|
KINGPIN
ST. LEWIS
|
|
|
|
|
|
New york, New York USA
|
|
555-555-1212
|
|
|
|
|
COMPUTER TECHNICIAN
|
|
Security
• Seasoned professional with over Ten years of application experience serving several fortune 500 companies.
• Over eight years experience as a SAP Application Administrator working in the areas of Basis and Security; Emphasis on financials/controlling, Logistics, human resources, reporting, portals and customer relations. Knowledge in infrastructure security.
• Effective leadership and architecture experience with security design, analysis, and configuration, testing, go-live, pre and post-production support, and knowledge transfer for full lifecycle implementation projects across large enterprise SAP environments.
• Experience working with auditors and compliance groups for development and preparation of detailed security policies and procedures.
• Worked closely with Business Security Analyst (BSA) to bridge the gap between Technical and Functional teams in IT / SAP. Gathered business requirements from end users and converted those to a request based on defined standards.
• Knowledge in Upgrading SAP security systems.
• Strongly experienced completing full lifecycle Single Sign On (SSO) Implementations
Development
• Over nine years of development experience working mainly on client /server web development.
• Knowledge in various programming languages and development models.
Networking
• Network administration experience, building secure LAN/WAN environments.
Database
• Experience in database development and administration.
Testing
• Knowledge in Mercury Quality Center. Extensive use for environment testing and defect maintenance.
Development
• Extensive development knowledge in Java, C++, C#, HTML, JavaScript, ASP, ASP.NET.
• Experience with Database SQL language programming.
• Knowledge in SAP WebDynpro development in Java. MVC model.
Database
• Experience in developing and maintaining Microsoft SQL Server databases. Knowledge of other databases like DB2, MySQL and Oracle databases.
|
|
|
|
|
PROFESSIONAL EXPERIENCE
|
|
| Software Development, Southbury, CT USA | January 2009 - Current | | | Security Team Lead | | Project Description/Scope: Implement a robust Federated Single Sign On environment
Responsibilities/Deliverables:
• Design a robust federated Single Sign On (SSO) solution that will fully integrate distinct, multi-zone environments within the multi-national enterprise.
Achievements:
• Successfully blueprinted a SSO strategy. A robust strategy capable of authentication among various SSO protocols; dynamic user mapping, and streamlined future application on boarding.
• Federated environments included the use of multiple SSO and encryption protocols. SAML 1.1, SAML 2.0, LTPA SSO, PKI, SNC and SSL protocol.
• Integrating SAP and non SAP applications into the same federated SSO environment.
• Use of a variety of SAP and non SAP products to establish a 3rd party Federated solution. Use of IBM Tivoli Federated Identity Manager (TFIM), Tivoli Directory Server (TDS), Tivoli Access Manager (TAM).
• Establish Identity mapping rules for SSO Federation.
• Federated a diverse application environment which included Multiple JAVA and ABAP based SAP applications like ECC’s Biller Direct, CRM’s Web channel, EPC 7.0, EPC 7.2, CRM IC 2007. Federation also included non SAP applications like Vendavo, Sabrix and Cognos 8.4 | | | Pharmaceutical, King of Prussia, PA USA | January 2008 - December 2008 | | | Security Team Lead | | Project Description/Scope: System Upgrade. Multi-site centralization and standardization of Master Data Authorizations.
Responsibilities/Deliverables:
• Responsible for upgrading the clients various r/3 4.6, 4.7 security environments to ECC 6.0.
• Rebuild a subset of the newly upgraded security model, for the access of financial and logistical master data. The new more robust model must standardize security and centralized the multiple security models currently uniquely implemented and deployed internationally.
• Perform a full security system analysis. Analysis would include the identification of SOD Segregation of duties violations, Authorization overlays, redundancies, lost of required authorization (due to system configuration change), etc.
• Design a plan and security model to remove violations and security backdoors as documented by audit teams and discovered by full system analysis.
• Design company compliant test cases for testing upgraded and newly designed security models. Use Mercury’s Quality Center application to assist in projects testing phase.
• Lead successful workshop with client for complete knowledge transfer.
Achievements:
• Successfully completed a full lifecycle implementation (analysis, design, build, test, deployment) of a centralized and standardized security model which lead to the reduction of total security roles from over 3000 to under 500 using SAP’s inherited security model as the foundation.
• Security system analysis lead to the identification and full removal of existing backdoor and/or security holes in both the upgraded legacy model and in the newly built, centralized security model. | |
|
|
|
|
EDUCATIONAL INFO |
|
| Masters of Science in Computer Science, Software Development | | Stevens Institute of Technology Hoboken, NJ (2000) | | | Bachelor of Science in Chemistry | | Alfred University Alfred, NY (1992) | | |
|
|
