Peningo Systems, Inc.
Resume of Candidate: PEN75
Rate: email us at firstname.lastname@example.org for rate information
Tivoli Federated Identity Manager Consultant
Tivoli SOA Security Architect with an expertise in the IBM Tivoli Federated Identity Manager / ITFIM implementation and deployment. Other area’s of
expertise includes Assess Management with Tivoli Access Manager.
Senior Security Consultant
6/2006 - Present
Tivoli SOA Security Architect focused on architecture and deployment of Tivoli security products and their integration into existing customer application
Designed and implemented highly-available and scalable security solutions involving TFIM, TAM, WebSphere, ITDS, DataPower, Active Directory, and
WebSphere Portal Server for Fortune 500 clients. Job role includes: architecture; deployment; security analysis; Java development; web-services
development; XSLT development; UNIX scripting; performance testing/tuning; on-site critical-situation troubleshooting; development of SOW’s; member
of the Architecture Review Board; development of documentation templates for security practice; pre-sales support; mentoring; ITIL certification;
development of TFIM education classes; development of TFIM product certifications.
Lead Developer – Tivoli Federated Identity Manager (TFIM)
1/2004 - 6/2006
Lead Developer on an enterprise J2EE based product (TFIM). The security product provides web single sign on services and token services for SOA
infrastructures using open standards such as SAML, WS-Federation, WS-Provisioning, WS-Trust, WS-Security and Liberty.
Worked on this project from its inception and lead the development team consisting of 12 software engineers in design and implementation of the initial
prototype to the final GA product and its second release. As part of the lead role, duties included: product architecture; design reviews; code reviews;
test plan reviews; product documentation; performance tuning; profiling; architecture of customer deployments; input into the development of open
standards such as SAML, WS-Federation and WS-SecureConversation; federation protocol “interop” events with other security vendors; pre-sales
support; education of the worldwide sales force and support teams; patent authoring; cross-brand collaboration with WebSphere development and
DataPower development; internationalization.
Lead Developer – Tivoli Access Manager WebSEAL
9/1999 - 12/2003
Lead developer on a C/C++ based HTTP authentication and authorization product (Tivoli Access Manager for eBusiness). This product provides a highly-
available and scalable security solution to large enterprises with platform support on Solaris, AIX, HP-UX, Linux and Windows. The product is in use by
over 700 customers and currently handles authentication of production user communities up to 30 million users.
Lead the development team throughout two release cycles of the product. Drove design and development of marketing requirements through the full
productization process with a team of 15 software engineers based in multiple locations (California, Texas and Australia). Lead role included: product
architecture; design; C/C++ implementation; troubleshooting; performance tuning; profiling; design reviews; code reviews; education of sales teams,
support teams and customers; pre-sales support; patent authoring; internationalization.
3/1997 - 8/1999
6/1996 - 3/1997
Software developer of an enterprise distributed security product.
Role included: design; C/C++ implementation; Win32 port of UNIX daemons; development of hooks into Win32 TCP/IP stack for VPN services; integration of
OpenSSL; development of ACL implementation; implementation of distributed management of security policy; performance; support.
• Java developer of a delegated security administration system based on DCE for a large US car manufacturer.
Role included: design; Java implementation; product documentation; on-site deployment and support.
• C developer for an encrypting IP router for a large government betting framework.
Role included: design and implementation of the replacement of the BSD TCP/IP stack in a mach3 UNIX kernel with the x-kernel TCP/IP stack.