Identity Focus, LLC SUMMARY



Similar documents
Access Management Analysis of some available solutions

Product overview. CA SiteMinder lets you manage and deploy secure web applications to: Increase new business opportunities

Enabling Single Sign-On for Oracle Applications Oracle Applications Users Group PAGE 1

IBM Tivoli Identity Manager

Oracle Access Manager

RSA ACCESS MANAGER. Web Access Management Solution ESSENTIALS SECURE ACCESS TO WEB APPLICATIONS WEB SINGLE SIGN-ON CONTEXTUAL AUTHORIZATION

Oracle Fusion Middleware 11g Release 1 IDM Suite

Oracle Access Manager

Oracle E-Business Suite (R12) Integration with OID/OAM 11g

OracleAS Identity Management Solving Real World Problems

Oracle IDM Integration with E-Business Suite & Middleware Technologies

Oracle Access Manager. An Oracle White Paper

This document lists the configurations that have been tested for the Oracle Primavera P6 version 7.0 release.

CA SiteMinder. Implementation Guide. r12.0 SP2

Contents. Primavera P6 Tested Configurations Release Version: Date: December 2013 Revision:

MicroStrategy Course Catalog

IBM Security Access Manager for Web

Management Packs for Database

These requirements led to several challenges in deploying identity related applications within the enterprise:

CA Service Desk Manager Release 12.5 Certification Matrix

Oracle Identity Manager (OIM) as Enterprise Security Platform - A Real World Implementation Approach for Success

SENTINEL MANAGEMENT & MONITORING

Oracle E-Business Suite Single Sign On Using Oracle Access Manager

Approaches to Enterprise Identity Management: Best of Breed vs. Suites

Tested configuration for Major versions of Primavera:-

NetIQ Identity Manager Setup Guide

Diploma in Computer Science

Oracle Desktop Virtualization

End-to-End Identity Management With Oblix and Microsoft WHITEPAPER

Oracle Identity Management for SAP in Heterogeneous IT Environments. An Oracle White Paper January 2007

PingFederate. SSO Integration Overview

Securing your business

midpoint Overview Radovan Semančík December 2015

Oracle Fusion Middleware

Technology Consulting

CA Single Sign-On Migration Guide

Oracle Identity Analytics Architecture. An Oracle White Paper July 2010

An Oracle White Paper September Directory Services Integration with Database Enterprise User Security

ProtectID. for Financial Services

Oracle Directory Services Integration with Database Enterprise User Security O R A C L E W H I T E P A P E R F E B R U A R Y

Designing Windows Server 2008 Active Directory Infrastructure and Services Course 6436B; 5 Days, Instructor-led

Select IT Consulting Services RFP Technical and Network Support Specialist Services (Lot Group C)

IT Application Support Engineer (Database, Web & User)

JBOSS ENTERPRISE APPLICATION PLATFORM MIGRATION GUIDELINES

Secure the Web: OpenSSO

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Day 1 - Technology Introduction & Digital Asset Management

Oracle9i Application Server: Options for Running Active Server Pages. An Oracle White Paper July 2001

Quest Software Product Guide

Centralized Oracle Database Authentication and Authorization in a Directory

<Insert Picture Here> Oracle Policy Automation System Requirements

Migration Best Practices for OpenSSO 8 and SAM 7.1 deployments O R A C L E W H I T E P A P E R M A R C H 2015

Wide technical Know-how, Cross-platform engineering and troubleshooting, Administration

Siebel Installation Guide for UNIX. Siebel Innovation Pack 2013 Version 8.1/8.2, Rev. A April 2014

Framework 8.1. External Authentication. Reference Manual

DirX Identity V8.5. Secure and flexible Password Management. Technical Data Sheet

Executive Summary. What is Authentication, Authorization, and Accounting? Why should I perform Authentication, Authorization, and Accounting?

EMC Data Protection Advisor 6.0

State of Vermont Guidance on the Re-use of Software Products, Shared Components, and Hosted Platform Environment Capabilities

CA SiteMinder SSO Agents for ERP Systems

OBIEE 11g Security it s as easy as 1-2-3!

DTWMS Required Software Engineers. 1. Senior Java Programmer (3 Positions) Responsibilities:

Integrating IBM Cognos 8 BI with 3rd Party Auhtentication Proxies

Oracle Access Management 11gR2 ( x) Frequently Asked Questions (FAQ)

<Insert Picture Here> Oracle Policy Automation System Requirements

Securely Managing and Exposing Web Services & Applications

Implementing Microsoft Azure Infrastructure Solutions

Open Source Identity Management

Integrating OID/SSO with E- Business Suite and Third-Party SSO Solutions. Presented by Paul Jackson (Norman Leach)

Leverage Active Directory with Kerberos to Eliminate HTTP Password

CA Single Sign-On r12.x (CA SiteMinder) Implementation Proven Professional Exam

Implementing Microsoft Azure Infrastructure Solutions

Integrigy Corporate Overview

PeopleSoft Enterprise Directory Interface

BlueCoat s Guide to Authentication V1.0

CA Identity Manager. Installation Guide (WebLogic) r12.5 SP8

Managed Services Portfolio. MindCraft Software Pvt. Ltd.

Password Self-Service for Novell edirectory. Brent McCormick Novell Corporate Technology Strategist

Business Alliance B.A.A.E.R. Managed services

DirX Identity V8.4. Secure and flexible Password Management. Technical Data Sheet

How To Use Ibm Tivoli Composite Application Manager For Response Time Tracking

Annex 10 Standard Profile Specification and Request Form for Services

ActiveVOS Server Architecture. March 2009

LDAPCON Sébastien Bahloul

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Oracle Fusion Middleware

Enterprise Identity Management Reference Architecture

STRONGER AUTHENTICATION for CA SiteMinder

Microsoft Private Cloud

OpenSSO: Simplify Your Single-Sign-On Needs. Sang Shin Java Technology Architect Sun Microsystems, inc. javapassion.com

Integrated Performance Monitoring

6436: Designing a Windows Server 2008 Active Directory Infrastructure and Services (5 Days)

IBM InfoSphere Guardium

Transcription:

Identity Focus, LLC Timothy Melander Consultant Mobile: +1.612.747.9308 Email: tim@identityfocus.com LinkedIn profile: http://www.linkedin.com/in/timmelander SUMMARY Mr. Melander is an experienced professional with excellent technical, leadership and business skills. He is highly experienced in architecting and implementing Oracle solutions to provide high availability, data integrity, and application integration at enterprise level deployments that require systems to work and perform with critical applications with 24x7x365 availability. Mr. Melander is also well versed in understanding, designing, administrating, troubleshooting, and integrating LDAP technologies. Additional skills include automating administrative tasks, web development, security design and processes, ITIL processes, and outstanding verbal and written skills. Mr. Melander continues to keep on top of emerging technologies even outside of, is highly motivated to work with existing environments to determine the most optimal solution for the client, firmly believes in documenting solutions, and is a technically competent team player as well as leader that is determined to get the job done and provide guidance to his team members. Oracle Consultant Page 1 of 9

SKILLS SUMMARY Hardware & Operating Systems Programming Languages Directory Servers Software & Applications Engagement Experience Oracle Manager 10g & 11g COREid 7.0.4 COREid 6.1.1 OAM Configuration Manager OAM Upgrades (6.x & 7.x to 10g) COREid and Identity v5 v7 OAM SSO integration with Portal OAM SSO with SAP, Siebel, and PeopleSoft OAM SSO with Oracle Portal and OSSO Oracle Internet Federation 10g Proxy Authentication Windows NT, 2000, XP SUN Solaris Novell Netware Red Hat Linux & Oracle Unbreakable F5 BigIP Load Balancer Visual Basic, ASP SQL VBScript DHTML Sun ONE Directory 5.x - 11g iplanet Directory 4.x Oracle Virtual Directory 10g > 11g Novel edirectory 8.7 Microsoft ASP.NET/IIS TIBCO Apache Web/Tomcat Jakarta IIS3,4,5,6 Web Server WebLogic 10.3.x & 11g Visio NetBeans IDE PeopleSoft Apache JMeter Technical Lead Identity Oracle Manager Architect Implementation and customization OVD 10g & 11g Deployment and Configuration OAM IWA integration OAM integration with BEA WebLogic Security OAM with OIM OSSO Integration OAM integration with WebSphere Security.NET Security IDXML Integration XSLT Customizations Workflow Event API IBM AIX RS/6000 RISC VMWare Basic Cisco switches and routers Radius Perl Java/JSP XML/XSLT OID PLSQL Plugin Oracle Internet Directory 10g > 11g Microsoft ADAM Microsoft Active Directory 2k & 2k3 OpenDS 2.2 Oracle HTTP Server 10/11g Sun/iPlanet Web Server Informatica Lotus Notes DreamWeaver Visual InterDev Siebel SAP WebSphere 6 & 7 End-to-End project live cycle End User Training Testing Configuration Oracle Consultant Page 2 of 9

PROFESSIONAL EXPERIENCE In the order of most recent to past: Financial Industry, Switzerland Government Navy, Insurance, Implement x509 PKI Smartcard Authentication with E-Business Suite R12.1.3 with OID 11.1.1.5.0, and OAM 11.1.1.5.0 Architected a x509 smartcard authentication using clients PKI with E-Business Suite R12 and OAM11g with OID11g. Responsible for designing and deploying the integration and High Availability. Solaris SPARC 10 was the platform the implementation was built on. Users were synchronized bi-directionally using OID DIP and E-Business Suite synch function. OID was installed against Oracle Real Application Cluster (RAC). Guidance and Implementation for Security Framework using OID 10.1.4.3 on RAC, OVD 10.1.4.3, OAM 10.1.4.2, and OIF 10.1.4.3 Has U.S. Government SF-86 Security Clearance; Secret Level. Has U.S. Government CAC smartcard clearance Integration included SSO on WebLogic, Wiki & Blog, Universal Content, and Oracle Plumbtree Portal. The platform was designed to work on Windows 2003, but the Oracle database runs on RHEL 4. Designed incorporated OAM lost password, self-registration workflows, self-service features using OAM security. Designed custom redirect in OAM for CAC authentication A new x509 PKI authentication method was designed using out-of-the-box features of F5 BIG-IP and OAM external authentication to provide a flexible CAC smartcard authentication. Using custom irules for header information that extracts data from ECA, PIV, or CAC certificates to make granular authorization decisions to content. Implementation of OID 10g on Oracle RAC I developed a custom in PLSQL plug-in for OID 10g to generate a GUID. I developed a custom OAM C# (C Sharp) Authorization Plug-in that is key to granular content authorization used for UCM, WCI, Discussions, and Wiki & Blog. Architect Security Framework using OID 10.1.4.3 on RAC, OVD 10.1.4.3, OAM 10.1.4.2, and OAAM 10.1.4.3 Architected a security framework that will support at least one-million customer base. Integration included WebLogic for the development platform that included integration with OAM workflows for self-registration. The platform was designed to work on Windows 2003. Designed incorporated OAM lost password Oracle Consultant Page 3 of 9

Auto Satellite Services, Government, Canada Aerospace, Software Industry, Manufacturing and Distribution Industry, Architect Security Framework using OID 10.1.4.3, OVD 10.1.4.3, OAM 10.1.4.2, and OIF 10.1.4.3 Architected a security framework that will support at least five-million customer base. Application Integration included OAM with JBoss using Spring Security. RHEL 5 64bit was the platform the design was built on. Designed incorporated OAM access for SSO, OID as the Enterprise user store, and OVD to support aggregated view for future Active Directory Forest. OID is deployed against a two-node RAC Guidance on OAM 10.1.4.2 Integration and implemented OVD 10.1.4.3 Helped develop a.net managed code Authorization Plug-in to concatenate DOMAIN/ERID. Plug-in was created to search through User DN and decide which domain a user belongs to. Integrated RSA SecurID 6.1 Authentication with OAM Integrated Client Certificate Authentication with OAM using the authn_securid plug-in and OpenSSL to generate a CA and certificates Implemented OVD to solve problems authenticating against two Active Directory forests. Guidance on OAM 10.1.4.2, OVD 10.1.4.2 and OID 10.0.2 LDAP Assisted on Policy rules and to make things work helped implement a custom Python plug-in to correct distinguished name of members with groups. Fixed idle timeout issues with WebGates Documented how to extend Simple Cert mode expiry from default of 1 year to 10 years. Documented recommendations on high availability Documented best practices on Bundled Patch deployment Corrected mis-behaving Login form Documented procedures on implementing Two-way LDAP replication OAM Upgrade from NetPoint 7.0.1 to 10.1.4.2BP05 Oblix NetPoint 7.0.1 HF5 was upgraded to Oracle Manager 10g. Using a hybrid of the ZDTU (Zero Down Time Upgrade), ran a successful upgrade of a 7.0.1 to OAM 10.1.4.2 BP05. Required migrating an extensive stylesheet customization, which required merging legacy custom stylesheets into the new OAM version. Many custom Perl Scripts and C++ plug-ins had to be migrated. A new improved architecture was developed, both for OAM and LDAP. Several documents were created to support the build, upgrade, migration of customization, and testing. OAM 10g Architecture for Global deployment Designed an architecture that supported global deployment. Documented the architecture to support the required IAM ( ) vision. Included high level integration in the document for Oracle E-Business Suite, WebLogic, and general web applications. Oracle Consultant Page 4 of 9

Provided insight on OAM product knowledge and integration. No product was deployed. This engagement was purely to provide an architecture and guidance. Third Largest University, Manufacturing and Distribution Industry, Financial Industry, High Level Design and Recommendation for Oracle IAM Suite. Lead project to complete a University IAM design with all of Oracle s Idm technology. Products used in design were OIM, OIF, OAM, OVD, OEM, and E. Designed a phased approach with opt-in framework. Completed several onsite interviews with key University groups. Created two main documents; High Level IAM phased approach to implement Oracle IAM technologies, and a high level IAM architecture document that included all of the Oracle IAM products. Complete Architecture Review of a Full End to End Proof of Concept Products implemented were OAM (COREid) 10g, OID 10g, Oracle E-business Suite, OSSO, OHS, and Oracle Identity Manager 10g (9.0.1). Reviewed the Architecture for Validation Implemented the OAM (COREid) and SSO Integration with OIM OAM 10g configurations included ADAM for the Policy and Configuration store, and Active Directory 2003 for the User store. The solution also included the SSO integration of IWA (Integrated Windows Authentication) so that employees could seamlessly go to applications without being prompted for a logon form. Documented any installations completed for future deployments in forward environments. Complete Oracle Architecture and Deployment Products implemented were OAM (COREid) 10g, OVD 10g, OID 10g, Oracle Portal 10g, OSSO, OHS, and Oracle Directory Integration Toolkit. Architected a secure OAM 10.1.4.2 solution that included Oracle Virtual Directory 10g as the backend LDAP for OAM. The architecture provided a very security three-tier design that separated the presentation layer from the application layer from the data layer. This provided security layers to help meet PCI compliance. Problems solved were keeping external clients separate from the internal employees in Active Directory by using OVD 10g, which pointed to OID as an external user LDAP store and Active Directory 2003 for internal users. The namespace was abstracted from the backend Directory Services including any unique members of groups, which translated dynamically all in real-time. The architecture required the synchronization of users and groups between Active Directory 2003 to OID using a custom Oracle Directory Integration Toolkit so the Oracle Portal could consume user and group data on OID. OAM provided SSO with the integration of Oracle Portal 10g. Deployment was on multiple environments including a Proof of Concept. The stages of the project were completed using Oracle s Oracle Unified Methodology, which covered Architecture, Design and Analysis, Implementation, Testing, and Production rollout. The solution worked with very few technical issues out of the box. All session points that may expose sensitive data like passwords were Oracle Consultant Page 5 of 9

terminated using SSL. Financial Industry, Supply Chain Services, Health Care, Automotive, Oracle Manager 10gR3 Architecture Review and re-design COREid 7.0.4.3 Extensive troubleshooting on incidents to resolve and correct issues. Trained client team on extensive OAM knowledge and troubleshooting secrets. Created document on a methodology on using OAM Configuration Manager as a horizontal migration tool. Created a document on and WebGate best practices to better serve the clients deployments, architecture, and deployment. Created a document on JMeter and how to use it as a OAM load and tuning testing tool for both web applications and IdentityXML. Created a document and plan on switching from edirectory to Active Directory with best practices. Created a document for the team on troubleshooting OAM. Assisted in integrating OAM SNMP with HP OpenView. Conducted architecture Review of current environment Re-architected existing OAM implementation to provide site high availability. Provided recommendation to provide overall improvement in stabilization for OAM. Integrated OAM with Websphere application using the Identity Asserter. Architected and deployed OAM 10gR3 and Configuration Manager Architected IWA integration and OAM and conducted POC to prove out a solution that will help reduce the number of password resets across the enterprise. Oracle Manager 6.1.1 Upgrade to 10.1.4.2 Guidance on upgrade strategy. Provided technical architecture overview and suggestions for improvements on the newer OAM deployment. Liaison to development and support for any technical challenges on upgrade. Oracle Manager 10gR3 Architecture Review and Guidance Provided technical knowledge on an OAM 10gR3 with OID 10.1.4 Conducted Architecture Review Provided guidance to deployment strategies to circumvent future problems Identified and documented performance tuning modifications to dramatically increase speed on IDXML calls to OID. Provided pre and post installation guidance. Provided input on the best practices of extending the schema in OID Oracle Manager 10gR3 Upgrade from Oblix 6.1.1 Lead Architect and project lead Provided architecture for the upgrade of Oblix 6.1.1 to OAM 10gR3 on Windows 2003 using Active Directory as the backend. Successfully guided Oracle consultants to make sure the upgrade was successful without impact to end users. Provided additional troubleshooting outside of OAM to make sure the project was a success. Oracle Consultant Page 6 of 9

State and local Government, Canada Marketing, Architecture review Financial Industry Health Care Logistics Insurance, Canada Identity Federation Federal, Financial Industry, Telecom, Denmark POC WebSphere 6 Integration with Oracle 10gR3 Designed and installed OAM Designed and implemented integration support of the WebSphere 6 connector Designed and implemented RSA Integration with OAM Oracle Manager 10g and Oracle Internet Directory 10g Architecture and Implementation Lead architect and team lead Supervised and mentored 2 Oracle consultants and several customer project team members Responsible for requirement Gathering and Design and implementation of Identity solution Schema DIT and Namespace design Detailed Use Case gathering Environment Architecture and Design including high availability and site Fail-over, Disaster Recovery, Load Balancing, Hardware Sizing, Configuration GUI Customization with XSL Provided a consistent Authentication framework for applications Provided a delegated administration model that meets business requirements Web Service development for the clients custom interface to administer users COREid 7.0.4 Multiple Identity & Critical Support and Architecture Reviews Performed health check to narrow down issues Provided overview of the OAM architecture and put together an architectural review with an executive dashboard showing what has been done right and what needs improvement. Worked with engineers and architects to resolve issues and improvements both from an architectural perspective and best practices on implementation and operations Oracle Identity Federation 10g Integration Helped integrate various Federated use cases to support external SSO. Designed and implemented delegated administration model to support external government administrators to manage their own user base. Provided assistance on XSL Stylesheet work for Lost Password COREid 7.0.4 Support Provided support on undocumented workflow extension features Helped troubleshoot issues and created new documentation to supplement the current product guides on using workflow escalation and dynamic participant using PPP Exec. COREid 7.0.4 Architecture Guidance Supported customer with move from Entrust Get to Oracle/Oblix and Identity system Provided guidance on architecture and best practice to fit requirements. Oracle Consultant Page 7 of 9

State and local Government, State and local Government, Advisor Financial Industry Communication Industry Identity Lead Health Care Identity Lead Travel Industry Designed LDAP Namespace for enterprise on Active Directory 2003 Provided knowledge about IDXML and how it fits into the architecture Provided guidance on hardware sizing to accommodate 3 million users. COREid 7.0.4 Integration Provided assistance on deploying a custom Web Server Provided assistance with the integration with BEA App Server Helped troubleshoot issues, make configurations, and advised COREid 7.0.4 Integration Debugged, Unit Tested Use Cases around delegated security Helped troubleshoot issues, make configurations, and advised Provided input for form login use cases COREid 7.0.4 Advisor Led the design and implementation of Single Sign-On with Siebel, a WebSphere application, a Java Application, and a.net application using COREid. Designed and implemented concept of Legal Entity for a delegation model Provided best practices methodology for upgrade and installation. Created a horizontal migration script and document that extracts a single workflow between environments. COREid 7.0.2 Pilot Integrated SSO with SAP Implemented and designed Microsoft MIIS Integration. Led the design and implementation Configured Auditing for MS SQL Setup Java SOAP request to execute a workflow to create an account Created various workflows NetPoint (COREid) 6.1.1 Identity Lead Work with Enterprise Architecture Organization and related segments on establishing Identity usage and deployment across the Enterprise. Technical Lead on NIS to iplanet Directory LDAP where I gathered and documented requirements and details. NetPoint (COREid) 6.1.1 Identity Lead Implemented and Designed Identity solution. Provided application security technical guidance Worked with Audit, EAO and CTAC in on risk analysis Provided design, development and support function for DS & IDM Global White Pages application Provided design, development and support function for DS & IDM security and provisioning integration with the HCMS/Peoplesoft application Oracle Consultant Page 8 of 9

Other Accomplishments Education M.S.E., Started Masters in Software Engineering, St. Thomas University, MN B.S., Business and Administration, Saint Cloud State University, MN 1994 Certifications ISSA (Information Systems Security Association ) Member 601495 WebLogic 11g Oracle internal advanced training Oracle Accreditation Courses for OAM11g, OAAM11g, OID11g, OVD11g, and OIF11g. CRT 2010 Oracle Entitlement Server (BEA AquaLogic), Oracle In Class Training 2008 Oracle Identity Federation, Oracle Training 2007 Oracle Identity Manager, Oracle Deep Dive Training 2007 Oblix COREid 7.0, Oblix Instructed Training 2004 Securing and Auditing the.net Framework, MIS Training Institute 2003 DIR2217 Directory Server Analysis & Planning, Sun Microsystems 2002 Oblix COREid 6.0, Oblix Instructed Training - 2001 iplanet Directory Server 5.0, Sun Micro Systems 2001 2152 Implementing Windows 2000 Professional & Server, MindSharp 2001 Programming Logic, Denning Training Services 2000 The Seven Habits of Highly Effective People, Carlson Companies 1999 Recognition & Awards Top North American Consultant 2010 & 2009 in utilization. Highly Recognized Oracle Manager guru within Oracle Corporation Oracle QOOL recognition for Best of the Best in Consulting. 2007 Two letters of recognition on the successful deployment of Enterprise Directory Letter of recognition on the design, development, and deployment of a Lost Password Letter of recognition on architecting the Identity and Directory Services infrastructure. Two letters of recognition of the contribution and success of the Y2K efforts Languages English, read, write, speak High proficiency Oracle Consultant Page 9 of 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information