Arihant Baid
Senior Security Consultant
EXECUTIVE SUMMARY
Extensive hands-on experience in Requirement gathering, estimation, capacity planning, architecture, analysis, design, development, implementation, support, tuning, troubleshooting and documentation.
Extensive experience in Implementing Identity and Access Management solutions using Oracle Fusion Middleware IDM suite of components: OIM 11g, OAM 11g, OAAM 11g, OVD, OUD, OID, ODSEE, OIF, OIA 11g etc.
Over 8+ years of IT experience in Development, Design, configuration & implementation of Oracle Access Manager, Oracle Internet Directory Server (LDAP), Identity Manager, Oracle Privileged account manager, Oracle adaptive access manager, Portal Server, Secure Remote Access, Webserver.
Experienced in administration, maintenance of Oracle Access Manager, configuring password policy services, policy servers, configuring policy store, setting policies etc.
Experience in designing and developing applications using Application Server, Web Server, J2EE, J2SE, EJB, JDBC, Servlet, JNDI, JSP, XML, XSL
Quick learner, excellent team player & great client handling skills. Good communication, interpersonal and mentoring skills.
Oracle Certified Specialist in 11g Identity Analytics
Oracle weblogic server 11g Certified
WORK EXPERIENCE:
Kapstone LLC Feb 2013 - Current
Project: Tucson Power Authority
Role: Sr. IAM Consultant
Responsibilities:
IAM Engineer managing and overseeing a team of IAM developers, BA and QA. Responsible for the TEP’s Identity and Access Management Solution initiative to streamline User Lifecyle management process, meet NERC CIP and SOX compliance objectives, provide privilege account management solution using OPAM.
Integrate Oracle Access Manager with PeopleSoft, and four internal applications.
Finetune complete OAM, OIM, OPAM, OHS and OUD.
Integration of Salesforce and ServiceNow with Oracle Access Manager.
Build and configure proxy server.
Troubleshoot day to day issues and provide remediation.
Work with Oracle support to escalate open SR’s.
Integrate with PeopleSoft HCM for employees, Oracle E-Business Suite for Contractor Management (CMS), Active Directory (3+ Forests), OUD, ServiceNow, Exchange 2016, Office 365, RSA token, CCURE badging system
Replace Keypass with OPAM
Worked closely with system, network, and administrators to provide highly available and scalable solutions.
Streamline critical assets like shared folder, control system, badging security and meet compliance requirements
Configure authentication schemes, authorization schemes, policies based on the client requirements as part of Single Sing on implementation
Installed the OHS webserver and webgates and configured proxies to the backend application servers of the Single Sign On applications
Environment: Oracle Identity and Access Management, Active Directory, Enterprise Linux 6, Oracle Database, Oracle Unified Directory, Exchange
Project: DC Health Link
Role: Sr. IAM Consultant
Responsibilities:
Upgrade Oracle Identity Manager, Oracle Access Manager and Oracle Adaptive Access Manager from 11gR2 PS1 to 11gR2PS3
Integrated OAM with more than 20 on-prem and could app including Curam, Enroll App, Salesforce, etc
Configured multi data center (two data center)
Integrate OIM-OAM-OAAM modules of suite to support SSO
Created a custom authentication plugin to accommodate business requirement
Install and configure the webgate for OHS, IHS, Apache and IIS.
Provide support to Dev, Test, QA and Prod environment
Install and configure Oracle Virtual Directory in HA
Created a simple join to provide consolidated view of OID and AD
OIM custom plugin for certification
Developed OIM BI Custom Reports
RBAC base automate provisioning
Fine grained authorization based Admin Roles Management
Installed and configured DB, OIM, OAM, OAAM, OUD, OHS, and 11g Webgate in 11g R2 PS3 POC Environment
Environment: Oracle Identity Manager (11gR2 PS2, 11gR2 PS3), Enterprise directory,Oracle Access Manager, Active Directory, Enterprise Linux 6, Oracle Database, Oracle Virtual Directory, Oracle Internet Directory
Project: Kaiser Permanente
Role: Sr. Security and Security Compliance Consultant
Responsibilities:
Lead the effort to fine-tune the environment to resolves the environment issues like servers being in warning mode, LN provisioning, DB related issues etc.
Worked on Designing and implementing the OIM and OAM 11gR2 PS2
Fine-tuned and stabilized oracle Identity and access manager environment.
OAM Multi datacenter setup
Setup Co-Existence
Secure access manager communication
Integrated OAM with more than 150 application
Add enhancement to existing Web Access management infrastructure
Work with Oracle’s OAM product development team and A-team
Installation and configuration of new Oracle Identity Governance 11g R2 PS2.
Upgrade BI Publisher 11.1.1.5.0 to 11.1.1.7.1 in cluster mode
Supported the production environment in heavily used traffic time.
Fine-tuned the RAS, Lotus Note connectors.
Worked on OIM Database tuning to improve the performance.
Configured different BI Publisher reports for OIM as well as OIG.
Worked on root cause analysis and prepared the solutions document for the Operation Team for various issues.
Provided training on various connectors (OOTB and Custom) to the operation Team (Attendance count 20+ members including manager).
Created scripts to move logs files to archive folders, WebLogic monitoring, etc.
Environment: Oracle Identity Manager (11gR1, 11gR2 PS2), Enterprise directory,Oracle Access Manager, Active Directory, Enterprise Linux 5,6, Oracle Database Oracle Access Manager 11gR2, OAM 10g, 11gOHS, Apache, Oracle Database, IHS, IIS
Project: HIX (https://www.healthcare.gov/)
Role: Sr. IDAM Consultant
Responsibilities:
Worked on designing and developing new architecture in the environment
Fine-tuned and stabilized oracle Identity manager environment during enrollment period (Heavy Traffic on servers).
Enhanced the environment with recent patches and codes.
Worked on New Relic Tool for nonrioting the server
Setup webgates on OHS proxy
Integrated OAM and OIF with internal and external customers
Installed and configured OIM11gR2 PS2 environment in cluster mode.
Responsible for identifying, analyzing day to day issues related to environment.
Worked with different partners/stakeholders on resolving different issues.
Worked on T2P from Terre mark to HP.
Worked on building a new environment in HP servers in cluster mode.
Installed and configured BI Publisher to generate CMS reports.
Worked on RBAC for the automation provisioning of health care applications.
Developed custom email notifications and schedulers.
Installed and configured PeopleSoft connector (Emp recon) for Enterprise IAM (Separate from healthcare.gov environment)
Configured different password policies as per the CMS requirement.
Environment: Oracle Identity Manager 11gR2, Oracle Internet directory, Oracle Access Manager, OHS, Enterprise Linux 6, Oracle Database, PeopleSoft
Project: PGCPS
Role: Sr. IDAM Consultant
Responsibilities:
Installed and configured OIM11g R2 and OAM 11g R2 in clustered mode and high availability
Setup Connector Server and deployed ICF connectors for Active Directory.
Installed and configured AD, Google Apps, OID, DB/GTC and Workday connectors.
Installed, configured and integrated BI publisher with OIM and Generated complex reports.
Gathering requirements from the business and converting them into technical solutions to be implemented in Oracle Identity Manager.
Integrate OAM with PGCPS applications:
1.Registered and Configured webgates for Reverse proxy servers (Apache and OHS).
2.Setup Windows Native Authentication.
3.Setup External Login Form.
4.Enable DB Auditing and generated reports using BI Publisher.
5.Setup IIS webgates for .NET applications.
Secure access manager communication through Load balancer.
Setup LDAP Sync between OIM and OID.
Created Event Handlers, Request Catalogs, Application Instances, Custom Schedule task and Disconnected resource for Badge.
Applied latest Patches and various hot fixes supplied by Oracle development team to resolve performance, access polices and provisioning related issues.
Installed and Configured OAAM for Parent – Student portal in development and QA environment.
Setup OAM-OAAM-OIM Integrated sandbox environment:
1.To demonstrate parent registration including OTP feature using email or mobile phone.
2.Strong authentication functionalities to protect critical application.
3.Self Service Password Reset.
Environment: Oracle Identity Manager11g, Oracle Access Manager 11gR2, OHS, Apache, Enterprise Linux 5, Oracle Database, AD 2008, Google Apps
Cotelligent LLC Oct 2011 – Jan 2013
Project: Lower Colorado River Authority (LCRA)
Role: IDAM Consultant
Responsibilities:
Installed and Configured Oracle Access Manager, Oracle Virtual Directory, Oracle Identity Manager software on Oracle Red Hat Linux 5.2 with Oracle Web logic application server.
Integrated OAM with Oracle Portal 10g.
Implemented Kerberos Authentication on IIS webserver.
Installed and deployed the connector for MS Active Directory, Oracle Internet Directory, Novel Edir/Idvault, MS Exchange and PeopleSoft HRMS 9.
Integrated PeopleSoft HRMS 9.0, Oracle Identity manager and Oracle Portal/OSSO with OAM for Single Sign-On.
Installed and configured the SSPI webgates for custom weblogic resource to implement SSO.
Configured Reports and audit format for different events on the OAM end.
Created policy domains to protect web resources.
Developed and implement the custom Form Based authentication for OAM SSO.
Designed and implemented error and logout pages for SSO resources.
Installed and configured Oracle Identity Federation on Oracle Red Hat Linux 5.2 to integrate with Juniper VPN device and Oracle Access Manager for Single Sign On Solution.
Supported operations & maintenance of Oracle Identity Manager, Oracle Virtual Directory, Oracle Access Manager and Oracle Identity Federation.
Provided Documentation and support for Oracle Identity Manager, Oracle Access Manager, Oracle Virtual Directory and Oracle Identity Federation.
Installed Oracle Identity Federation with Oracle Access Manager as its IDM Data.
Settled up OIF as IDP and configured it with Juniper VPN device as SP.
Configured PeopleSoft HRMS and Novel Idvault/Edir as authoritative source for OIM.
Implemented and configured Oracle Role Manager with Oracle Identity Manager.
Implemented SPML Generic Technology connector/GTC to connect an SPML compliant Provisioning web service for applications like Maximo and OTM Telecom Management Applications.
Configured and customized user-registration and access forms, designed self-service password reset and password synchronization.
Deployed MS Active Directory Password Sync Connector on windows 2003 server.
Designed work-flows, approvals and email templates for notifications.
Designed and enabled provisioning and de-provisioning of user account across various internal and external systems in Oracle Identity Manager.
Environment: Oracle Red Hat Linux Enterprise 4.x/5.x, Oracle Identity Manager 9.1.0.1, Windows 2003 & IIS 6.0, Juniper VPN, Active Directory 2003, Oracle Access Manager 10.1.4, Oracle Internet Directory 10.1.4 ( LDAP), Oracle AS 10.1.4., Oracle Identity Federation 11g, Oracle Identity Manager Connectors 9.1, Oracle Virtual Directory 10.1.4.3.0.
Project: DFCU
Role: IDAM Consultant
Responsibilities:
Installed and configured OAAM 5.x admin servers and setup proxy servers.
Part of Level 3 Support team and managed incidents.
Applied Patches and worked with Oracle Product team /Engineering team to resolve important issues.
Configured ATM Card and PIN based password resets
Supported 300K+ online Users
Kochar Finance May 2009 – Oct 2011
Role: Developer
Responsibilities:
Developed user interfaces using JSP, HTML and JAVA. Used Eclipse as IDE tool to develop the application.
Use C, C++ to build application specific dll’s.
Created Web.xml, Struts-config.xml, Validation.xml files to integrate all the components in the Struts framework.
Worked heavily with the Struts tags- used struts as the front controller to the web application.
Implemented Struts Framework according to MVC design pattern.
Implemented validation framework for creation of validation.xml and used validation-rules.xml.
Used Hibernated framework for the back-end persistence.
Involved in all phases of Software Development Life Cycle.
User Training-worked with user community closely to train them and explain various features to them.