Srinivasa Vankineni

  • Identity Access Management (IAM) Engineer
  • Jersey City, NJ
  • Member Since Apr 15, 2023

Candidates About

 

Srinivasa Vankineni

 

SUMMARY

 

·         9 years of experience in Installation, Configuration, Deployment and Maintenance of Web Application servers, Web servers, LDAP servers and SiteMinder components like the Policy Server, Web Agent, and Policy Store.

·         Administration and Configuration of CA Siteminder version R12 on the cross platform with diversified web servers to the Web Agents and policy Servers.

·         Installed, configured and integrated Web servers (plug-in file), SiteMinder Web agents and LDAP user directory with Websphere Application Server.

·         Develop architecture and strategies for integrating diverse business applications into SSO, set ‘IT Security standards, design the architecture for various SSO integration profiles like Certificate based authentication, header based authentication.

·         Worked on RSA Adaptive Authentication for calculating risk score and worked with Authentify for OOBSMS and OOBPhone

·         Good exposure in implementing the SAML based Single Sign-on (SSO) involving services with third party applications.

·         Supported SiteMinder upgrade in all the environments (QA, UAT and Production).

·         Design the architecture for different integration options, ex: I dP initiated SSO, SP Initiated SSO, Artifact and POST profile, Open SAML API, using integration adapters to integrate applications like Salesforce,  concur, sharepoint and Adobe with OKTA.

·         Extensive experience in Installation configuration and maintenance of Netegrity SiteMinder Policy Server version 6 and 12.5and implement Single Sign On (SSO) with various web servers like Apache, IIS.

·         Supported as operational team for CA Identity Manager 8.1 tool, which helps automated workflow around the creation, management and deletion of user accounts and entitlements.

·         Experience in Installation/configuring and troubleshooting the Web Servers (IIS6.0/7.0, Apache, Tomcat, IBM-Domino, IBM Http Server and Sun One 6.0).

·         Expertise in working with web servers – IBM HTTP Server, IIS and Apache Web servers and configurations.

·         Hands on experience in integrating siteminder with WebSphere Portal Application Server.

·         Working Knowledge in analyzing the logs (trace logs) and Trouble Shooting issues in Integration of other applications using CA Siteminder (Access Management) with LDAP and Web-server agents.

·         Installed, configured and maintained Siteminder policy servers by integrated with LDAP for Policy Store.

·         Possess excellent communication, interpersonal and analytical skills along with can–do attitude and a good team Player.

·         Working on building Transmit-security for authentication and calculating Riskscore for users.

·         Supported OES(Oracle Entitlement Services) for migrating and distributing policies.

 

 

 

 

TECHNICAL SKILLS

Operating Systems

Solaris, Windows 2000/2003, RedHat-Linux

Tools

CA SiteMinder Policy Server 6.0/R 12, CA Identity Manager 8.1, SAML1.0/2.0, OpenSSL, Ping Federate, Exceed.

Databases

Oracle 8i/9i, MS SQL Server 2000/2005, MS Access.

Web-server

SunOne 5.1/6.1, IIS 6.0/7.0, Apache 2.x, Domino, IHS.

Application Server

IBM Websphere Portal 6.0/6.1, WebSphere 4.x/5.x/6.x, Tomcat 4.x/5.x. , Weblogic

Directory-server

iPlanet/SunOne directory server 6.x, Sun DSEE 6.3/6.3.1, Microsoft Active Directory, IBM-Tivoli Directory Server.

Scripts/Language

Unix Shell programming, PERL, JavaScript, C/C++, HTML,

VB Script, Java, MS Excel Macros(Scripting).

Incident/Change Management

Service Now, Virtual Change and Virtual Tech.

Web Technologies

 ASP, .NET, XML, AJAX, FLEX, Web services.

Networking Devices

F5 BigIP, Bay Networks, Routers, Hubs, Firewall rules.

 

 EDUCATION

Master of Computer Applications (MCA)

 

PROFESSIONAL EXPERIENCE

 

TIAA-CREF, New Jersey                                                                                         Feb 2012 – Present

Identity Access Management (IAM) Engineer

Teachers Insurance and Annuity association -College Retirement Equities Fund is a leading non-profit financial institution. Specializing in retirement benefits for teachers, professors and governments employees. Single Sign-on infrastructure in TIAA-CREF primarily configured using CA Siteminder, CA Directory, Ping Federate, and Transmit and serves around 3 million users.

Responsibilities

  • Installed and configured Siteminder and its web agents to configure single sign on for various applications both internal and external customer facing.
  • Installed and configured siteminder web agents on Apache, IIS and IBM HTTP servers.
  • Installed and configured Web/ASA agents on IBM HTTP servers for Web Sphere application.
  • Created and Maintained Policy server objects Agents, ACO’s, Domains, Rules, Realms, Policies, and Responses.
  • Experience in troubleshooting Siteminder related issues like analyzing the sequence of different logs like smps.log, smtracedefault.log, Webagent.log and smaccess.log
  • Have coordinated with CA while doing new implementations and troubleshooting the issues and also created CA tickets/gather/upload different logs for siteminder and CA Directory.
  • Implemented and maintained Authentication solutions such as RSA Adaptive Authentication, OES and Transmitsecurity.
  • Configured new connections using ping federate as IDP/SP initiated applications by exchanging metadata, entity id and certificates.
  • Worked on different integration options like, ex: IDP initiated SSO, SP Initiated SSO, Artifact and POST profile using integration adapters to integrate applications like Sales force , AD connect, concur, SharePoint and Adobe using OKTA.
  • Created federation trust between Ping federate and Siteminder for seamless SSO for applications during migration strategy for utilizing SMSESSION using coreblox token service adapter.
  • Experience in configuring and deploying adapters and token processors for Ping depending on the requirements for the application.
  • Good exposure on grant based flows for OAuth 2.0/SAML 2.0/OpenID connect using Ping federate.
  • Involved in ping access configurations for internal and external applications.
  • Creating objects in PingAccess like creating virtual hosts, site authenticators, rules, policies, and authorization and authentication policies.
  • Involved in Installing and configuring CA Directory as Directory Server (LDAP)
  • Working in operational/Integration team to support day to day activities and also supports 24/7 on call.
  • Performed technical review of all changes in conjunction with Change Management Team.
  • Day to day work includes gathering requirements from application teams to onboard new applications using siteminder and pingfederate and supporting environment issues, reports and incidents management.
  • Worked on OES (Oracle Entitlement services) migrations and involved in building and configuring APM (Application Policy Management) to distributing the policies.
  • Worked on RSA Adaptive Authentication/Transmit Security for authentication, risk score, OOBSMS, OOB Phone etc.

 

Environment: Siteminder 6.0 /R12.5, Ping, CA Directory, OES,Linux, SunONE Directory 5.1,Apache 2.0 and 2.2, ODSEE11g, OES, Transmit, splunk, Tivoli, F5 , OES

 

Frontier Communications, FL                                                                                              June’10 –Aug’11 Siteminder Administrator

 

·         Implemented authentication schemes and authorization framework for the well maintenance of the SSO environment by defining user policies and rules.

·         Involved in Collecting the requirements, feasibility analysis and documentation for accomplishing the enterprise SSO from within the enterprise.

·         Worked on SiteMinder Policy Server(R6) on UNIX/Windows environments.

·         Defined Domains, Realms, Rules, Responses and Policies for protected web resources.

·         Successfully Upgraded Policy Server version 5.5 to version 6.0.

·         Worked on the Installation and fine tuning of the SiteMinder web agents for the accomplishment of the business and user requirements.

·         Successfully integrated application security projects with CA SiteMinder, Sun ONE LDAP.

·         Effectively maintained the policy store, key store and the user store.

·         Protected application by Siteminder. Achieved Single Sign On in multiple domains.

·         Opened tickets with CA (Computer Associates) related to bugs and issues.

·         Worked with LDIF files (import and export) on Sun ONE Directory Server.

·         Used Service-Now for troubleshooting tickets.

 

Environment: CA SiteMinder (5.x/6.x), Web agents (5.x, 6x), BEA WebLogic (8.x, 9.x), Websphere ( 6.x), Apache 2.x, iPlanet Directory Server, Bourne Shell Scripting, UNIX, Sun ONE Directory Server 6.1, XML

 

Verizon, FL                                                                                                                             Sep’09 – June ’10

Siteminder/App Admin

 

·         Worked on MVSS application (My Verizon Support System) which will be used by NCC folks to see the customer details.

·         Supported and developed/upgraded 1.1 to 2.0 using dot net technologies.

·         Worked on siteminder 6.0 to configure MVSS application.

·         Responsible for deploying enterprise applications from Admin console and enabling security using LTPA and LDAP for admin console and application components on AIX.

·         Configuring Responses to enable web content personalization.

·         Installed and configured Redhat directory server to centralize application settings, user profiles, group data, policies, added multiple Redhat directory Master/Slave replication servers and access control information.  

·         Installing and configuring SiteMinder Policy Servers to authenticate and authorize access to Enterprise resources.

·         Installing and configuring Web Agents to protect and manage access to enterprise resources. Configuring User Authentication Stores and Policy Stores Key Stores on LDAP.

·         Upgrading Identity Minder, Identity Manager. Administration, user role management, coding and customizing the environment.

·         Implement Policy-based Security using Web Agents, User Directories, Realms, Authentication Schemes, User Sessions, Rules, and Responses to protect, manage, authenticate and authorize access to enterprise resources.

·         Configuring User Sessions to support for SSO over single domain and multiple domains.

·         Creating OPENSSL Certificates and using them to achieve secure transaction for identity and authentication.

·         Perform Functional, Regression, Stress and Certificate-based Authentication tests.

·         Conduct proactive and reactive performance tuning for Operating Systems, Web Agents, Policy Servers, Policy Stores, User Stores to meet and maintain operational requirements (process, thread, connection, cache)

 

Environment: ASP.NET,C#.net,SQL, CA Siteminder, JDK 1.5, Apache Http server 2.x, SunONE Directory Server 5.2, IBM IHS server 6.0,HTML, JavaScript, JSP, Servlets, SOAP, Sun Solaris

 

 

 

M3Medical Group Inc. Chicago, IL

Sep’08 – aug’09

Software Engineer/Siteminder Admin

 

·         Experienced with cross-system identity mapping and reconciliation to OIM identity repository database

·         Actively involved in the Requirement gathering for the enhancements to the existing project.

·         Analysis and Implementation of the EJB code and making enhancements to the existing code.

·         Installed, Configured and Maintained Policy Servers, Sun ONE Directory Server,

·         Configured and maintained Policy Store, User stores and key stores in Sun ONE Directory Server.

·         Created, Maintained Policy server objects Agents, Domains, Rules, Realms, Policies, and Responses

·         Installed, Configured Web agents and Application Server Agents for IIS, Apache and BEA Weblogic

·         Created and configured organizational units, groups and users in Sun ONE Directory Server.

·         Involved in troubleshooting of Netegrity SiteMinder policy server, web agent and Active Directory issues.

·         Worked on writing Shell script and Linux script for command line interpretation of Operating system.

·         Intercept access requests for protected resources and work with the Policy Server to determine whether or not a user should have access.

·         Design, Implementation and Unit Testing of different federation features. Creation of functional specification documents

·         Worked with LDIF files (import and export) on Sun ONE Directory Server.

·         Fine tuning of Web agents and policy servers for optimized performance

 

Environment: Netegrity SiteMinder (5.0/5.5), Sun ONE Directory Server 5.1, Microsoft Active Directory, IIS 5.0, BEA WebLogic (7.x, 8.x), Solaris 8, Windows Server 2000/2003, Apache Web Server 1.3x, Apache