Management Access Control
Resume:
HENRY T. LE
acay1d@r.postjobfree.com *** 703-***-****
EXPERIENCE SUMMARY:
• Architect and designed Personal Identity Verification card (PIV Card) and Common Access Card
(CAC) enabled applications to provide role-based access and Single Sign On to web applications
using CA Siteminder and Identity Manager
• Designed, customized and implemented many applications using CA software including Network
and System Management 3.x/11.x (NSM), Desktop and Server Management 12.x (DSM), Access
Control 12.x, Siteminder 6.x/12.x, Identity Management 12.x, Spectrum 9.x, Wily 8.x and SSO
12.x
• Architect and Implemented CA SSO and Access Control concurrently operating on Windows and
Unix platforms
• Installed and configured MsSQL and Oracle which are required by CA software
• Developed and migrated application from Identity Management from version 8.x using Tomcat to
Identity Management using IBM Websphere and Weblogic
• Integrated Unix, Windows, Routers, Switches and application logs (Legato backup, VOIP, McAfee,
Symantec, Oracle, MSSQL) with NSM and Advanced Event Correlation to monitor and notify via
mail and phone to proper people when critical event occurred
EDUCATION & CERTIFICATIONS:
• B.S., Computer Engineering, University of Bridgeport, Connecticut
• (CUE) Computer Associated Certified Unicenter Engineer (NSM 3.x)
• (CUSE) Computer Associated Certified Unicenter Specialist/Engineer (NSM 11.x)
• CA identity Manager Foundation
• Spectrum 9.x Optimization and Customization
• CompTIA Security+ Certification
CLEARANCE: Top Secret
TECHNICAL SKILLS:
Operating Systems (OS)
• 12 years experience with CA software on major UNIX/LINUX OS (Solaris, HP-UX, IBM-AIX)
• 12 years experience with CA software on Windows Enterprise Servers
CA Software expertise
• CA Unicenter Network and System Management (NSM) – 9+ years
• CA Desktop and Server Management Software (DSM) – 9+ years. This includes Asset
Management, Software Delivery and Service Desk
• eTrust Access Control – 5 years
• CA Directory, Identity Management and Siteminder – 5 years
• CA Workload Management and Security – 5 years
• CA Wily, Spectrum and eHealth – 3 years
Other Technologies
• Apache, IIS Web Server
• WebSphere, Weblogic, JBOSS and Tomcat Application server
• MS-SQL, Oracle and Ingres Database, Oracle DSEE
• Java/Java Script
• PERL for UNIX/Linux and Windows
• LDAP, AD, PKI, SSL, SAML 1.x/2.0
PROFESSIONAL EXPERIENCE:
11/2012-Present: ACS Computing Inc
• Upgrade Identity Manager from 12.5 to 12.6. Coordinate with vendor and internal technical groups
to resolve issues related to the upgrade and integration with Siteminder ( Department of Veteran
Affairs)
• Setup CA Siteminder Policy Server version 12.5 on RHEL servers and migrate website protected
by SM 6.x environment to this new SM 12.5 environment (Neustar Company)
• Install and configure Oracle DSEE on RHEL servers and migrate the existing SM User stores,
Policy stores and Key stores to the newly installed Oracle DSEE (Neustar Company)
• Install and configure Apache Web server and SM Web Agent on RHEL servers (Neustar
Company)
• Setup CA Business Intelligence Report Server 3.1 on Redhat to report SM activities (Neustar
Company)
• Install and configure ControlMinder 12.7 including Enterprise Management, UNIX Authentication
Broker (UNAB) to manage UNIX users in Active Directory, Privileged User Password Management
(PUPM) to manage and audit the tasks performed by privileged accounts Directory and
consolidate your users into a single repository on Windows servers (FBI)
• Migrate SM 6.x policies to SM12.5 applications (U.S. Department of Agriculture)
• Setup a prototype environment consisting of CA Identityminder 12.6 integrated with SM 12.5
including LDAP directory on RHEL servers. Customize Identityminder user portal according to the
user roles (Department of Housing and Urban Development).
08/2011-11/2012 CNSI/Pro-SphereTek
(Same contract, different employers - assigned to FAA)
• Architect and implement a Personal Identity Verification card (PIV card) enabled and role based
On-boarding process for FAA to automatically create user accounts (Active Directory, Lotus Notes,
Unix/Linux, LDAP), to control user access to applications via workflow request or via applications’
owner and to provide self-service where user can manage profile and reset password.
• Integrated Identity Management R12.5 with Siteminder 12.x to provide PIV authentication,
authorization, role based and attribute based access control to the On-boarding process
• Utilized Siteminder 12.x to authenticate and authorize FAA users using (PIV Card) to provide
Single Sign on to web applications hosted by Weblogic.
06/2011-08/2011 ReliaTrust Technologies (assigned to Army Research Laboratory)
• Installed, configured and put into production four Windows 2008 servers to monitor IP devices and
to apply security patches to Windows workstations for the Army Research Laboratory.
• Automated a manual process to identify the priority of a device (router, switch, server) when it is
down so that appropriate service level agreement (SLA) can be tracked.
• Installed, configured and customized Unicenter Management Portal R12.x
11/2007-6/2011 ALTA IT Services, LLC (assigned to Army Human Resource Command)
• Developed an Common Access Card (CAC) enabled application integrated with Army Knowledge
Online (AKO) for the Army Human Resource Command using Siteminder and Identity
Management 12.5 with workflow enabled to provide role-based control and access; migrated the
application data from Identity Management version 8.x to version 12.x
• Participated in the implementation of SAML with profile SAML 1.1 and SAML 2.0
• Lead the design and implementation of a security application for Unix environment (HP, AIX,
Solaris) using CA SSO/CA Access Control and CA Identity Management 12.x suite
• Maintained and upgraded Unicenter infrastructure consisting of NSM R11, TNG 3.x (with Security,
Workload and multi-event Management installation), and DSM R11 installed on more than 40 Unix
servers and 100+ Windows servers located on three different sites
• Created scripts to reconcile workstations and servers between Active directory and CA Unicenter
Network and System Management and CA Desktop and Server Management
• Integrated Unix, Windows, Routers, Switches and application logs (Legato backup, Oracle,
MSSQL) with NSM and Advanced Event Correlation to monitor and notify via mail and phone to
proper people when critical event occurred
• Implemented and integrated Spectrum and eHealth with NSM 11.x to utilize advanced event
correlation notifications
• Designed and implemented Wily to monitor status and performance of the in house applications
04/2003-11/2007 TIAG and MSSI
(Same contract, different employers - assigned to Army Material Command)
• Architect/designed, configured, administered and maintained a large scale NSM environment
including Extranet, DMZ and remote sites
• Utilized Advanced Event Correlation to precisely notified support engineers via email/pager/cell or
audio alert when threshold breached
• Integrated the NSM with third party software (Data center UPS, Xerox CentreWare) to enhance
the functionality of NSM
• Created an Unicenter Management Portal environment (web portal) to provide real-time
presentation, notifications and announcements of the entire enterprise
• Created scripts (PERL, Batch, Unicenter built-in scripts) to reconcile workstations and servers
between Active directory and CA Unicenter Network and System Management and CA Desktop
and Server Management
• Architect and implemented a security and access control application based on eTrust Admin
(earlier version of Identity Management) and eTrust Access Control to protect the NSM
environment
• Troubleshot, maintained and enhanced the functionalities of Siteminder application.
12/2001-04/2003 RCI (assigned to the U.S. Army)
• Managed and supported the Unicenter TNG (TNG) 3.0 infrastructure to monitor real-time status of
servers and network interfaces (routers and switches)
• Designed, implemented and managed the Service Level Management (SLM), which provides
measured metrics of service goals and produces service level reports and statistics for resources
available across the IT infrastructure.
• Provided guidelines for the architecture and implementation of Asset Management (AMO)
• Created scripts to regularly detect the failure of software components deployed throughout the
enterprise so that immediate actions can be taken to maintain the integrity of Unicenter
infrastructure
06/2001-12/2001 VistaRMS (assigned to Dept of Education)
• Installed and configured Unicenter TNG (TNG) 2.4, (Worldview (WV), Event Management (EM)
and Agent Technology (AT)) to monitor real-time status of servers and network interfaces (mainly
Cisco routers and switches)
• Developed policies using the TNG built-in Wireless Messaging Management to immediately alert
the status of the monitored devices to support engineers via Email and pagers
• Put into operation Network Management Option (NMO) software which collects real-time
LAN/WAN information about how resources are configured and utilized so that any issues related
to network can be captured and analyzed
• Configured TNG as a repository to store and display all system-logged messages generated by
servers, APC UPS, Cisco routers and switches.
• Integrated Ciscoworks 2000 with TNG so that any faulty Cisco devices can be viewed from TNG
console by one click away.
Contact this candidate