From: route@monster.com
Sent: Saturday, May 07, 2016 5:09 AM
To: hg@apeironinc.com
Subject: Please review this candidate for: Cloud
This resume has been forwarded to
you at the request of Monster User xapeix03
|
|||||||
|
|||||||
|
|
|
||||||
|
||||||
|
Krishnakumar Raghavan, Enterprise Solution
Architect Krishnakumar Raghavan Phone: (781)
929 2877 Email: rkrishnakumar@msn.com Address: 7 Cobblestone
Ct, Columbus, NJ 08022
Krishnakumar Raghavan is an
Enterprise Solution Architect with: Ø 20+ years of Information Technology experience with over 14 years of
Object Oriented Analysis , Design and Programming experience, 11+
years of architecture experience , 7+ years of SOA & EAI experience, 7+
years of experience in implementing Identity & Access Management
systems (SSO, User provisioning, LDAP etc.), 12+ Years of experience in
implementing projects leveraging GDC. Ø
Designed and developed several secured internet
and intranet web applications and web services. Grand architect of the
designs of large highly transacted applications that has over 2 million
registered internet users with ability to handle concurrent sessions of over
160000 users in a clustered Application Server, Oracle RAC, Directory server
with session failover capability. Ø
Thorough architecture definition expertise with
architecting, implementing and operationalizing projects with
Service-oriented Architecture (SOA), Enterprise Integration (EAI), BPM for large
enterprises. Ø
Experience in defining and implementing
application security using various security patterns and governance model:
WSIT, METRO, WCF, TANGO, HIPPA, NIST etc. Ø
Expert in Identity federation and provisioning
across domains, Cloud application security, Identity replication/ Identity
Islands design and implementation. Ø
Expert in Logical and Physical infrastructure
design and implementation using state of art server vendors – HP, IBM,
SUN/Oracle, Dell etc. Ø
Expert in Server virtualization and logical
partitioning (LPAR) Ø
Expert in defining various software development
processes; Configuration Management, Release Management, Change Control,
Application Build process. Ø
Six Sigma Green Belt certified. Ø
Experienced in software implementation
methodologies such as Rational Unified Process (RUP), Agile and project
delivery/IT Governance methodologies & SCRUM Ø
Experience in Global Development Center Delivery
model working in distributed team approach with onsite and offshore team. Ø
Expert in developing RFP and response to RFP,
Defining vendor shortlisting, contract awarding process and implementation.
The project
with ITSC is to develop a User Registration and Authentication for all the 50
U.S states workforce Agency. Role involved technical oversight, Vendor
shortlisting, defining project scope, best practices and lead architect for
the grand design. The role also requires to be associated with consulting for
several other projects that ITSC mandates including but not limited to
auditing Unemployment modernization projects, Single Sign On (SSO) systems,
Web service security etc. The registered
user data will be shared by various state hosted applications like
Unemployment Insurance (UI), Workforce development etc. for prequalification
of UI benefits and intelligence for creating jobs. The technology
components consisted of completely open source software’s: OpenAM, CAS,
Spring Framework, Spring Security, Glassfish Servers, Linux, Sub
Version, Spring Web Flow, Apache Tomcat, Apache Frameworks and
Prototype etc. As the Solution Architect: Ø
Established architecture, design and coding
guidelines, capacity planning and other templates for Integration projects Ø
Implemented Forgerock OpenAM for ITSC and many
participating states including State of Mississippi , State of New Jersey,
State of New York o Implemented Single sign on using
Forgerock OpenAM and integrated with several application hosted by ITSC
including MS SharePoint. o Extended OpenAM to leverage SPNEGO
based desktop authentication, Branding, oAuth, Adaptive Authentication o Extended OpenAM to integrate with
several Authentication stores, developed pluggable datastore such as
session datastore for SAML assertion, o Implemented cross domain SSO over
different domains. o Developed Authentication modules
to integrate with several unsupported user storage using service Oriented
Architecture, RDBMS etc. o Integrated with Apache ,IIS, Sun
Webservers, IBM webservers for securing applications providing SSO o Integrated with Most known JVM
containers including but not limited to Tomcat, Weblogic, JBOSS, IBM
WebSphere, Glassfish, Jetty etc. o Implemented Directory servers
using Forge rock OpenDJ, Sun Directory Servers (Now Oracle), OpenDS
using Multi-master replication configuration. o Integration of Java applications
with OpenAM using J2EE policy agents and Spring Security framework (ACEGI) Ø
Provided architecture and technical oversight for
the project on a day-to-day basis working with the project teams to
develop solutions that struck the right balance between immediate project
requirements and long-term ITSC Integration/SOA strategy Ø
Analyzed Project pipeline, estimated capacity
requirements, defined and implemented Application Strategic Infrastructure
requirements Ø
Led the day-to-day technical activities of ITSC
project implementation Ø
Participate in Vendor interviews and shortlisting
process for developing Requirement Specification Package. Ø
Led and designed configuration management, change
management process for project. Ø Led and designed the consolidated project source
repository for all 50 states while implementing a robust configuration
management and build control process.
The project (MATRX) involves replacement of a
legacy mainframe application with a layered SOA based architecture.
Technology components include WebSphere Application Server, WebSphere,
Process Server, WebSphere Message Broker, DataStage, JRules, FileNet, Captiva
eInput/InputAccel, xPressions, OpenSSO, Oracle Identity Manager, Oracle
Access Manager, Windows 2003, Windows 2003, AIX, VM ESX/ESXi, Windows XP,
Windows7, Linux Redhat, Solaris. As the Solution Architect: Ø Participated in defining and reviewing and suggesting changes to the
overall architecture of the project from time to time. Ø Led the effort for DAC and RFP compliance for project deliverables. Ø Participate in developing project development schedule, Deliver module
specific schedules and maintain the schedule. Ø Led the effort to identify business customer preferences and gather
intelligence to effectively deliver/preprocess expected data. Ø Led the effort to identify and implement the customer management
(Contact management) requirements that can be used for Agency Transactions,
Web Based transactions and manage customer privileges based on the past
success transactions. Ø Defined and led a comprehensive proof of concept for various
architecture components including but not limited to application security,
component security, Role based access control, Policy based access control
etc. Ø Designed and led the integration of identity provisioning with various
user repositories like: ACF2, Directory Server, Oracle database, Active
Directory and defining provisioning workflows. Ø Designed and led the effort for implementation of various cross
functional and non-functional components: RBAC, Audit Framework, Search,
Transaction Management, Supervisor Override (Using Active directory). Ø Introducing various open source frameworks for reusability and robust
design: Spring Security, Spring LDAP, OpenSSL etc. Ø Designed and implemented highly available infrastructure &
deployment architecture with failover over capability. Ø Led the implementation & redesigning of UAT environment, failover
testing, and delivery acceptance following DAC. Ø Led a team of business analysts for developing requirement
specification package (RSP), (Use case, UI, Rules, data) and see through the
fulfillment of the RSP. Ø Led a team for production implementation of Release 1 of the project
travelling across state of New Jersey. Successfully troubleshooting
performance and infrastructure related issues to the meet the DAC. Ø Led, designed and implemented printing of transaction fulfillment
artifacts at agency triggered from the web application. Ø Led and designed the infrastructure for online scanning of transaction
documents at Agency. Ø Led and designed Single Sign on system for the project, implementing
SPNEGO based Kerberos authentication for windows users. Ø Led and designed Active Directory group policy for SPNEGO
implementation and various others locked down browser settings required by
the application to function securely. Ø Led and Implemented EJBCA based sign on system using OpenSSO for
authenticating and authorizing web-service client’s hosts. The web service
itself hosted on IBM message brokers & glassfish servers. Ø Participate in implementation of Test strategy and it’s acceptance via
DAC. Ø Led to identify the secure points with in the application to
facilitate Role Based Access Control Ø On an ongoing basis: o Keep architecture current with changing requirement and
software stack. o Update the architecture to include new solutions when
necessitated by new requirements. o Guide the design & development team in understanding
of the defined architecture. o Perform design reviews before published to client. o Lead a team of Business Analysts, Designers,
Infrastructure engineers o Conflict management o Redefining and introducing new process to mitigate issues o Scrum master o Conduct weekly status meeting and communicate the weekly
status meeting to client o Review and update of project schedules and update o Subject Matter expert for Application and infrastructure
security. Ø Implemented ForgeRock Single Sign On (SSO) o Integration of Java applications with OpenAM using J2EE
policy agents and Spring Security framework (ACEGI) (Integration at Webserver
and java application server level). o Implemented Windows Desktop Authentication using
SPNEGO for internal application for desktop authenticated staff. o Integrated with central provisioning system to provision
users to Active directory, AS400, Oracle Database, Directory server using Sun
Identity Manager (Oracle Waveset) o Architect of SSO infrastructure, including server design,
Directory server design, integration design etc. Lead the team of twelve
developers to implement SSO at MVC enterprise level apart from leading other
teams at parent project level.
The project at Epsilon required to implement a
Single Sign on (SSO) system and Identity provisioning system using Forgerock
identity suite. The SSO was also integrated with various business partners by
use of oAuth , Federation and Webservices. The technology components consisted of JBOSS
application servers, Apache Web servers, Open SSL, Forgerock Open
Access Manager, Forgerock Open Identity Manager, Forgerock Open DJ, Active
Directory, Linux – Redhat etc. As the Lead Security Architect: Ø
Architect of the grand design and Subject Matter
expert Ø
Implement SSO at Two data centers including one
in London UK and Dallas, TX Ø
Integrate SSO with various web applications
hosted by Epsilon though use of SSO , oAuth and Policy Agents Ø
Federation/SAML assertion integration with
Business partners such as Sales Force, Bank Of America, Schwab etc. Ø
Install and integrate with various Directory
servers such as OpenDJ, Active Directory etc. Ø
Branding and customization of various Custom off
the shelf systems for authentication modules Ø
Configure authentication modules, realms etc., Ø
Configure , deploy and integrate with Identity
managers Ø Develop Custom authentication modules, custom post authentication modules
etc. Ø Implement adaptive authenticationrecognize devices, users etc. Ø
Integration with Forgerock Identity manager for
user provisioning to Directory servers.
The project with TORO is to implement cloud based
Single Sign On system for internal users and business partners. Federation of
identity with Salesforce.com The technology components consisted of Sun
Identity Manager 8.1, OpenSSO 8.0, Sun Directory Server 5.x ++, Glassfish
Server, OpenDJ, Active Directory and Java As the Lead Security Architect: Ø Architect of the grand design. Ø
Defined the Architecture for the Identity &
Access management system of the project that covered the SSO, RBAC, Federation components of the technology stack Ø Subject Matter expert for Single sign on and federation, OpenSSO, Sun
Identity Manager. Ø Led socializing effort with Sales force for federation of identities
from Toro to sales force. Ø Defined a standardized, reusable design framework with standardized
services and interfaces that all TORO transactions could use. Ø On an ongoing basis: o Keep architecture current with changing requirement and
software stack. o Update the architecture to include new solutions when
necessitated by new requirements. o Guide the design & development team in understanding
of the defined architecture. o Perform design reviews before published to client. o Redefining and introducing new process to mitigate issues o Review and update of project schedules and update o Subject Matter expert for Application and infrastructure
security.
The project with HAP was to implement federation
of account with Covisint and provisioning of users into HAP user repository
using SPML JAXP web services that acted as a wrapper for SUN IDM SPML
services. The technology components consisted of Sun
Identity Manager 8.1, OpenSSO 8.0, Sun Directory Server 7.0, Glassfish Server
and Java. As the Lead Security Architect: Ø Architect of the grand design. Ø Led the implementation coordinating with both parties from conceptual
to production implementation. Ø
Subject Matter expert for Single sign on and federation,
OpenSSO, Sun Identity Manager.
The project with Consilium1 was to define and
implement application security required for Canoe Ventures applications that
were implemented by Consilium1. The technology stack consisted of JBOSS 4,
OpenSSO 8, Novell Directory Server 8, Apache Web server, Java, Ruby As the Lead security Architect – Ø
Architect of the grand design. Ø
Identify the application security points and map
the secure points into URL Ø
Lead & Design OpenSSO policies for policy
based role based access control. Ø
Design & Implement OpenSSO Ruby Plugin for
Single Sign On . Ø
Knowledge transfer of the implementation for
continuing implementation team.
·
NJSUCCESS The project (NJSUCCESS) involved replacement of a
legacy mainframe application for unemployment insurance claim with a layered
SOA based architecture. ·
COURTS PKI
Migration The Courts PKI migration involved with moving the
exiting PKI based user authentication mechanism to enterprise single sign on
System for the internet web based transaction center. ·
COURTS The Courts
project involved replacement of the existing client server application and
Web based transaction center hosted on iPlanet 5.0 into a web based
application using Sun JES suite. ·
Identity
And Access Management The project
(I&AM) involved implementation of enterprise single sign on system and
user provisioning system using Sun Java Enterprise Suite. ·
Agency
Website re-design The Courts PKI migration involved with moving the
exiting PKI based user authentication mechanism to enterprise single sign on
System Technology components include Sun Application
Server, Sun JMS, TomCat, GeoStan, JRules, FileNet, Oracle RAC, Business Objects,
Oracle Identity and Access manager, OpenSSO, Spring Webflow framework, Spring
Framework, Spring Security Framework, Apache Framework, Solaris, SPNEGO, Sun
Directory Server, Solaris, Windows 2003, Windows XP, Windows 7, Solaris,
Linux. As the Lead Solution Architect – Ø Established architecture, design and coding guidelines for LWD
projects. Established and socialized LWD project guidelines. Helped establish
a continuous improvement process that analyzed sustain incidents and
implement changes in process/architecture to prevent such problems in future.
Developed and implemented capacity planning Worksheets. Ø
Played a leadership role in LWD’s SOA and JES
Suite initiatives. Led the day-to-day activities of LWD project Council as
well as LWD Java Working Group. Led the development and implementation of
such common services Ø
Guided LWD towards a practical, evolutionary
approach to SSO adoption, separating the hype from real value. Proactively
identified relevance of SSO use cases to specific projects and guided the
projects through the incorporation of SSO components in their architecture
and design Ø
Led LWD SSO Focus Group to define LWD new
Identity and Access Management requirements with inputs from all the BUs,
create a comprehensive RFI, define scope and use cases for a SSO, User
provisioning POC. Ø
Functioned as a domain architect for Integration,
SSO and J2EE technologies and supported NIST & HIPPA standards both on an
ongoing basis as well as re-definition of LWD standards. Ø Led the planning and execution of a comprehensive Identity and Access
management project. The project included coordinating the activities with
different ongoing projects, proving integration between the components of the
SSO Reference Architecture, integration between SSO components and legacy
components. The project also included comprehensive performance testing
benchmarking performance for various use cases. This later proved to be
immensely useful for capacity planning early on in the project Ø
Championed and guided Identity and Access
management projects in the first-time implementation with NJSUCCESS that were
later adopted by other applications replacing legacy authentication & authorization
methods. Ø
Architect of the grand design for NJSUCCESS,
COURTS, Website Redesign and Identity & Access management projects.
The GEAWS was a GEFA business unit signing and
servicing Auto warranty contracts for Suzuki, Polaris, ArcticCat, and
extended warranties for all manufacturers as recommended by dealerships. The Technology
Components: ASP, ASP.NET, XSML,XSLT, iPlanet Application Server, Sun
One Application Server, iPlanet web servers, Sun One Web server, IIS,
FileNet, , Oracle 8, 8i, 9i, Oracle Enterprise manager, Java, J2EE, JDBC,
Microsoft Transaction Servers, CICS, Oracle PG4APPC gateway for Mainframe
(Commit Confirm etc). Microsoft Source Safe, Siteminder 5.0, Siteminder 6.0,
iPlanet Directory Server , Visual basic. As the Technical Project/Delivery Manager - Ø Managing GEAWS Projects coordinating with offshore GDC (India) and
Onsite teams. Ø Successfully led the development and deployment of several mission
critical applications for Business Intelligence reporting, Online Auto
warranty contract transaction system, Implement SiteMinder Authentication
& Authorization project, VIN explosion, Contract Entry Rating system
& Open System to mainframe integration in a Global Delivery Model. Ø Successfully managed and implemented SLA agreements in
coordination with offshore GDC facility. Ø Architect of grand designs of GEAWS applications. Ø Responsible for ensuring that the work that is moved offshore is
cleared through a project clearance process and ensured security of the data
that was available for offshore. Ø Conduct offshorability analysis for the projects to be moved offshore.
The project (Agency Connect) involved replacement
of a PowerBuilder application with a Java Applet Based web application
running on JRunner and Apache webserver. Technology components used where: PowerBuilder
5.x , 6.x Java, Oracle, Solaris, Jrunner, Apache As the Technical Project/Delivery Manager - Ø Successfully led the development and deployment of Agency connect in a
Global Delivery Model. Ø Successfully managed and implemented SLA agreements in
coordination with offshore GDC facility. Ø Implemented distributed configuration management using PVCS Ø Lead onsite and offshore project team from India.
The project (PDQ200) involved enhancement of a
PowerBuilder application that is used by Life insurance Agents Technology components used where: PowerBuilder
5.x, Oracle, Solaris. Ø Successfully led the development and deployment of Agency connect in a
Global Delivery Model. Ø Successfully managed and implemented SLA agreements in
coordination with offshore GDC facility. Ø Implemented distributed configuration management using PVCS Ø
Lead onsite and offshore project team from India.
The project (Diamond Trading System) was a new
project that would help Diamond Trading, procurement, cutting and polishing
of rough diamonds from DTC. Offshoring of Diamond processing, Mixing of
diamonds and sorting. Technology components included: PowerBuilder,
Oracle and Novell Netware As the Onsite Project Lead - Ø Successfully led the development and deployment of Diamond Trading
System in a Global Delivery Model. Ø Implemented distributed configuration management using Custom
configuration process Ø Implemented Controlled release management.
·
www.geaws.com ·
www.njuifile.net ·
www.identity.dol.state.nj.us ·
http://caas.canoe-ventures.com ·
www.lwdsso.dol.state.nj.us ·
www.nj.gov/labor ·
https://www14.state.nj.us/DOL_DABI, ·
https://www14.state.nj.us/DOL_FLI ·
http://www.njtrainingsystems.org ·
http://lwd.state.nj.us/forms/frmservlet?config=uixpube (Oracle Forms) ·
www.courts.dol.state.nj.us
December 2000Project
Team award, PCS/Data Conversion Inc. (Employer), July 2001 Excellent
performance award, GE Financial Assurance, Denver,. May 2002 Excellent
performance award, GE Financial Assurance, Denver, November 2003 LOA (Letter of Appreciation) for a
cost effective solution of creating flattened PDF files using JAVA for the
Web based Contract transaction system , GE Auto warranty System, Denver.
1996 Honors
Diploma in Software Engineering and Technology
2003Six Sigma
Green Belt certified. 2004 Java Brain Bench certified
Master of Science in Information Technology –
Emphasis area: Computer security and Forensics. – Kaplan University,
Chicago, IL,US Bachelor’s degree in Physics (Electronic
Instrumentation), Mumbai University, Mumbai, IND Krishnakumar Raghavan, Enterprise Solution ArchitectPage | 1 |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Languages: |
Languages |
Proficiency Level |
|
English |
Fluent |
|
|
Hindi |
Fluent |
|
|
Malayalam |
Fluent |
|
|
Marathi |
Fluent |
|
|
Tamil |
Intermediate |
|
|
|