SUMMARY

Senior IT professional with 28 years of experience. Extensive full Project Life Cycle skills including Project Leadership, Requirements Definition, Systems Design, Prototyping, Programming, Testing, Documentation, and User Training. Experienced as an IT Security Analyst, DB2 Database Administrator, Sybase Database Administrator and Systems Middleware Administrator with a focus on Websphere and WebLogic. Worked with EMC and Hitachi Data Systems on installs/migrations of Midrange Mainframe storage systems and installed Security software. Installed various AIX, Solaris and Linux software administrative products. Solid Project Management experience from Project Planning through delivery. Very good communication and interpersonal skills.

EXPERIENCE

confidential

Senior IT Security Analyst

As a Senior IT Security Analyst, my role requires partaking in the development, enhancement and implementation of enterprise-wide security standards such as HIPAA, building out information security controls, staying current in forensic science and study publications as required by internal audits to abide by NIST procedures, guidelines and recommendations. In addition, responsibilities include reviewing security analysis reports for security vulnerabilities and recommending feasible options reporting on significant current industry trends as related to company assets and their vulnerabilities assisting in overall business impact analysis to ensure assets are adequately protected with proper security measures evaluating and recommending software systems that provide pertinent security functions and supporting Security Operations in the investigation and forensic reporting of security incidents occurring at Hanover Insurance.

Responsibilities include:

• Provide management of the Computer Security Incident Response Plan CSIRP process which provides guidance, direction and documentation on incident response handling and communication requirements. This includes a newly formed Incident Response Team, a new global crossing bridge line and use of NotiFind for corporate spawned notification communications. In addition, provide management of the CSIRP Policy Document Artifact which captures the Security incident response standards and best practices per release CSIRP Playbook that catalogs all approved Security Incident Attack Scenarios.
• Serve as AIX Hanover partner Liaison which entails Security awareness alignment between Hanover AIX functioning as a steward in the Security Posture Council that serves as the group responsible for managing information security posture by receiving prioritizing, recommending tracking all security control enhancements participate in gap analysis of IS 27001 for 2015 AIX Security Roadmap.
• Research report on active security threats including Ransomware, Data Breach Exfiltration Phishing email vulnerabilities.
• Prepare Situation reports for Phishing email, stolen laptops and a unique case of a compromised laptop due to user impersonation and maintain these within the Security Incidents Investigations Register.
• Research document specific malware threats such as CryptoLocker, Cryptoblocker, and Bitcoin failure points.
• Analyze Risk Management Vulnerability Reports on Linux servers relating to assets identified as having vulnerabilities due to out of date software life cycles, requiring OS patching.
• Maintaining team site registers to include Assessment Research Projects, Remediation Assurance Projects Operating Model Enhancements on active and proposed projects.
• Create knowledge base articles for the Help Desk personnel to assist in Phishing email information gathering.
• Participate as an Incident Rapid Response Team member who is responsible/on-call for analysis and containment of compromised systems to eliminate the cause of an actual security incident.
• Educate by examining Symantec Internet Security Threat reports and joining into SANS published WebCasts.

Confidential

Computer Science Analyst Middleware

By working within the Web Admin/Systems Administration team, exemplify responsibility by supporting Aerojet Rocketdyne's WebLogic applications across hardware platforms to ensure performance, availability and security. Specific improvements are necessary to assess the performance and configuration of existing WebLogic, SOA, OSB, EBS, OEM, TeamCenter, OLM, IPD and ADMS applications. Working on installation/migration of applications which will utilize Exalogic, Exalytics Exadata platforms.

Responsibilities include:

Bestow leadership and partnership in the delivery of the Rocketdyne acquisition by successfully completing all tasks associated with the acquisition of Rocketdyne and ensure a smooth transition by identifying requirements early and delivering effective solutions to meet Rocketdyne's system requirements.

Key project deliverables:

• SOA-Prepared documentation specific to our WebLogic SOA architecture and appropriate appserver configuration.
• Investigated application tier hardening and prepared documentation to review with Cyber Security from initial Rapid7 vulnerability findings.
• Involved in all levels of troubleshooting as the project makes its way to Production status from a Systems Administrator and Developer perspective. This includes efforts in the SOA and OSB layers of the current environment.
• Exalogic/Exadata/Exalytics
• Participated provided recommendations in hardware/software planning meetings for new EXA platform software suite including Exalogic/Exadata/Exalytics. Took associated Oracle training sessions, as offered.
• Prepared RBAC role-based access control matrix for planning for upcoming uid/group creation in Exalogic.EBS
• Assisted DBAs in AMP plugin issue tied to OEM Production to include new CA certificates.
• Team Center:
• Assessed performance and tuning of existing Test and Production environments via Oracle
• recommendations and specific parameters configured for usage in OEM QA OEM Prod.
• Participated in WebLogic application deployments.
• Addressed CPU issues by analyzing statistics and proper recycles of the environment.
• Prepared documentation for reference on deployments, architecture and miscellaneous notes.
• Made recommendations for tighter security methods by creating a specific Middleware
• Unix/Linux group placed on servers supported.
• IPD/ER: Integrated Product Development/Environmental Remediation
• Worked with team Fishbowl vendor to set up configurations in QA Production
• WCC domains, MS Office, IIS Notepad, Application pools, ADF group mapping,
• credential maps, user roles Apache SSL certificates using OpenSSL server certificates for URLS.

OEM QA/OEM Production:

• Added specific WebLogic application servers and components to both OEM QA OEM Prod.
• Corrected issue with custom identity and trusted keystore certification in OEM QA to remediate
• vulnerabilities posted within Rapid7 asset findings.
• Worked with Oracle on-line support as various documents needed to be pieced together to alter
• the OEMQ for Rapid7 vulnerability findings.
• Created a new ruleset specific to WebLogic servers, clusters and domains to capture specific
• server statistics to be emailed to me directly including:
• heap usage, vm growth, CPU usage, agent stats, memory utilization, blackouts, targets up/down.
• Reviewed Oracle recommended performance statistics via OEM QA console with Oracle rep.
• Worked issues with overall server's WebLogic start and stop application scripts.
• Rapid7 - CyberSecurity:
• Worked with DBAs, Data Center Ops to assist in WebLogic remediation efforts identified by
• Cyber Security team.
• Remediation crossed into OEM QA, OEM Prod and OVM where configuration changes and
• recycles were necessary.
• Improve business efficiencies via the use of IT's project management practices and customer engagement.
• Provide continual active improvements for Middleware services including research, planning, and implementation of service upgrades and enhancements.
• Manage time by scheduling meetings and configuration changes/deployments appropriately and tracked progress via documentation.
• Diagnose and correct/debug issues within Aerojet's WebLogic SOA application domains.
• Support Oracle Enterprise Manager OEM server monitoring to ensure general system operation health within the WebLogic Middleware tier by following best performance monitoring practices for key applications including SOA, EBS, IPD, Team Center WCC applications.
• Perform capacity planning and performance tuning to prevent issues and minimize service disruptions across all Middleware environments following Release Management standards.
• Build relationships with enterprise-wide customers and Oracle representatives to create clear and effective communications and to address customer needs across the systems we support.
• Create and maintain documentation for configuration changes and service desk requests within the Web Admin's team SharePoint site locations.

Confidential

Web Authentication Administrator

As part of the Web/Authentication Urgent Operations Online and Middleware Applications Teams, participated in the planning, implementation, configuration, documentation and maintenance of the PG E infrastructure and systems utilizing CA SiteMinder and SunOne/Apache webserver technologies to support PG E WebLogic applications.

Responsibilities included:

• Configured SiteMinder Impersonation for the CCO Customer Connection Online Web Portal application to include Realms, Rules, Policies, Auth Scheme and Webserver components.
• Utilized the SunOne Webserver 6.1 Admin Server consoles to request, manage and install Entrust web server certificates, as required.
• Configured Webserver files for static content redirects and proxy paths for Weblogic dynamic content.
• Debugging efforts to diagnose and correct issues within WebLogic ASA domains.
• Participated in POC for evaluating Oracle Enterprise Manager OEM Cloud Control 12C rapid server provisioning, server monitoring and diagnostics JVMD .
• Worked in conjunction with Enterprise Risk Management team in Compliance Reporting for company's Linux/Unix/Solaris webserver stack including versioning and product release deliverables for auditing purposes.
• Project involvement in standardizing OEM monitoring in support of Oracle's WebLogic application suite and installing Oracle 12c OEM agents as part of the project 100 servers .
• In multiple environments including Production and Non-Production, provided support and maintenance of existing web systems and applications as directed through BMC's Incident Management tracking system.
• Produced quality documentation for relevant environmental configuration changes and maintenance requests.
• Created team SharePoint site in sandbox for Online and Middleware Application Operations.

Confidential

IT Security Analyst

Within the IT Security Team, participated in the planning, implementation, configuration, documentation and maintenance of the Identity and Access Management infrastructure, both inward and outward facing utilizing the latest Security technologies from CA: IdentityManager, eTrust Directory, SiteMinder, Web Access Management, SOA Security Manager and others, along with associated Security and Infrastructure technologies, including Softerra LDAP Administrator.

Responsibilities included:

• Architecting, Risk Assessment Planning of new systems, rollouts upgrades to existing systems
• Supported the implementation of security controls and recommend areas for risk assessment utilizing the theory of Principle of least privilege and related controls including tokens, biometrics, intrusion detection, digital certs, 2 factor authentication bastion host servers
• Aided and advised in the development of internal standards and security policies including transactional data review for compliance and ongoing monitoring of business activities related to company ISO 17799/27001 Sarbanes Oxley standards
• Produced top quality documentation for assigned projects, scheduled Releases and Disaster Recovery purposes
• Data obfuscation/Data Masking project engineering for Corporate initiative to preserve PHI sensitive client abiding by HIPAA guidelines
• Supported RFP Request for Proposal process by assessing internal security and business requirements and analyze product offerings of 3rd party clients
• Built systems at ever tier: Lab, Proof of Concept, Development, Quality Assurance and Production
• SiteMinder and SAML configurations as applicable to business initiatives
• Implemented Java patching upgrades as required on Identity Manager EIM servers jdk1.5.0 32 DoD requirements.

Project Provider Portal

• Configured SiteMinder Realms, Rules, Policies, Auth Schemes, Password Policies and Agents in all environments. Agents installed on Linux Windows 2003 platforms.
• SiteMinder and Identity Manager design incorporated into Technical Requirements and Technical Design documentation including Use Cases, Activity Diagrams, Data Contract, LDAP Directory Attributes, User Migration, Shadowing/Impersonation, Identity Manager rules, FirstTimeUser TEWS web service calls.
• Debugging efforts associated system monitoring to support application team with password services login validation and Shadowing/Impersonation functionality.
• Created test and active users via Softerra LDAP Administrator.

Project Tumbleweed/Secure FTP

• Installed Tumbleweed software version 4.8.1 on Secure Transport Server including SiteMinder 6qmr5 configuration.
• Validated configurations and debugging, exploring logs to determine SSO issues to backend transport server.

Project CA Provisioning Manager

• Created new roles for multiple external vendor applications Caremark/CVS to access internal data stores.
• Prepared documentation and associated RBAC matrices to accommodate business technical requirements.

Project Broker Commission

• Analyzed business requirements to prepare associated IT Security technical requirements and design documentation including RBAC matrices.
• Prepared SiteMinder SAML 2.0 configuration interface in order to configure transmission of Broker Commission user identities.
• Successfully transmitted SAML Assertion to business vendor Acom3 with required LDAP attributes specific to setting up new brokers and employees on the vendor interface in all environments.
• Participated in vendor training sessions to prepare for Tufts IT Security systems integration.
• Attached appropriate Actek specific roles to Tufts internal user base utilizing Identity Manager and LDAP interfaces.
• Provided comparisons from existing LDAP UID SQL queries base to incorporate into the new Broker Commission system.

Confidential

Senior Technical Analyst Systems Administrator

• Environment Build Configuration Layered Products/Middleware Worked in new environment builds for key Personal Markets projects including Publishing, Centive, Customer First, Workflow, RTAQ, OP65, Corporate Billing Direct Response Workbench by constructing MQ Series 5.3 6.0 clustered and non-clustered queues WebSphere 5.0 6.1.0.13 installations including Datasources, Appservers, Webservers, MSSQL Server 2005 Management Studio database configurations, Introscope Monitoring and configuring SiteMinder v 5.5 6.5 and LDAP for a series of WAS 6.1 Upgrades Plan to convert PM webservers from r6.5 to r12 Analyzed Dev/Test webservers to pull active SiteMinder configuration elements from the active webservers and all of the SiteMinder active console configurations Completed CA SiteMinder r12 SP3 training in 2/11 in order to prepare for PM upgrade to r12 in 07/11 Attended eTrust SiteMinder Federation training Constructed DB2 Connect aliases, Documaker product installs SybaseOCOS installs Unix ksh shell Jython scripting, WebSphere Process Server 6.1 installs, deployments configuration changes including executing Jython scripts WebSphere Portal 6.1.0.2 installs, Tuxedo 10.1 installs including UBB generation and SAML 2.0 Single-Sign On for Campaign Management's tie into Epsilon Affinium Leads Affinium Collaborate including altering associated XML HTML files. SYSY new MF LPAR Performance Environment, midrange component. PM DASD Storage Representative
• Project WPS Optimization - Met project assignments through merging of JVMs for the WebSphere Process Server Quote domain within schedule expectations, setup of a new SiteMinder configuration for Velocity POC test and prod and participated in WPS database failover using BladeLogic scripts.
• Project Geico Multi Rater - MQ 6.0.2.4 was installed as a first use within the WebSphere Process Server Customer and Policy domains. This was required to further set up the new MQ channels, queue connection factories and queues for Workflow send/receive transactions. In addition, webservice client binding endpoints were configured across all environments.
• Project SYSY Performance Environment - Completed the Midrange setup for WAS, WPS, MQ and DB2Connect for the new SYSY Performance environment.
• Project - Phase I of Corporate Billing Restricted Data Processing - Electronic Payment Enclave Credit card Encryption . Set up DB2 Connect, RSA Database Adapter, Key Manager and appropriate access in Test and Production environments. Worked on installations, maintenance and recycling techniques of product services within the RSA DB Adapter for both Test and Production on Linux and Windows servers dedicated to this project.
• Phase II of Corporate Billing Restricted Data Processing - Configured the new firmware levels on various DataPower XI50 devices within environment scope. Set up encryption within the RSA Database Adapter of multiple databases/tables specific to customer credit information. Build out WebSphere 6.1.0.13 servers within the Restricted Data Processing Enclave. Installed GnuPG 1.4.9 and associated application scripts keys to protect critical filesystems.
• Project - Disaster Recovery Participated in the quarterly Disaster Recovery exercises for Personal Markets Mainframe applications including OP65, CBS, Vision2K, CAW, CF CSW. Midrange validation of DB2 Connect applications and specific market application recovery of key projects including Restricted Data Processing.
• Project UDB Clustering - RDS Participated in the effort to analyze and coordinate the consolidation of UDB licenses, midrange servers, UDB instances, Databases DB2 Connect aliases within a smaller group of newly acquired AIX servers. As a side benefit, established an improved process for Layered products using a standardized form to handle the large volume of DB2 Connect aliases.
• Cost savings 80 UDB licenses recovered 1.6 million 66 UDB licenses cost avoided 1.32 million 14 extra UDB licenses available 280K .
• Project - IMS/CICS adaswitch Put into place an automated process to capture specific IMS/CICS transactions in a down state to immediately send notifications to organized mailgroups.
• Project - EMC Migration Worked on effort to move Publishing/Views application 5TB off HDS disk array to a newly acquired EMC CX600 storage box. Planned redistribution of data/raw files.
• Project - Hitachi Data Systems Migration - Migration from storage unit HDS 30710 to 43148 series of 20 AIX and 14 Solaris servers for Personal Markets major coordinator for Personal Markets migrations and weekend on-call responsibilities.
• Project - Prudential Acquisition Assisted the PM Information Management team to prepare funding requests, disk allocations and incoming feeder tapes STK9840 to Media Recovery site for tape translation.
• Project - Continuus upgrade - Worked with vendors to create and install ShadowImage procedures. Upgrade Continuus Databases to version 6.3 and applied patches as required. Fully documented installation procedures.
• Cost savings 740GB recovered/reclaimed on HDS 43148 26K
• Project - Sybase Replatforming Migrated multiple Sybase applications off existing Midrange servers over to a design for a new consolidated platform for better handling, test, Dev and Production environments for market specific applications.
• Project - DASD Management Worked directly with Database and Midrange Mainframe storage to identify, add or remove Database filesystems. Disk planning capacity and allocations for all MR/MF market applications across Midrange platforms and Mainframe Storage Groups. Assisted in financial planning for future funding for UDB, Informatica, Oracle Redbrick. Handled emergency disk allocations, as well.
• Assisted in Mantis install using Apache, PHP and MySQL databases as part of a Linux-based solution.
• Personal Markets representative for corporate-wide Sybase Compliancy project. Provided expertise, background knowledge of Sybase-based applications in order to create the necessary deliverables dictated directly to Liberty Mutual's Corporate lawyer.
• Coordinated AIX upgrades from version 4.3.3. to 5.1.
• On-call Support Midrange Mainframe
• Participated in SWAT teams for Workflow and Corporate Billing projects.
• Prepared updated Engineering Project blueprints to contain the correct parameters for my config build/changes DRW Retirement, CFI ARP, CF Ratecompare, CF Remote Services
• Participated in DCE/Encina Production Releases and code promotion.
• Software products decommissioning DCE/Encina older versions of MQ.

Database Administrator

Sybase/UDB/MSSQL Server DBA

• Supported the Customer Acquisition Untethered application which utilized Sybase Replication for field office sales representatives to handle their quotes/client business. The process involved a series of components including Sybase Replication Agent for DB2, DB2 Connect, Sybase Replication Server, Sybase SSQUEUE, Sybase SSREMOTE, LTM and Sybase ASA.
• Supported the reference table application Common Codes/PRIME and the associated Replication components.
• Performed SQLBacktrack upgrades on selected nodes slotted for 12.0 upgrade AIX 4.3.3 compatible .
• Performed Sybase 12.0 upgrades for Production and Test environments.
• Assisted application areas in project planning and scheduling tasks for future Sybase to UDB conversion efforts.
• Monitor/Research recurring deadlocks on larger Sybase tables.
• Worked with scripts creating a new process for dropping user id's across Sybase nodes.
• Compiled an effort to consolidate Sybase raw files through Disk Mirroring selected applications.
• Participated in the quarterly Disaster Recovery corporate process by re-establishing the critical Personal Markets application Claims Workflow.
• MS SQLServer SQL Server Enterprise Manager Utilizing the SQLServer tools supported 2 Personal Markets projects which were re-written from MS Access.
• UDB training classes started.

DB2 Mainframe DBA

• Provided DB2 application design recommendations along with performance and tuning expertise and problem-solving support to the Vision 2000 Personal Markets re-write project.
• Lead DB2 DBA for the Personal Markets Untethered project, assisting with the new development of structures and recommendations pertaining to two-way replication of Sybase and DB2 object designs.
• Created a process for Vision 2000 allowing DB2A DB2T performance data to be analyzed for accounting purposes based on the application plan.
• Performed binds for DB2 connectivity to midrange nodes, reviewed SQL Explain output for production releases, monitored CPU usage Boole Babbage and assisted the application area with ad-hoc requests.
• Lead DB2 DBA for the Mass Merchandising Vision 2000 project, assisting with the coordination and development of new/changed objects, testing and production implementation.
• Implemented the Vision 2000 mainframe application Disaster Recovery process which was performed successfully and completed under our original time estimates.
• Estimated resources and created new and/or upgraded databases for Claims, Customer Workbench, Direct Response Workbench, Policy Admin. the Data Team. Upgraded 40 databases since 01/00 .
• On-call database support for applicable projects.
• Provided DBA support for Y2K testing to the Operational Data Store application.
• Assisted applications area with Design, Development, Testing and implementation of Operational Data Store projects.
• Outlined procedures and performed processes for altering application Procs and utility cards for the year-end Endevor conversion effort.

Project Leader

• Participated in client and team planning meetings in conjunction with preparing supporting detailed Business Requirement and Technical Alternative documents including system flow diagrams.
• Analyzed cross-platform projects and maintain a positive working relationship with our system partners.
• Researched new and existing software tools in order to evaluate solutions for legacy system upgrade/replacement.
• Prepared status document which is used as a guide for project planning, strategic positioning of resources and reporting progress to the client community.
• Monitored multi-platform applications per Service Level Agreements and oversee the Support mail id.
• Conducted bi-weekly staff member 1:1 sessions and improve staff results by acknowledging issues and opening the lines of communication.
• Coordinated and track holiday scheduling information with the appropriate application areas.
• Attended the ESI-Software Project Management course.

Senior Software Engineer

• Supported Year 2000 efforts by attending IS support group discussions and prepare system I/O documentation.
• Participated in client meetings to identify system requirements for Property systems enhancements.
• Coordinated Service Level Agreement measurement activities.
• Attended relevant client/server, DB2 application programming and DB2 DBA courses. Provided superior production support services for Property applications.

SUBMEPP Government contract

Confidential

Project Leader/Management - Senior Database Systems Analyst

• Responsible for the overall success of projects -- plan development activities, monitor project completion and report project status to IS director.
• Developed business and end-user systems requirements for enhancements to existing and new application development.
• Functioned as a Point-of-Contact for client interaction during design and implementation stages.
• Managed work and information flow of a team of 6 programmers by providing technical expertise, training, analysis and code reviews.
• Constructed detailed program specifications.
• Performed functional and integration testing procedures.
• Prepared IS service request time/cost estimates and documentation.
• Acquired Security Clearance

Confidential

Senior Programmer/Analyst Cobol/IDMS

• E3TRIM - inventory ordering system.
• - Analyzed the current system procedures for handling purchase orders batch, on-line data entry .
• - Created a group of files containing vendor and order information for upload and download to the AS/400.
• - Altered and compiled AS/400 CL code.
• - Processed AS/400 files and scheduled job submissions.
• Created a food service product guide for laser printer output.
• Changed the layout of the unit pricing labels in conjunction with Mainframe systems and purchased software.
• Developed Shurfine product movement sales history reports.
• Started an upload/download process for the Roadnet Distribution package.

Confidential

Programmer/Analyst - Consultant assigned to Mack Trucks, Inc. Cobol/IDMS

• Systems experience in manufacturing projects including Bill of Material, Retail Delivery, Assembly Management, and Hagerstown Manufacturing Resource Planning.
• Restructured/designed programs to reflect significant cost savings without heavy database access.
• Applied new standard of deadlock/restart logic to IDMS batch programs.
• Developed a series of programs which download Bills of Material for printing of the customer service manual.
• Produced ADS/O screens for Assembly Management which communicate immediately through batch DRS print facilities to specific/multiple laser printers.

Confidential

Programmer/Analyst Cobol/IDMS

• Marketing division systems experience which involved logical data design, data flow diagramming and normalization of the Expert Systems/Engineering development project.
• Systems experience in manufacturing - Inventory - which included the preparation of end user documents, analysis and recommendations of converting E/1 systems to IDMS.
• Created detailed programmer specifications and performed coding.
• Assisted in the training of new employees.
• Attended Mack skills training programs.