Niyaz
Kalkati
Page 6 of 6
Niyaz Kalkati, M.S. CCNA, ITIL, HIPAA Security, CloudU
Ashburn, VA ◊ (301)-503-8103 (c) ◊ niyazk@hotmail.com
Qualifications Summary
A
results-driven Information Technology Professional with over 17 years of
successful experience in Enterprise Architecture, Systems Design,
Implementation and Integration, Data Warehouse, Disaster Recovery, High
Availability, Networking, Security, SOA based Architecture, Cloud
Architecture, Legacy Remediation, Virtualization, Risk Management and HIPAA
compliance. Strong record of success in designing and deploying IT
infrastructure solutions to numerous multi-million dollar projects
simultaneously.
Architecture and Process methodologies
Experience
§ Enterprise Modernization and IT Alignment with Business.
§ Server Virtualization Technologies, Service Oriented Architecture, Web
Services, Apache Hadoop and Cloud Computing.
§ Federal Enterprise Architecture, ITIL Frameworks and Agile/Scrum
methodology.
§ IDEF Modeling.
§ Security and Compliance– NIST 800 Publications, FISMA, FedRAMP, HIPAA,
SOX, PCI-DSS
Technical Proficiencies
§ Development Technologies : C, C++, PERL, Java, COBOL, XML, Web Services,
WSDL, UDDI,XBRL, Shell Scripts, Java Script, HTML PL/SQL, RichFaces, Subversion, Serena VM, Serena TeamTrack and Eclipse(IDE).
§
Operating Systems: Linux (RHEL), Solaris, Windows.
§ Database:
Oracle, Sybase, SQL Server,MySQL, MS Access, Data Warehouse (Informatica,
DataStage and SSIS ETL tools), Hyperion SQR, Microstrategy and Documentum.
§
Virtualization: VMware ESXi (vSphere), VMware SRM, VMware View (VDI), vCloud Director, OpenStack,Citrix XenApp.
§ Middleware:
Enterprise Service Bus (ESB), JMS (Java Message Service), CORBA, Webmethods,
Weblogic, Apache Tomcat, Apache Web Server, JRun, IIS, JBOSS, and BEA
WebLogic Portal.
§ Network & Security Tools: Internet Security Scanner, Portsentry,
ipchains, tcpdump, Penetration Testing (Nessus / Nmap), SSH, Intrusion
Detection (Snort), IBM TAM/WebSEAL, F5 BIG IP, AWSTATS Web Analytic Tool, Nagios Performance Management
Tool, Server cluster and Load Balancers.
§
Hardware: Sun SPARC Enterprise M5000 Server, HP ProLiant BL460c
Gen8 server Blade, HP 9000, EMC Symmetrix VMAX, NetApp NAS Filers (NFS v4 with Kerberos) Cisco PIX firewall, Cisco 7200/4500 series, Cisco
Wireless LAN Controller, Cisco NAC server
and Bluecoat Web Proxy.
§ Software and Utilities: Symphonia EDI
mapping and translation of ANSIX12N ((837, 835, 270, 271, 276, 277, 278,
834,820, 997 HIPAA Transactions), MS Project, Enterprise Architect, Visio,
Chart Logic EMR (Electronic Medical Record).
Professional Experience
Sr. Cloud Solutions
Architect (02/2013 –to Present)
CGI Federal, Fairfax, Virginia
·
Responsible to support and streamline government
access to FedRAMP compliant CGI’s Cloud Infrastructure as a Service (IaaS)
that gives agencies the ability to provision processing, storage, networks,
and other fundamental computing resources to create environments in which
they can deploy and operate their applications.
·
Determining IaaS requirements and provide
solutions to meet the functional and business requirements of a range clients
of various sizes and across verticals.
·
Defined necessary security controls for CGI’s
Health Cloud service environment to safe guard electronic protected health
information (ePHI) to meet the requirements of HIPAA and HITECH Act.
·
Developed solution architectures for more than 3
Requests for Information (RFIs) and 2 Requests for Proposal (RFPs).
·
Developed a technical transition-in approach tool
for a large scale project. This tool covers the standard activities involved
in CGI taking over any IT project and helps in prioritizing knowledge
transfer, shadowing and reverse shadowing based on the system complexity and
Business Impact.
Engineering Tech Lead
(Solutions Architect) (02/2012 –to January 2013)
Freddie Mac, Reston, Virginia
· Responsible for the planning and designing of engineering
solutions for technology infrastructure capabilities including Servers,
Storage, Network, Middleware, Operating System and database technologies.
·
Designed technical solutions utilizing enterprise
architecture standards including documenting all solution components and
configurations.
·
Introduced standards across the environments that
reduced infrastructure costs.
·
Designed enterprise-wide Web Application Firewall
solution that provides deep Web application analysis and protects Web
applications from common attacks, such as cross-site scripting (XSS) attacks,
SQL and command injection, privilege escalation, cross-site request forgeries
(CSRF), buffer overflows, cookie tampering, and Denial of Service (DoS)
attacks.
·
Designed an IT solution for the new business
capability to calculate the Treasury G-Fee payment amounts introduced by the
new Government mandate.
·
Design deployment model for replacing all
existing printers/ copiers with new leased RICOH MFD printers with the
ability to track, analyze and manage the print and copy activities.
·
Analyzed legacy applications and upgrading these
on virtual environments.
·
Designed Wireless Network Solution for 10000+
users using Cisco Wireless LAN controller, Cisco NAC guest Server for account
creation and Blue Coat proxy for web filtering. Users can bring their own
devices (BYOD) to access this network. The solution was designed and
implemented using Scrum process of the Agile frame work.
·
Demonstrated capacity to design solution and
execute multi-million dollar high-profile projects.
Infrastructure Architect
(12/2010 – 01/2012)
Federal Home Loan Banks (FHLB)-Office of Finance
Reston, Virginia
·
Reported directly to Director Architecture to
standardize the entire IT infrastructure and define the future state
infrastructure architecture and roadmap.
·
Directly involved with the procurement,
architecture, design, and development of infrastructure technology assets
(storage systems, virtual desktop infrastructure, server design and
implementation, etc.).
·
Performed architecture reviews of key systems and
applications to improve stability, availability, performance and service
levels by identifying architecture and infrastructure issues.
·
Developed Identity and Access Management (IAM)
deployment architecture using MS FIM tool that enables secure identity-based
access to applications both on-premises and in-the-cloud from virtually any
location or device.
·
Successfully upgraded Hyperion SQR from version
6.0 to EPM 11.x. Analyzed what changes may need to be made to upgrade SQR
from version 6.0 to version 11.x in the environment.
·
Architect and design Storage Array Networks (SAN) environments
to ensure high availability and acceptable performance characteristics for
VMware VDI and production applications. Research and evaluate SANs
including NetApp Fas3240 and EMC VNX 5500 and provided the product
recommendations to the management.
·
Designed and implemented Cloud hosted
infrastructures to host in-house run applications on Cloud provider systems.
·
Designed and installed Subversion source code
control system in a Solaris environment and implemented path-based
authorization which restricts who can see or change the content in repository
based on the location of the content inside the SVN repository.
·
Documented & trained administrators on how to
provide administrative support for source code control system.
·
Made recommendations for VMware ESXi and VMware View desktop virtualization (VDI)
configuration standards and best practices. Improved failover and failback
capabilities by upgrading VMware vCenter Site Recovery Manager that provides
better disaster recovery management.
·
Responsible for researching, cost-justifying,
recommending, and establishing current and future hardware and software
architectures for all aspects of information technology.
Systems Architect (EDGAR
Project) (3/2008 – 11/2010)
Keane Federal Systems Inc.
Client: US Securities and Exchange Commission.
·
As part of a cohesive team, developed an overall
technical approach for modernization of the EDGAR (Electronic Data Gathering
and Retrieval) system along with migration strategies for transitioning the
current EDGAR architecture to the modernized alternative.
·
Developed roadmaps based on project
interdependencies constraints for sequencing projects and initiatives to
achieve the desired strategic business objectives.
·
Analyzed the current EDGAR architecture, detect
critical deficiencies, and recommended solutions for performance
improvement.
·
Developed comprehensive design of EDGAR
architecture around SOA (Service-Oriented Architecture) principles.
·
Designed Web services architecture as an
alternative solution for filing community to submit bulk forms to EDGAR using
EDGAR Web services.
·
Provided architecture leadership for the
development and replacement of offline EDGAR Link software application with
web based solution “EDGARLINK Online”.
·
Architected, designed, and documented technical solutions
for storing different formats of data that involves building a data warehouse
and reporting/analysis using business intelligence (BI) tools.
·
Conducting architectural reviews for a broad set
of projects. Identified technologies and tools to implement the critical
elements of the EDGAR architecture.
·
Designed and implemented server consolidation
strategies to reduce the number of servers.
·
Designed and implemented the application
monitoring tool solution using AWSTATS (Open Source) to collect and report
data across all EDGAR system.
·
Research, analyze and recommend new technologies
to help reduce the costs and improve the overall service levels that are
appropriate for the business and technology strategies.
·
Maintain and reorganized EDGAR Systems
Architecture Document.
Enterprise Architect
(4/2007 – 2/2008)
Keane Federal Systems Inc.
Client: PBGC, Washington DC. (http://pbgc.gov)
·
Worked with the Infrastructure Engineering Team
to develop new IE processes and re-engineer existing processes using
Information Technology Solutions Life Cycle Methodology (ITSLCM).
·
Analyzed overall architecture of internal
technology systems, including hardware and software to update enterprise-wide
architecture models for integrated architecture solutions that meet
performance, scalability, reliability, and security needs of PBGC.
·
Analyzed existing PBGC data flow between
headquarter and COOP site.
·
Developed To-Be enterprise data architecture
model.
·
Reviewed Continuity of Operations (COOP) strategy
and provided recommendations for design improvement.
·
Developed Security Audit Findings Resolutions
(SAFR) reporting tool to support and track all activities
outlined in the Enterprise-wide security audits.
·
Managed and tracked three audits of
PBGC.
·
Mapped out OIG audit findings with NIST 800-53
publication.
·
Developed enterprise-wide processes and models
for all audits using IDEF0 model.
·
Worked with multiple stakeholders to
gather and prioritize their concerns as inputs into architectural design of
process models.
·
Evaluated and updated old infrastructure models.
·
Customized port lets as well as supporting
Infrastructure Engineering portal site.
·
Provided technical guidance and recommendations
in various specific topics relevant to the PBGC infrastructure plan,
including:
Ø Middle tier and application servers-Service Oriented Architecture(SOA)
Ø Integration of commercial off the shelf (COTS) solutions,
Ø Technology and vendor trends,
Ø Risks Identification and Mitigation Strategies,
Ø Open source options and transition to Linux servers.
Ø Implementation of Federal Enterprise Architecture Framework (FEAF).
·
Documented Audit Finding Management Process.
Senior Configuration
Management Consultant (12/2006 - 3/2007)
Thompson, Cobb, Bazilio and Associates,
PC
Client: Sprint, Reston, VA
·
Worked on data management, configuration
identification and control, standards and procedures development,
configuration status of sView call center application.
·
Responsible for providing configuration support
to the entire sView application.
·
Supported transition plan to serve as a roadmap
for migrating legacy application to sView application at different call
centers.
Sr. Software Analyst
(06/2006 - 11/2006)
Thompson, Cobb, Bazilio and Associates,
PC
Client: Virgin Islands Waste Management Authority
·
Designed and developed a web-based HR application
for Virgin Islands Waste Management Authority using Data Access Pages, VB
Scripts and Java Scripts
·
HR application is used to view employee
demographic information, educational information, work history and employee
assessment.
·
The application produces real time standard as
well as dynamic reports.
Sr. Security Analyst (03/2006 - 05/2006)
Thompson, Cobb, Bazilio and Associates,
PC
Client: Department of Health, Washington
DC
·
Developed standards and procedures for disaster
recovery documentation.
·
Reviewed agency’s technological and procedural
Disaster Recovery provision.
·
Developed recovery support and business
resumption procedures.
·
Analyzed application and system configurations
for critical agency resources.
·
Based on analysis, made recommendations for
disaster avoidance measures and improved backup capabilities.
Sr. HIPAA Security Analyst
(05/2004 - 02/2006)
Thompson, Cobb, Bazilio and Associates,
PC
Client: Office of the Deputy Mayor, Washington DC
·
Developed strategies for Risk assessment, and BIA
(Business Impact Analysis)
·
Developed HIPAA security questionnaire based on
NIST methodology.
·
Documented EPHI (Electronic Protected Health
Information) data flow diagrams for all DC agencies.
·
Performed vulnerability scanning to EPHI systems
and networks for security weaknesses from the inside using vulnerability
scanning softwares.
·
Performed external penetration testing to EPHI
environments to discover agency’s security weaknesses.
·
Analyzed all potential threats to agencies, as
well as their likelihood of occurring.
·
Analyzed an EPHI system of each agency in order
to assess its existing security profile, and identifying the safeguards
needed to bring the system’s security to the desired level.
·
Developed gap analysis, Business Impact Analysis
and Risk Analysis templates to evaluate each agency’s operational compliance
with HIPAA regulations.
·
Analyzed and gather information about the assets
of the agencies including information on networks, data centers, computers,
hardware, software and data as well as physical assets, such as the network users,
the physical facility and other agency resources.
·
Analyzed agency’s loss potential if certain
threats materialize and expected losses from defined threats based on asset
exposures, vulnerabilities and estimated probabilities of occurrence.
·
Provided recommendations on mitigating controls.
·
Act as a Subject Matter Expert for HIPAA
security.
·
Identified potential areas of each agency
including CWITS where existing data security policies and procedures require
change, or where new ones need to be developed that will satisfy all HIPAA
regulatory requirements.
Technical
Lead (01/2004 - 04/2004)
Thompson,
Cobb, Bazilio and Associates, PC
Client: DC
Housing Authority
·
Performed the activities necessary to deliver
design, validate, implement and deploy the desired application enhancements.
Installation, configuration and maintenance of Documentum and associated
products.
·
Performed administrative tasks in Documentum i.e.
run administrator jobs, configure customizations and integrations, maintained
Documentum security, completed changes to system as directed by DCHA, setup
content storage areas, recover deleted data, and maintain Documentum and SQL
tables.
·
Stabilized the WebTop deployment and provide
consistent access to the web application.
·
Decompilation/Recompilation of customized java
methods. Deployed an InputAccel enterprise server that will provide a single
upload path to the eContent server, thereby reducing risk of data loss and
loss of data access.
·
Ensures that a project is successfully deployed
without disrupting current environment.
·
Developed back-up, disaster recovery,
fail-over and load balancing strategy.
Quality Assurance Testing Lead (HIPAA) (07/2003 - 12/2003)
Thompson,
Cobb, Bazilio and Associates,
PC
Department of Health,
(MAA)
Government of the District of Columbia (DC Medicaid), Washington DC.
·
Responsible for full HIPAA compliance lifecycle,
that is, gap analysis, mapping, implementation and testing for processing of
Medicaid Claims.
·
Involved in the analysis of Health Care Claim
processing.
·
Performed system analysis, researched issues, and
coordinated with providers to develop solutions.
·
Evaluated WINASAP2003 software for 837 compliance
and reported discrepancies to management.
·
Developed detailed test scenarios for 837, 835,
834, 820 and 276/277 institutional and professional HIPAA transactions by
looking at requirements, business systems design and technical
specifications.
·
Involved in unit testing and system integrated
testing of the system with the QA team.
·
Provided support for all phases of testing at
varying degrees including Systems Testing, Acceptance Testing, End to End
Testing and Performance Volume Stress Testing.
·
Worked with user groups to define and develop user
acceptance test cases and scripts.
·
Developed and maintained expertise in all
applicable Federal and State regulations regarding healthcare and HIPAA
guidelines.
Systems Analyst (HIPAA) (03/2003 - 06/2003)
Uniglobe Technologies Inc., GA
Client: HealthMark Alliance, New Jersey
·
Performed analysis, design,
development and implementation of X12 EDI maps for Healthcare Claim
Payment/Remittance (835,837) using Symphonia/ Rhapsody.
·
Created Maps to extract Data from SQL Server 2000
database and for generating files for other maps for processing.
·
Developed maps for transaction sets 837 and 835
using Symphonia Map Designer.
·
Translated HCFA 1500 Standard to 837
HIPAA Transactions.
·
Wrote EDI code to Correlate HCFA 1500
to 837
Standard.
·
Developed a compliance maps to enable
the HCFA 1500 system to achieve HIPAA Code set compliance.
·
Developed XML scripts for integration
of EDI software to SQL server 2000 Database.
·
Used Symphonia Map designer for
mapping the fields to generate inbound and outbound files.
·
Conducted Unit testing on maps to achieve desired
outputs.
·
Interacted with trading partners and resolved EDI
related issues.
Systems Security Analyst (07/2002 - 02/2003)
Columbia Basin Health Association
Othello, Washington State.
·
In charge HIPAA Security Compliance: Designed and implemented HIPAA policies
and procedures related
to IT solutions throughout the network.
·
Developed gap analysis, contingency plans, and
risk analysis and mitigation procedures.
·
Performed gap analysis on
all parts of HIPAA transactions including privacy and security.
·
Developed network and host security
policies with focus on HIPAA.
·
Monitored and maintained logs, performed network
and system security audits in main location as well as remote locations and
provided detailed reports.
·
Implemented security and firewall
strategies.
·
Documented technical procedures and
provided detailed implementation plans to junior members of the technical
staff.
·
Developed and implemented backup
strategies.
·
Managed users, file system security,
account auditing and resource sharing.
·
Developed security related shell
scripts.
·
Designed and upgraded network to Gigabit Fiber
Optic Backbone and Switched Fast Ethernet (100MB) workstation
connections.
·
Sat up openBSD based firewall that included NAT,
PF, Statful Packet Inspection (HIPAA Compliance).
·
Installed SNORT IDS that monitored network system
24/7.
·
Implemented HIPAA Security and Privacy.
·
Developed and implemented policies to
comply with HIPAA standards.
·
Developed and implemented enterprise security
policy to resolve standing issues related to HIPAA compliance audits.
Systems Security Analyst (Technical) (06/2001 - 04/ 2002)
Indus International Associates, Atlanta,
GA
Client: Hutchison Wampoa Ltd., Hong Kong.
·
Responsible for all aspects of UNIX
(SUN Solaris) system design, integration, implementation, administration and
system maintenance.
·
Responsible for the optimization of
hardware platforms and derive a strategic path for hardware/software
consolidation as well as being able to develop design/implementation
solutions.
·
Evaluated and recommended new
security technologies for maintaining secure environment.
·
Created/maintained/modified Unix Scripts running
on HP 9000 to align with upgraded applications.
·
Technical Support for Sun Fire 4800 Servers,
HP-UX 9000, and day to day administration tasks, hardware and software troubleshooting.
·
Monitored the performance, trouble shooting the
problems of Sun Servers and HP Server.
·
Procured hard disks for all servers using EMC
symmetric disks.
·
In charge of the Watson the Chemist (WTC) Intranet
Migration Project.
·
Migration of applications as well as data from MS
IIS (MS SQL Database server) server to HP 9000 (Apache Server and Oracle).
·
Installed Sun Solaris 8 on corporate Sun Fire
4800 servers and workstation.
·
Implemented various Back-up policies including
daily, weekly and monthly.
·
Prepared necessary documentation for the task
accomplished.
Systems Administrator (12/2000 – 5/2001 and 5/2002 –
7/2002)
Indus International Associates,
Atlanta,
GA
·
Built, configured, and maintained Windows NT 4.0
servers and workstations.
·
Performed installation, configuration, and
support of workstation hardware and application software for business end
users and software developers.
·
Supported and maintained networking.
·
Supported Desktop/laptop computers and remote
users.
·
Performed hardware maintenance, upgrades, and
component-level trouble-shooting on workstations and servers.
·
Managed backups, restores, and backup policies
using DLT tape libraries.
·
Perform various systems administration tasks as
needed.
Systems Engineer (5/1998 to
9/2000)
Konsept Communications, Srinagar, India.
·
Configured and managed applications and LAN
servers under Novell Netware, Microsoft NT and UNIX operating systems for
number of healthcare hospitals and nursing homes.
·
Maintained system security including: passwords,
virus protection, dial-in access, and fault tolerance.
·
Maintained the health of servers, workstations
and equipment and staged and installed servers, workstations and equipment.
·
Supporting users and troubleshooting
user-reported problems.
·
Installed new versions of OS and other
application softwares.
·
Aided the development of policies and procedures
for the hospital.
·
Documented setup of network devices and
procedures required to maintain devices.
Other Projects from 1995 - 1998 as a Programmer Analyst @
BYTE Computers, India
Designed,
developed, and maintained client/server software systems for several clients
using C, C++, SQL and Oracle in UNIX and Windows environments.
Education, Industry Certifications and
Affiliations
· Masters of Science in Electronics
· Post Graduate Diploma in Computer Applications
· Cisco CCNA Certified Professional
· IT Services Management (ITIL) Certified Professional.
· Brain Bench HIPAA Security Professional
· 3Com University (Networking) Certified.
· CloudU Certified Cloud Professional.
· International Association of Software Architects (IASA).
References
Professional
references will be provided on request.