SUMMARY:

• Having 8+ years ’ experience in installing and configuration of CA SiteMinder Policy Servers and Policy Stores to utilize Sun One Directory Server (LDAP) as the user and Policy repository on Sun Solaris, AIX and Windows.
• Extensive experience in installation and maintenance of different SiteMinder Web Agents on HTTP Web Servers like IIS, Apache, Sun One Web Servers .
• Proficiency in configuration of SiteMinder authentication forms.
• Highly experienced in SAML2.0 POST federation using CA SiteMinder 6.x, R 12.x and R12.5x and also setting up both IDP's (Identity Provider) and SP's (Service Provider)
• Experience with various SiteMinder upgrades. Upgrade to SiteMinder R12.52 is a plus
• Experienced in creation of Entities and partnerships ( IDP to SP and SP to IDP ) under Federation in SiteMinder .
• Experienced in using PING Identity Solutions for performing the federation aspects in large enterprise networks.
• Expertise in Installation, Configuration, Deployment and Maintenance of SiteMinder Components like the Policy Server, Web Agent, ASA Agents, TAI Agents, Session Store, Policy Store
• Experienced in implementing IDP - initiated and SP-initiated SSO and SLO using different authentication methods in PingFederate .
• Configured Agentless , Open Token adapters with query parameter and cookie for inbound and outbound flow.
• Experienced in implementing SSO between PingFederate and SiteMinder applications using WAM adapter in PingFederate for Seamless user experience with SiteMinder protected applications.
• Installed and configured IWA adapters for Kerberos authentication.
• Implemented cross-domain functionality with multiple domains in FDC for international users using Kerberos authentication.
• Configured composite adapter using IWA, WAM and html form adapters with failover use cases for international users and local users.
• Involved in meetings with partners to understand their requirements and implement SSO with SAML 2.0 and given ideas from architectural view.
• Expertise in Capacity Planning and Performance Tuning of Sun One DS and SiteMinder .
• Experience with using Secure Proxy Servers and Reverse proxy servers.
• Experience in configuration of Site Minder Authentication Schemes, Policies, Realms, Rules and Responses.
• Experience in installing different J2EEApplication Servers like WebSphere , JBoss , Tomcat and WebLogic .
• Experienced in User Provisioning, Self-Registration, and Delegated User Administration.
• Experience on user management like account changes, password management and delete or freeze accounts.
• Worked with Application Team for SiteMinder Web Agent deployment as well as troubleshooting e-commerce applications for integrating SSO .
• Implemented Load Balancing and Failover to improve the performance of Policy Sever .
• Implemented Logging and Auditing system for SiteMinder to track and identify user activity as well as acquire intrusion reports of unauthorized attempts at access.
• Strong knowledge of Identity Management Systems like MIIS/FIM.
• Expertise in UNIX shell scripting. Experience in programming using Java, JSP, Servlets, XML and HTML .
• Hands on experience in designing, deployment, disaster recovery, fine tuning, replication and maintenance of Sun One Directory Servers on Solaris and Windows platforms.
• Expert in maintaining, troubleshooting issues in production environment.

PROFESSIONAL EXPERIENCE:

Confidential, San Diego, CA

Access Management consultant

Responsibilities:

• Upgraded CA SiteMinder 6.0 SP 3 to SiteMinder 12.52 SP1 and resolved various issues that arise while upgradation on a fully UNIX based architecture supporting an application service "Portal" provided by Confidential for 200+ customers worldwide.
• Installed and configured User Authentication Stores and Policy Authorization Stores using CA Directory.
• Installed and configured all the runtime machines needed all over the network.
• Worked on installing and setting up jdk-7u60-linux-i586, JCE jdk7 for policy servers and JBOSS 6.1.0 and jdk for web agent base.
• Worked in integrating various web applications with IDP and SP initiated Single Sign On; Setting up SAML federated services, certificates, and assertions
• Worked on Installation, Configuration, Deployment and Maintenance of SiteMinder Components like the Policy Server, Web Agent, ASA Agents, TAI Agents, Session Store, Policy Store
• Installed and Configured Web Agent on Apache 2.2 web servers and configured the Proxy Connection with Tomcat Application Server.
• Installed Web Agent Option pack for configuring the Federated Security Services and Webservices for Assertion generation and user identity between the partner sites.
• Prepared and deployed Webservices for the Web Agents configured.
• Created System Objects, Policy Domain Objects and Global Objects in SiteMinder Policy Server to protect the applications by validating the user against the user store on Directory Server.
• Worked on putting together three environments for the project: Dev, Staging and Production.
• Performed tuning for SiteMinder along with the LDAP for better response tine, Low Latency and High throughput.
• Helped create strategies for backup and recovery of SiteMinder environment.
• Worked with the team architect to put together shell scripts for a seamless, script-oriented object migration, backup and deployment.
• Assisted in formulating and conducting regular network health checks to monitor the status of the network built and made regular observations and recommendations to the team.
• Worked on Performance tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.
• Monitoring and troubleshooting replication between all servers in LDAP environment.
• Worked very closely with the Lead Architect/VP to resolve a wide range of issues that had risen during the tenure.
• Fulfilled the very tight timeline goal of the client by building and configuring the entirely independent working network of 9 Policy severs, 9 CA Directory Servers, 6 Apache Web Agents in a record time of 5days.
• Acted as one of the primary point of contact and support for all the project steps until the final stream lined cut over was achieved.
• Monitoring and troubleshooting feeds to send / Receive data from / to LDAP servers.

Environment: CA SiteMinder r12.x, Ping Federate8.0, Sun Solaris 10, Windows Server 2003/2008, Microsoft IIS 6.x/7.x, Oracle Database 11g, Apache2.x, Oracle Directory Server 11G, CA Federation Manager, RSA Authentication Manager .

Confidential, NYC, NY

PingFederate/CA SiteMinder

Responsibilities:

• Implemented SSO, SLO and Federation across multiple applications using Ping Federate and SiteMinder.
• Implemented IDP-initiated and SP- initiated SSO using different authentication methods in PingFederate.
• Configured Agentless, Open Token adapters with query parameter and cookie for inbound and outbound flow.
• Worked on VDS integration with PingFederate and SiteMinder.
• Implemented SSO between PingFederate and SiteMinder protected applications using WAM adapter in PingFederate for Seamless user experience with SiteMinder protected applications.
• Installed and configured IWA adapters for Kerberos authentication.
• Experience working with Ping Identity, Ping Federate.
• Implemented cross-domain functionality with multiple domains in FDC for international users using Kerberos authentication.
• Configured composite adapter using IWA, WAM and html form adapters with failover use cases for international users and local users.
• Involved in meetings with partners to understand their requirements and implement SSO with SAML 2.0 and given ideas from architectural view.
• Created policies, realms, rules, responses in SiteMinder Policy Server to protect the applications and validate the users to work under SSO environment.
• Configured SP and IDP connections for Federation across multiple domains using SAML 2.0Post in SiteMinder.
• Analyzed the existing configuration and provided the road map to integrate the CA SiteMinder with several web applications.
• Installed and Configured CA SiteMinder Web Agent on IIS 6.x/7.x, Apache 2.x, Sun One Web Servers.
• Experience in helping the application team troubleshoot errors when integrating with SSO.
• Conduct proactive and reactive performance tuning for Web Agents, Policy Servers, Policy Stores, and User Stores to meet and maintain operational requirements (process, thread, connection, cache)
• Determine the root cause, implement solutions and apply patches to resolve authentication, authorization, and performance issues, as well as provide feedback to CA SiteMinder product bugs.
• Created documentation for Change Requests, Service Requests, and upgrading processes for support purposes.
• Experience in troubleshooting priority tickets with minimum response time.
• Documented technical specifications and procedures for SiteMinder best practices.
• Responsible for taking required signoffs and promoting the code to higher environments.

Confidential, Seattle, WA

SiteMinder Administrator

Responsibilities:

• Upgraded web agents for Apache & IIS web servers.
• Upgradation and migration of Policy Store from Sun One directory server from 5.1 to 5.2.
• Created Realms, Rules, Response and Policies in policy server.
• Provide support on rotation basis and troubleshoot SiteMinder supported applications and User issues.
• Analyzing and troubleshooting SiteMinder operational issues, resolve performance problems, outages, and forecasting for capacity.
• Responsible for providing second level resolution to web Production server issues.
• Responsible for providing second level resolution to application's Production issue.
• Daily activities involve solving the user access issues, application failures and working with the middleware team to provide end to end solutions to customers.
• Co-ordination with the onsite team in action plan and migration activities.
• Monitoring and maintaining all the file systems usage of the servers below threshold.
• Incident Management: Identifying and fixing the issues. Remedy ticket creation to track the incidents in production environment.
• Change Management: Responsible for Changes happening in the infrastructure. Attending daily change calls, analyzing impacts if any and approving changes.
• Handled and owned successfully initiative of Capacity Planning and maintenance of IIOP application.
• Comprehensive Password Policies: Specifies strong password-generation rules on a per-application basis, thereby eliminating weak passwords typically created by users.
• Supporting the user access issues to the SiteMinder protected applications by Coordinating with the application teams for application related issues.
• 24x7 production support.

Environment: SiteMinder 6.x, Sun One Directory Server 5.2, Solaris, Apache, Windows Server 2000, IIS, Tomcat.

Confidential

CA-IAM / SiteMinder Admin

Responsibilities:

• Designed and implemented user authentication, web security and security solutions.
• Configured SiteMinder 6.0 web agents for Apache web server 2.0, IIS 6.0 and Sun One iPlanet Web Server 5.2.
• Created policies, realms, rules, responses to protect SiteMinder resources.
• Configured SAML affiliate agents on the web servers designated for affiliate customers.
• Installed and Configured Web agent on IIS 6.0, Apache 2.0 to implement SSO.
• Created strategies for backup and recovery of SiteMinder environment.
• Performance tuning for SiteMinder to provide better response time, low latency, high availability and maximum throughput.
• Responsible for Integrating Identity and Access management services using Oracle Identity Manager OIM, Oracle Access Manager OAM, Sun Directory Server, Open LDAP.
• Work on User Provisioning, Self-Registration and Delegated User Administration.
• Worked on user management like account changes, password management and delete or freeze accounts.
• Responsible for Preparation, design and review IAM solutions architecture road map.
• Setup reconciliation of users with HRMS systems which was used as source of truth for IM solutions.
• Monitor user activity through one view monitor, error, and other exception reports to ensure security is being maintained.
• Provided level2 support for LDAP, SiteMinder code issues.
• Maintain working relationship with application owners and subject matter experts to determine current and future needs.
• Work on the IR requests and design the policies as per the requirement.
• End to end production support, provided 24/7 support for our internet and intranet applications.
• Monitoring the servers and logs and follow the defined process in case outage.
• Responsible for resolving Issues by interacting with applications team and other network teams when access management assistance required.
• Responsible for documenting the best practices as per client requirements.
• Responsible for taking back up of whole policy store before major updates or configuration change to policy server.

Environment: Sun Solaris, Windows, CA SiteMinder Policy Server 12.x, Sun One Directory Server 5.2, IIS7.0, Apache HTTP server.