London, Ontario, Canada
A motivated professional with significant experience in progressive technical positions. Experienced in financial / insurance and utilities and native cloud design. Current focus is on: • Cloud-native design on azure, create templates and examples to coach, mentor and train others. • Secure, single-sign-on, reliable and scalable internet-based production environment support. • Architect internet-facing systems that enable business collaboration. • System configuration and performance tuning, application code deployment and configurations. • Detail oriented log analysis to identify and fix network, OS level, software, and application code issues quickly. Solid relationship with client and colleagues; “Do to others as you would have them do to you” helped me to create excellent relationships. Strong leadership skills, helped others to develops their talents. Always looking for ways to improve the productivity.
1. Security hardening multiple Azure resources via tls and network rules. Include Storage account, AKV, ACR, SQLServer, databricks and AKS etc. 2. Deep understand Azure native cloud on network, NSG, private endpoints and traffic flow. 3. Implemented istio for multi-cluster and multi-tenancy. 4. Deep understand terraform resources, Infrastructure As Code. Implemented through terraform helm chart, Opensource CSI Driver integrated AKV to Kubernetes. 5. Built azure resources and aks templates, which are consumed by Manulife global. 6. Implemented IBM MDM in AKS from end-to-end by myself, include Customize container, built production AKS with security hardening, built CI/CD Jenkins pipeline to implement AKS deployment. code deployment, docker container build. The AKS cost only around 600$/month. Coach and mentor others. 7. Support AKS version upgrade, and Azure resources troubleshooting. 8. Create patterns for other team including Nginx, ActiveMQ, RabbitMQ, CSI Driver, Fluentd/Fluentbit, Syslogs etc. 9. Built Manulife first Kubernetes Cluster, Implemented CastIron in production Kubernetes.
Planed and Implemented IBM Security Access Manager(ISAM) on Kubernetes, Includes OpenLDAP replication and backup etc. It can be implemented on any cloud provider. Designed and Implemented single sign on using Tivoli Access Manager, Webseal, Tivoli Runtime, LDAP, DB2, Websphere and Portal. Developed the LDAP and db2 monitor Utilites . SME on IBM inforsphere inforamtion server, include MDM, Datastage, Data Quality. Created repeatable build scripts for MDM, Datastage and Quality Stage, Reduced the environemnts build time 50%. Post-Configured and Tuned up, include Oracle RAC, ODBC Oracle wired protocol configuration, Websphere JDBC configuration, Websphere Security Domain etc. Research, plan, implemented MDM and Infosphere upgrade independently, Saved project budget. Encouraged, helped and trained others to achieve their goals, multiplied their target. Worked as one in a team, walked extra miles to ensure all components are working together.
Subject matter expert in highly available clustered application environments. These environments supported multiple lines of business, including insurance and wealth management, bank, group benefit and group saving. Worked with infrastructure/enterprise architect to build production/test environment; assisted application solution designer and test teams to establish detailed requirements and integration steps. Developed good knowledge of security standards and risks. Identified and fixed access and security issues for internet users. Created detail traceability matrix to ensure all requirements were completed and met the security standards. Established a more efficient process for LDAP to save deployment time. Provided a technical solution that allowed multiple applications behind a load balancer to share a single IP address. Provided technical support to diagnose and fix performance issues on an infrastructure that contained IBM Tivoli Access Manager (TAM) and Directory Server (LDAP), IBM HTTP Server, and IBM Websphere Portal servers. Provided support to read and interpret network traces (Wireshark) in conjunction with IBM TAM traces and application traces to identify the root cause (firewall changed the TCP MSS) for performance, network connection and other issues. Turned a two-year-long-failing project to ‘green’ status just two weeks after joining the project. Solved Identity Management (TFIM) installation and configuration issue which IBM technical support hadn’t been able to solve for 3 months. Creatively built a very hidden and safe test Tivoli junction in production for Business special test. Application enhancement for Group benefit, plan member, plan admin and site management in multi-platform. Technical Environment: AIX 7.0, Window, IBM TAM, IBM LDAP, IBM HTTP Server(IHS), IBM Websphere Application Server(WAS), IBM Websphere Portal, .NET, IIS, Microsoft ARR, IBM BPM, IBM JRules. JAVA, C#, Websphere MQ, Cobol, Mainframe, DB2, VSAM, JCL, CICS.
Primary Roles: Mainframe Cobol/DB2 developer and tech leader Application support and Production on-call for an Auto/Property(Personal and Commercial) Insurance company Delivered 3 FTE(Full time employee) work load saved IBM and Client budget Knew client and business well, Provided the client an excellent solution match their requirement when client didn't have a clear thought yet. Always willing to help the team and others, Best source of knowledge of client environment. Top contributor awarded in most of annual reviews. Technologies: IBM Mainframe, CICS, DB2, COBOL, VSAM, SAS, MQ, SCLM, Websphere, JAVA, Quest Central, Domino Designer. Documerge,
Senior programmer analyst for a Utility company deregulation project Designed new applications in Sun Solaris using C++ to transfer data between different systems, and architected deregulation components into the existing Customer Information System (CIS). Provided detailed system design from general business requirements and made excellent QA support. “If Andrew needs one hour, it is a difficult problem.” colleague said. Identified and fixed production problem quickly. Technologies: Oracle 8/8i, SQL, PL/SQL, PowerBuilder, SQL Developer, Visual Source Safe, Ultimus workflow. C/C++, Unix Senior Programmer Analyst for a Life insurance Rates and policy conversion. Designed and developed hundreds modules to convert life insurance policies from One life insurance system to another life insurance system. He could work under pressure, created executable production draft from trash in 1 day when project manager wanted to see result. He offered insurance policy statistical reports by using SAS assisted project manager with strategic decisions. Key production support member during the conversion runs. Tools Used: COBOL, CICS, DB2/IMS, SAS, Xpediter, FileAID, TSO/ISPF, JCL, VSAM. VB6, Access.