Post Job Free
Sign in

Architect

Location:
Ottawa, ON, K1V 0G9, Canada
Posted:
May 10, 2009

Contact this candidate

Resume:

EXECUTIVE SUMMARY

Exceptional software engineer, who brings many years of IT experience into software development, consulting, research and services. A seasoned IT specialist, with a history of working in multifunctional teams and successfully executing the most challenging projects. Creates innovative solutions and finds effective ways to keep projects on time and within budget. Has excellent communication and presentation skills.

COMPETENCES

• Enterprise architecture and product management.

• Mapping business goals on IT technologies and creating an optimal technology stack.

• Enterprise IT modernization with new SOA technologies.

• Strong hands-on experience with SOA, cloud computing and J2EE technologies.

• Security of distributed systems.

• Remote collaboration, offshore development and outsourcing.

METHODOLOGIES, TECHNOLOGIES and PLATFORMS

• Methodologies: XP, Agile, Design by Contract.

• Languages and Technologies: Java, C/C++, BPEL, SQL, JavaScript/Ajax, UNIX Scripts, C#.

• Patterns: Object-Oriented, Aspect-Oriented.

• SOA: Cloud Computing, WSRF, Web Services, Web 2.0, XML.

• Multitier Environments: J2EE, CORBA, JMS, LDAP, numerous databases.

• Security: SAML, WS-Security, LDAP, Digital Certificates.

• Frameworks: Spring, Hibernate, Struts, JSF, Ant, JUnit.

SPECIFIC EXPERIENCE

• SOA technology protocol stack: WSDL, SOAP, UDDI, SAAJ, WSDL4J.

• Programming Platforms: IBM WebSphere, Apache Geronimo, Microsoft .NET.

• Grid Computing: Globus GT4.

• Cloud Computing: Amazon EC2.

• Global Portals: Enterprise Portals, BI Portals, B2B, B2C, E-commerce system.

POSITION HELD

Design Architect, Security Specialist, Team Leader, Senior Developer.

SECURITY CLEARANCE STATUS

Enhanced Reliability status.

EDUCATION

PhD (Computer Engineering)

Carleton University, Ottawa, Canada

Thesis: “Efficient Resource Management in Cloud Computing Environment”

M.A.Sc. (Systems & Computer Engineering)

Carleton University, Ottawa , Canada

Thesis: “Optimizing CORBA in Limited Heterogeneity Situations”

B.Sc (Electrical Engineering),

University of Engineering & Technology, Lahore, Pakistan

WORK EXPERIENCE

Dec 2007-Now

Ajax Enterprise Portal for Nortel IP Phones

SOA Architect , Nortel, Ottawa

Summary of the Project

The project was to develop a distributed framework to provision the IP phones at the remote user locations. The framework would provide the necessary services needed such as device configuration and provisioning of the IP phones through a Virtual Private Network client. The project needed a flexible distributed architecture to interact with the Enterprise servers for all the services. Mechanisms for authentication, authorization, data-integrity and non-repudiation were required for all the participating nodes.

Solution

A SOA based Ajax enterprise portal was designed that could provision the IP phone at the user’s location using the enterprise servers. The portal used state-of-the-art technologies that not only used large amount of JavaScript, CSS and HTML, but also pushed the Ajax and server-side technologies to their limits for interactivity, performance and scalability. Role-based distributed security architecture was designed based on SAML. The client application was written in ASP.NET which provided all the services and functions needed at the client side. For example it could discover the IP address of the phone, send the provisioning files, device certificates and private keys to the phone sent by the administrator of the co-operate network. IBM WebSphere was used to implement the SOA-based architecture. At server side, techniques like thread-pooling, load balancing and replication were used to achieve reasonable performance and reliability.

Environment: Java, LDAP, SOAP, JSP/Servlets, VxWorks, IP protocols.

My Role

• Articulated the technical requirements of the system through deep technical investigations in the form of the formal requirements documents (the Functional Response Specification and the Functional Technical Specification). Industry standard DOORS tools were used for the documentation.

• Based on the requirements, designed the architecture for the framework. Documented all aspects of the design in the design document (DD).

• Upgraded DD iteratively after discussions and receiving feedback from other team-members.

• For the proof-of-concept, identified the core complements and implemented the prototype of the framework using the core components. The prototype included a Java Swing based client, Apache WebServer, a VxWorks based IP phone and MySQL based back-end database.

• Project involved regular co-coordination with various team members in Boston, Belleville and Nizhny Novgorod.

Sept 2007- June 2008

Network Platform for Bridge Infrastructure Management (NPBIM)

Design Architect/ Security Specialist, GreyCells, Ottawa

Summary of the Project

The Network Platform for Bridge Infrastructure Management (NPBIM) was envisioned to expose services and interfaces to allow users and researchers in bridge engineering and management to pick and choose the resources they need for their tasks through a Service Oriented Architecture. This project developed the middleware and the standardized interfaces that brought together many disparate toolsets, data sets, processors, sensors, visualization nodes, and other software, hardware, and even human interfaces, to build a specialized virtual organization (VO) dedicated to efficient management of bridges and mitigation of liability associated with old worn or damaged bridge infrastructure.

The functionalities needed by the NPBIM system included:

• Collecting, processing and analysis of bridge monitoring data (from a network of instrumented bridges in the field).

• Integration of existing and new databases of bridge maintenance and bridge performance records at geographically distributed locations.

• Data analysis and processing tools, visualization tools, bridge performance modeling and prediction tools

• Adding and integrating the various physical resources i.e., computing resource, storage resource etc.

• Making expertise and human knowledge resources available to various users of the system. Implementation of a role-based access control for controlling access to sensitive bridge data

• A web based GUI for users and system administrators for allowing ubiquitous access to NPBIM system.

Solution

To implement the requirements the NPBIM software system was designed which had the following four major components:

1. Middleware: This was the software that enabled and controlled access to the geographically distributed resources to be used for bridge infrastructure management. All these resources were exposed as Web Services.

2. Security: This layer enabled the use of sensitive bridge resources by authorized users only.

3. Web based Graphical User Interface: This allowed users to easily access, visualize and use various resources using a web browser.

4. System Management: This enabled management, troubleshooting and monitoring of the NPBIM system.

Environment: IBM WebSphere, JMS, SAML, LDAP, MySQL, WSRF

My Role

• Performed a detailed comparative study between competing technologies (Microsoft .NET, IBM WebSphere and Globus Grid computing Toolkit) to decide the right platform to be used for the NPBIM software. IBM WebSphere was found to be the most suitable platform for NPBIM.

• Designed the Security and Middleware components of the NPBIM software.

• Designed the JMS based messaging architecture.

• Designed a Single-sign-on (SSO) solution to remove the necessity of a universal credential. SSO allowed credential mapping among these diverse systems. When one system authenticated a user, the state of the authentication was used by the other systems without re-authenticating and without any change in the authentication mechanism at other systems. The system was built using a SAML/PKI based identity management and access control architecture.

Jun 2006-Feb 2008

UCLPv2 Project

Sr. Software Engineer, Solana Networks, Ottawa

Summary of the Project

Solana Networks had been awarded a contract to develop User Controlled Light Paths (UCLPv2) software for CANARIE. The work involved development of a Network Management System that would allow end-users to configure lightpaths in an optical network. The end-users would have the authority to setup their own optical lightpaths at the desired granularity from one end of the optical network to the other. All Lightpath operations (i.e., create, delete, concatenate, partition etc.) were to be performed using a user friendly Java-based GUI. The implementation of UCLPv2 would able to interoperate with other workflow-based solutions. Robustness and scalability were two of the important requirements.

Solution

The system was designed to be based on the Service Oriented Architecture using stateful Web Services. The architecture was realized using Globus Toolkit based Grid Computing. Development of this system involved use of SOAP, XML, WSDL, and state-of-the-art Web Services technologies (WSRF, WS-Notify, WS-Addressing). Some UCLP clients were Microsoft .NET based. The integration of Microsoft .NET with Globus Toolkit was designed through messaging and Web Services.

Environment: J2EE, Globus Toolkit GT4, XML, Microsoft .NET, SOA/WebServices, ASP.NET, Ajax

My Role

• Designed and implemented Globus Toolkit based scalable solution for the management of the lightpaths.

• Designed the integration of Microsoft .NET and Globus toolkit based on messaging and Web Services.

• Designed and implemented mechanisms for generation, storage and management of digital certificates based on a trusted Certificate Authority (CA). The solution used LDAP registry for storage.

• Implemented the Authentication and Authorization modules.

• Designed and implemented a client side stubs of Globus Toolkit.

• Worked with the Testing team for integration testing and building regression testing suites.

Sept 2002- Jun 2006

Enterprise Resource Planning System

Sr. Software Engineer, Techlogix

Summary of the Project

Techlogix was involved in developing Enterprise Solution Architecture (ESA) for General Electric (GE). These ESA systems were the launch pad for strategic initiatives, such as e-business and B2B commerce and integration with various sorts of distributed data. The challenge was to combine the various business modules into a single unified virtual database. The system was to have a backward compatibility so that existing code could be used. The system was required to have an event-triggered architecture based on Java Messaging Service.

Solution

The solution designed was J2EE based. It used JSPs and Java Entity Beans. Event processor and handler were developed at both client and server sides. Cognos Reporting tools were incorporated into the system to provide decision-making intelligence to the management.

Environment: Java J2EE, SQL Server, Microsoft .NET, XML

My Role

• Interacted with the client to specify the detailed functional requirements.

• Worked with the senior management, client and other stake-holders to develop the overall Enterprise Architecture, including business, information, security, technology, and solution architectures.

• Designed mechanisms to keep the crucial financial information of Enterprise Architecture Repository in a consistent and safe way using various locking semaphores.

• Developed innovative technological methods and protocols for the communication between on-shore and off-share teams.

• Designed and implemented Event processor at server side to parse customized events.

Feb 2000-Sept 2002

Packet Generator for iFlow Programming Environment

Sr. Software Engineer, Silicon Access Networks, Ottawa

Summary of the Project

Silicon Access Networks was involved in the development of the iFlow™ Development System (iDS), which was a hardware development platform for performance evaluation and networking applications development based on the 20Gbps iFlow Data Path Processing platform. The platform included the iFlow Packet Processor (iPP), iFlow Address Processor (iAP), iFlow Classifier (iCL) and iFlow Accountant (iAC).

Solution

For the development of iDS, a simulator of iFlow was developed which could test the reliability and performance of the architecture software before it can be actually used in the chip. Simulator had to be very accurate to catch all the bugs and performance issues. Once developed, it was to be interfaced with the iFlow Development environment.

Environment Java, Java Swing, JNI, C/C++, XML, IP Protocols

My Role

• For this iFlow™ Development System developed an “IP Packet Generator” which could accurately simulate the capability of generating packets at 10Gbit/sec. It had a Java front end and C/C++ backend (to interface with the simulator) and contains the following layers

Layer 2: Ethernet, PPP

Layer 3: IPv4, IPv6

Layer 4: MPLS, TCP, UDP

• Used JNI to interface the Control Path of Java front-end with C++ back-end and used XML to interface the Data Path with SystemC.

The packet generator and its source code is available for demo purposes.

Jan 1998-Feb 2000

Cross Compiler Development

Sr. Software Engineer, Mitel Corporation, Kanata

Summary of the Project

SX2000 series of PBX communications system built by Mitel provided medium-to-large enterprises with feature-rich voice communications, centralized management, and networking capabilities. The challenge was to reuse the existing tested code in new generation of PBXs having different processor (without rewriting it).

Solution

A cross complier was designed that could automatically port the tested code to the new platform.

Environment C+/ C, VxWorks, 68000 Assembly Language

My Role

• Translated each machine instruction line-by-line from 68000 to PowerPC processor.

• Designed a prototype hardware model to test the cross-compiler.

• Worked with the testing team to fully test the compiler.

• Worked with the Telecom department to add new features in SX2000.

Aug 1994-Oct 1997

Embedded System Development

Systems & Computer Engineer, Regent Industrial Group

• Worked as a team member to develop an 8031 based embedded system in industrial environment.

• Used Visual Basic and SQL to develop trap logging software.

• Worked as a Systems Engineer to program and implement the Siemens PLCs.

RECENT TRAININGS COURSES TAKEN

1- Requirements Management and DOORS (Telelogic) training, August 2008 (By Nortel).

2- UCLP Training July 2006 (By Canarie)

SELECTED PRESENTATIONS AND PUBLICATIONS

[1] Ahmad I. Efficient Algorithms for Cloud Computing, Department of Systems and Computer Engineering, Carleton University, 2008.

[2] Ahmad I. and Majumdar S. A Two Level Approach for Managing Resource and Data Intensive Tasks in Grids On the Move to Meaningful Internet Systems 2008: CoopIS, DOA, ODBASE, GADA, and IS, 2008.

[3] Ahmad I. and Majumdar S. Performance of Resource Management Algorithms for “Processable Bulk Data Transfer” Tasks in Grid Environments, WOSP 2008. ACM, Princeton.

[4] Ahmad I. and Majumdar S. Policies for Efficient Allocation of Grid Resources using a Bi-level Decision-making Architecture of "Processable" Bulk Data. Department of Systems and Computer Engineering, Carleton University, 2007.

[5] Ahmad I. and Majumdar S. An Adaptive High Performance Architecture for "Processable" Bulk Data transfers on a Grid. In 2nd International Conference on Broadband Networks (Broadnets). (3-7 Oct. 2005). IEEE, Boston, MA, USA, 2005, 1482-91.

[6] Ahmad I. and Majumdar S. Efficient Allocation of Grid Resources Using a Bi-level Decision-Making Architecture for "Processable" Bulk Data. On the Move to Meaningful Internet Systems 2007: CoopIS, DOA, ODBASE, GADA, and IS, ( 2007), 1313-1321.

7- IT INSTRUCTOR

I taught following courses at Carleton University as a visiting professor.

Security in Distributed Environments (COMP 4108)

4th year undergraduate, Computer Science,

I designed this course with an emphasis on Web Services security, especially covering the evolving SAML architecture. Labs were designed to teach the practical issues related with the authentication/ authorization of the user and the confidentiality, data integrity and non-repudiation of the data involved. Both Message Layer and Transport Layer security models were discussed.

Operating Systems and Applications (COMP 3001)

3rd year undergraduate, Computer Science,

I taught this course with an emphasis on Linux. Labs were designed to demonstrate advance concepts such as semaphores, Remote Procedure Calls and kernel development issues.

Java Data Structures (NET 3004)

3rd year undergraduate, BIT, Computer Science,

This course was designed to teach students how to develop different algorithms in Java. Special emphasis was paid on performance issues especially in distributed computing and object-oriented environments.

Instructor for Microsoft .NET

Conducted following courses and ran labs for the msdn training.

- Course number 2389B (Programming with Microsoft ADO.NET)

- Course number 2063A (Introduction to ASP.NET)

- Course 2565A (Developing Microsoft .NET Visual Basic .NET)

EXTRA-CURRICULLAR ACTIVITIES

Photography, Videos (capturing and editing), Biking, Travelling.

REFERENCES

Available on Request



Contact this candidate