Identity Management Solutions
- Architecture and structure for Identity Management solution based on
Oracle 11g idM suite (OAM, OAAS, OIM, OIF, OID, OVD, MS Active Directory, SAML 2.0 protocol, OpenId protocol, enterprise multi factor SSO); CAC cards support, Oracle Entitlement server for fine grained authorization (for MS SharePoint); federation with MS Active Directory Federation Services 2.0 server: architecture/design/configuration (including and network firewalls), custom plug-in extension for OAM; OAM policies for authentication. - Architecture and structure of Identity Management solution based on CA IdM suite (CA IdentiryMinder, SiteMinder and GovernanceMinder). The architecture provided SSO and provisioning/de-provisioning processes implemented with custom automated workflows, delegated administration, admin task prototyping, approval task design, policy prototyping), integration with external SOA services and external government and HR authoritative sources.
- Identity Management solution based on Microsoft IdM product suite. The solution provided delegated authentication with Kerberos protocol, federated authentication with SAML 2/OAuth protocol, privileged identity management, role-based and attribute-based authorization; automated workflow customization; it was built on scalable and high-available configurations; Microsoft SCSM was used for maintenance/support/automation and monitoring.
Cloud migration, Virtualization, Containerization
Planning infrastructure architecture for VMWare vSphere 6 cloud; integration of two environments: AWS and vSphere; applications migration between AWS Cloud and VMWare vSphere 6. Microservices, migration process from on-promises to cloud environment, serverless architecture, DevOps and DevSecOps practice, continuous integration, test automation tools, analysis and selection, continuous delivery to AWS, VMWare vSphere 6 cloud, Openstack, Azure.
Cost-benefit analysis, cost model - elasticity, analysis of M&O cost, decreasing of M&O cost with automation.
Migration of multiple customer Web sites (from on-premises Data Center) into AWS environment; process migration creation, provided solution architecture for the migration (with usage of CloudFront, multi-region deployment, cloud security with Edge server AWS WAF), multi-zone design and replication for relational DBs; security implementation AWS WAF with Nginx proxy with Suricata IPS; AWS ELB deployment with SSL certificate termination; proxy routing based on HTTP custom header; analysis for high-availability and disaster recovery for AWS "To-Be" system.
Architecture review, security review, requirements analysis and on-promises systems assessment, white papers about AWS monitoring capabilities for MS products and AWS services and pricing options with recommended best practices were delivered.
MS Products migration to Amazon AWS services; elasticity, auto scaling, high-availability and disaster recovery for Microsoft Unified Communication, Exchange, SharePoint, Lync, Active Directory.
Artificial Intelligence and Cognitive Computing
Tactical Cyber Situational Awareness System solution for data gathering and analysis, correlation, fusion, and display of collected data in space and time for increasing the situation awareness. It combined National Database and local tactical data sources that allows for analysts make timely, informed decisions and plan effective missions. The data come from a multitude of sources in a variety of different reporting formats (e.g., SIGINT and HUMINT data). Ontology-based (semantic) search Architecture and development of metadata environment for variety of heterogeneous data sources serving various communities of interests. Technology involved RDF/RDFS, OWL-2; ontology development, alignment and mapping; Jena and Pellet reasoners; metadata catalog for a query service based on SPARQL. Solution for ontology-based search and information retrieval. Solution provided higher level of recall and precision for search results.
Big Data Solutions
Data mining hybrid intelligent knowledge discovery system (with data mining capability) for an application supporting maintenance automation of complex enterprise computer system. The Solution provided Big data collection and processing withing Hadoop HDFS with natural language analytics and ontology-based processing.
Enterprise System Design and Development
Architecture design and development of message-based system with Net-Centric and Web-based architecture.
Solution involved SOA architecture (SOAP, REST) and custom-built PKI infrastructure based on open source products.
Proposal Preparation and Project Management
Proposal preparation (RFP/RFI) for large enterprise-level system; cost effective solution was created and required documentation was submitted. Compliance analysis was conducted for compatibility, correctness, consistency and completeness. For this proposal a contract was awarded.