David Hanlon Email & Phone Number

London, GB

Zurich, CH

Zurich, CH

• Set up the enterprise authentication capability, defining the team structure and delivery methodology with a focus on agile (sprint and Kanban).
• Managed the architecture and defined the Key Deliverables for the team.
• Designed & delivered the UBS and CS authentication integration patterns, thus enabling CS & UBS employees to access each other's applications.
• Expanded the IDP onboarding self-services portal offering, leading to a 20% increase in IDP adoption away from direct authentication for applications year over year.
• Defined the exit strategy for CS legacy services and how UBS services could be cross-leveraged to reduce the total footprint, leading to licensing and runtime savings.
• Engaged with development, engineering, consultancy and operation teams, providing guidance, reviewing deliverables, auditing environments, and ensuring compliance with policies and best practices.

Zurich, CH

• Defined the strategy & multi-year roadmap for Enterprise & Client authentication
• Lead architect on RFP for Enterprise & Client AuthN use case
• Ran weekly capability-level design authority with all architects within the capability
• Outlined a Zero Trust strategy and how identity first approach would enable a layered approach to security.
• Define a BYOD authentication strategy. This allowed the bank employees to utilise SaaS services on their personal devices using unified credentials and IDP services.
• Primary lead from the Security Team on an RFP for an Enterprise Mobile Authentication (MFA) solution run by the End User division. I defined the requirements and UX and reviewed the RFP response and selection criteria.

Paris, France, FR

This role encompassed designing and implementing a modern DevOps centric Identity and Access Management (IAM) solution. It required presenting complex integration patterns to the C level within the client management and to deep dive into low level technical details with the developers. The client changed the required hosting environment twice during the.

Paris, France, FR

I provided an industrial client working on (IoT) connectivity, a strategy, roadmap and architectural review. After understanding their current solution and also the desired requirements within their technology roadmap, I demonstrated how best practices could be used to provide a secure communications infrastructure. This required C level management.

Paris, France, FR

I provided a critical review of the client current IAM architecture and presented the findings. I demonstrated the power of a unified IAM solution. It was shown how the integrated IAM would improve security, help to meet compliance requirements, simplify auditing and enhance the user experience for their employees. This client had a major business driver.

Paris, France, FR

Lead Architect advising and setting technical direction on the development of the identity as a service (IDaaS) platform. This included working with the technical delivery team, setting the high level technical goals, reviewing the delivery outcomes at the end of the agile sprints. This IDaaS solution was based on Forgerock and RSA Via products, and when.

New York, New York, US

Responsible for designing integrating between multiple systems (Salesforce and Oracle based systems). This also expanded to cover end to end design of solution and functional designs, in addition to logical data mapping.

Montreal, Quebec, CA

Designing technical solution for contractual change requests. This was mainly focused on migration of legacy systems to be transition onto a modernised platform. It involved managing multiple stake holders, interaction with multiple internal teams (Support Team of the legacy systems, WinTel, Storage, Networking, Security & CTO), external suppliers of.

Montreal, Quebec, CA

• Solely responsible for the Authentication and Authorisation (A&A) development stream. This role was critical in maintaining the overall application accreditation, at Impact Level 4. During this assignment the key.
• Owning the requirements, design, development, deployment and support of the A&A deliverables
• Directly engaging with and advising the project CLAS consultant on on-going development and future changes
• Reporting directly to the Development, Security and Application Platform Managers
• Packaging and deployment of several COTS products including: OpenSSO / OpenAM - Apache HTTPD - LDAP
• Integration of A&A interfaces with 3rd party Identity and Authentication Provider, using: SPML - SAML - CRL - PKI

Montreal, Quebec, CA

• Managed PKI solution development and integration, including creating Issuing Certificate Authority and integrating with Hardware Security Modules (HSMs).
• Delivered a secure file transfer (FTPS/HTTPS) solution, including its deployment & packaging of vendor products on a secure air-gapped network.
• Prototyped a facial recognition offering to key stakeholders to demonstrate how it could be used within the service as an additional value add.
• Engineered the package of the IAM tools SUN OpenSSO (now ForgeRock OpenAM) and LDAP for automated deployments.
• Managed open source products including compilation and deployment of Apache HTTPD, Squid, Map Server, Tomcat onto Solaris hosts using SPRAC processors,