Peningo Systems, Inc.
Resume of Candidate: PEN84
Rate: email us at info@peningo.com for rate information
Tivoli Access Manager Consultant
SUMMARY:
Over Twelve years of experience. Tivoli Access Manager Architect - WebSphere Implementer / Administrator – Software Engineer with a strong background in WebSphere,
WebSphere Portal, Tivoli Access Manager, WebSphere / websphere Portal Administration and Configuration, WebSphere Clustering, LDAP namespace integration with Tivoli
Access Manager and WebSphere Portal Personalization, LTPA/LDAP, Java JNDI, WebSphere Portal Personalization API, Oriented Analysis and Design, middleware and
application development in Java, C/C++, WebSphere AE/AEs (AIX and iSeries/OS400/W2K), IBM WebSphere Studio Application Developer, IBM VisualAge for Java, IBM
WebSphere Studio, IBM WebSphere Development Studio Client/IBM WebSphere Development Tools for iSeries/AS400 (IBM WebSphere Studio for iSeries/AS400,
WebFacing), MQSeries, MQSI, SOAP, WebSphere Commerce Suite, relational and network databases application development for various operating systems (Unix, OS/400
for IBM eServer iSeries (AS/400), OS/390 and Microsoft Windows). Over four years of experience in developing, delivering and maintaining Web applications using IBM
WebSphere family products and open source frameworks, including implementation distributed J2EE components. Proven track record of successfully implementing and
delivering to production enterprise applications.
Over eight years of experience in Enterprise Application Integration including EAI/ETL data integration/synchronization (Sunopsis, MQSI), real-time messaging systems
(MQSeries) and security integration frameworks (IBM Tivoli Access Manager, Netegrity SiteMinder, Whale Communications e-Gap). Security administration and
management for centralized authentication, authorization, and single sign-on for enterprise applications within Web Portal implementations such as IBM WebSphere Portal
Server and Apache Jetspeed.
Over six years of experience in developing, delivering and maintaining Web applications using IBM WebSphere family products and open source frameworks, including
implementation distributed J2EE components.
Proven track record of co-working with IBM staff on variety of design and implementation projects and successful delivery to production enterprise applications. Sun Certified
Programmer for the Java 2 Platform
Experiences includes:
November 2006 to Present
Contract: WebSphere Portal upgrade from version 5 to 6. WebSphere Portal integration with TIM/TAM infrastructure. WebSphere Application Server and Portal Server
Administration and production support. Load and regression testing with jMeter. WebSphere JVM tuning.
• Integration variety of ASP .NET applications with external TAM authorization server using encrypted IV-CRED HTTP header. Design and implementation SOA-based
solution for integration .NET applications with Tivoli Access Manager. Designed and developed Java-based Web service for authentication and authorization ASP.NET
back-end applications.
• Installation, configuration and administration of WebSphere Portal network redundant environments. SSL certificate configuration for WAS, LDAP and HTTP.
• Configuring WebSphere Portal for single sign-on with TAM. Configuring reverse proxy junctions (WebSEAL). Installing and configuring Java run-time for TAM base
components.
• LDAP/WPS WMM schema customizations. Replicating LDAP ITDS 6.0 registry databases (db2/AIX), configuring client-server mutual SSL LDAP authentication.
Migration of portal Self-Care from WPS 5.0 to WPS 6.
• Implementation of WebSphere Portal load test scripts with jMeter. Portal JVM tuning. Testing network redundancy for fail-over and load balance in WAS cluster.
Implementing jMeter load test scripts to simulate network traffic based on production system statistics. Used Tivoli Performance monitoring tool/Nmon/GC trace.
Configuring Tivoli Site Analyzer for WPS statistics.
• Production support for WAS, WPS and application SSO related problems in TIM/TAM environment.
April 2005 to September 2006
Contract: Security integration for WebSphere Portal/Domino/Lotus Notes/Sametime with Whale Communications e-Gap application firewall (Microsoft Whale IAG).
Implementing network redundancy over WAN with Nortel Altheon ACD site selector and Nortel application switch. Load/regression/integration testing for WebSphere
Portal/Lotus/Domino.
• Implementation of high-availability and network redundancy for HTTP and LDAP protocols over WAN with Nortel Networks Altheon site selector/application switch.
• Security integration with e-Gap Application Firewall. Single sign-on implementation with Lotus Notes/Domino/Sametime and legacy WebSphere applications using
LTPA. Prepared regular expression based rules for HTTP firewall enforcing secure delivery of web content from back-end Web applications.
• Single Sign-on implementation for WebSphere AS LDAP based user registry and Windows Active Directory/Kerberos using Vintela VSJ.
• Configuration Management for multiple WebSphere/Portal environments. Implemented procedure for time-efficient provisioning numerous development and test portal
environments with VMWare ESX/GSX server by creating portal replicas. Prepared procedures for changing host specific configuration in WebSphere Portal
environments using ws_ant and wsadmin scripting. Extensively used XMLAccess, JACL scripting for WebSphere Application deployment.
• Load testing with Mercury LoadRunner and WebSphere PMI monitoring services. WebSphere JVM performance tuning.
• Tivoli Site Analyzer implementation for collecting WebSphere Portal and Web applications usage statistics for global WAN environment.
January 2005 to March 2005
Contract: Design of the WebSphere Portal policy-based security infrastructure with Tivoli Access Manager and Tivoli Identity Manager
• Prepared plan of integrating of WebSphere Portal security with Tivoli Access Manager and Tivoli Identity Manager environment.
• Compiled the existing Functional Specification to produce the matrix of role-based security implementation for portal artifacts (pages, page groups and portlets).
August 2004 to December 2004
Transition of WebSphere Portal 4.0 to WebSphere Portal 5.0 / Domino Notes SSO/ e-Gap with site selection using Alteon Content Director (ACD) and e-Gap reverse proxy 2.4
for secure remote access.
• Prepared detailed procedure for creating development, assembly, test and staging runtime environments for Portal and Domino. Used VMware ESX server-hosted
virtual systems to facilitate time-efficient implementation of the multiple development, test, and staging environments. Prepared procedure of building multi-server
WebSphere Portal environment by creating replicas of the master WebSphere/Portal instance on several virtual hosts.
• Extensively used ws_ant build tool and JACL scripting for custom application deployment, administration and creating custom runtime Java environment.
• Implementation of Domino Notes LTPA Single Sign-on over multi-hub Wide Area Network. Prepared the runtime test environment for the site selection with Alteon
Content Director (ACD). Prepared unit and integration scripts for WebSphere Portal Failover and High Availability Test.
• Analyzed runtime application performance metrics using WebSphere monitoring services (PMI) and Tivoli Performance Viewer under simulated user load. Prepared
recommendation for tuning the Application JVM, optimal servlet/EJB response time.
• Successful production release on the wide area network environment.
June 2004 to July 2004
IBM SOW: Netegrity SiteMinder/WebSphere Portal 5.0.2.1/LDAP Implementation/Integration
• Implementation of the dynamic WebSphere Portal resource authorization roles assignment – the key feature WP5: new access control model that allows fine grained
access control over the all portal resources (nested pages and portlets). Runtime/on demand assignment of LDAP user groups to WP5 roles. Design and implementation
of the user Self Service Configuration Portlet to facilitate the above task. Design and implementation of the pool of active open LDAP contexts (WSAD,WPT).
• Coordination of the installation of the WP5/WAS/Oracle/IDS QA test environments with the LTPA/LDAP global security on. Portlet deployment on the on WP5 QA test
system within SiteMinder external policy server. Preparing unit and integration test cases.
Various Assignment from 1995 to 5/2004
• Tivoli Access Manager and WebSphere Portal Server Implementation / Integration for IBM’s client Joanne Stores. Integration of the WebSphere Portal with Tivoli
Access Manager. UNIX ksh scripting: population of ACLs and objects in the protected domain based on users’ self-care LDAP WPS attributes and user’s group
association rules. Used LDAP client queries and Perl-type regular expressions for processing. Implementation of the Access Manager Form based Authentication for
WebSphere Portal. Reconfiguration of WebSpere Portal to allow the existing Portal Self-care customized component single sign-on with the Tivoli AM. Implementation
of the WPS custom Account Management Pages and implementation of the dual (TAM and WPS) logout.
• Tivoli Access Manager Secure Authentication and Authorization. Designed and implemented the Single Sign-On using LTPA/LDAP, Form SSO, SSL Form SSO, Basic
Authentication SSO. Integration of a diverse set of web based legacy systems with the intranet portal (SPSS ShowCase Enterprise Reporting/Analyzer, Lotus
Notes/Domino, and Kronos Workforce Central) including applet based web applications such as SPSS Analyzer. Used IBM WebSphere Studio Application Developer,
Tivoli GSK API for Java/JSP development, IBM SecureWay/AS400/AIX. CA digital certification configuration, Tivoli WebSEAL junctions’ configuration and
maintenance. Designed and implemented the interface to Tivoli Access Manager for automatic global sign-on synchronization and resource population using the Tivoli
GSK API.
• Designed and implemented LDAP namespace schema/information model for integration with Tivoli Access Manager and WebSphere Portal Personalization. Designed
and implemented the regular-expression-enabled parser tool for data migration from the Lotus Notes/Domino to the LDAP datastore. Used IBM SecureWay/AIX, Java
JNDI and Jakarta-ORO regular expression implementation.
• Rule-based dynamic personalization using the IBM WebSphere Portal Personalization for AS400. Integrated WebSphere Portal Personalization with LDAP/Tivoli Access
Manager using Java JNDI and WebSphere Portal Personalization API. Designed and implemented dynamic personalization-enabled portlets. Used WSAD IDE,
Personalization API/LDAP/JNDI, and DB2/400. Used Apache Struts for implementation of a simple content management and iBATIS SQL Maps database object
mapping/persistence.
• Application/Security integration of the Kronos Workforce Central with the Intranet Portal. Used Tivoli Access Manager for single sign-on/authentication/authorization.
Designed and implemented the connection-failure-tolerant XML interface to Kronos Workforce Central timekeeper service. Used Kronos WFC 4.1 XML API and user-mode
device driver API. Coordinated and supervised the production release. Successful production installation on over 389 POS’s systems.
• IBM WebSphere for iSeries/AS400 administration and security configuration. Course-grained/ACL security configuration with the Tivoli Access Manager and fine-
grained with J2EE/JAAS on the web application level. Coordinated the source code and deployment transition from the WebSphere 3.5/4.0 to 5.0. Used WebSphere Studio
Application Developer/Visual Age for Java.
• IBM MQSeries server-to-server installation, configuration, and interface customization on Unix AIX. Used Java and C++ API for the 2-channel interface
implementation.
• Reengineering and integration the part of the existing Oracle PL/SQL Cartridge OAS to Java based web technology and WebSphere AE.
• Design and implementation of the Flexible Service Order: FlexUP (web enabled XML-based service order template designer application). Used IBM Visual Age for Java,
IBM WebSphere Studio, IBM XML API, and Oracle 8i. UML modeling using Visio 2000. Production delivery for ConEdison.
• Java Source code transition from the IBM WebSphere 3.0 to 3.5. Used IBM Visual Age for Java Team Repository Server.
• IBM WebSphere 3.X/AIX installation, administration and configuration.
CERTIFICATIONS:
2002 Kronos Workforce Central 4 Using Java to Develop API Applications
2002 Kronos Workforce Central 4 - System API
2001 Sun Certified Programmer for the Java 2 Platform
2000 IBM Developing Server Side Application using VisualAge for Java
1997 IBM AIX TCP/IP Network Administration
EDUCATION:
November 1994 - Master Degree in Computer Science.
SKILLS:
Languages: C/C++, Java, ANSI SQL, PL/SQL, JSP, C#, D/HTML, XML/XSL, JavaScript, Perl, scripting languages (Korn/bash/csh shell, Awk, Rexx), UML, VB, Pascal (ANSI,
Borland), Assembler.
OS/environments: Unix (Solaris, AIX, HP-UX, Linux, Data General), OS/400, OS/390, MS Windows NT/2000
IDE/CASE tools: IBM WebSphere Studio Application Developer, IBM VisualAge for Java, IBM WebSphere Studio, IBM WebSphere Development Studio Client/IBM
WebSphere Development Tools for iSeries/AS400 (IBM WebSphere Studio for iSeries/AS400, WebFacing), Microsoft Visio 2000, ERwin, TogetherJ, Microsoft Visual Studio
(C++, VB), Microsoft .NET Visual Studio Driver Development Toolkit (C++, C#), Rational ClearCase, CVS, MKS, SCCS
Middleware (EAI/ETL): MQSeries, MQSI, SOAP, Sunopsis
Web technologies: IBM WebSphere AE/AEs for AIX and iSeries/OS400/W2K, IBM WebSphere Portal/Personalization, WebSphere Commerce Suite, Apache Jetspeed Portal,
Apache/Tomcat/Ant/Struts/Turbine, Oracle OAS/PLSQL Cartridge, BEA Weblogic, Domino Server, Tivoli Access Manager/WebSEAL API (LDAP/SecureWay, GSK Java/C++
API), Kronos Workforce Central (WFC).
Databases: Oracle, IBM DB2, IBM DB2 UDB for iSeries, mySQL, RAIMA dbVista, DB2, Sybase
EXPERIENCE:
April 2005 to August 31st 2006
(Client Name is kept Confidential)
Implementation of reverse proxy for Web-based Applications with Whale Communications e-Gap application firewall. Integration of redundant authentication and
authorization for WebSphere deployed applications with LDAP/Lotus Domino Directory/WebSphere Portal 5.1. Implementing high availability solutions for HTTP and LDAP
protocols with Nortel Altheon ACD
site selector and Nortel application switch for WAN redundancy.
• Implementation of the infrastructure for web application security with e-Gap Application Firewall. Prepared regular expression based application firewall rules enforcing
secure delivery of web content from back-end Web applications.
• Single sign-on implementation for Java applications with Lotus Domino using IBM LTPA and Active Directory/Kerberos with Vintela VSJ library.
• Design, documentation and implementation of several environments for development, load, and UA testing. Configuration Management for multiple WebSphere/Portal
environments. LTPA single sign-on implementation for WebSphere, Lotus Notes and Lotus Sametime Connect. Used eGap reverse proxy and Nortel Networks Altheon site
selector for high availability (WAN).
January 2005 to March 2005
(Client Name is kept Confidential)
Design of the WebSphere Portal policy-based security infrastructure with Tivoli Access Manager
• Prepared plan of integration of WebSphere Portal authentication and authorization with external security manager (Tivoli Access Manager/Tivoli Identity Manager).
• Compiled the existing Functional Specification to produce matrix for portal user roles and resources (pages, page groups and portlets).
August 2004 to December 2004
(Client Name is kept Confidential)
Transition of WebSphere Portal 4.0 to WebSphere Portal 5.0 / Domino Notes SSO/ e-Gap with site selection using Alteon Content Director (ACD) and e-Gap reverse proxy 2.4
for secure remote access.
• Prepared detailed procedure for creating development, assembly, test and staging runtime environments for Portal and Domino. Used VMware ESX server-hosted
virtual systems to facilitate time-efficient implementation of the multiple development, test, and staging environments. Prepared procedure of building multi-server
WebSphere Portal environment by creating replicas of the master WebSphere/Portal instance on several virtual hosts.
• Extensively used ws_ant build tool and JACL scripting for custom application deployment, administration and creating custom runtime Java environment.
• Implementation of Domino Notes LTPA Single Sign-on over multi-hub Wide Area Network. Prepared the runtime test environment for the site selection with Alteon
Content Director (ACD). Prepared unit and integration scripts for WebSphere Portal Failover and High Availability Test.
• Analyzed runtime application performance metrics using WebSphere monitoring services (PMI) and Tivoli Performance Viewer under simulated user load. Prepared
recommendation for tuning the Application JVM, optimal servlet/EJB response time.
• Successful production release on the wide area network environment.
June 2004 to July 2004
(Client Name is kept Confidential) Roseland, New Jersey
Netegrity SiteMinder/WebSphere Portal 5.0.2.1/LDAP Implementation/Integration
• Implementation of the dynamic WebSphere Portal resource authorization roles assignment – the key feature WP5: new access control model that allows fine grained
access control over the all portal resources (nested pages and portlets). Runtime/on demand assignment of LDAP user groups to WP5 roles. Design and implementation of the
user Self Service Configuration Portlet to facilitate the above task. Design and implementation of the pool of active open LDAP contexts (WSAD,WPT).
• Coordination of the installation of the WP5/WAS/Oracle/IDS QA test environments with the LTPA/LDAP global security on. Portlet deployment on the on WP5 QA test
system within SiteMinder external policy server. Preparing unit and integration test cases.
April 2004 to May 2004
(Client Name is kept Confidential) Hudson, Ohio
SOW: Tivoli Access Manager and WebSphere Portal Server Implementation/Integration
• Integration of the WebSphere Portal with Tivoli Access Manager. UNIX ksh scripting: population of ACLs and objects in the protected domain based on users’ self-care
LDAP WPS attributes and user’s group association rules. Used LDAP client queries and Perl-type regular expressions for processing.
• Implementation of the Access Manager Form based Authentication for WebSphere Portal. Reconfiguration of WebSpere Portal to allow the existing Portal Self-care
customized component single sign-on with the Tivoli AM. Implementation of the WPS custom Account Management Pages and implementation of the dual (TAM and WPS)
logout.
• Synchronizing LDAP user registry with Policy Server. User and Group repository import to Policy Server. Used UNIX shell scripting language and regular expressions.
May 2002 to 2004
(Client Name is kept Confidential)
Sr. System Analyst - WebSphere Administrator, Tivoli Access Manager Implementer/Admin
• Tivoli Access Manager Secure Authentication and Authorization. Designed and implemented the Single Sign-On using LTPA/LDAP, Form SSO, SSL Form SSO, Basic
Authentication SSO. Integration of a diverse set of web based legacy systems with the intranet portal (SPSS ShowCase Enterprise Reporting/Analyzer, Lotus Notes/Domino,
and Kronos Workforce Central) including applet based web applications such as SPSS Analyzer. Used IBM WebSphere Studio Application Developer, Tivoli GSK API for
Java/JSP development, IBM SecureWay/AS400/AIX. CA digital certification configuration, Tivoli WebSEAL junctions’ configuration and maintenance. Designed and
implemented the interface to Tivoli Access Manager for automatic global sign-on synchronization and resource population using the Tivoli GSK API.
• Designed and implemented LDAP namespace schema/information model for integration with Tivoli Access Manager and WebSphere Portal Personalization. Designed
and implemented the regular-expression-enabled parser tool for data migration from the Lotus Notes/Domino to the LDAP datastore. Used IBM SecureWay/AIX, Java JNDI
and Jakarta-ORO regular expression implementation.
• Rule-based dynamic personalization using the IBM WebSphere Portal Personalization for AS400. Integrated WebSphere Portal Personalization with LDAP/Tivoli Access
Manager using Java JNDI and WebSphere Portal Personalization API. Designed and implemented dynamic personalization-enabled portlets. Used WSAD IDE, Personalization
API/LDAP/JNDI, and DB2/400. Used Apache Struts for implementation of a simple content management and iBATIS SQL Maps database object mapping/persistence.
• Application/Security integration of the Kronos Workforce Central with the Intranet Portal. Used Tivoli Access Manager for single sign-on/authentication/authorization.
Designed and implemented the connection-failure-tolerant XML interface to Kronos Workforce Central timekeeper service. Used Kronos WFC 4.1 XML API and user-mode
device driver API. Coordinated and supervised the production release. Successful production installation on over 389 POS’s systems.
• IBM WebSphere for iSeries/AS400 administration and security configuration. Course-grained/ACL security configuration with the Tivoli Access Manager and fine-
grained with J2EE/JAAS on the web application level. Coordinated the source code and deployment transition from the WebSphere 3.5/4.0 to 5.0. Used WebSphere Studio
Application Developer/Visual Age for Java.
September 2003 to Present
(Client Name is kept Confidential)
Englewood, Colorado
Sr. System Analyst
• Enterprise application integration with Sunopsis software suite - Java-based ETL middleware. Designed the workflow, error handling and the journalization rollback
feature to preserve the referential integrity of the target system. Used Ant/Java for portable implementation.
August 2001 to April 2002
(Client Name is kept Confidential) Clearwater, Florida
IT Consulting Services.
Sr. Software Engineer
• Implementation of the database vendor-independent framework for rapid application development: database persistence mapping toolkit and cacheable database
connection pool.
• Design and implementation of the system for handling banner advertising and detailed statistics on commercial web sites. Used Java/Ant/Struts, Oracle 8 on Linux
Mandrake Enterprise Server. Used SQL Maps for database object model implementation.
• IBM WebSphere AE 3.5/4.0/iSeries/Linux Administration and configuration.
September 1998 to July 2001
(Client Name is kept Confidential) Tampa, Florida
Software provider of computer-aided dispatch systems (CAD) dedicated to the Utility Industry. Over 20 production releases for the leading industry companies such as
ConEdison, UtiliCorp United, Southwest Gas Corp.
Sr. Software Engineer
• IBM MQSeries server-to-server installation, configuration, and interface customization on Unix AIX. Used Java and C++ API for the 2-channel interface
implementation.
• Reengineering and integration the part of the existing Oracle PL/SQL Cartridge OAS to Java based web technology and WebSphere AE.
• Design and implementation of the Flexible Service Order: FlexUP (web enabled XML-based service order template designer application). Used IBM Visual Age for Java,
IBM WebSphere Studio, IBM XML API, and Oracle 8i. UML modeling using Visio 2000. Production delivery for ConEdison.
• Java Source code transition from the IBM WebSphere 3.0 to 3.5. Used IBM Visual Age for Java Team Repository Server.
• IBM WebSphere 3.X/AIX installation, administration and configuration.
May 1995 to October 1998
(Client Name is kept Confidential) Palm Harbor, Florida
Software provider of Clinical/Laboratory Information Systems. Over 300 production releases of the software suite for clinical laboratories over the United States and Canada.
Sr. Analyst Programmer
• Design and implementation of the new modules of the Clinical Information System responsible for processing medical serology tests (SoftMIC/SoftLAB). Used the Unix
C++ implementation and system programming for a diverse set of Unix systems (AIX, HP, Solaris). Used dbVista network-type database API and Perl regular expression
library for processing data from medical instruments. Production support and maintenance after the production release.
• Database design and data migration to the new schema. Successful production rollout of the new module. Part-time production support and maintenance of the product.
• Coordinated French language localization of the product.
May 1994 to May 1995
(Client Name is kept Confidential)
Software provider of Clinical/Laboratory Information Systems. The branch office of the SCC Soft Computer Consultants
Sr. Analyst Programmer
• Design of the database schema extension for serology components of the Clinical Information System (SoftMIC 6.0).
• Design and implementation of the database migration tools. System programming in C++ for Unix. Used the dbVista database API, and the Unix curses-based library C-
Scape for the user interface.
 | |  | |  | |  | |  | |  | |  |
need for a Tivoli Resource, please email us at
sales@peningo.com . If you wish to speak with
someone from Peningo Systems, please click here to
contact Peningo.
sales@peningo.com . If you wish to speak with
someone from Peningo Systems, please click here to
contact Peningo.