Software Development Solution Architect
Resume:
S A LMAN J AN
IT LEADER
CONTACT PROFILE
• ************@*****.***
• https://www.linkedin.com/in/salm
an-jan-10b4766/
Personal objective: Dedicated leader in software development, driving innovation, optimizing processes, and mentoring high-performing teams to exceed business objectives.
Leadership: Forward-thinking and accomplished IT Leader with over 15 years of experience in leading and developing robust eCommerce systems and digital solutions. Adept at managing both onshore and offshore relationships w/ engineers, and jr. architects, and ops team; overseeing end-to-end design and product delivery initiatives. Excellent communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders effectively. Strategic abilities: Proven track record in crafting and executing strategic IT roadmaps, providing guidance to sr. leadership on industry trends. Define clear business value-streams with enablers. Agile practice: Expert in leveraging agile methodologies to enhance operational excellence.
Cloud Architecture: Extensive experience in migrating legacy solutions to Cloud or SaaS platforms utilizing cloud-native services, though my deep understanding of Cloud Architecture.
Vendor Engagement: Experienced in vendor selection, RFP processes, negotiation, & commercial planning. Known for bridging the gap between business and engineering, while ensuring compliance with licensing, regulatory laws and zero-trust security guidelines SKILLS EXPERIENCE
• Energetic Leadership
• System Architecture and Design
• Security and Compliance
• Enterprise Integration & API
• Solid Business Acumen
• Cost management & optimization
• Cloud Computing
• Agile principles
Sr. Solution Architect, VP – Digital Identity & Security PNC Bank, Dallas, TX / Nov 2024 – Feb 2025
• Partnered with sr. leaders and business, to align technology strategies with business objectives, driving transformation to future-state.
• Strengthening PNC’s security posture, building secure, scalable, and resilient authentication and payment solutions using OAuth, FIDO Yubi-Key, and 3DS2 standards for Retail.
2/4
TECHNOLOGIES
• Cloud: MS Azure, VM vCloud
Director
• API: REST, SOAP APIs (Swagger),
JSON
• EMM: VMWare AirWatch, MS
M365 Intune, SOTI
• IAM: SAML2.0, OAuth2.0, OpenID
Connect
• EAI/B2B: WebMethods,
EDI/EDIFACT, Trust-Link Enterprise
• Search Engine: Autonomy IDOL
• Portal: Liferay, SAP Portal,
Websphere, WebLogic, Dynamo
• DB: Oracle, MairaDB, MySQL,
Postgres
• ERP: SAP Portal, People Central,
SITA Billing Engine, Business
Objects, OBIEE
• API Gateway: APIgee
• Security: WS-Security, X509 Cert,
TLS, ONNE, STRIDE Threat Models,
& SOC2 compliance.
• Monitoring: Dynatrace, ELK
• Architecture Patterns:
Microservices, Serverless, Layered,
Event-Driven, Client-Server,
Monolithic, Pipe-Filters
• Kubernetes, Docker
containerization
• MQ: IBM MQ, Rabbit MQ
• AzureCloud: Azure303 and
Azure304 training
• IAM: Salesforce Identity, Ping
Identity, Azure AD.
• BI Analytics: Azure Databricks
• Languages: Java, C++, Javascript
• Frameworks/standards: Java
JSR168, JSR286, JSF, JSPs, Spring
• Messaging Protocols/Techs: SMTP,
POP, IMAP, CommuniGate Pro
• Testing: Scalability, Security and
Chaos testing
• EA: TOGAF, IAF, ArchiMate, Visio,
VS-Code w/ PlantUML
• PM: Confluence, MS DevOps, Jira
• Conducted comprehensive Threat Modeling using the STRIDE framework to assess security risks in DI architectures. Leveraged MS Threat Modeling Tool for in-depth analysis and documentation.
• Device DI API Access design for internal and external consumers leverage design patterns. The design incorporates the OAuth Authorization Code Flow w/ MFA utilizing PingFed IdP and Apigee and DataPower API GWs. Employed capturing potential fraud detection w/ Actimize integrated via Kafka.
• Develop comprehensive design artifacts for DI.
• Engage in “design sassinations” and peer reviews to support new and existing enterprise design and architectural reference models. Sr. Principal Architect – Enterprise Product Engineering SITA, Atlanta, GA / May 2023 – Jun 2024
• Served as a trusted advisor to CTO on strategic matters, delivering technical roadmaps for current and future state w/ clear TCOs.
• Co-chaired Design Authority Board meetings, ensuring architectural runway proposals align with SITA design principles, adhere to technical guardrails and security guidelines; effectively reducing existing tech-debt. Record & communicate design decisions.
• Collaborated w/ Product Managers to define business context and identify value-streams. Developed business capability models w/ clear enablers. Support CTO to estimate new product proposal costs.
• Led team of highly motivated Tech Leads to device solutions for Messaging and API. Conducting lunch-and-learn sessions on approved guardrails and design principles, ensuring process alignment and best practices. Ran portfolio design review sessions.
• Spearheaded integration of DR strategies, devising a comprehensive Business Continuity Plan (BCP) to mitigate operational risks & support migration of the Portfolio applications to SITA Private Cloud (SPC).
• Led development of end-to-end operational support framework for SPC facilitating smooth transition to IT Operations.
• Developed and implementing information security policies and procedures for the new Private Cloud.
• Proven track record in building and leading high-performing teams.
• Provided guidance to the Scrum Master by offering technical oversight, drafting & refining product backlog, participating in sprint planning with the aim to preempt risks.
• Assisted Project Managers during budgetary exercises and costing of new products and migration initiatives. Led cloud deployment lifecycles, and Operations teams on deep technical implementations.
• Led prototypes for PoC initiatives, frequently performing hands-on coding, cloud configurations, and infrastructure/middleware setups. Collaborated closely with external vendors, business and IT partner EDUCATION
University of the West of England, UK
1995-1997
MSc - Information Technology
The International University, Missouri
1991-1993
BS – Computer Science
3/4
AWARDS & PATENTS teams to support commissioning of new products. Conduct tech-risk assessment for market adoption, security risk, TCOs, End-of-Life, and alignment with corporate tech-stack/guard-rails.
• Led strategies paper, reference architectures and studies for Messaging ensuring designs reduce technical and security debts.
• Collaborated w/ QA and engineering teams to support CHAOS testing, to validate RPO & RTO targets.
• Led the assessment of cross-platform mobile application development frameworks, aligning with SITA’s mobile strategy and establishing architectural guardrails to ensure scalability, maintainability, and performance.
• Proposed and led the modernization of the Messaging Account & Statistics system, migrating from a monolithic on-prem design to an Azure-native architecture with Databricks pipelines, Medallion Data Pattern, Azure Data Lakes, and Power BI for advanced reporting. Lead Solution Architect – SITA Messaging Group
SITA, Atlanta, GA / Jun 2022 – Apr 2023
• Partner with Product Managers and Tech Owners to analyze customer requirements from MVP to MMP for SITA’s Core and Edge Messaging products based in TypeB and other ATI standards. Define artifacts such as business-context models, use case diagrams, Product Capability models to rationalize customer needs and value-streams.
• Collaborated with Operations and Infra Manager to ensure that designs adhered to HA standards, including DR with defined RPO and RTO, and met customer SLAs.
• Work w/ cross-functional teams of diverse skill levels to design and implement scalable and reliable solutions for SITA Messaging on both Azure and private cloud enviros. Provide technical leadership to Tech Owners, promoting a culture of continuous improvement.
• Partnered w/ Product Manager to define user-stories & workloads in a Hybrid conventional SDLC & Agile environment.
• Oversaw migration of messaging solutions to SITA Private Cloud and Azure. My role was both strategic and hands-on, actively engaging in technical details & implementation, as needed.
• Partner with the CISO to ensure stringent security compliance and incorporate privacy-by-design principles in all solution designs.
• Build and analyze STRIDE Threat Models. Collaborated with CISO to discover, assess and mitigate risks and minimize existing security debts.
• Conduct Governance, Compliance, and Risk assessments for product designs, and support auditors for compliance audits (PCI, SOC2). Lead Architect - Corporate IT Governance
SITA, Montreal Canada / Aug 2017 – May 2022
• Spearheaded the design and launch of SITA’s Azure Landing Zone, enabling a 40% cost reduction by centralizing IT services on Azure. Led Request Processing Switch – US Patent
# 7120877
Methods and apparatus for
centralized provision of multi-domain
Web content – Patent Pending
2004 – Alcatel Cup for successful
implementation of Alcatel’s Polaris DR
System
ISC2 CC Certification
4/4
cross-functional team to implement secure, scalable infrastructure with Palo Alto firewalls, Corp AD integration, and robust access policies, ensuring RTO/RPO compliance.
• Managed offshore and onshore teams; resulting in successful Cloud migration of the entire SITA’s Corporate IS landscape.
• Managed a diverse team of local and offshore resources for Corporate IS projects, while overseeing architectural design and providing detailed blueprints for SITA’s Billing, Customer and Product Referential, Infra Capacity Management, and Business Intelligence systems as part of the Corporate IS Move2Cloud initiative. Collaborated with Cloud Practice, network engineering, CISO, application owners, and build project managers to migrate delivery risks and ensure project alignment.
• Conducted various comparative vendor studies for CIO to support SITA’s strategic business needs - focused on modernization.
• Led project management efforts for transitioning On-Premise Customer Portal to a Salesforce Community.
• Led scrum calls, ensured cost-effective management of project deliverables and monitored third-party vendor T&M expenses.
• Led evaluation & integration of CIAM solution w/ Salesforce Identity.
• Defined SITA’s data governance strategy and implemented a Data Repository in ATI Cloud for secure corporate data management. Architect – Web Technologies and Mobility Solutions SITA, Montreal Canada / Aug 2011 – Jul 2017
• Led comprehensive IT studies on Portal, Mobility, and B2B/EAI strategies, directing vendor selections, contract negotiations, and vendor management. Emphasized reducing ongoing operational and licensing costs through innovative approaches.
• Designed and implemented the SITA Customer Portal using Liferay, integrating SAML 2.0 via Microsoft ADFS with custom Java Hooks. Developed Portlet utilizing Spring MVC, JSF, and JSP. Prototyped OpenID Connect and OAuth 2.0 for social login integration
• Developed SITA’s Corporate mobility strategy. Deployed EMM using VMware’s AirWatch SaaS w/ integration into AD and later ADFS to support RBAC & personalized app delivery; later migrated AirWatch to MS Intune. Integrated w/ Proof-Point SaaS for End-Point Detection. PREVIOUS EXPERIENCE
Senior Technical Lead
Nokia, Ottawa Canada / Aug 1998 – May 2011
Experience in B2B WebMethods, TibcoConnect, EAI, EDI, MQ, eBusiness Integration, Java-based J2EE Portal Personalization technologies, such as SAPPortal, WebSphere Portal, Weblogic, Autonomy IDOL Search Engine, EDI Trust-Link Enterprise. Well-versed with Security standards: X509, WS- Security, SAML2.0, MutualTLS, and SOC2 compliance.
Contact this candidate