Post Job Free
Sign in

Architect - SSO, Identity Access Management (IAM), Security

Location:
Sunnyvale, CA
Posted:
May 09, 2018

Contact this candidate

Resume:

Saurabh Agarwal (MBA, MS)

Architect - Cloud Identity Access Management, SSO, Security

Sunnyvale, CA (408) - 242 - 6973 (Mobile), **********@*****.***

SUMMARY

Seasoned professional in Cloud Identity Access Management, SSO and Security.

Architected, designed, and developed the SSO, Identity Mangament, security solution for the Castlight Heatlh SaaS platform.

Over 18 years of experience building enterprise applications on the Java/J2EE platform.

Strong experience in taking an idea from inception to a full blown application platform from the ground up.

Built complex applications from scratch, including buying/upgrading hardware, configuring bare-metal servers, installing linux based OS with system software including virtualization, docker, load balancers, web servers, application servers, MySQL databases, SOLR, Tomcat etc.

Developed, deployed and maintained multi-tier application right from building the infrastructure, backend, middleware to designing/developing the UI/UX for desktop and mobile web using responsive design.

Strong experience in Java/J2EE, Cryptography, SSO, Identity Management, SAML, OAuth 2.0, OpenID Connect, Google OpenID Connect, Spring, JPA, Hibernate, Web Services, REST, SOAP, VMWare, Virtualization, Docker, Selenium Web Driver.

Solid understanding of Virtualization, Cloud principles, SaaS.

Extremely hands-on, with strong Java fundamentals viz. IO, util, threading, sockets.

Excellent communication skills, team skills, problem solving, analytical and computing abilities.

SKILLS

Platform / Web

:

Java / J2EE, Ruby, Struts, Spring, Servlets, JSP, AJAX, Tiles, Custom Tags, Struts Tag Library, Velocity, JSTL, ALAX, JIRA Development, HTML 5

Security

:

Identity & Access Managemet, Identity Delegation, Federation, Single Sign-On (SSO), SAML 2.0, Sp-Initiated SSO, IdP Initiated SSO, OAuth 2.0, OpenID Connect, JWT (JSON Web Token), SSL / TLS, Mutual Authentication, PKI (Public Key Infrastrcture), Cryptography (Public / Asymmetric key encryption / decryption, digital signature), XML Encryption, XML Signature.

Middleware

:

Web Services, SOAP, REST, Hibernate, JPA, XML, XML Schema, XML Beans, JAX-RS, Jersey, RMI, JDBC, SQL, RSS, Rails, Sinatra, Apache POI, Apache Web Server, Tomcat, Weblogic, Apache SOLR, Memcached, JSON, Groovy, Ehcache,

Backend

:

Oracle, Postgres, MySQL, EnterpriseDB, SQL Server.

Others

:

Selenium Web Driver, DoubleClick for Publishers, DFP API, Omniture, Responsys, Java Cryptography, Docker, VMWare, Virtualization, Data Mining Algorithms, Weka, Gitlab, Bitbucket, KVM, Hyper-V.

Tools & IDE

:

JIRA, Ant, Maven, JUnit, TestNG, DbUnit, HttpUnit, JMock, EasyMock, Capistrano, Git, XML Spy, TOAD, Quartz, WinSCP, SecureCRT, Clearcase, Clearquest, SVN, Tortoise SVN, Source Offsite, Visual SourceSafe, Trackweb, Eclipse, Netbeans, JDeveloper, Jenkins (Hudson), Cacti, Nagios, Graphite, JRebel.

OS

:

Linux, CentOS, OSX, Windows

PROFESSIONAL EXPERIENCE

CASTLIGHT HEALTH, INC., SAN FRANCISCO, CA Aug 13 – present

Role: Security Architect / Principal Engineer

The Castlight Health application is a cloud-based SaaS application aimed at proviiding transperency around cost and quality information about medical service providers. The Castlight Health platform provides the user with information through complex relationships with 3rd parties an even more complex procedure that involves data warehousing, data mining, data sciences, platform integration and a world-class user experience. The application is hosted as a cloud service, which users can access from the desktops, tablets or mobile devices.

Responsibilities:

Lead on new product initiatives and features around SSO & security.

Main point of contact on everything SSO, IAM & security.

SME for varous projects undertaken and goto person for product / business teams.

Closely work with business teams, professional services & customer success to launch customers.

Working with customer / partner teams to launch them on the Castlight platform.

Own / define / improve tools & process of launching customer SSO.

Technologies: Java/J2EE, SAML, OpenSAML 2.0, OAuth 2.0, Google OAuth 2.0, Google OpenID Connect, Web Services, REST, Spring, MyBatis, Ruby, Rails, JUnit, EasyMock, Tomcat, MySQL, Ant, Linux.

BABYCENTER.COM, SAN FRANCISCO, CA Sep 12 – Aug 13

Role: Senior Engineering Manager

Project Name: babycenter.com

The babycenter.com US platform is the premier source of baby and parenting information that has nurtured over 240 million parents since its launch in 1997. With over 2 billion page views annually and over one million unique visitors per month, it accounts for almost 60% of the revenue at Babycenter. Babycenter users are highly engaged and are extremely regular on the site from the time they learn about conception to the time their child is a toddler. Babycenter also reaches their audience with mobile apps and via email..

Responsibilities:

Collaborate with product managers, design, and marketing to determine product priorities.

Work with ad-ops, marketing and sales to deliver and implement ad products.

Translate product roadmap into stories.

Lead sprint planning, review and preview from an engineering perspective.

Participate in architecture, design and development of product stories.

Review architecture, design and code to ensure high quality of product deliverables.

Leading effort to build suites for unit tests, integration tests and UI tests.

Mentor, direct and conduct knowledge transfer sessions for new, junior team members.

Technologies: Java/J2EE, Web Services, Spring, Hibernate, Selenium Web Driver, JUnit, EasyMock, HttpUnit, Omniture, Graphite, JRebel, HTML5, SOLR, Tomcat, DFP, DFP API, MySQL, Responsys, Ant, Maven, EhCache, Eclipse IDE, Linux.

WELLS FARGO BANK, SAN FRANCISCO, CA Sep 11 – Sept 12

Role: Architect / Lead

Project Name: Account & Product Services (APS)

A high volume, critical and highly available SOAP based web services application. APS exposes web services for account information, customer information, logon, check order, transfer funds amongst others. APS servicesover 30 applications including WIB (Internet Banking), Phone Banking, CIV, OPS, IVRU. APS interfaces with over 30 different backend applications.

Responsibilities:

Lead projects with small cross-functional teams.

Working with Business Analysts to develop new services / operations (messages).

Enhancing existing web services / operations

Collaborate with business users, QA and developers for functional/regression testing.

SME on several important areas of the application / business.

Mentor, direct and conduct knowledge transfer sessions for new, junior team members.

Technologies: Java/J2EE, Web Services, Spring, SOAP, XML, Java Cryptography, Eclipse IDE, Linux.

JUNIPER NETWORKS INC, SUNNYVALE, U.S.A Apr 08 – Sep 11

Role: Application Architect

Designed and developed a Service Oriented Architecture (SOA) framework for the AIS-JSS program.

Met with business owners to translate requirements to technical design and implementation.

Architected a reusable and shared services infrastructure using web services.

Standardized the message headers exchanged between web services clients and servers.

Defined standards for logging and monitoring across applications.

Defined the web services integration vocabulary using XML Schema.

Defined standards for application setup, structure, best practices, code, unit tests, and integration tests.

Established a Test Driven Development methodology across application teams.

Established processes for automated application testing using JUnit, JMock.

1] Project Name: Juniper Support System (JSS)

This web services based application collects configuration and status information from devices on the customer networks, with the goal of analyzing and delivering diagnostic and performance reports. The application consists of two main components viz. the JSS gateway and the JSS web application. Devices on the customer networks interface communicate with Juniper via the JSS gateway. Business and technical support teams use the JSS web interface to generate reports to their customer.

Technologies: Java/J2EE, Web Services, Spring, XML-RPC, XML, XML Schema, XML Beans, AJAX, JUnit, JMock, Postgres database, Eclipse IDE, Linux, Apache Tomcat, Ant

2] Project Name: Juniper Bug Tool (JBT)

Currently the Juniper Bug Tool system, commonly referred to as JBT, is the primary tool used in the production of PIIR & BIR reports for JCARE & JASSURE customers respectively. The JBT system is built on the Atlassian JIRA system.

Technologies: Java/J2EE, JIRA PDK, Web Services, Velocity, Velocity Templates, JSTL, AJAX, SOAP, XML, XML Schema, XML Beans, Postgres database, Eclipse IDE, Linux.

3] Project Name: PR Services

This is a middleware application that provides a XML based web services interface to the GNATS bug tracking tool - a legacy open source bug tracking tool with only a complex UNIX based CLI for integration.

Responsibilities:

Define technical requirements for all components of the system.

Technical feasibility & proof of concept using Apache SOLR and memcached.

Setting up the SOLR – define the schema, the indexing fields.

Memcached configuration, setup and deployment.

Collaborate with the GNATS team to understand and implement the CLI queries.

Technologies: Java/J2EE, JAX-RS, Jersey, REST Web Services, XML, XML Schema, XML Beans, Apache SOLR, Memcached, Eclipse IDE, Linux.

WELLS FARGO BANK, SAN FRANCISCO, CA Oct 06 – Apr 08

Role: Senior Lead Engineer / Architect

FINAPLEX, SAN FRANCISCO, U.S.A Jul 06 – Oct 06

Role: Senior Java Consultant – Performance Tuning

Project Name: Finaplex Wealth

Client: Wells Fargo Bank

Finaplex Wealth® integrates CRM, performance reporting, proposal generation, goal planning, and portfolio management into a wealth relationship management platform available as an enterprise license.

Responsibilities:

Identifying performance bottlenecks- Database tier, EJB Tier, Presentation Tier.

Identifying and suggesting solutions for problems in Java tier.

Technologies: Java/J2EE, Struts, Tiles, Servlets, JSP, Custom tags, EJB, Weblogic, Oracle, Eclipse, Linux.

FINANCIAL OXYGEN, SANTA CLARA, U.S.A Mar 06 – Jul 06

Role: Senior Java Consultant

Project Name: CCER - Credit Card Expense Reporting

Client: Wells Fargo Bank

Wells Fargo Wholesale Internet Services Division, one of the divisions of Wells Fargo Bank, would like to re-architecture an existing Online Purchasing card system (CCER) to service external companies, which use Wells Fargo Purchasing cards. The Servlet based existing system had to be ported to a new system using Struts-EJB-DAO architecture.

Technologies: Java/J2EE, Struts, Tiles, Servlets, JSP, Custom tags, EJB, Oracle, Eclipse IDE, Linux.

DELOITTE, MUMBAI, INDIA Feb 04 – Jan 06

Role: Tech Lead / Senior Java Developer

Project Name: HP-IPC - Internet and Pricing Configurator (Hewlett Packard, Cupertino, CA)

A web based application by the Sales Force teams to configure and price CTO (Configured to Order) products.

Technologies: Java, J2EE, Struts, Web-Services, SAP-IPC, CRM, JCo, Weblogic 8.1, JSP, Servlets, SQL Server, Oracle, Eclipse (IDE), JDeveloper.

BLUE STAR INFOTECH LTD, MUMBAI, INDIA Jun 03 – Jan 04

Role: Software Engineer.

TATA INTERACTIVE SYSTEMS, MUMBAI, INDIA Mar 03 – Jun 03

Role: Software Engineer

PHOENIX SOFTNET TECHNOLOGIES PVT. LTD. Jul 00 - Mar 03

Role: Developer / Systems Analyst

EDUCATION

MBA, San Jose State University

M.S. Software Engineering, San Jose State University

Bachelor of Engineering (Computer Engineering), Pune University



Contact this candidate