SUMMARY:

• 7+ years of Work experience in Information Secuirty Space comprising Identity Access Management, Identity Governance, Identity Federation.
• Very good understanding of Identity Management Solutions, Identity Governance, Federation Protocols, Data/Communication Networks and Scripting - developed through work experience, professional
• Extensive work experience in the design,implementation and testing of enterprise wide security applications using CA Single Sign-On(SiteMinder), CA Identity Suite,CA Identity Manager, CA Identity Governance, OpenAM,Sun One LDAP Directory, PING Federate,Active Directory Federation Services and other Oracle/IBM products on Windows, Unix and Linux.
• Proficient in Installation, Configuration, Deployment and Administration of various products like CA Single Sign-on(SiteMinder),CA Identity Manager,CA Identity Governance,OpenAM,Oracle Identity Federation,Active Directory Federation Servcies,PING Federate.
• Good Knowledge on CA Directory,Oracle Access Manager.
• Expertise in Integrating various web applications withSingle Sign On.
• Experience in working with multi cookie domain for single sign-on configured cert based authentication in siteminder.
• Involved in various Siteminder,Webagent upgrades Siteminder 6.0 to R12, R12 to R12.5.
• Good Experience in using Policy Server tools XPSExplorer,XPSExport/Import.
• Excellent trouble shooting skill setincludes verifying variousweb agent and Siteminder logs and monitoring the health of the environment using One View Monitor.
• Configured 150+ SP Federation Connections with CA SiteMinder as IDP.
• Expertise in setting up SAML Federation Services and troubleshooting issues using tools like SAML Tracer, Live HTTP Headers,IE Headers, SAML Debugger.
• Integrated SAML Federation with Leading partners AWS, Microsoft Office365 using CA SiteMinder,OIF ADFS IDP’s.
• Good Experience in using Windows Powershell. Managed ADFS,Office365,Azure Federations using Windows Powershell.
• Implemented Identity Federation Features such as ARTIFACT Binding, POST BINDING,Attribute Query, SOAP Binding, Signing/Encryption of Assertions,NameID Management.
• Involved in upgradtion of CA Identity Manager Solution. Managed User Identites using CA Identity Manager Solution.
• Integrated CA Identity Manager with various endpoints like Active Directory,CA ACF2,Lawson system.
• Implemented business logics using PolicyXpress in CA Identity Manager.
• Experience in creating Admin tasks, Admin Roles,Admin Policies,Provisioning roles,Account templates. Enabled Strong and Weak synchronization in the account templates.
• Customized Profile Screens for the admin tasks as per the customer requirement.
• Good Experience in using Provisioning Manager and ConnectorXpress.
• Implemented Self Service tasks,Password Management in CA Identity Manager Solution.Configured and Validated Password Synchronization agent on domain Controller.
• Implemented Role based access control.
• Customized/Branded user self-registration pages within CA Identity Manager.
• Leverage CA IDM Solution to implement Customer Business Logics which in turn facilitate customer end user needs. Implemented Bulk tasks using Bulk Load Client.
• Good Understanding on Optimizing CA Identity Manager Solution.
• Troubleshoot Identity Manager issues by verifying IDM logs,Provisioning Server,Connector Server logs.
• Good Experience in Identity Governance Administration.
• Setup the Campaigns and Generate the reports in Identity Governance.
• Good Experience in Creating PoC and Setting up the Demo Enironments for the Customer.
• Good Experience in generating the SSL s using OpenSSL.
• Ability to think logically and use analytical skills to succeed in diverse technical & business environments.

TECHNICAL SKILLS:

Scripting/Languages: Java

Operating Systems: Windows 2003/2008/2012 , UNIX (Red Hat, Solaris, Linux).

Products: CA Single Sign-on(SiteMinder),CA SPS,CA Identity Suite,CA Identity ManagerCA Identity Governance,OpenAM,Oracle Access Manager,OracleIdentity Federation,PING Federate

Federation Protocol: SAML1.1,2.0, OAuth2.0,OpenID,WS-FED

Directory: SunONE /Oracle Directory server 6x/7x, CA DirectoryActive Directory,OpenLDAPRDBMS (Database): Oracle 10g,11gR2, MS SQL Server

Protocols: TCP/IP, HTTP, HTTPS, FTP, UDP, SMTP and SOAP.

Web Servers: Apache 1.0.5x, 2.x, IHS, IIS6,7.X, iPlanet/SunOne Web server 5x/6x

Application Servers: Tomcat, Jboss, Oracle WebLogic,IBM WebSphere

WORK EXPERIENCE:

Confidential

Environment: CA Identity Manager,CA Identity Governance,CA Identity Suite, IBM WebSphere Application Server, Linux, Microsoft ActiveDirectory, CA Directory ServerR12, MySQL, AWS, Windows Server 2012

Responsibilities:

• Involved in developing the migration strategy.
• Install and Configure Identity Manager in Pre Prod and Prod Environments.
• Taking Backup of Existing IDM r12.5 Data.
• Install CA Directory and Configure High availability with multiwrite replication setup.
• Install Provisioning Server on Primary, Secondary Machines.
• Import Existing Data to r12.6 IDM.
• Perform the Post Migration which includes the steps like Recompile Custom code,Update Role definitions,Update System Manager Role,Update Existing Account Screens,Create New Account Screens,Enable Preventative Identity Policies.
• Troubleshooting various issues in Pre-Prod and Prod environment by analyzing the logs.
• Manage Endpoints like Active Directory, CA ACF2,Lawson System.
• Assisted Customer in updating the existing Organization RBAC Sheet.
• Add and test Provisionig roles for the existing users.
• Implement Business logics using PolicyXpress.
• Monitoring CA Identity Manager Architecture across the Enterprise. Scheduling CA Directory & IDM Environment Backups.
• Effectively report issues, risks, and timely status to the Manager.
• Setup Identity Governance in Test and Prod Environments.
• Worked Closely with Customer in getting the user data from various endpoints.
• Coordinate with Off Shore teams to perform the Data Modelling.
• Create the s Campaigns like Manager Employee,Manager Permission and demo to the customer.
• Analyze customer requirements and integrate them with Governance Solution.
• Troubleshoot the issues
• Generate OOTB and Custom reports.
• Setup Weekly Status Call with Customer on discussing the project status.
• Provide assistance to junior engineers with application related questions.
• Proactive system monitoring functions, real-time responses, and performance tuning.
• Perform root cause & system log analysis
• Maintain operational support and related system documentation
• Ability to work on multiple initiatives outside the scope of the day to day activities

Confidential

Environment: Active Directory Services, Active Directory, Windows Server 2012,AWS,ADFS Proxy,Windows Powershell.

Responsibilities:

• Setup ADFS Environment in Test and Prod Enironment.
• Configured and Tested ADFS Federation to the AWS Console.
• Troubleshoot the issues.
• Configured Custom rules in ADFS based on the Customer requirement providing more security.
• Configured and Tested for Internal and External users.
• Managed ADFS Federations using Windows Powershell

Confidential

Environment: CA IDM,CA Siteminder, CA SPS,CA IdentityGovernance,Jboss,Linux,AD,CA Directory,MySQL, AWS, SAML 2x, SOAP,Apache,IIS.

Responsibilities:

• Involved in Setting up of CA SiteMinder on AWS cloud.
• Involved in Configuring High-Availability for the SiteMinder stack in AWS.
• Configured CA Directory as Policy Store.
• Configured Realms,Rules,Domain Policies, responses in CA SiteMinder.
• Troubleshoot issues realted to the applications integrated with CA SiteMinder.
• Installed and Configured CA Identity Manager r12.6
• Integrated and managed different endpoints like Active Directory, SQL, SaaS endpoints like Salesforce and Custom Oracle Apps.
• Created different roles like Admin roles and provisioning roles for RBAC.
• Integrate role-based access control, user accounts provisioning with existing applications
• Onboard new-hire and rehired employee. This process is initiated by the incoming feed from SAP, bulk loaded into IM ending with an active user account in the user store
• Implement Password Synchronization, and service definition for target systems.
• Customized user self-registration pages within CA Identity Manager.
• Customized Employee, Contractor request forms.
• Develop Approval & Escalation Workflow for Employees, Contractors.
• Created services for accessing applications.
• Integrated custom connectors using Connector Express.
• Automated backup of IDM environment using scripts.
• Administering CA Identity Governance. Setup Campaigns.

Confidential

Environment: CA SiteMinder R12.5,CA SiteMinder R12.52,CA SPS,CA IdentityMinder,Sun LDAP 6.3,CA Directory, MS SQL Server,Linux,CA API Gateway(Layer7),JBOSS, SCIM 1.1,REST, SOAP Webservices,Apache.

Responsibilities:

• Set up Complete CA Site Minder Environment on AWS Cloud.
• Enable Partnership with Leading SaaS Partners.
• Involved in presales, discovery calls with the Cloud SaaS partners.
• Upgraded SiteMinder 12.5 to 12.52 as some of the federation features are not supported in 12.5 .
• Attended weekly customer status call.
• Configured 150 + SAML SaaS SP’s with CA Site Minder IDP.
• Configured Federated SSO between SiteMinder12.5 (IDP) and SaaS Partners.
• Integrated SAML Federation with Leading partners AWS, Microsoft Azure.
• Involved in configuration of Microsoft Office365 for Single Sign-On for various Office365 services like Lync, Outlook and Dynamics CRM Online.
• Involved in configuration of Microsoft Office365 using command line in Windows Azure Active Directory PowerShell.
• Implemented Features like SSO, SLO, ARTIFACT, POST, SOAP Bindings, Signing/Encryption.
• Configured OAuth Federation with leading IDP’s Google, Facebook.
• Analyzed FWS trace logs, SAML debugger such as SAML tracer, IE Headers and solved the issues.
• Interacted with Customers in troubleshooting the federation related issues.
• Test, Validate and Certify the Configured Federations using 8KMiles MISP™.
• Deliver Conformance reports using 8KMiles MISP™ for each of the SaaS partner.
• Establish Integration of SaaS User Provisioning Partner Applications, test, validate and certify the integrations.
• Integrations to focus on aspects of identity provisioning, i.e., the ability to create, modify, and delete user accounts in the target applications.
• Integrate CA SaaS partner via one of the two methods: using the CA IM SCIM, Connector or using REST-based Web services facilitated by CA L7G.
• Discovery on the SaaS partners for support of SCIM protocol.
• Interacted with the partners to get the requirements to implement provisioning.
• Identified the SaaS partner REST/ SOAP Web Services endpoints, generated Request/Responses and responsible for Creation of SCIM schema for the endpoints which does not support out of the box SCIM protocol.
• Map endpoint attributes to the CA Identity Minder attributes and design endpoint account screens in ConnectorXpress.
• Deployed the connectors through the ConnectorXpress.
• Performed and validated the CRUD operations on the endpoint accounts.
• Troubleshoot the connector related issues in the CA Identity Minder.
• Analyzed the problems and found the cause of the problem.
• Responsible for developing of JMeter LDAP Testing Script.

Confidential

Environment: Oracle Identity Management 11g, Oracle WebLogic Server, Linux, PingFederate, CA

Responsibilities:

• Install and Configured CA SiteMinder, Oracle Identity Federation, PING Federate in Linux Environments
• Installed and configured Webagent on apache, IIS web servers
• Troubleshoot issues encountered during the installation.
• Integration of new applications with Siteminder.
• Creation of Policy Server objects like rules, realms, responses, etc.
• Implement SAML2.0 Federated SSO between 8KMiles IDP to V.me SP
• Implement SAML Federation between 8KMiles Bank IDP to Confidential V.me SP using Oracle Identity Federation and PING Federate
• Configured Federation Profiles ARTIFACT Binding, SOAP Binding, User Consents and Signing/Encryption to provide secure federation access between two entities
• Configured federations between 8KMiles Bank IDP to Confidential V.me SP in Confidential QA environment and ZDR environments.
• Co-coordinate with Confidential Devops team to configure the federation setup to V.me SP and Troubleshoot issues.
• Onboard new Mock Banks in Sandbox Environment and moving to the Production
• Customized FCC login page codes according to client requirements
• Implement SAML2.0 Federation setup changes in sandbox environment before going to Production.
• Involved in Production Support and Issue maintenance.
• Fixing bugs that arise during testing phase

Confidential

Environment: CA Siteminder, Sun one Directory server, Apache 2.x, IIS 6.0

Responsibilities:

• Installing and configuring the CA Siteminder in all the environments (Dev, QA and Prod) in Solaris Platform.
• Installing and configuring Web agent in IIS and Apache webserver.
• Involved in SiteMinder Upgrade.
• On-boarding new applications in Siteminder and providing authentication and authorization services based on application team requirements.
• Configuring SSO between applications which are integrated with Siteminder.
• Installing and configuring the Sun one Directory server in Solaris platform.
• Managing user entries by adding, modifying and deleting user records using the LDAP commands.
• Coordinating with the application teams and onsite coordinator in delivering the work.
• Extending schema by adding new objects classes and attributes to the schema for sun one directory server.
• Troubleshooting issues related to Policy server and web agents.
• Troubleshooting replication issues and customer related issues in LDAP.
• Configuring new suffix and importing the indexes and data in Sun one directory server.
• Configuring Referrals to the Consumer instances to redirect the modify requests to the master instances.

Confidential

Environment: CA Site minder, Sun one Directory server, Apache 2.x, IIS 6.0

Responsibilities:

• Integrating new applications in Siteminder and working with application teams in requirements gathering and configuring the web agent.
• Providing support for the applications integrated with Siteminder and sun one directory server.
• Configured Single sign on (SSO) between the applications which are integrated with Policy server.
• Configure cookie provider between applications which are in different domain in the same network.
• Installing and configuring the Sun one Directory server in Solaris platform.
• Configuring new suffix and importing the indexes and data in Sun one directory server.
• Creating and Maintaining user and group profiles in Sun one directory server
• Troubleshooting replication issues and customer related issues in LDAP.
• Analyze Siteminder and LDAP logs for performance optimization.
• Configuring the ACIs for the application service accounts to provide read/modify permissions on the particular node in sun one directory server.
• Configuring Referrals to the Consumer instances to redirect the modify requests to the master instances.
• Coordinating with the application teams and onsite coordinator in delivering the work.
• Meeting the SLA’s for the categories of incidents.