SUMMARY:

• More than 15 years of experience in all aspects of enterprise IT disciplines. Prior position, as Enterprise Architect, was directly supporting federal government CIO and Chief Architect, providing subject matter expertise in the areas of enterprise architecture, software development, system integration, IT infrastructure, IT operation, IT security, and development process modernization.
• A solution architect and technical architect for more than 15 years, having expertise in broad technology areas such as SOA, ESB, BPM, EAI, ERP, DW, BI, ETL, App Server, Portal, PKI, IAM, SSO; providing clients with recommendations and guidance in the design, development, implementation and management of products and solutions. Also architected many software systems and integration systems, using cutting - edge technologies or architectures.

TECHNICAL SKILLS:

SOA and Application development/integration technology: ESB, Oracle Service Bus(OSB), Oracle Service Registry, Oracle BPM, Oracle SOA Suite; XML, XSD, WSDL, SOAP, XMLSpy; J2EE, EJB, Struts, Ant, JUnit, UML and IBM Rational Software Architect (RSA); Business Modeling using IBM WBM, BPMN; IBM Rational ClearCase, ClearQuest, and PerformanceTester, SoapUI; Application Server: WebLogic, WebSphere, JBoss; RDBMS: Oracle, MS SQL Server, Sybase; IBM WebSphere ESB, DataPower, webMethods, Tibco(EMS, BusinessWorks,etc); Portal technology, portlet, Oracle WebCenter, etc.

IT security, infrastructure, and operation: LDAP directory service, Identity Management, Authentication, SSO: Oracle IAM, OAM, OAAM, OIM, OID, OVD, OIF, OHS, WebGate, SiteMinder, Tivoli IAM, Firewall, VPN, PKI, SSL/TSL, x.509 certificates; ArcSight, Xceedium, Fidelis; Clustering, Load Balancing, Solaris, Linux, LAN/WAN protocols and technologies: Router, Switch, VLAN, Wi-Fi, Citrix; Metis, etc.

EA methodologies, frameworks, and tools: FEA/FEAF, DoDAF, TOGAF, Zachman, Spewak; FSAM; Troux/Metis;

Business Intelligence (BI) solution architecture: Data warehouse design and development; ETL design and development; Confidential Enterprise (BOE) system architecture design, system upgrade/migration; other Confidential products include: Crystal Report, BO Reports, Designer, Supervisor, WebIntelligence, Xcelsius, Data Integrator (DI), Universe, Dashboard, Performance Manager/Balanced Scorecard.

Other programming languages: C/C++, Ada, .Net, PowerBuilder, CSS, JavaScript, AJAX, Perl, SQL. Software project management, development life cycle and CMMi.

PROFESSIONAL EXPERIENCE:

Confidential

Oracle Consulting/ Sr. Principal Consultant

Responsibilities:

• Worked as Oracle Security and Identity Management Architect
• Provided security solutions in Cloud with architecture, design, and implementation using Oracle Identity Management (IdM) Suite
• Hands on implementation, configuration, integration, and deployment in HA (High Availability) configuration with various Oracle IdM 11g components, including Oracle Identity Manager, Oracle Access Manager (OAM), OID, OVD, OAAM, OIF, as well as Oracle SOA Suite, WebGate, Oracle Web Tier (OHS), and Microsoft AD
• Implemented Single Sign On (SSO) solution and PIV (HSPD-12) authentication solution
• Implemented application on-boarding solution, such as integrating OBIEE
• Worked in an Agile Scrum environment
• Designed a secure messaging solution architecture in Oracle infrastructure
• Developed PMRF BIS Security Requirements Document
• Generated an architecture and design that provides adequate security controls to address the detailed PMRF BIS security requirements
• Installed, configured and integrated Oracle Identity Management Suite Products, such as OAM, OIM, OID, OHS, Webgate 11g in Development, QA/Test and Production environments
• Integrated OAM with OID for identity information
• Deployed OAM Webgates to target application servers
• Integrated OAM with OHS to protect Oracle Forms and Reports
• Configured CAC certificate authentication and integrated with Oracle Single Sign On (OSSO)
• Provided Test Plan and Disaster Recovery Plan; provided performance tuning

Confidential

Sr. Principal Consultant

• Designed Fusion Middleware security architecture integrated with OAM/OIM.
• Oversaw the development and deployment of the project.
• Worked with the client to understand the client’s vision and the business needs and formulated the concise requirements and system functionality to meet those needs. Produced plans and communicate with the client.
• Worked with IT developers; identified each service, its providers and consumers and the message between them; created a conceptual model.
• Created a concrete design based on the conceptual model. Broke down large system requirements into manageable parts. Explained the structure to the developers and helped them to build it.

Confidential

Senior Architect

• Veteran Relationship Management (VRM) Program:
• Provided architecture support; helped to build prototype for enterprise data service reference architecture (DSRA) with Agile Methodology using NIEM IEPD, ESB (IBM WebSphere Message Broker), BPMN, and Web Service.
• Streamlined VRM segment architecture following FSAM methodology, restructured its ‘line of sight’ in baseline architecture, target conceptual solution architecture, and transition plan.

Confidential

Enterprise Security Architect

• Directly supported chief security architect and helped to create USCIS Transformation Program’s ($500M+) enterprise security architecture: Identify and analyze enterprise security risks, following FEA-SPP methodology and ISO security framework; Articulate security architecture/solutions to comply with FISMA/DHS Security Policies, as well as other NIST security publications and guidance; Provide high-level design and low-level design using RSA/UML in the areas of infrastructure security, SOA security, messaging security/data encryption/digital signature, application security, security information and event management (SIEM), and data loss prevention;
• Also designed and implemented several security solutions such as: identity management/authentication/access control/single sign-on (SSO) using IBM Tivoli family products (TIM/TAM/LDAP/TDI/TFIM/etc), including installation/configuration/data feed/policy creations/integration/etc; SOA/XML Gateway implementation using DataPower, including Web Service Proxy/Multi-Protocol Gateway/Tibco EMS integration/SAML token/AAA Policy/and more; SIEM solution by ArcSight, including architecting overall security incident management solution/flex connector design and development/Logger configuration and management/content authoring/complete integration for Connectors/Logger/ESM;

Confidential

Senior Strategist

• Air Force DCAPES Net-Centric Migration Project: provided service-oriented analysis; served as SOA expert on related technology/architecture/design/products to provide guidance and advice; helped to create DCAPES Net-Centric Migration technical proposal (including to-be architecture, migration plan and implementation plan) and successfully bid the project; worked with engineering team to define and refine SOA solution architecture that works with NCES and conforms to DoD Net-Centric Data Strategy and DoDAF. Technologies include AquaLogic Service Bus, AquaLogic Service Registry, AquaLogic BPM.
• US Army Enterprise Solutions Competency Center (ESCC), PM AcqBiz and Army SOA Foundation Lab: supported security services in Army SOA stack; provided proof of concept in enterprise identity management system based on attribute-based access control (ABAC); evaluated various identity management/federated identity management solutions, and access management solutions; implemented PM AcqBiz portal SSO solution with CAC/PIV card integration and AKO Authentication integration, using SiteMinder server/agent, BEA WebLogic server, WebLogic Portal, AquaLogic User Interaction (ALUI), and Identity and Access Management (IAM) products from Oracle (OIM,OAM,OID), CA, IBM.
• Supported USCIS CIO Office: supported Enterprise Architecture (EA) effort on various reference models, governances, and specifically on enterprise application architecture and SOA architecture; directly supported chief security architect by providing IT security related consulting services, including risk assessment, FISMA and other security policies compliance, certification and accreditation, security architecture design at both infrastructure level and application level, security products and solutions evaluation, security services implementation; provided technical security proposal for USCIS Transformation Program using Sun Identity Management and security product family.

Confidential

Senior Consultant

• US DOJ Trustee: played a leading role in analyzing client’s business needs, architecting and designing data marts, designing and developing ETL processes, as well as various universe design, reports design and development, performance management application development. The project also included various hardware and software architecture design, security design, etc.
• Other significant projects include Hospital which involve various technical areas such as data warehouse design, BI solution design, ETL process design, universe and reports design, Dashboard/Scorecard design and development, etc.

Confidential

Enterprise Architect

• Direct, on-site support to ATF Chief Enterprise Architect: Led analysis and baseline of existing business processes and information systems; Based on popular EA frameworks such as FEAF, TEAF, C4ISR, led conception and development of ATF “to-be” Enterprise Architecture, including business, data, application, and technology architectures; Led modeling of ATF EA in Metis software; Chair Application Architecture Working Group and participate in Architecture Working Group meetings to continue improvement of ATF information systems to provide superior services to agents and citizens; Examples include data warehouse strategy development; evaluation and design for software scalability and performance, network, storage, security; ROI analysis, capital investment management; Initiated prototypes or implementations of various technologies or processes, such as PKI, Smart Card, Portal, Single Sign-On, J2EE Component Based eGov application architecture, Total Quality Assurance process, TRM, SDLC, etc; Provided training to government employees and vendors on various new technologies; Provided recommendations and guidance in the design, development, implementation and management of products and solutions; Reviewed various project artifacts; Researched and recommended new emerging technologies and envision their business applications.
• Supported OCIO at Transportation Security Administration (TSA) in Department of Homeland Security: Initiated IT survey in a pilot program at BWI Airport; Initiated IT infrastructure architecture study at BWI; Reviewed BWI infrastructure design; Participated in TSA steering committee for IT infrastructure architecture.

Confidential

Software Architect

• Responsible for setting technology direction; managing, architecting, designing, and developing multiple Internet-based messaging softwares using state-of-art technologies such as J2EE, WebLogic, LDAP, COM+, UML/RationalRose, Rational Unified Process, Linux, IMAP, etc.
• Led development of HotOffice in its full life cycle; designed software architecture and system architecture. Used technologies such as EJB, J2EE design patterns, .Net, LDAP, XML, Microsoft SQL Server, IIS, WebLogic, Linux RedHat 7.1, Windows 2000 Server.