SUMMARY

• Eighteen years of complete software development life cycle experience with Microsoft development technologies (C#, VB.NET, ASP.NET), BPM technologies, ServiceNow (Cloud Systems), ERP Systems and enterprise standard databases (MS SQL Server and Oracle).
• Nine years of experience as a Technical manager, managing development teams.
• 5+ years of experience in application security architecture / security management with expertise in applying secure software development methods within the SDLC
• Responsible for Architecture, Security analysis and mitigation, Design and Development.
• Proficient with cross platform application integration. Experienced with SAAS/PAAS, large cloud based system architecture and development.
• Implemented Vera cybersecurity and data security platform dat is enabled the organization to digitally encrypt and secure data and files at rest and in transit.
• Responsible for application and data security. Responsible for Threat Modelling of the application. Used Microsoft Threat Modelling Tool 2016 which is based on OWASP recommendation.
• Experience with OWASP top 10 and how to protect against them
• Experience in conducting Static application security testing, security code reviews in C#, VB.net, JavaScript, HTML and SQL Server, PL/SQL
• Provided expert - level guidance to security analysts, testers and development team members during application security assessments.
• Involved in Application penetration testing which includes Autantication, Authorization, Session and input validation.
• Used IBM App Scan Enterprise Edition 9.0 for Dynamic application security testing for SQL injection, Autantication and Session Management, X Site Scripting and other low level security issues like content type/security host headers.
• Used Microsoft Crypto API to encrypt and store application passwords.
• Good understanding of network and data security during transmission using SFTP/SSH, PGP Encryption, VPN Tunnels
• Used SSL Labs to verify the strength of SSL cert and to know if our external facing DNS are intactfrom protocol security and CIPHERS perspective.
• Used PGP (2048 bytes RSA key) based encryption to secure data exchanged with vendors / clients.
• Implemented SSH using private/public key for data transmission replacing FTP.
• Experienced with Cloud computing SAAS, PAAS and IAAS. Worked with MS SQL Server on Azure.
• Responsible for SSO using ADFS SAML 2.0 and defining ACL’s to control user access and security to ServiceNow data
• Responsible for resolver groups in AD and their import to ServiceNow using LDAP
• Involved in PeopleSoft HRMS security design and security administration.
• Responsible to implement security for new interfaces, new user access and user termination requests. Involved in setup of Phire workflow. This tool is used in moving PeopleSoft objects across environments.
• Well experienced leading development teams, onsite, offshore and near shore. Managed and provided technical direction to cross functional teams both internal and external dat includes Dev, QA, Business analysts and Implementation partners/vendors
• Involved in Strategic planning, direction and coordination of software projects as per business needs.
• Involved in defining business case, scope, resource requirements, cost assessment for software and resources, project timelines, creations of Statement of work, recruiting and hiring of development resources.
• Working knowledge of DevOps. Partnered with infrastructure and Enterprise Architecture teams and involved in standardization of tools and processes used to achieve DevOps
• Implemented Agile Scrum Methodology throughout the project portfolio to improve communications between development, QA and Business.
• Participated in Agile transformation and coordinated Agile adoption across multiple teams in the US and Internationally.
• Served as Scrum Master. Conducted daily stand-ups in two-week Iterations, facilitated sprint reviews, retrospectives, and sprint planning. Led strategic Release Planning and tactical Iteration Planning sessions. Served as Product Owner on certain projects.
• Responsible for Application support and ensuring dat SLA’s are met consistently.
• Implemented various COTS applications at Viacom.
• Delivered cost effective and efficient solutions dat are in agreement with standards defined by best practices and ITIL. Ensured alignment of and technology strategy with company's business needs. Primarily responsible for IT Services Management (ITSM) and technical Architecture of ServiceNow Platform at Viacom.
• Involved in road mapping and delivering large multi-year projects. Involved as ITSM SME and Technical Lead. Implemented ServiceNow at Viacom globally across 40 different countries where Viacom does businesses. Phased out in span of 4 plus years.
• Responsible for ensuring SOX and Security compliance for applications.
• Primary contact for Disaster Recovery from applications perspective to support mission critical applications in case of disaster dat requires implementation of Business Continuity Plan.

TECHNICAL SKILLS

GUI: C#, VisualBasic.NET, BPM (PNM Soft), ServiceNow (Aspen, Berlin, Calgary), People Tools, Salesforce, Visual Basic 6.0

Web Technology: MVC, ASP.NET, ASP.NET WEP API, Web Services, WCF, Visual Studio. NET, XML, XSL, HTML5, HTML & DHTML, XSLT, SOAP, IIS/MTS, ASP, COM/DCOM/COM+, ADFS, ADSI/LDAP, SharePoint Server, BizTalk Server

Script Tools: .NET, ServiceNow Scripting, People Code, JavaScript, AngularJS, VBScript, Jscript, Win Batch for Windows, CSS

Database: MS SQL Server, Oracle, MS-Access

Languages: VB.NET, C#, VB 6.0, VBA, SQL, T-SQL, PL/SQL

Tools: AtTask, Jira, IBM App Scan, SVN, TFS, MS CRM, PGP Encryption, MS Visio 2010, MS Project, MS Visual Source Safe, Microsoft Threat Modeling Tool 2014, SUMO Logic security logs

Reporting Tools: Microsoft Reporting Services 2000/2005/2008, Crystal Reports

Deployment Tools: Wise Installation System

Misc Technologies: SAML, ADFS, Azure, AWS, Service-oriented Architecture (SOA), Single Sign

PROFESSIONAL EXPERIENCE

Confidential

Technical Manager Corporate and Enterprise systems

Responsibilities:

• Responsible for Design and development of application layer in the form of .net assemblies and data layer in the form of sql stored procedures and functions.
• Design and development of .net aspx web pages.
• Developed stored procedures for user registration and user maintenance.
• Developed classes in .net to extract employee details from Viacom Active Directory.
• Developed classes to implement user security and role based user access to the system.
• Database design, stored procedures, triggers, cursors and DTS package in MS SQL Server 2000/2005 to facilitate data transfer for user account maintenance.
• Developed java scripts for client side validations.
• Developed reports for tracking users, number of courses taken, hours of course taken
• Developed .net assemblies for creating feeds for Active directory access control.
• Developed intranet site for generating VIN (VIACOM IDENTIFICATION NUMBER) for new and existing VIACOM employees using ASP.NET.
• Responsible for developing Benefits access repository system BARS WEB (Intranet Web Reporting system) using ASP.NET.
• Responsible for design and development of classes for employee eligibility, remittance and billing modules for benefits Group Long Term Care (GLTC) Insurance - CNA (VENDOR), Group Universal Life (GUL) Insurance - Prudential Financial (VENDOR).
• Understanding and developing encryption/decryption dll using PGP5.5 Software Development Kit (PRETTY GOOD PRIVACY).
• Responsible for developing common core libraries dat are used across all of the benefit enrollment system for encryption, sftp, email, zip and data access.
• Developed and cloned automatic data control, exception reports using .net and crystal reports and mails them to respective divisions.
• Responsible for creating bcp scripts.
• Deployment of .net assemblies and testing. User training and implementation.