Post Job Free
Sign in

Identity and Access Management

Location:
Devon, PA
Posted:
September 06, 2016

Contact this candidate

Resume:

KARTHIK PITTALA

IAM CONSULTANT

Ph No: 510-***-**** ***********@*******.***

Professional Summary:

7+ years of strong experience in Web and Network Security Product Administration. This includes extensive work in Installation, Configuration, Deployment, Administration, Trouble Shooting and Migrating of Netegrity Site Minder, Sun One LDAP, Web security, network security, database systems, and Enterprise Document Management.

Expertise in Installation, Configuration, Deployment and Maintenance of Site-Minder Components like the Policy Server, Web Agent, Policy Store and Key Store.

Strong experience in Enterprise Security Domain. In-depth knowledge of Identity and Access management products - CA Site-Minder Access Manager, Oracle Access Manager, Oracle Identity Manager.

Implemented CA Identity Manager solution for provisioning, delegated administration, workflow implementation and generating audit reports to be compliant with the security regulations.

Experience in the Security management with a deep expertise in Netegrity tools.

Involved in the upgrades of Siteminder version 6.0 to 12.0.

Administered Sun One directory server and expertise in upgrading Sun One Directory Server version 5.2 to 6.0 and 6.0 to 6.3 in production environment.

Experience in LDAP based directories like iPlanet/Sun ONE Directory Server, Active Directory and Active Directory Application Mode (ADAM).

Hands on experience in Java, JSP, Servlet, FCC, HTML, ODBC, SQL, Oracle.

Experience in installing, configuring and working with Identity Manager 6.x

Worked on Logical Domains (LDOMs) which provides virtualization capabilities.

Experience in designing, implementing and deploying LDAP architecture which includes replication, data synchronization.

Excellent work experience on many Operating systems which include the latest virtualization capabilities: VMware ESX 3.0 server running different guest operating systems like Solaris 10 and Windows server 2003.

Experience in working with multi cookie domain for single sign-on for mutual authentication using Netegrity products.

Experience in Upgrading of Policy Server/Web Agents from version 6.x to 12.x.

Experience in object oriented programming with RDBMS. Strong Experience in writing Sub Queries, Stored Procedures, Triggers and Functions.

Excellent knowledge about the functionality of the Siteminder components.

Strong experience with different Web Servers and Application Server Security and Application deployments.

Expertise in configuring and troubleshooting Web servers like Apache, IIS, iPlanet..

Experience in installation, configuration, deployment and administration of WebSphere application server 6.x/5.x/4.x.

Supported SunOne LDAP, Site Minder in Production Environment.

Experience in setting up SSO environments. Integrated SSO products such as Netegrity Siteminder and Sun One LDAP with existing enterprise applications and middleware applications.

Experience in installing, configuring Siteminder policy server, Web agents, Netegrity, Sun One Directory server (LDAP) and various Web & Application servers.

Expertise with Replication, Chaining, Load Balancing and other Administration task.

Fine-tuned and set up High availability with LDAP and Siteminder. Tested and implemented back up & recovery. Designed and implemented solutions for fail over and capacity planning.

Ability to adapt the different environments.

An integral part of the 24/7 On-call team for troubleshooting outages/ issues.

Strong analytical, problem solving and communication skills.

Technical Skills:

Security

Netegrity/CA Siteminder 5.x/6.x/12.x.

Directory Servers

Sun ONE Directory Server (5.1, 5.2, 6.3), Microsoft Active

Directory, Novell e Directory 8.7x

Application/Web Servers:

WebLogic Application Server 6.0/7.0/8.1/9.2/10.3, WebLogic

Portal 8.1/9.2/10.3, JBOSS 5.x, WebSphere MQ 5.3/6.x,

IBM WebSphere 5.x/6.x, Apache - Tomcat, IBM HTTP

Server, Netscape Enterprise Server 3.5, iPlanet 6.x,

Microsoft IIS.

Languages & Technologies

Java (JDK), J2EE - Java Beans, JSP, Applets, ASP, JNDI, RMI,

Java Mail API, C#, C, SQL, PL/SQL, Perl, JDBC/ODBC.

IDE’s/Tools/Utilities

JBuilder 4/8, Microsoft Visual Studio IDE 3.1, Eclipse,

NetBeans, IBM VA for Java, SQL*Plus, MQ Series 5.x,

Microsoft Project 2000

Databases

Oracle 11g/10g/9i, SQL Server 2008/2005/2000/7.0, MS My

SQL 5.0, Access 7.0

Operating Systems

UNIX (Solaris 9/10, AIX), Red Hat Linux, Win 95/98/NT/ 2000,

2003, 2008,2010

Packages & Utilities

MS Project 2000, Adobe Photoshop, Adobe Acrobat, MS

Office (Word, Excel, PowerPoint,

FrontPage

Performance Monitoring Tools

Site Minder 5.x/6.x one view monitor, Tivoli Access Manager,

TPV, Log Analyzer, Thread Analyzer.

Design Methodologies

Unified Modeling Language (UML) 1.0, Rational Rose,

Rational Clear Case, Rational Requisite, MS Visio, ERWIN

Identity Management Tools

CA Identity Manager r12/r8.1, Sun Identity Manager

8.0/7.1/6.0

Work Experience:

PriceWaterhouseCoopers, (Tampa, FL) (Feb 2013- Present)

Siteminder/LDAP Admin

Responsibilities:

Installed, configured and maintained CA Siteminder Policy Server 12.0/12.5, CA IDM r12 and Sun ONE Directory Server 5.2 on Solaris, Windows platforms.

Experience in installing, configuring Siteminder policy server, Web agents, Netegrity Transaction Minder, Active Directory server (LDAP) and various Web & Application servers.

Implemented CA Identity Manager solution for provisioning, delegated administration, workflow implementation and generating audit reports to be compliant with the security regulations.

Updated Corporate User store with the expanded user base as a result of new business acquisitions by directory acquisition and Correlation schemas using custom attributes. Extensively used web services variables to facilitate federation of web services.

Implemented custom attributes properties to track the information about the recipients of the application site.

Configured custom alerts and e-mail notifications based on the business needs.

Created and updated the provisioning policies as per the change in the business environment using Policy Xpress.

Worked extensively on creating Custom Password policies and Authentication schemes as per the requirement.

Experience in Configuring CA Siteminder policy server, framing Rules and Policies, Policy Server maintenance, SSO call clearance, Web Agent & Application agent installations, trouble shooting production problems.

Migration of Siteminder 5.5 to 6.0 for advanced Load balancing, failover configurations and for facilitation of user impersonation.

Installed, configured and integrated Web servers (plug-in file), Siteminder agents and LDAP user directory with Weblogic Server V10.

Installation of Siteminder Policy Server Optional Pack and Web Agent Optional Pack for Federation web services.

Configured Siteminder web agents, Affiliate agents and RADIUS agents to provide federation of webservices in the SSO environment.

Configured user impersonation feature to enable Customer service department to provide a better service to the business clients.

Experienced in assisting Web Administrators, LDAP Administrators to determine what the best values for Siteminder parameters and tune the system to boost Siteminder performance in the Web Tier, the Application Tier, and the Data Tier.

Configured Ping Federate 5.x/6.x for SSO across multiple web based enterprise applications.

Performed user provisioning in Identity Provider(IdP) site Service Provider(SP) site using SAML for SSO

Experience with using Integration Kits and Token Translators for integrating identity enabled web services into SSO environment.

Installation configuration and maintenance of RSA authentication manager 6.x for enabling token based authentication along with the form based authentication as a part of the security solution.

Experience with the implementation of RSA two factor authentication tokens for the integrated web service security in a SSO environment for the service provider applications.

Hands on experience with configuring IdP initiated and SP initiated SAML profiles with different bindings like POST, Artifact, Redirect as per the custom business and security requirements.

Configured SSO Integration Adapters for session cleanup as part of Single Logout (SLO) in the SSO implementation.

Creating OpenSSL Certificates and using the same for Federation of external Services to achieve the purpose of maintaining confidentiality, message integrity and bilateral Authentication.

Worked on new Directory Server Schema's as per the needs of the business.

Worked with existing user stores and new external LDAP stores. Integrated Active Directory & Sun One directory servers as user stores & SQL Server as Policy store.

Experience in trouble-shooting the issues by analyzing the trace and TAI logs.

Experience with using Wily and One view monitor for performance monitoring of identity management servers and components.

Experience with performance tuning of policy servers and associated components and generating performance reports using customized crystal reports.

24x7 production support.

Environment: JDK 1.4/1.5, J2EE, JDBC, XML, SAML 2.0, CA Siteminder 6.X/12.X, Sun ONE Directory Server 5.X/6.X, CA Identity Manager r8/r12, Ping Federate 5.x/6.x, Tomcat 5.5, Apache 2.0, Wily Introscope 7.0/7.2, Solaris 8/9/10, Windows 2000/2003, Oracle 10g/11g, SQL Server 2005, DB2 8.X.

National Institute of health, Maryland (December 2011- Jan 2013)

Siteminder Admin

Responsibilities:

Installed, Configured and Managed Netegrity Siteminder 12.0.

Migration of policy server from Siteminder 5.5 to 6.0 for Load balancing, and failover configuration of the Policy store.

Configured and Defined the Policy Domains, User directories, Rules, Realms, Policies and Responses in Siteminder.

Worked on One View Monitor statistics, error corrections for possible problems, reviewed SNMP events for possible problems and worked on the status of Siteminder P1 tickets Configured IBM HTTP Web server, Siteminder to work with WAS.

Worked on Siteminder Platform Support Matrix for changes.

Worked on webagent.conf, sm.registry, etc. configuration files on Siteminder.

Reviewed and updated Siteminder policy and procedures.

Worked on Siteminder architecture and taken care of changes that are needed based on capacity planning.

Created, Configured and Administered Profiles, Clusters, Nodes and Node Groups for WebSphere Application Server.

Used One View Monitor in Siteminder for identifying performance bottlenecks.

Monitored heartbeats and refresh rates for various components of Siteminder.

Experienced in creating and maintaining security policies for Siteminder.

Configured Node manager for administration of Managed servers.

Installed and configured Wily Introscope Enterprise Manager Responsible for deploying enterprise applications from Admin console and enabling security using LTPA and LDAP for admin console and application components on AIX. Configured SSL for Web Sphere Application Server for security reasons with agents.

Experienced in assisting Web Administrators, LDAP Administrators to determine what the best values for Site Minder parameters and tune the system to boost Siteminder performance in the Web Tier, the Application Tier, and the Data Tier.

Provided training and group presentations on Site Minder security planning to all employees, using Microsoft Visio and PowerPoint.

Experience in implementing failover and load balancing schemes between Web Agents and Policy Servers and also between Policy Servers and LDAP.

Experienced in setting up integrated security access to the portal and Single Sign-On.

Implemented clustering and worked on analyzing the scalability of applications with the help of tools like IBM Tivoli Site Analyzer.

Used ANT script to automate loading Users and User Groups into Active Directory (LDAP), and XML based EAR/ WAR deployment.

• Responsible for deploying enterprise applications from Admin console and enabling security using LTPA, LDAP for admin console and application components on Windows.

Updated Latest Fix-pack 6.1.0.13 for AIX.

Trouble shooting of errors in both Application and JVM, also analyzed heap or core plus error logs .

Involved in setting up JVM tuning parameters and used garbage collection.

Assembled and deployed the application in production, staging for following change management practices.

Regularly attended meetings on behalf of Middleware Team & co-ordinate with different teams for task accomplishment.

Environment: Netegrity Siteminder 5.x/6.x, Identity Manager 6.0, Web agents 5.x/6x, Websphere 5.x,/ 6.x, Apache 2.x, IIS 5.0/6.0, Sun ONE Directory Server 5.2/6.1, SAML, XML, LDAP, LDOM 1.1, Solaris (10), Unix, Linux, Sun Iplanet6.0/6.1, IIS 5.0/6.0, ANT, JACL, Foglight, Unix shell scripts, Struts, Hibernate, Java/J2SE 1.4, J2EE 1.3, Eclipse, SOAP, UDDI, IBM Rational Clear Case.

Wellsfargo, (Tempe,AZ) (July 2010 – December 2011)

Siteminder/LDAP Admin

Responsibilities:

Experience in configuring multiple Site Minder Instances with Siteminder Federation/Option Pack.(Ping Federate Equal )

Installed, Configured and Managed Netegrity Siteminder 6.0

Migration of policy server from Siteminder 5.5 to 6.0 for Load balancing, and failover configuration of the Policy store.

Involved in Virtualization / Decommission of Siteminder policy servers and SunOne Ldap servers across multiple data centers.

Migration of Dev/UAT/PROD from 6.5 to 12.0 with 1000+ webagents

Involved in detailed setup for troubleshooting and implementation of support procedure.

Experience in configuring multiple LDAP instances and defined LDAP Schemas.

Experience in configuring Netegrity Siteminder 6.5/12 with Weblogic 6.0/8.1/9.2 and WebSphere Portal 6.0.

Defined and maintained Sun and Active Directory (LDAP) security models

Administered policy and user stores using the Sun ONE Directory servers while also providing redundancy and availability.

Involved in Configuring SSL for high security of web application.

On-call Support (24x7) for both Testing and Production Environments.

Defined monitoring, maintenance and capacity planning for Siteminder policy servers.

Designed processes for enterprise Active Directory user, group, printer, file share and password policy.

Delivered new global enterprise SSO and LDAP architectures for development, staging and Production Environments.

Upgrade project plan and direction for Siteminder version 6.0.

Performed the upgrade from Siteminder version 6.5 to 12.0 in development, staging and production environments’. This included all web server agents, policy servers and Active Directory policy stores involving 2000 Plus applications.

Adding the LDAP certificates through ikeyman.

Monitored Applications and WAS performance through Tivoli Performance Viewer and tuned the system caching, queuing, JVM parameters, DB Connection Pooling.

Created IBM Problem Management Records (PMR) to report WebSphere Application Server problems. Analyzed log files to solve problems using debugging tools like Log Analyzer, First Failure Data Capture Tool and Collector Tool.

Written extensive Korn/Jacl/Jython scripts for automatic portal deployment in the lower environment.

Environment: Netegrity Siteminder 5.5/6.0, Sun ONE Directory Server (5.1, 5.2), IBM WebSphere Application Server 5.x/6.x, Web agents 5.x/6x. JDK 1.5/1.4, J2EE, JSP, Servlets, EJB, JDBC, XML, Oracle9i, BEA WebLogic 9.2/8.1, JBoss 4.2, ALSB 2.6, iPlanet 6.0, Wily Introscope 5.3/7.0.

COMPUTER SCIENCE CORPORATION (CSC) (Aug 2008- July 2010)

Hyderabad, India

Responsibilities:

Setting up the identity provider side, Using CA Federation Manager R12. Policy Store, User Store configuration

Delegated Authentication on external WAM System

J2ee API to create OPENFORMAT cookie

Remote Provisioning, Account linking CA IDM R 12 CR 5

Siteminder Connector to connect to the Existing Siteminder infrastructure

Entities, Partnership, Meta-data exchange, Enabling SSL for IDP, SP Domains

J2ee API developed to form open format cookie for IDP to accept SSO

Federation partner on boarding and certification: Used FuGen MISP™ tools in a cloud/virtualized environment to create virtual scenarios, onboard, test, validate and certify the federation partnership

Testing and On-Boarding users

Technical Expertise:

Identity Federation and Access management Products & Protocols

CA’s SiteMinder, Federation Manager, Identity Manager, IBM’s Tivoli TAM-TFIM, Pingfederate, Microsoft ADFS 1.0/2.0, SymLabs, OpenSSO, OpenSAML, Federation Services platform FuGen MISP, SAML 2.0/1.0 Profiles AuthnRequest, Response, Logout request/response, Artifact Profiles, Attribute queries, IDP Discovery], WS-FED [RSTR, STS], WS-TRUST, OpenID and OAuth profiles.

Educational Qualification:

Bachelor of Engineering in Information Technology, INDIA



Contact this candidate