Derrick Chapman
Houston
Summary
Senior Architect/Engineer with over 28 years in IT Infrastructure Design, Implementation, Systems Administration, IT Security and Software Development. Proven track record with Implementation, Design and Development with Identity and Access Management, Systems and Network Design. 18 years of experience in the Identity and Access Management space along with Single Sign-On, Access Control, Governance and Attestation, Cloud Technology and Security.
Overview
20
20
years of professional experience
1
1
Certification
Work History
Senior Software Engineer Developer/Architect
Costco IT
06.2023 - Current
- Implementation and Support of IBM Security Identity Manager (Appliance Base)
- Development of Workflows with Java/Java Script
- Repository from Custom Data Repository into IBM Tivoli Directory Server
- Configuration of SAML 2.0 Identity Provider Federation
- Configuration of Service Providers for Partners
- Support and Configuration of ISIM 7.0
- Full workflow Development and Administration of ISIM
- Implementation of IBM Security Access Verify and IBM Security Access Identity
- Development of Assembly Lines using Security Directory Integrator (SDI)
- Migration of IBM Security Identity manager to Sailpoint IIQ
- Development of Sailpoint IIQ Workflows, Task, Rules and Policies
- Integration between Sailpoint IIQ and SAP Connectors for SAP Account Provisioning
- Integration between Sailpoint and Azure/AD for Account and Identity Provisioning
- Integration between Sailpoint IIQ and GCP (Google Cloud Platform) for Account Provisioning.
Senior ISIM/ISAM Systems Engineer
Blue Cross Blue Shields of Massachusetts
06.2022 - 06.2023
- Implementation of ISAM 9 Appliance
- Integration of ISAM with Docker
- Configuration of Federation Module for IBM Cloud Identity using IBM Cloud Identity Connect
- Custom User Interface Creation and Development using Java Applets
- Data Migration of User Repository from Custom Data Repository into IBM Tivoli Directory Server
- Configuration of SAML 2.0 Identity Provider Federation
- Configuration of Service Providers for Partners
- Support and Configuration of ISIM 7.0
- Full workflow Development and Administration of ISIM.
Senior Software Engineer/Architect
Quest Software
09.2020 - 06.2022
- Implementation of Quest Safeguard Authentication Services – Both Pre-Post Sales Engagement
- Sales Support and Consultation/Implementation of One Identity Safeguard Solution Suite
- Sales Support and Consultation/Implementation of One Identity Defender MFA Solution
- Sales Support and Consultation/Implementation of One Identity Active Roles.
Senior Software Engineer
Freddie Mac
05.2017 - 09.2020
- Implementation of RSA Authentication Manager 8.3
- Migration of RSA Authentication Manager 8.3 to 8.4
- Integration of RSA Authentication Manager with CyberArk for Multi-factor Authentication
- Integration of RSA Authentication Manager with RedHat OpenShift using API
- Integration of RSA Authentication Manager with PING Federate
- Daily support of PING Federate 9.3
- Daily Support of RSA Authentication Manager Infrastructure
- Migration and Development of ISAM Policies using Ansible Scripts
- Implementation and Configuration of CA ETrust V12
- Development of CA ETrust Rules.
Senior IAM Engineer
Navitec, Inc.
02.2019 - 07.2019
- Implementation of ISAM 9 Appliance
- Integration of ISAM with Docker
- Configuration of Federation Module for IBM Cloud Identity using IBM Cloud Identity Connect
- Custom User Interface Creation and Development using Java Applets
- Data Migration of User Repository from Custom Data Repository into IBM Tivoli Directory Server
- Configuration of SAML 2.0 Identity Provider Federation
- Configuration of Service Providers for Partners
- Implementation, Configuration and Development of RSA Authentication Manger 8.4 for Multi-Factor Authentication with SecurID
- Integration with Cloud Base Solutions for MFA using RSA REST API components
- Configuration of RSA in Disaster Recovery Region for Failover
- Integration of REST API for CyberArk Radius Clients using RSA REST API.
Senior IAM Architect/Consultant
Credencia, Inc.
08.2018 - 02.2019
- Customization of Saviynt Security Manager V7 for a large Government Project
- Duties included: Entitlement Creation using Savinyt API, creation and modification of Saviynt Endpoints, Workflow Development, Password Policies and Security Systems
- Primary Technical resource onshore on point for performing installations, working with client to stand-up the infrastructure and deploy the solution
- Collaborating with client team members imparting knowledge of the system and solution being implemented
- Integration of RSA Authentication MFA for Radius Clients
- Installation of RSA Agents on Windows and Linux/Unix Platforms.
Senior IAM Architect/Consultant
Halcyon, Inc.
02.2018 - 08.2018
- Migration of Covisint IAM Solution to IBM Security Identity Manager 6.0
- Custom Portal Development and Configuration for Account Management and Single Sign-On
- IBM Security Access Management Deployment and Configuration
- Workflow and lifecycle development with JavaScript
- Custom User Interface Creation and Development using Java Applets
- Data Migration of User Repository from Custom Data Repository into IBM Tivoli Directory Server
- Customized ISIM Workflow Development for User Identity Registration for Portal Users
- Setup DB2 HADR and LDAP Peer to Peer Replication for Multiple ISIM and ISAM Environments.
Senior IAM Architect/Consultant
Onwire Consulting Group Project
01.2017 - 03.2018
- Implementation, Configuration, Design and Support of Identity Management Applications
- Migration of ITIM 5.1 to ISIM 6 and ISIM 7 Appliance
- Configuration of web Gateway Appliance for Authorization and Authentication
- Migration of DB2 7.2 to DB2 9 from AIX to Linux Back-End Database Configuration for ISIM and ISAM Appliance
- Workflow and lifecycle development with JavaScript
- Custom User Interface Creation and Development using Java Applets
- Migration of IBM Directory Server 6.2 to IBM Directory Server 6.4
- Customized ISIM Workflow Development for Onboarding/Offboarding
- Creation of HR Feed using IDTDI 7.2
- Setup DB2 HADR and LDAP Peer to Peer Replication for Multiple ISIM and ISAM Environments.
Chief Architect/Implementation Consultant
Prolific’s Inc. Project
01.2016 - 03.2017
- Implementation, Configuration, Design and Support of Identity Management Applications
- Implementation, Design and Installation of IBM Security Products for several high profile clients
- Implementation Tivoli Identity Manager (ISIM 6) and Tivoli Access Manager Solution (ISAM 8)
- Migration from ISAM 8 (Software Version) to ISAM 8 (Appliance Firmware 2.0.1.0)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TAM implementations
- Currently working on Internal project implementing Privilege Identity Manager with creating PIM profiles utilizing Access Studio
- Datapower Gateway Reverse Proxy Integration with ISAM 8 Appliance for Mobile Support
- Workflow and lifecycle development with JavaScript
- Custom User Interface Creation and Development using Java Applets
- Configuration of RSA Aveksa 6.9.1 for Governance Compliance
- Attended ForgeRock Boot camp Training for OpenDJ and ForgeRock OpenAM 13.
Senior IAM Architect/Implementation Consultant
Oracle Corporation
01.2015 - 01.2016
- Design, Implementation and Configuration of Oracle IAM Products
- Implementation, Design and Configuration of Oracle Identity and Access Management Solutions
- Worked with Sales Reps to deliver Proof of Concepts, demos and high level Presentation to Public Sector Customers
- Met with clients to discuss their current business practices governing Identity and Access Management
- Provided oversight and analysis of current tools or solutions to architect and design a new solution to perform access control, governance and provisioning
- Conducted onsite assessments and evaluation of hardware to determine compatibility of IAM Solutions
- Delivered detailed design documents and assessment test results to customers
- Provide Advance engineering support to Professional Services and Sales Consultants who encounter issues presenting and/or deploying Oracle Identity and Access Management Solutions
- Implementation and Configuration of Oracle Directory Services (OUD, OID, ODSEE Products.
Identity and Access Management Consultant
Artech Information Systems
04.2014 - 12.2014
- Design, Implement and support of large Identity Management Solution for IBM Global Services Customer
- Implementation Tivoli Identity Manager (ITIM 5.1) and Tivoli Access Manager Solution (TAM 7)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TIM implementations
- Configuration of WebSeal with Tivoli Access Manager for protecting Web Based resources, including configuring Junctions, Reverse Web Proxy, ACLs and Rules
- Advanced Configuration of WebSeal with Security Access Manager for Appliance for single fixed file systems on local junctions.
Identity and Access Management Consultant
Artech Information Systems
04.2014 - 12.2014
- Design, Implement and support of large Identity Management Solution for IBM Global Services Customer
- Implementation Tivoli Identity Manager (ITIM 5.1) and Tivoli Access Manager Solution (TAM 7)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TIM implementations
- Configuration of WebSeal with Tivoli Access Manager for protecting Web Based resources, including configuring Junctions, Reverse Web Proxy, ACLs and Rules
- Advanced Configuration of WebSeal with Security Access Manager for Appliance for single fixed file systems on local junctions.
Identity and Access Management Consultant
Artech Information Systems
08.2013 - 04.2014
- Design, Implement and support of large Identity Management Solution for IBM Global Services Customer
- Implementation Tivoli Identity Manager (ITIM 5) and Tivoli Access Manager Solution (TAM 7)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TIM implementations
- Workflow and lifecycle development with JavaScript
- Custom User Interface Creation and Development using Java Applets.
Sr. Architect/Professional Service Consultant
Quest Software/Dell
01.2012 - 08.2013
- Design, Implement and support of large Identity Management Solutions, Unix and Windows Enterprise Security Solutions by Quest Software, delivering these products to Quest Software/Dell Customers
- Implementation and Design of Quest Software Identity Management Solutions (Quest One Identity Manager, Authentication Services and Enterprise Single Sign-On)
- Configuration of Q1IM
- Performed onsite evaluation and assessment of current architecture and business processes
- Developed detailed use case documents and test plans based on conversations with stakeholders
- Integration of Q1IM with Microsoft FIM and ADFS for codeless provisioning
- Meet with Senior Level Execs to formulate Demos and Proof of Concepts based on Requirement Gathering during initial meetings with Client
- Configuration and Implementation of QAS (Quest Authentication Services)
- Implementation and Configuration of Enterprise Signal Sign-On
- Implementation and Configuration of Quest Quick Connect and Quest Quick Connect for Virtual Directory (VDS)
- Implementation and Configuration of WebThority
- Virtual SaaS Implementation for Cloud Identity and Access Provisioning.
Sr. IDM/IAM Software Integration Architect
Artech Information Systems
03.2011 - 05.2012
- Design, Implement and support of large Identity Management Solution for IBM Global Services Customer
- Implementation Tivoli Identity Manager (ITIM 5.1) and Tivoli Access Manager Solution (TAM 7)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TIM implementations
- Configuration of WebSeal with Tivoli Access Manager for protecting Web Based resources, including configuring Junctions, Reverse Web Proxy, ACLs and Rules.
IDM/IAM Manager
Deloitte and Touché
12.2010 - 03.2011
- Management and Implementation of idM/IAM Solution for Federal Customer and Commercial Customers
- Managing the Implementation, Design and Delivery of Identity and Access Management Solutions
- Implementing, Architecting and Deploying Tivoli Identity Manager, Tivoli Federated Identity Manager (TFIM) and CA-Site Minder for Federal Clients
- Business Development
- Wrote Detailed SOWs and created Project plans for Consultants performing onsite implementation of IAM Solutions
- Managing Resources for Deloitte Federal Customers.
Senior Consultant
05.2009 - 12.2010
- Writing of Java Script with IDI for HR Feeds
- Java programming for advance Adapter Creation
- Configuration of Send mail service for notification and monitoring alerts
- WebSphere Network Node Manager and Cluster Configuration
- Password Synchronization Configuration through ITIM
- Implementation and Configuration of Tivoli Access Manager for E-Business and Operating Systems
- HTTP Configuration for SSL
- Use of PKI Policies to create, manage and distribute digital certificates for ITIM Adapters and WebSphere CA Certificates.
Identity and Access Management Consultant
CDI Corporation
10.2007 - 05.2009
- Design, Implement and support of large Identity Management Solution for IBM Global Services Customer
- Implementation Tivoli Identity Manager (ITIM 5.1) and Tivoli Access Manager Solution (TAM 7)
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction with TIM and TIM implementations.
Senior Security Architect
IBM
01.2005 - 10.2007
- Designed and Implementation of advanced idM Security Solutions for IBM Customers World Wide
- Managing the Implementation, Design and Delivery of Identity and Access Management Solutions
- Implementing, Architecting and Deploying Tivoli Identity Manager, Tivoli Federated Identity Manager (TFIM)
- Wrote Detailed SOWs and created Project plans for Consultants performing onsite implementation of IAM Solutions
- Managing Resources for IBM Customers
- Assembly Line creation through IBM Directory Integrator
- Writing of Java Script with IDI for HR Feeds
- Java programming for advance Adapter Creation
- Configuration of Send mail service for notification and monitoring alerts
- WebSphere Network Node Manager and Cluster Configuration
- Password Synchronization Configuration through ITIM
- Implementation and Configuration of Tivoli Access Manager for E-Business and Operating Systems
- HTTP Configuration for SSL
- Use of PKI Policies to create, manage and distribute digital certificates for ITIM Adapters and WebSphere CA Certificates.
Senior Applications Software Engineer
Computer Applications Specialist
05.2004 - 12.2004
- Implementation of IBM Security and Enterprise Management Solutions for Federal and Commercial Customers
- Contributed to both Pre and Post Sales Delivery Engagements
- Implementation Tivoli Identity Manager (ITIM 4.5) and Tivoli Access Manager Solution
- Configuration of WebSphere, DB2 and HTTP Applications in conjunction ITIM implementation.
Education
Computer Information Systems -
Bowie State University
06.2025
Computer Systems Engineering -
Strayer College
05.1996
Skills
- Java Development
- Software Development
- Network and Systems Engineering
- Active Directory
- Azure
- AWS
- Google Cloud Platform (GCP)
- Shell Scripting
- Single Sign-On
- Identity and Access Management (IAM)
- Role-Based Access Control
- LDAP
- Privileged Access Management
- Identity Lifecycle Management
- Multi-Factor Authentication (MFA)
- Security and Compliance
- Web Development
- Database Management
- Code Debugging
- Technical Documentation and Unit Testing
- Python Programming
- DevOps
- SaaS/IdaaS
- PKI/Certificate Management
- Cloud Security
- Ping Identity
- Sailpoint IIQ
- IBM Security Verify Identity
- IBM Security Verify Access
- IBM Security Directory Server
- IBM Security Director Integration
- RSA SecureID
- One Identity Manager
- Safeguard Authentication Services
- Active Roles
- Safeguard for Privilege Passwords
- Safeguard for Privilege Session
- Defender (MFA)
- One Identity Password Manager
- Solaris
- Redhat Linux
- WebSphere
- Oracle
- DB2
Certification
- NERC/CIP Certification, 2013
- CISSP, 2013 (Re-Certification 2018)
- Tivoli Identity Manager 5.1 - 2009
- Tivoli Identity Management 4.6 - 2007
- Tivoli Consultant Training (Framework, User Administration, Software Distribution, Distributed Monitoring, Austin TX, 1999
- UNIX Systems Administration (Advanced UNIX Systems Administration - Solaris 1.x, UNIX Systems Administration - Solaris 2.x, Solaris NIS+ Administration, Solaris 2.x Server Administration), Sun Micro Systems, Columbia MD, 1992
Technologystandards
- FEDRAM
- NIST
- FISMA
Timeline
Senior Software Engineer Developer/Architect
Costco IT
06.2023 - Current
Senior ISIM/ISAM Systems Engineer
Blue Cross Blue Shields of Massachusetts
06.2022 - 06.2023
Senior Software Engineer/Architect
Quest Software
09.2020 - 06.2022
Senior IAM Engineer
Navitec, Inc.
02.2019 - 07.2019
Senior IAM Architect/Consultant
Credencia, Inc.
08.2018 - 02.2019
Senior IAM Architect/Consultant
Halcyon, Inc.
02.2018 - 08.2018
Senior Software Engineer
Freddie Mac
05.2017 - 09.2020
Senior IAM Architect/Consultant
Onwire Consulting Group Project
01.2017 - 03.2018
Chief Architect/Implementation Consultant
Prolific’s Inc. Project
01.2016 - 03.2017
Senior IAM Architect/Implementation Consultant
Oracle Corporation
01.2015 - 01.2016
Identity and Access Management Consultant
Artech Information Systems
04.2014 - 12.2014
Identity and Access Management Consultant
Artech Information Systems
04.2014 - 12.2014
Identity and Access Management Consultant
Artech Information Systems
08.2013 - 04.2014
Sr. Architect/Professional Service Consultant
Quest Software/Dell
01.2012 - 08.2013
Sr. IDM/IAM Software Integration Architect
Artech Information Systems
03.2011 - 05.2012
IDM/IAM Manager
Deloitte and Touché
12.2010 - 03.2011
Senior Consultant
05.2009 - 12.2010
Identity and Access Management Consultant
CDI Corporation
10.2007 - 05.2009
Senior Security Architect
IBM
01.2005 - 10.2007
Senior Applications Software Engineer
Computer Applications Specialist
05.2004 - 12.2004
Computer Information Systems -
Bowie State University
Computer Systems Engineering -
Strayer College