SUMMARY:

• IAM (Identity and Access Management) Professional with 15+ years of experience in Designing, Customizing & Developing solutions using IAM products like Waveset, Open IDM, OIM, OAM, Sailpoint etc.
• Involved in scoping, elaborating and designing IDM core components for an in - house IDM Solution using cloud based micro services Architecture. Also supported existing IDM platform for Confidential (NT) which currently has 35 k users and 1000’s of applications.
• Designed, Developed and supported security solutions for DC Government, which currently has an IAM platform (Open IDM/ AM & Waveset 8.1.1) that supports over 600 administrative users and over 250,000 citizens and District employee identities. The existing platform includes approximately twelve (12) system integrations across three (3) environments, encompassing more than fifty (50) servers to support Physical and logical access control for the district
• Developed migration strategy for moving existing applications to new infrastructure SIM/OPENAM/OPENLDAP -> OIM/OAM/OVD/OID.
• Evaluated and compared Open IDM, Sailpoint & Oracle product suite and demonstrated the pros and cons for both the products. Converted existing requirements & use cases to fit oracle IDM model. Came up with a road map for the future state of Identity & Access Management using the Oracle product suite Designed and developed security solutions at FDIC to automate the access provisioning for employees, contractor to provide application access to different types of applications at FDIC ( Confidential ).
• Designed and developed solutions at GE (General Electric) using Sun IDM to provide Base Accesses to the employees and contractors across the globe for about 170 thousand users. Automated provisioning access for about 60 applications in sub-businesses like Aviation, Energy, Rail, Water and Oil & Gas.
• Involved in understanding Confidential ’s business needs and enable solutions using SUN Identity Manager (Waveset 7.X) product. Designed and developed Sun IDM solutions at Confidential to manage user identities and accesses in various target systems: LDAP, Active Directory, SAP, Livelink, Arcot, PeopleSoft Google Apps, Role Manager (RBAC), Solaris, SolarisMailstore, Prosoft, Kerberos
• Domain expertise includes Federal, State Government, Public Services, Finance, Logistics, Transportation & Aviation and Healthcare & Biotechnology, State Government Public services Department.

TECHNICAL SKILLS:

Management:  Sailpoint Identity IQ 5.5 / 6,OIM 11g r2 ps2 (Oracle Identity Manager), OAM 11g r2 ps2 (Oracle Access Manager),Open AM 10 / 11.Open IDM 4.0,Oracle Waveset / Sun IDM 5.5/6.0/7.1/ 8.1 ,

Programming Languages:  Core Java, JSP, Servlet, PL SQL, C, C+, Java script, XML, SPML

Technologies / Framework:  Java-J2ee, Struts, XML, SPML, SOAP, Web services, Ajax, JSF, Spring

IDM Target Resources:  Solaris, Solaris Mail store, Kerberos, Netegrity Site minder Google,Apps, Arcot webservices, Prosoft, Livelink, SFDC, SAP, AD, LDAP, Oracle Database, Linux, cognos. ACF2, DB2

Directories:  Active Directory, Red Hat Directory server, Oracle Internet Directory, Open LDAP, Apache Directory Server, Radiant Virtual Directory, Open DS. OVD (Oracle Virtual Directory), OID (Oracle Internet Directory), OUD (Oracle Unified Directory)

Data Bases:  Oracle 11g, 12c, MySQL, SQL server, NoSQL

OS, Execution Environment:  Windows, UNIX, Linux, Solaris, Dockers, PCF

Configuration Mgmt.:  MS VSS, CVS, Dimensions Client, CollabNet SVN, Github

Application servers:  Web logic server, JBoss, Tomcat, Oracle Application Server

Hardware:  Bridgepoint Controllers, Door Readers, Enrollment Kiosk, PIVI Smart Cards

Other Tools & IDEs:  Eclipse, Net Beans, BPE, Apache Directory suite, Toad,SQL Developer, Net Beans, Squirrel, jIDEA, Microsoft Visio, Bitbucket, Bamboo, Spring Tool Suite (STS), Gradle

PROFESSIONAL EXPERIENCE:

Confidential 

IAM Architect / Lead Developer

Responsibilities:

• Evaluated IDM products like OpenIDM & Sailpoint by Installing, Customizing and Demonstrating the pros and cons to the client
• Designed, Developed and supported security solutions for Northern Trust which has an IDM platform (Waveset 8.1.1) that supports over 35 k users and 1000’s of applications.
• Involved in forming the IDM product tree by scoping and elaborating the IDM core components
• Involved in Designing IDM core provisioning services for the in-house java based custom IDM solution
• Involved in Designing IDM connecter services for the In-house java based custom IDM solution
• Involved in documenting and elaborating the existing business AS-IS process IDM workflow Artifacts

IDM Target/Source systems: Active directory, Oracle Database, Web Services, PeopleSoft,. Flat files sources. Lotus Notes, UNIX, Web Services, Service Now

Environment: Oracle waveset 8.1.1,Sailpoint Identity IQ 7 , Open IDM 4.0, Java, J2EE, Oracle 11g, PL/SQL, XML, JavaScript, Web Services, LINUX, LDAP, AD, Dockers , PCF Oracle Access Manager 11r2 ps2

Confidential,DC

IAM Architect / Lead Developer

• Designed , Developed and supported security solutions for District’s which currently has an IAM platform (Waveset 8.1.1) that supports over 600 administrative users and over 250,000 citizen and District employee identities.  The existing platform includes approximately twelve (12) system integrations across three (3) environments, encompassing more than fifty (50) servers to support Physical and logical access control for district.
• Integrating the Identities of DC Public schools / charted school and Private school to provide and manage the student’s access.
• Providing a one card solution for all the access to the users for providing access to DC public schools, recreation centers, public libraries, Metro transit smart card
• Application access request for Employee and contractors
• Designed and Developed PACS Solution for OCTO to establish a Network Operations Center (NOC) and Security Operations Center (SOC) which will require enhanced security to conform to the HSPD-12 credentialing guidelines. Through the HSPD-12 directive, the federal government established the Personal Identity Verification (PIV) standard for federally issued secure identification credentials. To provide enhanced security for the NOC/SOC that are in line with federal government standards,
• PIV-I credentials include a microchip containing several digital security certificates that are used for card authentication, PIV-I key management, digital signatures and/or encryption. Procedures for issuing PIV-I cards provide for a high assurance of cardholder identity and therefore ensure the authenticity of individuals accessing physical facilities, logical systems and network resources. The PIV-I credentials contain security features that help reduce counterfeiting, are resistant to tampering, and provide visual evidence of tampering attempts.
• The PIV-I Card provides multiple authentication mechanisms including:
• Authentication Certificate - allows PKI-based authentication only accessible via the contact interface when the user Personal Identification Number (PIN) is provided;
• Biometric - authentication of the cardholder’s fingerprints using biometric templates on the card, including verification of the signature and signer;
• Cardholder Unique Identifier (UUID) - contactless read of the partial CHUID object, including verification of the signature and signer; and
• Card Authentication Key (CAK) - provides flexible card authentication options that may be performed via the contactless interface.
• Developed migration strategy and did POC for moving existing applications to new infrastructure SIM/OPENAM/OPENLDAP -> OIM/OAM/OVD/OID.
• Evaluated and compared Sailpoint & Oracle product suite and demonstrated pros and cons for both the products. Converted existing requirements & use cases to fit oracle IDM model. Came up with road map for the future state of Identity & Access Management using Oracle product suite

IDM Target/Source systems: Active directory, Red Hat Directory Server, Oracle Database, Web Services, PeopleSoft, Remedy Force. Flat files sources.

Environment: Oracle waveset 8.1.1, OIM 11gr2 ps2 /OUD/OVD/OAM, Java, J2EE, XPRESS, Oracle 11g, PL/SQL, XML, JavaScript, Web Services, LINUX, LDAP, AD. Bridge point door readers & controllers, Enrollment Kiosk, IQ3 Proxy servers. Open AM 11.

Confidential , Arlington, VA

IAM Architect / Lead Developer

• Onboarding / Off boarding Employees through Active sync process to auto provision accounts and access for FDIC Employees
• Designed and developed a customized deferred task solution to replace the existing out of box deferred task scanner.
• Design and developed Non-Employee On boarding and management process
• Application access request for Employee and contractors
• Developed Database & Network Access request workflows
• Developed Unix Access request workflows
• Did POC on Sailpoint & OIM and demonstrated pros and cons for both the products.
• Gather and analyze business requirements and convert them to technical specifications
• Provide high level Architecture and detailed solution design using UML
• Develop provisioning solutions using web based technologies such as Java, JSP, SQL, XML & Oracle Waveset
• Perform unit testing and system integration testing per test cases and scripts
• Provide ongoing production support for defect fixes and enhancements
• Develop and maintain Architecture design documents and deployment installation procedures
• Defect fixes and giving production support to business users
• Maintain the requirement specifications and the functional specifications
• Provide technical solution and Perform Design and development of new functionalities for enhancements of IAMS.
• Presenting Architectural significance to ARB (Architectural review board)

IDM Target systems: Active directory, LDAP, Database, Mainframe (ACF2), Custom Database, Remedy, HR Systems (Staging Table View)

Environment: Sun Identity Manager 7.1 & 8.1, Java, J2EE, XPRESS, Oracle 9i, 10g& 10g, PL/SQL, XML, Javascript, Oracle Application Sever, Weblogic Application Server, LINUX, SOLARIS.

Confidential,South San Francisco, CA

Sr. IDM Consultant

• At Confidential designed and developed following solutions using Sun IDM
• Auto provisioning for Employees through Active sync process which provides all the access required for a Confidential Employees
• Self service -
• Change Unix password
• Change Profile
• Change Unix Group & Shell
• Non-Employee On boarding and management
• Gmail provisioning using Google adapter
• Request for Commercial Role(RBAC)
• SAP account access Provisioning and management
• Requirement gathering, analysis, design, develop, test and implementing the solution.
• Involved in production support for all the above functionalities
• Involved in the Maintenance and enhancement for any of the above functionalities
• by making changes to the existing workflows and forms and providing the solutions to the issues in production.

IDM Target systems:), LDAP, Active Directory, Solaris, Solaris Mail store, Kerberos, Netegrity Site minder Google Apps, Arcot, Prosoft, Livelink, SFDC, SAP

Type Development and business functional enhancements

Responsibilities:

• Involved in requirement gathering and designing and developing the workflow
• Involved in designing the Forms and Rule libraries.
• Involved in designing the Approval Form for the bulk approval Process which will allow bulk extend or termination of the Non Employee.
• Involved in designing and developing the custom workflow for provisioning the gConnect (Remote access) access for Employees and Contractors.
• Involved in designing the various gConnect Forms for the user request and approval Process based on different business logic
• Also involved in the writing the custom adapter codes which perform different functions like add, delete, enable, disable user at Arcot server.
• Involved in designing the workflow and develop the same to create, edit , view & delete External users groups
• Designed and developed the user forms to create, edit, view & delete external user groups.
• Used the IDM out of box adapter code to manage Create / Update LDAP groups

Environment: SUNIDM EXPRESS language and workflows, Netegrity Siteminder LDAP , J2EE, Java, JSP, LDAP, JBoss, Sun Solaris 8.0, Oracle 9i, Win 2000, Eclipse

IDM Target Systems: Netegrity Siteminder LDAP, Active Directory, GoogleApps, Kerberos, Solaris Mail store

Confidential,Cincinnati,OH

Sun IDM Consultant / Onsite coordinator

Responsibilities:

• Created and designed new rules with all the business logic in order to modularize the code
• Designed new workflows to make it very simple to support. Eliminated all the business Logic from workflows.
• Applied performance tuning technique wherever required in Xpress and Java
• As Forms are very complicated to handle the screens. Created JSP and invoked workflows from JSPs.
• Did R & D to get the IDM user object in JSP & passing the data from IDM forms to JSP and JSP to Workflow
• Involved in designing a workflows which in turn triggers 8 workflows based on the selection ( 5 active directory resources , one LDAP , one Internet resource & one
• Involved in designing and developing the Workflows & Forms.
• Involved in doing R & D for customizing the adapter for provisioning Oracle instances.
• Involved in Designing the Custom Admin Forms to manage Oracle instances.
• Involved in Data migration of all the Oracle instances for initial load in IDM.
• Involved in Requirement gathering and Design
• Developed a scheduled workflow to retrieve the roles from SAP System.
• Developed SAP Request access Form & Approval Forms.
• Involved in Requirement gathering & Design.
• Involved in the development of Employee / Contractor Registration process.
• Developed and implemented Admin module for decision matrix to create rules to enable and disable resources in front end.
• Involved in designing the scheduled workflow process for auto provisioning GE Contractors who are created in another system called Epass
• Involved in Designing a common component workflow to Integrate Baseacces in IDM with difference components like request access matrix, approval matrix & Decision matrix.
• Developed and implemented decision matrix which is being used to enable or disable a resource in GUI based on the users persona attributes
• Involved in designing the active sync process for Employees for auto provisioning of accounts.

IDM Target Systems: LDAP, Active Directory, Mainframe SAP , Cognos, LDAP

Environment: SUNIDM EXPRESS language and workflows, J2EE, JBoss, Sun Solaris 8.0, Oracle 9i, Win 2000, Eclipse

Confidential 

Java Developer

Responsibilities:

• Involved in Requirement gathering & Implementation
• Responsible for coding Servlets /Java Beans/JSP’S, Testing & Deployment in WebLogic Server
• Developed code using MVC Architecture.
• Design and Developed Servlets to handle the client request
• Designed Front End using HTML, JSP and DHTML.
• Used JavaScript for client side validation.
• Written Stored Procedures with PL/SQL in Oracle.

Environment: Java, JSP, Servlets, MVC Architecture, Java Beans, HTML, DHTML, Javascript, Weblogic, JDBC, Oracle, PL/SQL, TOAD, Eclipse, Windows 2000/NT

Confidential 

Java Developer

• Involved in Coding Servlets /Java Beans/JSP’S, Testing & Deployment in WebLogic Server.
• Source code is maintained using Visual Source Safe

Environment: Java, JSP, Servlets, Weblogic, JDBC, Oracle, Visual Age, Windows 2000/NT