1. - -
Ram.M
Email : babusm2010@gmail.com Mob:+91 9642453456
________________________________________________________________________
Summary: IT Experience 5 years.
Working in Bank Of America as Senior System Engineer. Having 5 years of
experience in IAM and Enterprise Security with CA Siteminder, SAML, LDAP
Directories, Web Servers such as IIS, IBM IHS, Apache, etc.
Technical Proficiency:
WebSSO:CA Siteminder r6,r12,FSS,
• Over 5 Years of IT industry experience with more than 8 years of
experience in Data Security, Identity and Access Management in
Windows and UNIX environments
• Experience with implementing Single Sign On using PingOne , CA
Siteminder 6.0 and R12 .
• Experience in User Self Registration, Provisioning and Self
Service Password Management using Customized Identity
Manager.
• Experience with configuring multiple Web Agents with IIS, Unix, Apache
servers.
• Configuring User Sessions to support for Single Sign On over single /
multiple domains.
• Experience in SAML 1.1 and SAML 2.0 POST and Artifact using
CA Federation Server R12.
• In-depth knowledge in Failover and Load balancing mechanisms for
Policy servers.
• Experience with using Secure Proxy Servers and Reverse proxy
servers.
- 1 -
2. - -
• Experience in modifying configuration files for apache servers to support
multiple virtual hosts and vanity names in single reverse proxy server.
• Experience in helping the application team troubleshoot errors when
integrating with Single Sign On. Experience with implementing cross-
domain SSO using Cookieprovider.
• Experience with Firewall requests (PCR’s) for accessing applications
through SSO.
• Experience in Troubleshooting urgent priority tickets with minimum
response time.
• Very Strong skills in configuration and administration of Policy Servers,
Policy Stores, Key stores, User Stores, Affiliate Agent and Application
Agent.
• Strong knowledge in implementing LDAP Security for Sun ONE Directory
Server 5.x/ 6.x on Sun Solaris.
• Experience with replication mapping between replica hub/consumer
directory servers.
• Experience in working with Active Directory.
• Experience in executing Backup and Recovery Strategies for directory
data.
• Part of the on-call team to support SSO service 24X7 availability.
• Possess team player and leadership qualities.
• Strong experience in client interaction and understanding business
application, business data flow and data relations from them.
• Strong time management skills and multi-tasking capabilities
• Strong analytical skills for troubleshooting issues and creating optimal
solutions
• Good communication, analytical skills and flexible to learn advancements
in the IT industry.
- 2 -
3. - -
Identity Management.
• User provisioning, de-provisioning and Identity life cycle management .
• Identity Replication Monitoring between applications and LDAP (AD, Sun
one I planet servers).
• RBAC (Role-Based Access Control) to applications.
• Providing the level 3 support for identities in different environment.
• Functional account creations using LDIF.
Application Management:
• End to end support for the in-house built applications.
• Request Management using ticketing tool(BMS Remedy) and Resource
mailbox
• Access Management to applications following the defined process.
• Data delivery (which includes system and user data) following data
delivery process.
• Sustaining activities for the applications.
• Script development in SQL developer for Identity Management, Reports, etc.
• Monthly reporting of the stats to the management.
Technical Expertise:
Access Manager
CA SiteMinder Policy Server 5.5/6.0/R12, Identity Manager 8.1, CA Admin Server,
CA Admin Repository, CA Federation Server, eTrust Directory,Ping One
Directory Servers SunOne Directory Server 5.x/6.x/7.x, Active Directory.
Web Servers Apache 1.3/2.0, IIS 5.0/6.0/7.0/7.5, 5.1 /6.1/7.0 IBM HTTP Server
Web Technologies HTML
Databases SQL
- 3 -
4. - -
Operating Systems
Solaris 8/9/10, Redhat LINUX 9, Microsoft Windows 2000/2003,Windows 95 /98/XP,
DOS.
Programming
Languages
HTML, SQL, C
Networking Protocols HTTP/HTTPS, LDAP, SAML, SSL, SSH, TCP/IP, IPv4/IPv6, DHCP and DNS.
Analysis &
Presentation Tools
MS PowerPoint & MS Word
Network Tools
JXplorer, Softerra,Sitescope Monitors, Fiddler, RSA Auth Server and RSA SecureID
tokens.
Education:
• M.C.A Bangalore University , City College, Bangalore
Certification:
1. ITIL V3 Certified.
Trainings:
1. Secure ID level 3 support training from Finland
2. IAM training from NSN(Finland).
3. Federation training from (Finland).
4. Active Directory training from CGI
Onsite :Finland
1.Had been to the FINLAND for Fire drill activity (Disaster Recovery).
Achievements:
• Best Team member award for excellent performance in Logica.
• Customer excellence award
Career Summary
23/12/2013 to Till date Bank Of America
31/03/2011 to 23/12/2013 CGI Pvt Ltd (Client NSN)
- 4 -
5. - -
07/19/2010to 17/03/2011 Wipro Pvt.Ltd (Client State Street)
Career Profile:
Bank Of America:
Process :Identity and Access Management(GIS)
Duration :Dec 2013 to till date
Client Profile:
Bank of America Corporation is a bank holding company, and a financial holding
company. The Company is a financial institution, serving individual consumers,
small and middle market businesses, large corporations and governments with a
range of banking, investing, asset management and other financial and risk
management products and services. Through its banking subsidiaries (the
Banks) and various nonbanking subsidiaries throughout the United States and in
selected international markets, it provides a range of banking and nonbanking
financial services and products through six business segments: Deposits, Global
Card Services, Home Loans & Insurance, Global Banking, Global Markets,
GlobalWealth&InvestmentManagement (GWIM), with the remaining operations
recorded in all Other. On January 1, 2009, the Company completed the
acquisition of Merrill Lynch.
1)Project Description:
BOA provides authentication and authorization service for Web applications. The
service utilizes the CA etrust Siteminder product, eTrust LDAP (CDSN). SSO
Integration AIE provides services to internal, external and online applications.
Stability and resiliency are at the foundation of the services. Each production
service is active and redundant to maximize performance, stability and
availability. The environment consists of 4 different stages namely development,
staging, Tech test and production. Each environment was setup identical in
- 5 -
6. - -
configuration and hardware infrastructure and consists of Policy Servers, CDSN
LDAP and Logon servers.
Contribution:
• Siteminder bundle deals with Siteminder V6 to R12 migrations and SSO
configurations in R12.
• Siteminder R12 installation and migration (V6 to R12) on all the
environments.
• Siteminder installation, configuration and migration (V6 to R12).
• Policy Server management/administration.
• Experience of setting Siteminder infrastructure which includes installing
Siteminder web manager, migration of Reverse Proxies from Solaris to RH
Linux (the foremost environment before Production).
• Extensively worked on both WIN and UNIX server environments - WIN 2003,
WIN 2008, Solaris 8, Solaris 10 and RH Linux 5.4 across the web servers
Apache, iPlanet and IIS.
• Experienced in Siteminder Web Agent WebSphere Application Server (WAS) on
WIN 2008 and Solaris 10 servers.
• The resources are divided for different LoB (Line of Business) to carry out the
Siteminder activities with a direct client interaction with pre-defined SLA.
• Good Working knowledge in Windows and UNIX platforms.
• Policy Server configuration and troubleshooting SSO issues.
• Responsibility of troubleshooting issues independently and documentation of
issue resolutions.
• Meeting the SLAs in resolving the issues related to Siteminder, webagent.
CGI Pvt Ltd
- 6 -
7. - -
IT Consultant, March 2011 to Dec 2013
Client: NSN (Nokia Siemens Network)
Role : T3-IAM and SSO Support
Project : NSN IAM Support
Project NSN IAM (Identity and Access Management)
• Users and Group permissions and maintaining NSN Domain Controllers
• Evaluate Login issue of user in AD and ED (enterprise directory) servers.
• Resolving Issue like User authorization and authentication
• Modifying the Data of Users by using DML commands in Database.
• Creating the Mailbox Accounts for the user in Application Servers.
• Exporting and importing the data in Database.
• Group Management of users in AD and Nokia ED servers of Nokia.
Project NSN WAM –Tools used CA Siteminder r6,r12, Oracle Federation Servive,RP.
NSN WAM/WebSSO is a service which enables a common intranet and
user authentication, authorization and session handling and it is based on
CA’s Siteminder Single Sign –on software. Several web applications are
integrated with Siteminder for reduced password usage and web security.
I have integrated many of the NSN applications with Siteminder in all the
3 environments (Prod r6, QA r6 and Dev r12).Some of the activities are
listed below.
• Logs transfer (Daily, Weekly) from Prod Federation servers to Dev proxy
server.
• To check bug fixes and vulnerabilities from CA documentation. If needed
to start process to test new version and get all needed agents updated
together with service owners/administrators.
- 7 -
8. - -
• Back up of whole policy store before major updates or configuration
change to policy server hard disk.
• Creation of Siteminder admins, new agents, policy domain, realms, rule
and policies, etc.
• Examine policy server log files during problem solving.
• Examine agent log files during problem solving.
• Find solutions to problems from CA’s support service.
• Installation and deployment of CA Siteminder r6 with Sun LDAP, Oracle
10g as Policy store.
• Post installation configuration of Webagents in different web platforms
(IIS, Apache) following with Service owners.
• Monitoring (Health Check) the WAM servers and follow the defined
process in case outage.
• Active Directory Management using Apache Directory Studio tool such as
User Attributes manipulation, Replication monitor, Data import, export
using LDIF files, etc.
WIPRO Technologies INDIA Pvt ltd, Chennai (July2010 – March 2011)
• Project Name : ASC – Application service center
• Employer/Client : Statestreet
• Role : Site Minder/LDAP Administrator
• Environment/Tools : CA Site Minder, LDAP, IIS, Windows,
Solaris.
• Team Size : 8
- 8 -
9. - -
Description : Provides 24x7 supports for the State street application
across the globe for the products IBM web sphere application server, Web
server, Actuate and Site minder.
Deployment:
• Installing and configuring SiteMinder Policy Servers to authenticate and
authorize access to enterprise resources.
• Installing and configuring Web Agents to protect and manage access to
enterprise resources.
• Configuring Authentication and Authorization to support Higher
Availability, Failover and Load Balancing.
• Installing and Configuring User Stores, Key Stores and Policy Stores on
Sun One Directory Server 6.3.
Single Sign On Specialist:
• Implement Policy-based Security using Web Agents, User
Directories, Realms, Authentication schemes, User Sessions,
Rules, and Responses to protect, manage, authenticate and authorize
access to enterprise resources
• Managing System and Domain Administrator accounts.
• Configuring Responses enable web content personalization.
• Determine the root cause, implement solutions, apply patches to
resolve authentication, authorization, and performance issues, as well as
provide feedback to CA on SiteMinder product bugs.
• Installing / Renewing SSL certificates on Iplanet and UNIX servers where
the Policy servers, Proxy servers and Directory servers were installed.
- 9 -
10. - -
• Part of the 24x7 support team for trouble shooting urgent tickets in the
Single Sign on space.
I hereby declare that above mentioned statement is optimistic and true to my
knowledge.
Date: Yours sincerely
Place: Hyderabad (Ram.M)
- 10 -