Name : Maamillapalli Anil Kumar
Designation : OIAM Developer & Architect
Email : adhiv9@r.postjobfree.com
Contact # : 616-***-****
Total Work Experience:
I am an Identity & Access Management professional with 13+ years’ experience in IT Industry which includes 8+ years in Oracle Identity Access Management security stack, 3+ years in Java Enterprise Edition (JEE),4+ IdentityIQ and specialized in defining Architecture, Design, Development, Implementation and support of Identity & Access Management solutions, & Java J2EE projects.
Project Experience
Technical Experience
Personal Experience
Client
Spectrum Health
KP
HUS
QIA
VMware Ltd
Tesco Ltd
Santa Fe Railways (NSF)
VGSYS
Security Stack Software
Oracle Enterprise Linux
Oracle Database 11gR2,12c
Weblogic 10.3.6,12
OIM R2 PS1,PS2,PS3
OAM 11,12
ODSEE,OUD,AD
OAAM
SOA 11.1.1.7
SSO
Tomcat Server
IdentityIQ(IAM)7.x,8,x
Education & certification
MCM masters in computer Management (University of Pune 2002).
Oracle Certified Professional Java SE 6 Programmer.
Oracle Certified Associate WebLogic Server 11g System Administrator.
Domain Knowledge
Health Care
Tourism
Business Enterprise
Retail
Banking
Insurance
Target System
ODSEE,OID,OVD,OUD
Active Directory
Exchange Server
People Soft HRMS App
EBS
CSV
iPlanet
Technical &Tools
JSE(jdbc,jndi,rmi)
JEE(servlet,jsp,jms,ejb)
ORM(JAP,Hibernate)
Ant,Log4J
Maven, GIT,ADF,JS
SAML 2.0
Angular
REST API, OPEN ICF, SOAP
Roles
IAM Enterprise Developer & Architect
Senior Security Consultant
Security Consultant
IDM Consultant
Software Engineer
Business Processes
User Life Cycle management
Provisioning & Reconciliation
Self-Service Account Request
Approval Workflow
Password Management
custom connector designing
Integrating Heterogeneous systems with OIM API.
URL Protection.
Web Single Sign-On.
Identity Assertion.
IT Compliance & Regulatory
FISMA
SOX
HIPAA
PCI
ISO 27001
MAJOR SKILLS AND CORE COMPETENCIES:
Having good knowledge on IdentityIQ & Oracle Identity and Access Management.
Ability to understand Architecture, Core Services, various Heterogeneous Components and Resources available in the client’s business environment and rendering Enterprise Solution.
INSTALLATION, INTEGRATIONS AND CONFIGURATION:
Good Experience installation experience on Identityiq Sandbox environment and DEV, QA, Staging and Production environments platform both on Windows and Linux.
Having Good knowledge and Experience on Different IdentityIQ FootPrints installed Environments.
Good Experience in IAM On-boarding applications, Workflows, CM, Reports, Custom Rules, Custom Forms, QuickLinks, LCM, Custom Connector, UI customization, Capabilities, SPRights and Configurations in SailPoint
Hands on experience in working with Governance and Life Cycle Management in SailPoint.
Experience in SSB build upgrade and customization using ANT scripts.
Experience in Integration of Active Directory, OpenDJ, SAP, LDAP, JDBC, Delimited File, ServiceNow, Logical Application.
Experience in developing Web services REST custom connector using XML and JSON for data exchange.
Proficient with Beanshell rules, forms, workflows, policies and access certifications within the IdentityIQ framework including all three modules of SailPoint which is LCM, Governance and Compliance.
Using the OOTB connector AD, LDAP, BMC Remedy, etc.
Using BMC Remedy for ticketing system connected to IIQ.
Create identity Life Cycle workflows, defining life cycle events.
Setup applications Active Directory, LDAP, and Flat Files.
Developing custom Tasks and Task Executors and providing solutions for the changing business requirements.
Customizing Out of the box workflows.
Gathered requirement from clients and used that requirements to implement roles in SailPoint.
Using IIQ Console for operations such as checkout, import, connector Debug etc.
Used IQService as part IdentityIQ 7.x for Active Directory (AD) provisioning.
Invoke custom workflow through Java, bean shell scripting by building Provisioning Plan, launch arguments, account request, attribute request.
Implementing custom email templates both HTML and plain.
Design and implement new custom workflows for provisioning
Configured High Availability, Load Balancing, and Failover conditions according to the Business Requirement.
Experience in provisioning with various connectors of OOTB such as ODSEE, OID, OUD, AD, Exchange Server, PeopleSoft HRMS, Oracle-EBS, Generic Technology connectors.
Functional areas of expertise includes Custom Approval Workflows, Adapters Development and implementation.
Strong experience in Quick link configuration and dynamic scoping in IIQ.
A very good programming knowledge in plugins and plugin-points (Naming policies, event handlers, schedulers, pre-population Adapter, password Verification, Notification Services etc).
Expertized on user management, password management, access policy, approval policy, process management.
Knowledge of Password Synchronization, LDAP Synchronization, SSL Configuration, Authorization and Authentication Configuration, debugging of user provisioning issues and application server logs.
Experience on Single Sign-On (SSO), Access Management, Security Infrastructure Design, Authentication and Authorization technologies.
Implementing Custom login page and lost password management.
Knowledge on Course-grained and Cross Domain Single Sign on different Applications.
Experience in FORM based authentication and X.509 certificate based authentication.
Experienced different schema like LDAP Schema, X.509 Schema, PasswordPolicyViolationSchema, TAB Schema, Have experience in Access SDK.
Designed and implemented central login and logout.
Having hands on experience in different LDAP directory servers like Oracle Internet Directory and Oracle virtual Directory, MS Active Directory, ODSEE, OUD, Open LDAP and ACL's.
Having hands on experience on designing Java Client with the help of OIM API and integrating with third party application.
Having a good knowledge on OIM API and developing connector and its components with the help of design console and OIM-API (ICF).
Having experience in Java and extensively involved in web application development using Java, JDBC, JNDI and J2EE.
Good at Project Management (Agile Methodology, Water Fall Model), Technical writing and reporting skills.
Have excellent communications skills, strong interpersonal, self-motivated skills, which provide with the ability to interact with clients, end-users, managers, technical personnel, and I am quick learner and team player
PROJECTS :
1. Project Name:
OIG Implementation
Company
Spectrum Health
Client
Specturm Health
Role
IAM Enterprise Developer
Duration
Feb 2018 till date
Team Size
12
Environment
IdentityIQ, OIM 11.1.2.3.0, SailPoint 7+,8.0, Oracle Access manager, WebLogic 10.3.6,12c Microsoft Active Directory, Office 365, Oracle Unified Directory(OUD), Lawson. Service now, workday, Oracle Database 12c, Apache Tomcat, MySQL
Description:
Being a IAM Developer, I took responsibility to design, configure, develop the process and its integration with IdentityIQ, while interacting with the client’s partners, team members, and the opensource communities to give the best practices. As a part of the process we have designed IdentityIQ Connectors,Quick links Pages, Custom Workflow designing, custom form dynamic scoping,Notifications, including database designing. Designed connected and disconnected applications and automated the server environments with the dev-app tools. Managed IdentityIQ,OIM development/bug process through Jira tool, server automation with Rundeck environment.
Installed IIQ in sandbox, Dev, QA and Production based on large footprints
Worked on large Footprint installations with 2 task hosts and 3 UI hosts, and 1 dedicated DB server host with replication.
Worked on Custom LCM Provisioning Workflow process for business requirement.
Worked on Custom LCM Manage Passwords workflow process for business requirement.
Configured SAML based SSO with IIQ using Okta.
Worked on User capabilities in IdentityIQ.
Worked on Extended attributes for identity, Link, Bundle, Application, CertificationItem.
Worked on IdentityIQ 8.0 Logging and Audit configuration.
Worked on IQService and TLS Communication.
Worked on BeanShell for developing IdentityIQ Rules, Workflow Steps, etc.
Worked on Manager, Application Owner, Certification lifecycle for access review.
Worked on IdentityIQ Branding for Look and feel with other enterprise applications using JavaScript and CSS.
Worked on Forms like workflow forms, role provisioning policy forms, and application provisioning policy forms.
Experience in Analysis, Design, Development, Deployment, Post Deployment Support and Maintenances activities.
Worked on custom quicklink for creating workgroup.
Worked on different application connector like Active Directory, Database, Flatfile,OUD, workday, ServiceNow,lawson,Airwatch.
Participate in all SailPoint deployment activities – connector configuration, custom rule development, workflow configuration and development, third party system integration, including designing custom connector.
Implement REST classes using SailPoint Rest Application.
Worked on patching and upgradation on 7.x to 8.x.
Enhancing rules, aggregation. Workflows, entitlements, groups, workgroup, etc.
Using the OOTB connector AD, LDAP, BMC Remedy, etc.
Create identity Life Cycle workflows, defining life cycle events.
Developing custom Tasks and Task Executors and providing solutions for the changing business requirements.
Customizing Out of the box workflows.
Gathered requirement from clients and used that requirements to implement roles in SailPoint.
Using IIQ Console for operations such as checkout, import, connector Debug etc.
Used IQService as part IdentityIQ 6.x for Active Directory (AD) provisioning.
Invoke custom workflow through Java, bean shell scripting by building Provisioning Plan, launch arguments, account request, attribute request.
Implementing custom email templates both HTML and plain.
Design and implement new custom workflows for provisioning.
Experience on Implementation of self service and password features.
Implemented Workflow (Joiner, Leaver), custom rules.
Designed, and developed OUD as a primary data source ping fed, and worked with data migration with LDIF and also Written LDAP Java Code using Spring boot.
Designed, Developed Custom connector for Lawson Target Application for provisioning.
Designed, Developed Custom Tile for On-Boarding Non-Employees.
Designed, Developed Custom catalog Search Filter.
Designed, Developed Additional Form while provisioning the Entitlements (in ADF).
Designed SOA Workflow for Entitlement Provisioning.
Designed, Developed Request Failed Re-triggering Schedule Job.
Designed, Developed Schedule Job for Extending End Dates for given Non-Employees
Designed, Developed Custom Connector for API Target Application.
Designed, Developed Custom Connector for Source Application (Data is loaded from CSV into Database).
Designed, Developed Custom Tile for Integration Employee(M&A) On-Boarding Process.
Worked on Request and incident Management
Designed, Developed Custom Connector for AirWatch(VMware).
Designed, Developed web portal for Identity Operational Management team for create, update, modify user accounts in the system using Spring boot, Spring LDAP API, Spring SAML(SSO),Angular (single page web application)
Designed and developed Authorization Policy and module in OAM.
Configured Different Identity Store in OAM.
Worked with Reverse Proxy in OAM
Worked with different security mode in OAM.
Designed Angular Application for different services using spring boot rest services.
Responsible for design and implementation of SailPoint IdentityIQ.
Implemented Access Certification, Automated Provisioning and Governance aspects of IIQ.
Develop complex workflows and service adapters in the SailPoint Identity IQ configuration interface.
Worked with various application teams to establish connectivity (Top-secret, AD, e Directory, People soft, salesforce and servicenow).
Implemented Self-service feature, Password management feature, Provisioning feature and forgot password change in Sailpoint.
Description:- In Kaiser Permanente I worked as a developer architect for Designing, Developing and Configuring and restful connector IDCS And also I work as a developing external process for building Entitlement Systems for OIM
2. Project Name:
Oracle Identity and Access Manager Implementation
Company
Kaiser Permanente
Client
Kaiser Permanente
Role
IAM Enterprise Developer & Architect.
Duration
Nov 2017 to Jan 2018
Team Size
9
Environment
Identity and Access Management 11.1.2.3.0, WebLogic 10.3.6, Microsoft Active Directory, Office 365, Oracle Internet Directory, HCM.
Description:-For HUS I worked as Developer architect for Designing the OIAM system for Finland Healthcare System.Building the environments like (Dev,pre-prod,prod) designing the business flow for each Identity case and converting them into Oracle Identity Manager related coding. Here I played as a OIM specialist role.
3. Project Name:
Oracle Identity and Access Manager Implementation
Company
HUS
Client
HUS-Finland Government Health Project
Role
IAM Developer & Architect
Duration
Feb 2017 to Nov 2017
Team Size
8
Environment
Identity and Access Management 11.1.2.2.0, WebLogic 10.3.6, Microsoft Active Directory, Exchange Server, Windows 2008 Server, Oracle Internet Directory, PeopleSoft HRMS, EBS.
Description:- I worked as senior technical consultant for Oracle Identity and Access Manager and as a lead for Java developers. simultaneously I worked on the Java projects and the same time OIM products
4. Project Name:
Oracle Identity and Access Manager Implementation
Company
iGrid technologies
Client
QIA- Qatar International Adventures
Role
IAM Developer (Team Lead)
Duration
Feb-2016 to Feb-2017
Team Size
6
Environment
Identity and Access Management 11.1.2.2.0, WebLogic 10.3.6, Microsoft Active Directory, Exchange Server, Windows 2008 Server, Oracle Internet Directory, PeopleSoft HRMS.
Description:
QIA (Qatar International Adventures) has IDM solution for initiated has incorporated privacy, confidentiality, and security as a design objective, and has many privacy enhancing features built-in:
A.Use of the user-centric, Tourism-based architecture to put the user in direct control over identity information flows.
B.Strict policy, standards, operational practices, and enforcement to ensure tight control over user provisioning/de-provisioning process.
C.Management services.
D.Careful choice of technologies to enable strong security where needed.
The risks associated with identity information concentration cannot be eliminated entirely. However, Simeio has designed a thoughtful, rational, and flexible solution that will allow strong privacy protections and security to respond to adverse events. We are confident that the open dialog about the identity management solution will support this conclusion, and lead to the QIA overarching goal to improve identity management to better achieve security outcomes.
5. Project Name:
IAM Implementation
Company
iGrid technologies
Client
Enviva/USA
Role
Senior Security Consultant (Team Lead)
Duration
Aug-2014 to Feb-2015
Team Size
8
Environment
Oracle Identity Access Management suite, Connector Server, Active Directory User Management Connector, Microsoft Exchange Connector, Active Directory Password Synchronization Connector, Oracle e-business Employee Reconciliation Connector, Oracle SOA Suite, Oracle Weblogic Server, Oracle Enterprise Database, Oracle Repository Creation Utility, Oracle Http Server, Oracle Enterprise Linux, EBS.
Description:
Enviva group is USA conglomerate that operates in 20 states around with approx. 30,000 users need continuously improving systems to manage the user access to systems within and across partner domains. Also increasingly complex is the management of the employee life cycles through automated organizational processes as the rapid changes in business environment make it increasingly difficult to adopt and implement a solution. Simeio solutions can help to overcome these problems with its experience in delivering process-oriented implementations of identity management solutions.
Some of the common challenges in user lifecycle management are:
A.Automating the Hire to Retire Process
B.Ensuring that users are providing access to their birth right accounts on the first day of joining the organization
C.Ensuring that a user is disabled/de-provisioned as soon as his/her access to a resource has been terminated
D.Managing a central repository for user identities
E.Expertise in implementing Oracle Access Manager and E-Business suite SSO Solutions.
Leveraging Oracle’s Security solution can help VMware define and manage user life cycle processes. Some of these are:
Well designed and flexible architectures
Building consensus among interest groups
Extending systems to include clients and suppliers
Business case development to help get management.
6. Project Name:
IAM Implementation
Company
iGrid technologies
Client
Leap Wireless / USA
Role
Senior Security Consultant
Duration
Feb-2013 to July-2014
Team Size
5
Environment
Oracle Identity Manager 9.1, Oracle Access Manager 10g, Oracle 10g, Oracle Internet Directory 10g, Microsoft Active Directory, Windows 2003 Server.
Description: As Senior Security Consultant I got an opportunity to work with OIAM Team in Commerce Insurance Company to Implement OIM 10g, I worked with developing prepopulate adaptors, schedulers, event handler and installation and configurations and integration the system.
7. Project Name:
Commerce Insurance Company
Company
iGrid technologies
Client
Commerce Insurance Company
Role
Senior Security Consultant
Duration
Feb-2012 to Dec-2013
Team Size
7
Environment
Oracle Identity Manager 10g, I Planet Server, Active Directory 2008, Exchange Server, Java, JDK, WebLogic, Solaris, VMware, Windows2003.
Description: As Senior Security Consultant I got an opportunity to work with OIAM Team in Board View networks/USA to Implement OIM 10g, I worked with developing prepopulate adaptors, schedulers, event handler and installation and configurations and integration the system, worked with installation access management of enterprise.
8. Project Name:
BIDM (Implementation & Support)
Company
iGrid technologies
Client
Board View networks/USA
Role
Security Consultant
Duration
Oct-2010 to Dec-2012
Team Size
5
Environment
Oracle Identity Manager 10g, Oracle Access Manager 10g, iPlanet directory server, OHS Web Server, Solaris.
Description: As Senior Security Consultant I got an opportunity to work with OIAM Team in Tesco Ltd to Implement OIM 10g, I worked with developing prepopulate adaptors, schedulers, event handler and installation and configurations and integration the system, worked with installation access management of enterprise.
9. Project Name:
Tesco IDM
Company
iGrid technologies
Client
Tesco Ltd
Role
Security Consultant
Duration
Nov-2008 to Sep-2010
Team Size
6
Environment
Oracle Identity Manager 10g, Oracle Access Manager 10g, Sun Java Directory server 5.1, .Net framework, OHS Web Server, Oracle Internet Directory, and Solaris.
10. Project Name:
On-Line Examination
Company
VGSYS
Client
JNTU
Role
Software Engineer
Duration
May-2005 to Nov-2008
Team Size
4
Environment
MS-Windows XP, JDK 1.5, BEA WebLogic, Eclipse, Oracle DB SVN, Log4j, Junit.
Description:
On-Line Examination is web-based application for technical evaluation. This application covers evaluation of candidates on different technologies like C, C++, and Java/J2EE.
The purpose of the system is to develop Online Examination System., used to test the Domain knowledge of the students with respect to the technology. The manual procedure used for conducting exam is time consuming process and error prone due to human limitations. The System purpose is to completely automate the old manual procedure of conducting exam to Online Web Based Examination System.
The project has below modules:
Administration, User, Question, Exam.
Responsibilities:
Coding Java Business objects and controller classes Using Spring Framework.
User interfaces using JSP.
Responsible for the implementation of both Business Rule in service Layer and Persistence logic in Data Access Layer for Question/Exam use cases.
Used JavaScript for client-side validation and Spring API for server-side validation.