Summary
Overview
Work History
Education
Skills
Additional Information
Timeline
Generic

Siva Thota

Chief Security Architect
Ashburn,VA

Summary

Siva Thota AWS-CSA(SAP, SAA), CISSP, CISM, CISA, PMI-ACP Lead Architect/Princial Security Architect Summary of Experience Mr. Thota has over thirteen years of industry experience in the field of multi-tier distributed applications, business process re-engineering and client/server development projects, with a zest for databases and e-commerce. He has experience in complete SDLC/Agile for Java/J2EE multi-tier systems/applications. He has extensive experience working with SOA based architectures. He is proficient in Web Services development, WS-Security standards, Spring, Hibernate, Sprint-Security, JAX-RPC, JAX-WS, REST, Apache CXF, Axis etc. He has implementation experience in various XML technologies – XML schema design, development, XML parsing with SAX/DOM/JAXB/XSLT/XQuery/XPath etc. He has implementation experience with Sun Identity Manager and SPE (Service Provider Edition)/Waveset Lighthouse product 5.X, 6.X, 7.X and 8.X along with Oracle Identity Management Suite. He also has implementation experience with patching the Sun IDM 7.1/8.0 to different service packs in each version both on the QA/INT and Prod environments. Mr. Thota has integration experience with Credential Management Systems (CMS) solutions like Intercede MyID. He was involved in translating the business drivers into the technical use cases for different IDM vendors like CA, SUN and ORACLE. He develops the extensive success criterion for different Identity Management solutions. He assists the primary architect in scoring the IDM vendors during the POC. He performs the initial setup of the environments for executing the use cases during the POC. Mr. Thota acts as a point man for the Sun Identity Management product during the evaluation of different vendors for POC. He has been involved in publishing the final report for different vendors after the POC. He has design and development experience with Spring/Hibernate frameworks. He gathers the requirements for user profile standardization across the board. He defines the custom object classes, attributes for the custom schema design. He creates the scripts to automate batch user creation, user memberships for various groups in the Test tiers (QA/INT/STG). Mr. Thota integrates IDM with SUN Directory (DSEE 6.1) using custom Directory Adaptor. He installs the DSEE 6.1 on the Sun Solaris boxes on various tiers. Mr. Thota is experienced in all phases of SDLC including analysis, design, coding and testing, expertise in integration using J2EE architecture. He has extensive domain knowledge experience in Insurance, Banking, Health Care and Media Industries. He has experience in developing custom user forms and workflows in XPRESS language. He has extensive experience in Directory design for enterprise wide applications use. Mr. Thota was involved in various aspects of directory design like custom schemas, namespaces, custom user attributes custom object classes etc. He was also involved in formulating the best practices (published as user documents and consumption guides for the application teams across the board) for data consistency across the Directory tree for better maintainability. He has strong knowledge in Object Oriented Concepts and developing Java Components. He has hands on knowledge in design methodologies like Rational Unified Process (RUP) and other rational tools like Rational ClearCase and Rational ClearQuest. Mr. Thota has expertise in UML (Unified Modeling Language) designing the requirements using class diagrams. He is proficient in writing ANT Build scripts. He has extensive experience in working with application servers like WebSphere, WebLogic and JBoss. He has experience in analyzing requirement documents from the business and designing projects with technical design. He is well experienced with visual rapid application development tools like WebSphere Studio Application Developer (WSAD), Eclipse, and Weblogic Work Shop. Mr. Thota has an ability to work in tight schedules and efficient in meeting deadlines. He is a self-starter, fast learner and a team player with strong personal and group communication skills. He has good development and server environment expertise in UNIX and Windows platforms. He is skilled in documentation, user presentation and user trainings. He has excellent communication skills and ability to coordinate well with users and team members.

Overview

21
21
years of professional experience
17
17
years of post-secondary education

Work History

Appian
04.2015

MarkLogic Training Department
05.2012

Practitioner

PMI-ACP
01.2016 - Current

AWS CSA (Cloud Solutions Architect – Associate)

PMI
01.2014 - Current

DHS

09.2019 - 01.2022

Enterprise Architect

DHS/USCIS
09.2019 - 01.2022
  • Capital Markets
  • Mr
  • Thota is responsible for Analysis and Design of Fannie Mae’s Capital Markets Portfolio of applications for Cloud Enablement and Suitability
  • Mr
  • Thota works with Development Leads to enable them for Cloud Native architectures for the Fannie Mae’s on-premise solutions
  • He’s also part of the Datawarehouse retirement initiative which covers approximately one third of the applications across the enterprise
  • He’s responsible for providing disposition to varaious enterprise patterns for consumers and producers of the Enterprise Dataware house
  • He’s enables the development solution architects to conduct POCs for Cloud adoption primarily on AWS.

Technical

01.2017 - 01.2022
  • Training
  • Training Name
  • Institution
  • Date
  • JBoss SOA-P Introduction
  • Redhat

AWS CSA (Cloud Solutions Architect

SAP
01.2014 - 01.2022

Enterprise Architect

Fannie Mae
09.2016 - 01.2019
  • Capital Markets
  • Mr
  • Thota is responsible for Analysis and Design of Fannie Mae’s Capital Markets Portfolio of applications for Cloud Enablement and Suitability
  • Mr
  • Thota works with Development Leads to enable them for Cloud Native architectures for the Fannie Mae’s on-premise solutions
  • He’s also part of the Datawarehouse retirement initiative which covers approximately one third of the applications across the enterprise
  • He’s responsible for providing disposition to varaious enterprise patterns for consumers and producers of the Enterprise Dataware house
  • He’s enables the development solution architects to conduct POCs for Cloud adoption primarily on AWS.

Appian Designer Boot

Camp
01.2004 - 01.2012

Identity Management Architect

Nuclear Regulatory Commission, NRC
Rockville, MD
06.2009 - 02.2010
  • Mr
  • Thota is worked as an identity management architect at NRC for VeriSign as the implementer
  • As a part of MPKI team, he worked on the Sun Identity Management product for user registration process and integration with a PIV (Personal Identity Verification) solution (Intercede MyID)
  • He also worked on other initiates like FBCA (Federal Bridge CA) Rudimentary Certificates, and BASIC authentication etc
  • As a part of ACS (Accreditation and Credentialing Service) his team was responsible for issuing different levels of certificates in different form factor devices like smart card etc
  • The architecture of the solution consists of VeriSign CA, and Intercede MyID as CMS (Credential Management System) and Sun Identity Manager as the workflow engine
  • It is an end-to-end MPKI solution (Managed Public Key Infrastructure)
  • Mr
  • Thota was responsible for the complete Sun Identity Manager component in the team
  • He developed custom workflow for user registration process for NSTS application used inside the agency
  • He was responsible for estimating the cost of the effort LOE (Level of Effort) in terms of number of hours for different client requests pertaining to the enhancements and new features to the workflow process
  • NSTS system requires level 3 certificates in the form factor of smart cards as directed by the HSPD-12 initiative
  • The workflow process component responsible for integrating the Sun IDM with CMS is developed and maintained
  • The complete registration process requires designing the DB resources and other workflow artifacts
  • Mr
  • Thota was responsible for enhancements to the existing system; designing the user registration process for FBCA rudimentary certificates and BASIC Certs which fall under Level 1 and Level 2 respectively; upgrading the Sun IDM through various patches and upgrades
  • Mr
  • Thota worked on the re-factoring the current implementation in order to onboard more applications with less XPRESS/JAVA development
  • He was responsible for developing custom build environment for Sun IDM artifacts
  • He was involved in the user evaluation process for selecting the Single SignOn Solution (ongoing)
  • Additionally, he is responsible for patch management and upgrade process to the web proxy etc.

Senior IDM and Directory Services Engineer

Comcast
Philadelphia, PA
11.2007 - 05.2009
  • Mr
  • Thota worked as an IDM/DS consultant for integrating various applications at Comcast within the Enterprise setting
  • Sun Identity Manager is used as the Identity Manager solution to integrate different applications like LDAP, Web Services, Exchange, Database, SAP HR application, Microsoft Active Directory etc
  • SiteMinder is used as the access management solution for authentication and authorization
  • Custom user schema designed to cater to the needs of the user-profile (custom) used across various applications
  • Authentication and identity management services for an internal corporate site are provided by a newly created Identity and Access Management (IAM) service
  • This was achieved by a distributed authentication template via a combination of services provided from both CA’s SiteMinder and Identity Manager - Service Provider Edition (IdM-SPE) products
  • Mr
  • Thota was involved in gathering the requirements for user profile standardization across the board
  • He defined the custom object classes, attributes for the custom schema design
  • IdM-SPE requests, the ECOM site will issue remote calls via Simple Object Access Protocol (SOAP) containing payloads based on the Service Provider Markup Language (SPML)
  • Mr
  • Thota developed several rules and rule libraries for use in SPE User Forms
  • He performed installation and configuration of Sun IDM 7.0/7.1 on Sun Java application server; developed production patching plans for Sun IDM 7.1 to SP1 to SP5; successfully patched the Sun Identity Manager 7.1 on DEV/QA/Integration tiers; migrated the Sun IDM 7.1 to Sun IDM 8.0
  • Mr
  • Thota was involved in developing the workflows for employee/contractor on boarding and off boarding; used the Struts Framework for the application based on the MVC –II design paradigm; customized SPE SPML interface with external applications
  • He was involved in POC (Proof-Of-Concept) effort for identity management solutions like Sun Identity Manager (Sun), Identity Minder (CA) and OID (Oracle Identity Manager); formulated the use cases for different areas of identity/access management solutions like provisioning, authoritative feeds, self-service workflows, audit/compliance/reporting, administration and policy management etc
  • Mr
  • Thota assisted the chief architect on the overall design of the Sun Identity Manager Solution
  • He was also involved in designing the workflows for active directory provisioning under different domains like cable, corp and corphq, and automation of user (employees and contractors) provisioning into Active Directory
  • He formulated the steps to migrate Sun IDM 7.1 to 8.0 Version; helped in the overall security architecture for the Sun IDM provisioning process including the DR setup (Disaster Recovery); designed and developed user forms and workflow processes using Netbeans IDE and by manually editing XML files; configured and developed resource adapters for several systems which include Flat File ActiveSync adapter, SUN directory server, LDAP etc; coordinated and communicated with business analysts to define organizational structure and approval processes
  • Mr
  • Thota implemented user registration using anonymous user processes
  • He was involved in loading/migrating the users from various data sources
  • He implemented custom password policies, worked on different custom email templates
  • He also implemented the custom build process for out of box custom pages, workflows, forms, email templates, rules etc
  • Mr
  • Thota created the scripts to automate batch user creation, user memberships for various groups in the TEST tiers (QA/INT/STG); customized self-service end user pages; developed correlation and confirmation rules for reconciliation processes; developed ActiveSync forms for populating IDM with users from authoritative source
  • He was responsible for customization and maintenance of the application
  • Mr
  • Thota integrated IDM with SUN Directory (DSEE 6.1) using custom Directory Adaptor; integrated IDM with Oracle Database Resources using standard JDBC Adaptor
  • He developed several rules and Rule Libraries for use in user forms and workflows
  • He performed the installation and administration of eesting environment
  • He also performed installation and configuration of Sun IDM 7.1/8.0 on WebLogic application server 9.2 MP
  • He helped in making the SiteMinder resource setup for IDM to facilitate single sign-on.

Senior Consultant

Noridian Insurance, BCBSND
05.2007 - 10.2007
  • Mr
  • Thota worked as an IDM/DS consultant for the integration of a portal application at Noridian Insurance Inc
  • Sun IDM is used as a part of the single sign on process for the portal application; Sun Access Manager is also used in this application
  • The user store is the Sun Java System DSEE
  • The portal’s security is provided by the IDM module for the registration and self service activities to the different medical providers
  • Custom user profile is created for users of this portal in the Directory Server
  • The portal application is designed and developed using Spring/Hibernate frameworks
  • Mr
  • Thota designed the custom user profile for the portal application in the Directory using custom schema/attributes that are not available with the standard schema
  • The portal application for which the IDM solution is implemented is designed and developed using Spring/Hibernate frameworks
  • He loaded the users for the application testing into the Directory; modified Access Manager Adapter to talk to the directory with the custom attributes used for the profile; installed the DSEE 6.1 on the Sun Solaris boxes on various tiers; documented the processes to follow in the Directory installation on various environments; developed user creation scripts for bulk user memberships etc
  • Mr
  • Thota configured and developed resource adapters for several systems which include Flat File ActiveSync adapter, SUN Directory Server, LDAP etc
  • He designed and developed user forms and workflow processes using Business Process Editor (BPE) and by manually editing XML files
  • He coordinated and communicated with business analysts to define organizational structure and approval processes
  • He implemented user registration using Anonymous User processes
  • He implemented custom password policies, worked on different custom email templates and implemented the custom build process for out of box custom pages, workflows, forms, email templates, rules etc
  • Mr
  • Thota customized self-service end user pages
  • He developed correlation and confirmation rules for reconciliation processes
  • He also developed ActiveSync forms for populating IDM with users from Authoritative Source
  • He performed customization and maintenance of the application
  • He integrated IDM with SUN Directory using custom Directory Adaptor
  • Mr
  • Thota also integrated IDM with Oracle Database Resources using standard JDBC Adaptor
  • He developed several Rules and Rule Libraries for use in user forms and workflows
  • He performed installation and administration of testing environment
  • He also performed installation and configuration of Sun IDM 7.1 on WebSphere application server 6.1
  • He helped in making the AM setup for IDM to access AM Module.

Senior Developer

CNSI Gaithersburg, ECAMS & WAMMIS Project
, MD
06.2006 - 04.2007
  • ECAMS (Electronic Claims Management System) is an end to end Healthcare MMIS (Medicaid Management Information System) system solution
  • It is a one stop solution for claim submission, processing, billing and other MMIS related functionality
  • WAMMIS is the customized ECAMS solution for the state of Washington Health care department
  • Mr
  • Thota was mainly involved in the design changes for Washington Specific HIPAA loading component of the ECAMS
  • He implemented the core framework changes for the Loading component and also implemented the design changes for the HIPAA health care transactions 837/820/834/835/270/271 and 276/277
  • He designed and implemented the cache managers for the core framework and some transactions; developed the class diagrams using the TogetherJ
  • He installed, configured and maintained the Edifecs XEngine as the EDI validation component on the Sun Solaris machine
  • He also installed the Gentran server on the Sun Solaris and configured the same and also worked on the Gentran windows client
  • Mr
  • Thota analyzed/generated the Health care claim files on the Edifecs Specbuilder (Windows Client)
  • He implemented the DB Unit Framework in the core components and specific transactions
  • He installed/configured/tuned JBoss on the Sun Solaris machine as a part of QA and Dev setup
  • He also installed/configured/tuned the application on WebSphere Server on the Sun Solaris box as a part of QA
  • Mr
  • Thota created the E-R diagrams for the business model in TOAD
  • He coordinated the off-shore development team for the transactions 837 I/P/D.

MyAccount Project, J2EE Developer

American Family Insurance
08.2004 - 12.2005
  • My Account provides a means to the customers to pay their bills online and view their policies
  • Going forward My Account will be a place from where a customer can get access to available products online
  • In addition to use of the available products, My Account will provide self service functionalities such as maintain their profiles; perform forgotten password, change password and etc
  • The technology used is Identity Minder for the self service functionalities and Site minder for protecting the applications
  • My Account application will communicate to Identity Minder using web services (XML over HTTP) for the self-service tasks
  • Mr
  • Thota was mainly involved in all the phases of SDLC including requirements collection, design & analysis of the customer specifications, development and customization of the application
  • He implemented using MVC-II architecture and Struts framework; worked on Use case management in Rational ClearQuest (Rational ClearCase is used as a process control tool apart from following other aspects of the design in RUP)
  • Mr
  • Thota developed E-R diagrams in Microsoft Visio; developed the front end screens using JSP, XSL; client side validations were done using JavaScript; deployed JSPs, Servlets onto WebSphere application server; extensively developed supporting Java Beans components; assisted in developing the web services component which sends the XML request to the Netegrity Identity Minder; generated the Hibernate classes using the Xdoclet; assisted in performing the code reviews and enhancements; helped in designing Homepage, enrollment, registration and policy viewer components; maintained the some of the modules of the application on the Linux server in the development tier; designed and developed the enrollment and registration components; extensively used XMLSpy in understanding the work flow and also in generating the partial java source code depending on the XSD
  • He was also involved in configuring JDBC connection pooling to access the database server.

Systems Application Programmer

University of Utah Physics
06.2002 - 12.2003
  • High Resolution Fly's Eye (HiRes) is an experiment to study the highest energy cosmic rays to determine the energy, direction, and chemical composition of the incident particle
  • Project funded by NSF to the University of Utah Physics Dept
  • Application was developed on XVME-654 embedded processor Module boards on eCOS(embedded Configurable Operating System) as the operating system
  • Different flavors of Linux are customized on the embedded boards and tested by running wide range of applications involving sockets and other systems programming utilities and tools
  • Mr
  • Thota developed custom data acquisition software in C for collecting the metrics of the electrical signals sent by the light sensor array crates; ported the system level software written for VxWorks operating system to the Linux OS; worked on building the custom eCOS image for custom hardware of XVME-654 pc board.

Education

Bachelors - Electrical and Electronics Engineering

Master of Science - Electrical Engineering

University of Utah

Certification Cycle CISSP (Certified Information Systems Security Professional) ISC2 - undefined

CISM (Certified Informration Security Manager) - undefined

01.2014 - Current

CISA (Certified Information Systems Auditor) - undefined

01.2016 - Current

Skills

Technical Capabilitiesundefined

Additional Information

  • Citizenship Status Non US Citizen with Green Card (Permanent Resident) Signature

Timeline

DHS

09.2019 - 01.2022

Enterprise Architect

DHS/USCIS
09.2019 - 01.2022

Technical

01.2017 - 01.2022

Enterprise Architect

Fannie Mae
09.2016 - 01.2019

Practitioner

PMI-ACP
01.2016 - Current

CISA (Certified Information Systems Auditor) - undefined

01.2016 - Current

Appian
04.2015

AWS CSA (Cloud Solutions Architect – Associate)

PMI
01.2014 - Current

AWS CSA (Cloud Solutions Architect

SAP
01.2014 - 01.2022

CISM (Certified Informration Security Manager) - undefined

01.2014 - Current

MarkLogic Training Department
05.2012

Identity Management Architect

Nuclear Regulatory Commission, NRC
06.2009 - 02.2010

Senior IDM and Directory Services Engineer

Comcast
11.2007 - 05.2009

Senior Consultant

Noridian Insurance, BCBSND
05.2007 - 10.2007

Senior Developer

CNSI Gaithersburg, ECAMS & WAMMIS Project
06.2006 - 04.2007

MyAccount Project, J2EE Developer

American Family Insurance
08.2004 - 12.2005

Appian Designer Boot

Camp
01.2004 - 01.2012

Systems Application Programmer

University of Utah Physics
06.2002 - 12.2003

Bachelors - Electrical and Electronics Engineering

Master of Science - Electrical Engineering

University of Utah

Certification Cycle CISSP (Certified Information Systems Security Professional) ISC2 - undefined

Similar Profiles

CREATE PROFILE
Siva ThotaChief Security Architect