 3 Requests for Information (RFIs) and 2 Requests for Proposal (RFPs).
• Developed a technical transition-in approach tool for a large scale project. This tool covers the standard activities involved in CGI taking over any IT project and helps in prioritizing knowledge transfer, shadowing and reverse shadowing based on the system complexity and Business Impact.

Engineering Tech Lead (Solutions Architect)

Confidential, Reston, Virginia

Responsibilities:

• Responsible for the planning and designing of engineering solutions for technology infrastructure capabilities including Servers, Storage, Network, Middleware, Operating System and database technologies.
• Designed technical solutions utilizing enterprise architecture standards including documenting all solution components and configurations.
• Introduced standards across the environments that reduced infrastructure costs.
• Designed enterprise-wide Web Application Firewall solution that provides deep Web application analysis and protects Web applications from common attacks, such as cross-site scripting (XSS) attacks, SQL and command injection, privilege escalation, cross-site request forgeries (CSRF), buffer overflows, cookie tampering, and Denial of Service (DoS) attacks.
• Designed an IT solution for the new business capability to calculate the Treasury G-Fee payment amounts introduced by the new Government mandate.
• Design deployment model for replacing all existing printers/ copiers with new leased RICOH MFD printers with the ability to track, analyze and manage the print and copy activities.
• Analyzed legacy applications and upgrading these on virtual environments.
• Designed Wireless Network Solution for 10000+ users using Cisco Wireless LAN controller, Cisco NAC guest Server for account creation and Blue Coat proxy for web filtering. Users can bring their own devices (BYOD) to access this network. The solution was designed and implemented using Scrum process of the Agile frame work.
• Demonstrated capacity to design solution and execute multi-million dollar high-profile projects.

Infrastructure Architect

Confidential, Reston, Virginia

Responsibilities:

• Reported directly to Director Architecture to standardize the entire IT infrastructure and define the future state infrastructure architecture and roadmap.
• Directly involved with the procurement, architecture, design, and development of infrastructure technology assets (storage systems, virtual desktop infrastructure, server design and implementation, etc.).
• Performed architecture reviews of key systems and applications to improve stability, availability, performance and service levels by identifying architecture and infrastructure issues.
• Developed Identity and Access Management (IAM) deployment architecture using MS FIM tool that enables secure identity-based access to applications both on-premises and in-the-cloud from virtually any location or device.
• Successfully upgraded Hyperion SQR from version 6.0 to EPM 11.x. Analyzed what changes may need to be made to upgrade SQR from version 6.0 to version 11.x in the environment.
• Architect and design Storage Array Networks (SAN) environments to ensure high availability and acceptable performance characteristics for VMware VDI and production applications. Research and evaluate SANs including NetApp Fas3240 and EMC VNX 5500 and provided the product recommendations to the management.
• Designed and implemented Cloud hosted infrastructures to host in-house run applications on Cloud provider systems.
• Designed and installed Subversion source code control system in a Solaris environment and implemented path-based authorization which restricts who can see or change the content in repository based on the location of the content inside the SVN repository.
• Documented & trained administrators on how to provide administrative support for source code control system.
• Made recommendations for VMware ESXi and VMware View desktop virtualization (VDI) configuration standards and best practices. Improved failover and failback capabilities by upgrading VMware vCenter Site Recovery Manager that provides better disaster recovery management.
• Responsible for researching, cost-justifying, recommending, and establishing current and future hardware and software architectures for all aspects of information technology.

Systems Architect

Confidential

Responsibilities:

• As part of a cohesive team, developed an overall technical approach for modernization of the EDGAR (Electronic Data Gathering and Retrieval) system along with migration strategies for transitioning the current EDGAR architecture to the modernized alternative.
• Developed roadmaps based on project interdependencies constraints for sequencing projects and initiatives to achieve the desired strategic business objectives.
• Analyzed the current EDGAR architecture, detect critical deficiencies, and recommended solutions for performance improvement.
• Developed comprehensive design of EDGAR architecture around SOA (Service-Oriented Architecture) principles.
• Designed Web services architecture as an alternative solution for filing community to submit bulk forms to EDGAR using EDGAR Web services.
• Provided architecture leadership for the development and replacement of offline EDGAR Link software application with web based solution “EDGARLINK Online”.
• Architected, designed, and documented technical solutions for storing different formats of data that involves building a data warehouse and reporting/analysis using business intelligence (BI) tools.
• Conducting architectural reviews for a broad set of projects. Identified technologies and tools to implement the critical elements of the EDGAR architecture.
• Designed and implemented server consolidation strategies to reduce the number of servers.
• Designed and implemented the application monitoring tool solution using AWSTATS (Open Source) to collect and report data across all EDGAR system.
• Research, analyze and recommend new technologies to help reduce the costs and improve the overall service levels that are appropriate for the business and technology strategies.
• Maintain and reorganized EDGAR Systems Architecture Document.

Enterprise Architect

Confidential, Washington DC

Responsibilities:

• Worked with the Infrastructure Engineering Team to develop new IE processes and re-engineer existing processes using Information Technology Solutions Life Cycle Methodology (ITSLCM).
• Analyzed overall architecture of internal technology systems, including hardware and software to update enterprise-wide architecture models for integrated architecture solutions that meet performance, scalability, reliability, and security needs of Confidential .
• Analyzed existing Confidential data flow between headquarter and COOP site.
• Developed To-Be enterprise data architecture model.
• Reviewed Continuity of Operations (COOP) strategy and provided recommendations for design improvement.
• Developed Security Audit Findings Resolutions (SAFR) reporting tool to support and track all activities outlined in the Enterprise-wide security audits.
• Managed and tracked three audits of Confidential .
• Mapped out OIG audit findings with NIST publication.
• Developed enterprise-wide processes and models for all audits using IDEF0 model.
• Worked with multiple stakeholders to gather and prioritize their concerns as inputs into architectural design of process models.
• Evaluated and updated old infrastructure models.
• Customized port lets as well as supporting Infrastructure Engineering portal site.
• Provided technical guidance and recommendations in various specific topics relevant to the Confidential infrastructure plan, including:
• Middle tier and application servers-Service Oriented Architecture(SOA)
• Integration of commercial off the shelf (COTS) solutions,
• Technology and vendor trends,
• Risks Identification and Mitigation Strategies,
• Open source options and transition to Linux servers.
• Implementation of Federal Enterprise Architecture Framework (FEAF).
• Documented Audit Finding Management Process.

Senior Configuration Management Consultant

Confidential, Reston, VA

Responsibilities:

• Worked on data management, configuration identification and control, standards and procedures development, configuration status of sView call center application.
• Responsible for providing configuration support to the entire sView application.
• Supported transition plan to serve as a roadmap for migrating legacy application to sView application at different call centers.

Sr. Software Analyst

Confidential

Responsibilities:

• Designed and developed a web-based HR application for Confidential using Data Access Pages, VB Scripts and Java Scripts
• HR application is used to view employee demographic information, educational information, work history and employee assessment.
• The application produces real time standard as well as dynamic reports.

Sr. Security Analyst

Confidential, Washington DC

Responsibilities:

• Developed standards and procedures for disaster recovery documentation.
• Reviewed agency’s technological and procedural Disaster Recovery provision.
• Developed recovery support and business resumption procedures.
• Analyzed application and system configurations for critical agency resources.
• Based on analysis, made recommendations for disaster avoidance measures and improved backup capabilities.

Sr. HIPAA Security Analyst

Confidential, Washington DC

Responsibilities:

• Developed strategies for Risk assessment, and BIA (Business Impact Analysis)
• Developed HIPAA security questionnaire based on NIST methodology.
• Documented EPHI (Electronic Protected Health Information) data flow diagrams for all DC agencies.
• Performed vulnerability scanning to EPHI systems and networks for security weaknesses from the inside using vulnerability scanning softwares.
• Performed external penetration testing to EPHI environments to discover agency’s security weaknesses.
• Analyzed all potential threats to agencies, as well as their likelihood of occurring.
• Analyzed an EPHI system of each agency in order to assess its existing security profile, and identifying the safeguards needed to bring the system’s security to the desired level.
• Developed gap analysis, Business Impact Analysis and Risk Analysis templates to evaluate each agency’s operational compliance with HIPAA regulations.
• Analyzed and gather information about the assets of the agencies including information on networks, data centers, computers, hardware, software and data as well as physical assets, such as the network users, the physical facility and other agency resources.
• Analyzed agency’s loss potential if certain threats materialize and expected losses from defined threats based on asset exposures, vulnerabilities and estimated probabilities of occurrence.
• Provided recommendations on mitigating controls.
• Act as a Subject Matter Expert for HIPAA security.
• Identified potential areas of each agency including CWITS where existing data security policies and procedures require change, or where new ones need to be developed that will satisfy all HIPAA regulatory requirements.

Technical Lead

Confidential

Responsibilities:

• Performed the activities necessary to deliver design, validate, implement and deploy the desired application enhancements. Installation, configuration and maintenance of Documentum and associated products.
• Performed administrative tasks in Documentum i.e. run administrator jobs, configure customizations and integrations, maintained Documentum security, completed changes to system as directed by DCHA, setup content storage areas, recover deleted data, and maintain Documentum and SQL tables.
• Stabilized the WebTop deployment and provide consistent access to the web application.
• Decompilation/Recompilation of customized java methods. Deployed an InputAccel enterprise server that will provide a single upload path to the eContent server, thereby reducing risk of data loss and loss of data access.
• Ensures that a project is successfully deployed without disrupting current environment.
• Developed back-up, disaster recovery, fail-over and load balancing strategy.

Quality Assurance Testing Lead

Confidential, Washington DC

Responsibilities:

• Responsible for full HIPAA compliance lifecycle, that is, gap analysis, mapping, implementation and testing for processing of Medicaid Claims.
• Involved in the analysis of Health Care Claim processing.
• Performed system analysis, researched issues, and coordinated with providers to develop solutions.
• Evaluated WINASAP2003 software for 837 compliance and reported discrepancies to management.
• Developed detailed test scenarios for 837, 835, 834, 820 and 276/277 institutional and professional HIPAA transactions by looking at requirements, business systems design and technical specifications.
• Involved in unit testing and system integrated testing of the system with the QA team.
• Provided support for all phases of testing at varying degrees including Systems Testing, Acceptance Testing, End to End Testing and Performance Volume Stress Testing.
• Worked with user groups to define and develop user acceptance test cases and scripts.
• Developed and maintained expertise in all applicable Federal and State regulations regarding healthcare and HIPAA guidelines.

Systems Analyst

Confidential, New Jersey

Responsibilities:

• Performed analysis, design, development and implementation of X12 EDI maps for Healthcare Claim Payment/Remittance (835,837) using Symphonia/ Rhapsody.
• Created Maps to extract Data from SQL Server 2000 database and for generating files for other maps for processing.
• Developed maps for transaction sets 837 and 835 using Symphonia Map Designer.
• Translated HCFA 1500 Standard to 837 HIPAA Transactions.
• Wrote EDI code to Correlate HCFA Standard.
• Developed a compliance maps to enable the HCFA 1500 system to achieve HIPAA Code set compliance.
• Developed XML scripts for integration of EDI software to SQL server 2000 Database.
• Used Symphonia Map designer for mapping the fields to generate inbound and outbound files.
• Conducted Unit testing on maps to achieve desired outputs.
• Interacted with trading partners and resolved EDI related issues.

Systems Security Analyst

Confidential, Washington

Responsibilities:

• In charge HIPAA Security Compliance: Designed and implemented HIPAA policies and procedures related to IT solutions throughout the network.
• Developed gap analysis, contingency plans, and risk analysis and mitigation procedures.
• Performed gap analysis on all parts of HIPAA transactions including privacy and security.
• Developed network and host security policies with focus on HIPAA.
• Monitored and maintained logs, performed network and system security audits in main location as well as remote locations and provided detailed reports.
• Implemented security and firewall strategies.
• Documented technical procedures and provided detailed implementation plans to junior members of the technical staff.
• Developed and implemented backup strategies.
• Managed users, file system security, account auditing and resource sharing.
• Developed security related shell scripts.
• Designed and upgraded network to Gigabit Fiber Optic Backbone and Switched Fast Ethernet (100MB) workstation connections.
• Sat up openBSD based firewall that included NAT, PF, Statful Packet Inspection (HIPAA Compliance).
• Installed SNORT IDS that monitored network system 24/7.
• Implemented HIPAA Security and Privacy.
• Developed and implemented policies to comply with HIPAA standards.
• Developed and implemented enterprise security policy to resolve standing issues related to HIPAA compliance audits.

Systems Security Analyst

Confidential, Atlanta, GA

Responsibilities:

• Responsible for all aspects of UNIX (SUN Solaris) system design, integration, implementation, administration and system maintenance.
• Responsible for the optimization of hardware platforms and derive a strategic path for hardware/software consolidation as well as being able to develop design/implementation solutions.
• Evaluated and recommended new security technologies for maintaining secure environment.
• Created/maintained/modified Unix Scripts running on HP 9000 to align with upgraded applications.
• Technical Support for Sun Fire 4800 Servers, HP-UX 9000, and day to day administration tasks, hardware and software troubleshooting.
• Monitored the performance, trouble shooting the problems of Sun Servers and HP Server.
• Procured hard disks for all servers using EMC symmetric disks.
• In charge of the Watson the Chemist (WTC) Intranet Migration Project.
• Migration of applications as well as data from MS IIS (MS SQL Database server) server to HP 9000 (Apache Server and Oracle).
• Installed Sun Solaris 8 on corporate Sun Fire 4800 servers and workstation.
• Implemented various Back-up policies including daily, weekly and monthly.
• Prepared necessary documentation for the task accomplished.

Systems Administrator

Confidential, Atlanta, GA

Responsibilities:

• Built, configured, and maintained Windows NT 4.0 servers and workstations.
• Performed installation, configuration, and support of workstation hardware and application software for business end users and software developers.
• Supported and maintained networking.
• Supported Desktop/laptop computers and remote users.
• Performed hardware maintenance, upgrades, and component-level trouble-shooting on workstations and servers.
• Managed backups, restores, and backup policies using DLT tape libraries.
• Perform various systems administration tasks as needed.

Systems Engineer

Confidential

Responsibilities:

• Configured and managed applications and LAN servers under Novell Netware, Microsoft NT and UNIX operating systems for number of healthcare hospitals and nursing homes.
• Maintained system security including: passwords, virus protection, dial-in access, and fault tolerance.
• Maintained the health of servers, workstations and equipment and staged and installed servers, workstations and equipment.
• Supporting users and troubleshooting user-reported problems.
• Installed new versions of OS and other application softwares.
• Aided the development of policies and procedures for the hospital.
• Documented setup of network devices and procedures required to maintain devices.