Director and Global Head of IAM Practice and Consulting

Sr. Architect and Platform Owner handling the entire gamut of IAM and PAM domain in Delivery and Consulting space

IAM Architect and Consultant for Identity Management, Access Management, Multi-Factor Authentication and Privileged Access Management function

IAM Lead for Identity Management, Access Management, Multi-Factor Authentication function

Job Role/Project Description: Telecom, Mumbai, India• Recognized and awarded by PwC for best performance (Commendable) in the project as a part of Jio.• Played an active role in Enterprise Security Architecture design for current and new production setup (7-Stage Environment) in high availability mode.• Played a critical role of IDAM L3 SME leading a team of 16 people.• Installation and configuration of OIM, OAM 11g R2 PS3 (11.1.2.3), OHS, Webgates, OID and BI Publisher.• Defined development standards and performed secure code reviews to ensure compliance and meet client expectations.• Performed POC and maintained design documents for all new requirements.• Implemented multiple OIM use cases which could be used for the purpose of R&D and for giving product demos to various business stakeholders or potential clients.• Mentoring and training the IDM talent pool. Part of SA&I recruitment team.• Configured Certification, Attestation and Remediation.• Integration of OIM with target applications using custom connectors.• Configured auto retry mechanism of provisioning connectors.• Designed bulk update scenarios for multi attribute provisioning.• Design of JCo (RFC Call Based) custom connector for SAP PRM application.• Design of JSON (JavaScript Object Notation Based) web service custom connector for Opentext application.• Design of custom connectors for DIB and MPOS application using REST API web service framework.• Integration of DB based target application using DBAT connector.• Developed SOAP based web service client for trusted source reconciliation of employee JML process.• Developed secure client for digest authentication using nonce based encryption of SOAP web service.• Developed custom transformation providers for GTC attributes.• Creation of OAM agents, Application domains and resources to protect custom application for SSO.• Developed SQL queries to generate audit reports for user onboarding and provisioning for Security Audit.

Job Role/Project Description: Telecom, USAIdentity and Access Management• Setup of complete IDAM stack over AWS Cloud Platform.• Implementation of SDLC (Software Development Life cycle) for Identity and access management project.• Setting up of new IDAM environment for the client.• Design, development and enhancement of complete IDAM stack.• Application integration for provisioning and single sign on.• Interacting with customers & vendors, primarily for requirement analysis, feasibility analysis and implementation.• End to end documentation process required for project execution.• Coordination with off shore team for work delegation and status reports.• Writing test cases & doing system and unit testing for the newly developed architecture.• Mentoring less experienced programmers with the process.• Providing assistance and expertise in troubleshooting live systems.• Addressing complaints and resolving complex problems including user support.• Completing all assigned configuration and customization activities within and in support of the Oracle Identity and Access Management Suite.• Implementation of 2-level tunnel for low cost connectivity to cloud.• Preparation of Enterprise Deployment Architecture diagram.• Integration with Oracle Siebel CRM application.• Preparation of design document.

Job Role/Project Description: Energy and Utilities, EuropeIdentity and Access Management• Onsite IDAM SME-Enterprise architecture design and implementation for 8 companies in Istanbul, Turkey for 5-Stage enterprise deployment.• Played critical role in Proof of Concepts, requirement gathering and feasibility analysis of Turkish implementation of IDAM Stack.• Preparation of SRS, HLD and LLD.• Developed the code and custom connectors.• Implemented Actionable Emails.• Approval Workflows.• JML Process-Employee Onboarding through ERP HRMS.• Received appreciation for customer demos and workshops.• EBS Integration and Provisioning.• Received appreciation for closing all TURKISH LANGUAGE challenges.• Offered critical help to other ESS teams namely CVS, Vodafone, MTN.• Mentoring and training OIM team.• Resolved critical web services for Oracle partner applications.• Configured multiple locale notification systems.• Successfully implemented changes for OIM-OAM integration by identifying proper URL contexts and Task Modifications.• Implemented locale based customization.• Installation and configuration of OID, BI for reporting.• Setup of Oracle Database 11g R2.• Resolved code bugs for task execution failures during approval based requests-Request Context to Create Context.• Designed SOD based approval workflows for entitlement provisioning.• Resolution of critical soft lockout issues and blocked tasks related to schedulers.• Successful implementation and resolution of LDAP Sync issues across access policies.• Implemented critical user id/profile recreation in the event of user data crash.• Active Directory Integration and cloning.• Performance tuning and memory management issues.• Installation of OIM, GTC and patches.• Developed the code for managing orchestrations in SOA composites.• Designed jsps and deployed on apache for OAM SSO login page.• Designed payload extension code from OIM to SOA.• Designed code for encryption across OIM Connections.

Job Role/Project Description: Telecom, Asia PacificIdentity and Access Management• Onsite IDAM SME for Telenor, Yangon, Myanmar.• Played critical role in Proof of Concepts, requirement gathering andfeasibility analysis of project requirements. • Preparation of SRS, HLD and LLD and Infra requirement documents.• Developed the code and custom connectors for disconnected applications.• Implemented Actionable Emails.• Approval Workflows.• Successful implementation of load balancer and resolution of approval workflow challenges in all issues in production• Resolved all the clustering issues in OIM installation in Production Environment.• JML Process-Contractor Onboarding and creation of custom connectors.• Received appreciation for critical recovery of OIM in preprod saving rework efforts for the entire team.• Received appreciation for critical cluster migration solution suggested for achieving failover in production environment.• Received appreciation for successful and smooth commercial launch of Telenor application.• Offered critical help to other ESS teams namely CVS, Vodafone, MTN.• Conducted training session on advanced functionalities of SOA-IDAM integration and approval workflows. • Resolved a diverse set of critical OIM authentication issues.• Resolved critical web services and CIM integrations related issues.• Successfully implemented and received appreciation for notification system from Process Tasks, Workflow Notification System and Event Handlers.• Successfully implemented changes for OIM-OAM integration by identifying proper URL contexts and Task Modifications.• Successful customization of OIM ADF Pages, Email Template Changes, Creation of UDFs and recovery of system in failed attempts.• Resolution of critical issues related to the Metadata Store MDS in OIM avoiding database restore activities.• Resolution of all sandbox, export/import issues and successful migration of configuration across dev, Test and Production Environments.

Job Role/Project Description: Telecom, Delhi, India Security Assurance and Compliance• Integration of code review plugins(Jupiter).• Handled the SAC project standalone upto 98% closure of the project.• Perform Penetration testing and Vulnerability analysis using OWASP-Webscarab tool.• Perform Security Requirement Review, Design Review, Code Review, Penetration Testing and Deployment Review.• Hardware procurement and deployment of Windows Server 2008, SQL Express and IIS for deploying SCR tool Checkmarx 7.1.2.• Deployment of Checkmarx 7.1.2 and migration of scan database.• Scan the application code and perform SCR as per OWASP 2013 standards.• Perform weekly meetings with Client and maintaining SAC tracker reports.• Preparation of SAC process documentation and project plans and meeting deadlines. Identity and Access Management• Designing Object and the Process Forms and configuring Lookups.• Deploying the adapters.• Monitoring and administration of integrated IDAM architecture including startup and shutdown issues of Weblogic application server, OHS web server Directory servers OID and OVD, OIM and OAM servers.• Installation of OIM in pre-prod environment.• Requirement analysis and implementation of Organization unit (OU) changes and plan user migration from current architecture.• Developed the code for RFC call over JCo connector at SAP-OIM integration interface and perform Role based reconciliation.• DL provisioning and E-mail id creation of users in Active Directory server for corresponding department locations.• Resolved AD binding failure issues of LDAP over non-ssl.• Renewal of server, key and chain digital certificates on IDAM servers using openssl and csr-private key pair.• Strategic creation of database architecture replica or cloning for development environment by moving binaries using tape archives(tar) in linux environment.• Preparation of SRS, HLD and DLD documentation.

Professional Training:• CISSP introductory training.• IDAM tool training Oracle Identity Manager 11g R1 and R2, OAM 11g R1/R2, Sun one LDAP.• ESS-AS-201-IDM LDAP models and LDAP JNDI, Virtual Directory, IDM Business and Technical, Access Manager Technical Overview. Secure Coding and Security Testing, Penetration Testing, Web Application Auditing, Data Security-Threats and Solutions, Strong Authentication.• ESS-IDM-101-Security MODULE 1-Security Awareness, Authentication, Authorization and Access Control. MODULE 2-Security Standards and Regulatory Compliance, Network Basics and Security.• ESS PRACTICE Application Security-Secure Application Design and Concepts, Secure Coding Practices, Secure SDLC, Threat Modelling.

Network and Security Implementation (L2).Job Role/Description:• Datacenter environment-Client: Telecom, UK. Network Deployment or Implementation (L2).• Building Switches (L2-2950, 1950, 3750 L3-4000, 6000 series)Access Control Lists, Configure Vlans, switch ports, STP, NAT, Port Security as per the DLD (Rules, Protocols, Traffic flow, addressing scheme) & keeping in view the build guide(ACL and port info) & customer requirements.• QA-Engineer, Peer & Ops QA-Right First Time, Self Inflicted Error 1/100.• Security-Firewalls ASA 55xx -Enforce Security Policy Permit or reject traffic based on service/address, create secure tunnels over IP networks for remote solution access. Customization of Cisco ASDM module using java script.• Arcsight ESM-Monitoring the logs on the network devices-Installation.• Installation of RHEL 5.5-Resolved Bios Delay and Boot Freeze errors, partitioning issues, rpm package dependencies, local repository and repodata, file execution issues.• Performing adhoc tasks or troubleshooting.• Verifying User Acceptance Test by the end customer. Professional Training:• Network Security functional training.• Advanced switching technology from CWW perspective.• Arcsight logger.• Quick Training-Process improvement method. It is tailor made as per the requirements of the organisation.• Complete Core and Access Transmission Planning training. Process Changes:• Business Process Automation-Semi-Automation using Macros in MS-Office.• Standardization of MHS lab, Contribution to health, safety and environment.