Sunit Chandra

• Developed and maintained dynamic web applications using PHP, MySQL, and HTML
• Implemented Azure cloud solutions and ADFS authentication to enhance security and user convenience
• Resolved critical security vulnerabilities, including SQL Injection, Cross-Site Scripting (XSS), and sensitive data exposure, based on pentest reports
• Worked on a migration project from on-premise to Azure cloud, migrating databases from Oracle to PostgreSQL
• Led a team of 6 developers and focused on migrating PHP-based APIs, database connection changes from Oracle to PostgreSQL, and Python pump and Chronos jobs
• Migrated PHP APIs from PHP5.5 to PHP8.2, implementing major changes to replace LDAP login with Azure AD login across PHP APIs, Python pump jobs, and Chronos jobs
• Designed and integrated third-party services, such as Mibew, PHPExcel, and PHPMailer, using SMTP for secure email delivery
• Optimized web applications for performance improvements and faster load times
• Utilized JIRA for tracking and managing bug fixes, enhancing development workflow for agile teams.
• Worked collaboratively in Agile teams to deliver high-quality software solutions
• Provided comprehensive technical support and troubleshooting to clients

Key Projects:

• Active Directory Federation Services (ADFS) Integration

-> Implemented single sign-on (SSO) for a major industrial company’s website using ADFS and SimpleSAMLPHP

-> Enhanced user experience by allowing distributors and users to log in with Microsoft credentials

• SMTP Authentication Implementation

-> Introduced SMTP authentication to secure email communications, achieving a perfect10/10 score on mail-tester.com

-> Improved deliverability and security for customer emails

• Datacenter Migration

-> Successfully migrated eight websites and one desktop application during a major datacenter relocation project

-> Transformed code and optimized MySQL database connections for enhanced security

• Security Vulnerability Fixes

-> Identified and resolved high-priority vulnerabilities such as SQL Injection and XSS on multiple PHP-based websites

-> Collaborated with security teams to strengthen application defenses

• Hosting Website on Azure

-> Implemented Azure Front Door and Web Application Firewall (WAF) to mitigate security risks

-> Configured virtual machines to host PHP-MySQL-based websites securely