[pic] [pic] [pic] [pic] [pic]
[pic]
Muhammad Luqman Durrani
Sterling, VA 20165
abmifw@r.postjobfree.com
SUMMARY
. 6 years progressive experience in field of IT security, 4 years
experience as Systems Engineer.
. Specialist in installation, configuration and troubleshooting of
Tivoli Access Manager Infrastructure both 5.x and 6.x, including
Tivoli Directory Server (ITDS), WebSEAL, Tivoli Directory Integrator
(TDI).
. Experience in installation and configuration of Sun Identity Manager,
IBM Tivoli Identity Manager, Weblogic and Websphere.
. Experience with installation and configuration of TAM, AD and Lotus
notes adapters in IBM Tivoli Identity Manager 5.1.
. Involved in configuration of Provisioning, identity and adoption
policies on ITIM, plus configuration of entitlement and provisioning
workflows
. Implemented Single Sign-On for J2EE applications between webseal and
Websphere, Weblogic and Webmethod servers.
. Configured Trust Association Interceptor (TAI++) for Websphere SSO.
. Certified in Systems Engineering from SUN, Microsoft, CISCO and
Comptia.
. Demonstrated excellent programming and scripting skills.
. Proven technical and leadership skills include the ability to manage
teams, earn the respect of its members, lead by example, and thrive in
an entrepreneurial environment.
. Persuasive verbal and written communication skills compliment the
ability to multi-task, maintain an organized approach, and ensure
success - even when faced with high-pressure or high-risk situations
encountered while supporting Enterprise level Production Environments.
PROFESSIONAL EXPERIENCE
Freddie Mac Corporation
07/2006 - Present
Sr. Information Security Engineer
. Install, configure and troubleshoot Tivoli Access Manager components
including policy Server, Webseal Server, Web Portal manager etc.
. Lead the project to upgrade Tivoli Access Manager 5.1 to Tivoli Access
Manager 6.1.
. Planned and successfully completed the upgrade and data migration from
Tivoli Directory Server 5.2 to ITDS6.1
. Developed online TAM/ITDS password reset utility using TAM java APIs
. Configured ITDS/LDAP replication for FreddieMac Warm Site using
advanced replication topologies based on ITDS Gateway and forwarder
servers.
. Configured webseal servers for load balancing and configured EAI
interface for the Arcot WebForte and RiskForte authentication
interfaces for TAM.
. Installed and configured Tivoli Directory Integrator Password
synchronization plugin, configured various connectors and built
assembly lines for data migration for the ITDS upgrade Project.
. Planned, installed and configured standby Policy Servers.
. Developed shell scripts for LDIF data validation and migration to new
Version of Tivoli Directory Server.
. Train new hires to provide day to day support creating webseal
junctions, ACLs, users and groups, authorization rules, POPs etc..
. Install Websphere Application server and install and deploy ITDS Web
Administration tool and TAM WPM.
. Created CSR and installed X509 Certificates, also created and
installed self signed Certificates using IBM IKEYMAN tool.
. Configured Desktop Kerberos SSO for webseal authentication using
spnego and also configured SSO with various middleware products like
weblogic, websphere, IIS etc.
. Installed and configured TAM Java Runtime environments (PDJrte)
. Installed and configured Sun Identity Manager
. Write Unix shell and pearl scripts.
. Plan and Document the Configuration Management and Monitoring plans
for the TAM infrastructure.
. Maintain all the monitoring and Administration Solaris scripts and
develop the strategy for portability of these scripts to Linux (Suse
9.0)
. Troubleshoot all types of systems or network related issues and work
with different operations groups to achieve a resolution in timely
manner.
. Provide 24/7 on call support for all types of production issues.
DISYS Corporation 11/2005 -
07/2006
Information Security Analyst
. Responsible for day to day support activities for Tivoli Access
Manager, Tivoli Identity Manager, Tivoli Directory Servers and
Webseal Servers.
. Performed access list management, users and groups administration and
Webseal junction setup and maintenance.
. Installed, configured and deployed Tivoli Identity Manager on
Websphere application server.
. Installed and configured following ITIM adapters: TAM Combo adapter,
Active Directory adapter, Lotus notes adapter and ldap adapter.
. Configured HR feed connector for ITIM to ensure daily syncronization
of identity repository against the authoritative source of record.
. Configured and also developed Java code for ITIM Provisioning
Policies, Workflows, Adoption policies etc.
. Configured daily reconciliation jobs in TIM with managed resources.
. Created entitlement workflows to implement approval and notification
processes for various account activities
. Created operation workflows and lifecycle rules to automate manual
tasks such as password expiration and challenge response completion
. Configured Single Sign-On between Webseal and Websphere application
servers using the TAM TAI++ SSO methodology.
. Configured Identity Policies and password policies in order to enforce
enterprise security standards for user ID and password generation on
ITIM managed resources.
. Deployed applications on Websphere admin console.
. Troubleshoot webseal junctions and ensured continuous junction
operation to different backend web/app servers such as Apache Tomcat,
Weblogic and Webmethods.
. Troubleshot LDAP issues and perform maintenance and performance tuning
activities for LDAP and Directory servers.
. Installed and configured Tivoli Access Manager for e-biz and Tivoli
Directory Server.
. Responded to trouble tickets and ensure satisfactory closure to all
types of Tivoli Access Manager issues in timely manner and maintaining
a high customer service experience.
. Wrote professional unix shell scripts to automate various Tivoli
Access Manager operations.
. Provide 24/7 on call pager support for all types of TAM related
production issues.
Verizon Communications / Pinnacle Tech. 11/2003
- 10/2005
Systems Administrator/Engineer
. Sole administrator for Solaris 8/9 on Sun Fire and Enterprise servers,
HP-UX 11.x on L,K and V Class servers as well as IBM and HP Proliant
series servers.
. Installed and configured Tivoli Access Manager 5.x, Tivoli Direcory
Server 5.x, Webseal servers.
. Installed, configured, maintained and troubleshot systems in both
Production and Development environments.
. Performed installation and configuration for Tivoli Access Manager
policy Servers, webseal servers and Directory servers.
. Migrated HP-UX servers from Direct Attach EMC Symmetrix storage arrays
to SAN attached EMC frames.
. Overall managed around 30 TB of SAN storage on Solaris, HP-UX and
Windows.
. Used Logical Volume manager (LVM) on HP-UX servers for storage
management.
. Used Ignite-UX on HP-UX servers for disaster recovery and system
restores.
. Used Veritas Netbackup for Solaris, Veritas Backup Exec for Windows
and HP Omniback II for HP-UX.
. Installed, maintained and performed basic administration for Oracle 8i
on Solaris and HP-UX servers.
. Performed Kernel rebuilds and System performance tuning for both
Solaris and HP-UX servers.
. Installed and configured drivers for DLT tape drives and libraries.
. Configured Fibre Channel HBAs on HP/Sun servers for SAN storage
including installing HBA drivers, discovering SAN devices and
troubleshooting San Fabric connectivity
. Utilized SVR4 packaging tools to develop and deploy software
applications on Solaris and HP-UX servers.
. Wrote professional Unix shell scripts to perform systems
administration tasks.
. Used VBScript on Windows Servers to manage file systems, generate
usage reports and email notifications.
. Installed, configured and managed Lotus Domino Server and Sharepoint
Web Portal on HP DL380 server.
. Provided 24/7 pager support.
University of Maryland, College Park, MD, USA. 03/2001
to 11/2003
Mainframe Programmer
. Developed dynamic applications in IBM Job Control Language (JCL) and
IDEAL Language.
. Ensured successful and reliable deployment of applications from
development servers to production servers.
. Developed Unix shell scripts for UNIX and Mainframe interoperability.
. Worked on a project to develop subroutines for data extraction from
Mainframe DB2 tables, conversion to XML format and FTP upload to
remote FTP servers.
. Worked with different IT and Non-IT groups to gather requirements for
a project and work through the design, development, deployment and
support of the mainframe application.
Precision Tech Ltd. Pakistan. 01/1999
to 12/1999
Systems Engineer/Administrator
. Managed Windows NT 4.0 and Sun Solaris servers and workstations.
. Built systems by installing Operating Systems and deploying standard
applications.
. Performed software installations on both Solaris and Windows Servers.
. Provided basic systems administration for Red Hat Linux servers.
. Setup and maintained Anti virus software on both servers and clients
. Performed daily, weekly and monthly maintenance tasks on the servers
and clients
. Set up and maintained MS Exchange Server 5.5 on Windows NT 4.0
platform.
. Installed and supported MS Outlook clients .
University of Engineering and Technology, Pakistan.
09/1996 to 09/1998
Jr. Network Administrator
. Administered user accounts, performed hardware and software upgrades
and provided application support on Windows NT platform, and supported
Windows NT Servers as file servers.
. Installed and maintained laser printers, servers and workstations and
UPS systems for continuous network operation.
. Installed NICS, Modems, hard drives, CD Drives and other desktop and
Laptop peripherals.
. Troubleshoot network and TCP/IP connectivity issues.
. Maintained hardware and software product inventory.
2 EDUCATION
01/01 to 12/02 University of Maryland, College Park, MD, USA.
MS Telecommunications (GPA: 4.0/4.0)
01/95 to 02/00 University of Engineering & Technology, Pakistan.
3 BS Electrical and Electronics (GPA: 3.8/4.0)
1 CERTIFICATIONS
SCSA Sun Certified Systems MCP Microsoft Certified
Administrator Professional
MCSE Microsoft Certified Systems CISSP - pursuing
Engineer
MCSA Microsoft Certified Systems
Administrator
CCNA Cisco Certified Network Associate
A+ CompTIA Certification
TRAINING COURSES
TAM6.x Deployment and Administration Microsoft Exchange 5.5
ICND Interconnecting Cisco Network DB2 Administration
Devices
TCP/IP Network Administration Advance Network optimization
Tool OPNET Modeler
Maximizing performance of UMTS Networks
COMPUTER SKILLS
Software: Tivoli Access Manager, Tivoli Directory Server, WebSphere,
Tivoli Directory Intrgrator, Webseal, Tivoli Identity
Manager, WebSphere Application Server, Symantec Ghost,
PCAnywhere, VERITAS Backup Exec/Netbackup, Veritas Volume
Manager, Veritas Cluster Server, IIS 5.0, Citrix Metaframe,
MS Exchange 2000/5.5, ISA Server, Proxy Server, MS
Terminal Server, MS Office 2000/XP, Lotus Domino Server,
NCR Teradata Utilities, Network optimization tool OPNET
modeler / IT Guru, SAS, Exceed, WRQ Reflection, KEA Extra,
Apache Web Server, BEA Weblogic Server.
Languages: C++, SQL Plus, VBScript, Jscript, Perl, Java Script, JCL,
HTML, Assembly.
Databases: MS SQL Server, IBM DB2, Oracle 8i, NCR Teradata and MS Access
2.0/7.0
Platforms: Windows 20003/2000/NT/XP/98, Solaris 8/9, HP-UX 11.x, OS/390,
CISCO IOS,
Red hat Linux Enterprise, MS-DOS
Protocols: TCP/IP, IPX/SPX, NWLink, SNMP, SMTP, RIP, OSPF, SSH, SFTP,
HTTP, LDAP.
Systems/Hardware: Intel x86 based Computers and Servers, HP
Proliants, HP-UX D, K, L, T and V
Class Servers, SUN servers (All ranges),Dell intel based
Servers, IBM Servers,
Compaq Servers, HP DLT Tape Libraries, STK Tape drives, EMC
Symmetrix
CLARiiON, Brocade Switches, EMC Connectrix switches, Cisco
Systems Routers
and Switches
REFERENCES Available upon request.