Mainfarme Systems Administrator Racf
| Industry Focus: | Information Technology, Research, Engineering & Architecture | Education Level: | 4-Year College Degree | |
IBM MAINFRAME TECHNOLOGY SYSTEMS ENGINEER
S390 & z/OS RACF SECURITIY SPECIALIST
With 22 years experience in
Information Systems, Firewalls, Information Security, IBM MVS Operating Systems, Network Management, Disaster Recovery, RACF Security Infrastructure, DASD Storage Management, Telecommunications & Systems Engineering, Technology Strategic Planning, Business Continuity, RACF Migration Projects
SOFTWARE
IBM Mainframe
OS/390 Parallel SYSPLEX, MVS/OpenEdition, UNIX Systems Services, RACF Security Server, LDAP Server, DB2 UDB, CICS Transaction Server, JES2, DF/SMS, VTAM, NCP, TCP/IP, MVS/ESA/XA/SP, TSO, SQL, QMF, SMF, Coupling Facility Links, ISPF/PDF/DM, RMF, SLR, SMP/E, DFSORT, DFDSS, GDDM, ASM/H, PC File Transfer, Cobol/VS, Fortran, Language Environment 390, JES2, Omegamon, JCL, SMF, MXG, MICS, DB2, NetMaster, REXX, NDM, VSAM, IDCAMS & Access Method Services, ASSEMBLER, LINKAGE EDITOR- BINDER, IMAGE PLUS, TSO/E, RACF Vanguard Report Suite, SDSF, IOF, Tivoli, Netview, Netview Access Services, Netview Distribution Manager, Endevor, CA-1 Tape Management, CA-Datacom, OS390 nest Directory Services, LINUX Directory Services, OS390 Trusted Node and Console Security, RSCS, RACF Security Server for VM, RACF RRSF, Basic Sysplex, Parallel Sysplex, IMSDB/DC, AbendAid, LU6.2, MQ Series, MQ Series Workflow Manager V3r3, Unix System Services, Java Network Directory Interface, Java Messaging Services, MicroStrategy Suite, Informatica, VSAM & ICF Catalog Management, Database Design and Data Warehouse Architecture, Project Leadership
IBM Midrange
AIX 4.3.3, 9370-VSE, 9370-MVS/XA & VM
Compuware
CICS Abend-Aid, CICS-Xpediter, AbendAid, MVS Xpediter
Computer Associates
CA1 Tape Management System, CA7 Job Scheduler, CA11 Job Restart, CA-Datacom, CA-IDEAL, CA-ACF2, CA-TOP SECRET, CA ASM2, CA ENDEVOR
Desktop and PC Computing
Microsoft: Windows NT, 98/95/3.x, DOS, Office 2000, Visual Basic Pro 3.0, Oracle Server, Oracle: Oracle Standalone Version for PC, Windows NT 4.0/ Windows 9x, 3.x, PC/DOS, OS/2 Extended Edition, Communications Manager, DB2, DRDA, LAN Manager, Netscape, Internet Explorer, Microsoft BackOffice, MS Project, Project Workbench, MQ Series Workflow, DCE Security Server, Tivoli, IBM Visual Age COBOL, Oracle Applications Server, DB2 Version 7 & 8 NT
TECHNOLOGY CONSULTING
Technology company startup & e-commerce Partner growth
Consultant to Fortune 1000 since 1987
Information Security Consultant experienced with IBM RACF Migration Support Services offering for clients converting from Top Secret and ACF2
Improved resistance to malicious attack by users or programs in a z/OS UNIX environment exploiting the BPX.DAEMON profile in the IBM RACF FACILITY class resulting in a protected execution environment UNIX daemons and servers.
HARDWARE
IBM OS390 CMOS PROCESSOR SERIES
OS390 CMOS Plug-Compatible Vendor PROCESSOR Series
IBM ES3900
IBM 3090 SERIES
IBM 9370 Mid Range PROCESSOR
HP 6000
DEC VAS
Windows NT SNA Server
IBM 3745 NCP
PROFESSIONAL ASSOCIATIONS:
Oracle Technology Network sponsored by Oracle Corporation
IBM Developer Works sponsored by IBM Corporation
IBM Partner World
ISSA
Teradata Users Group – New York-New Jersey Region
International RACF Users Group
Consultant Role During Client Engagements
· A Corporate Strategist, Key member of the management team with extensive knowledge of software vendor marketplace, IT hardware asset license management, operating systems, database, automated operations, mainframe legacy processing, workload management, distributed processing, backup/recovery and technology planning, legacy coexistent with server Technology.
· A Practitioner with over 15 years of project management and services delivery providing client organizations with vast experience within the IT Security areas in financial services and manufacturing vertical industries, and by providing an instrumental role in handling security issues for new infrastructure and technology application development for each engagement.
TECHNOLOGY SKILLS
· 21st Century OS390 & z/OS Mainframe Architecture evolved from 1980 MVS S370 Infrastructure
· IBM Hardware/Software asset management licensing regulations - Perpetual & Annual contracts
· IBM Systems Engineer with a 23 year old foundation as an OS390 MVS Systems Programmer utilizing Assembler language programming - SVC and Exits, DFP and Access Method Services, DASD Storage Systems, Master Catalog and ICF VSAM, S390 Utilities, HCD, Rexx Coding, MVS Macro invocation, RACF Security Server SMP/E object internals and data set configuration, JES2, TSO, CICS, DB2, IPCS, VTAM, DDR, MQ Series, Language Environment 390(PL/I, COBOL, FORTRAN, C, Runtime Library Invocation), Network Data Mover-NDM, Bulk Data Transfer-BDT, FTP, Syncsort, Netview Distribution Manager, DFDSS, DFHSM, FDR/ABR, Computer Associates CA1-Tape Mgmt & CA7-Job Scheduling, Data Warehouse Extract Transfer and Load software, SQL, Oracle, UDB2, JCL, AbendAid, Intertest for CICS, WLM (Work Level Manager), Basic & Parallel Sysplex, SMF, Computer Associates Endevor, Computer Associates Panvalet Library Manager, Computer Associates ACF2, RMF and SAS.
· SMP/E to install software product builds into IBM standard ZONE configuration, manage enterprise USERMODS, selective APARs and PTFs
· ACF2 to RACF Data Security Infrastructure and Software package Conversion
· RACF and Tivoli Security Policy Director integration for OS390 co-existence with client/server computing nodes.
· IPCS Debugging and problem determination skills using a diagnostic approach in resolving any vendor engineering issues.
· Mary Winfield manages IBM source/object operating system software using standard SMP/E for change control and deployment according to IBM industry standard practice for Global-Target and Distribution zones; she adapts to the established convention of a clients data center for SMP/E zones, Master and ICF Catalogs, Shared Proclib and JES Console required by IBM PARALLEL SYSPLEX CONVENTIONS.
· SNA, TCP/ IP, FTP/Telnet protocols at application and system levels
· Open Edition MVS, USS-Unix System Services and nsf file objects
· Configure HFS Hierarchical File System RACF protection
· Java Network Directory Interface-JNDI for OS390 MVS architecture
· XML Classes integrated into MQ Series Workflow Manager implementation for IBM ITSO lab environment
· LDAP, NT Security Infrastructure for User-Group Permissions to resources and DCE Security Server
· Parallel Sysplex configuration and management of WLM, ARM, MQ Series Workflow Manager Administration Server, PES-Program Execution Server for CICS & IMS, Execution Server, Scheduling Server and Cleanup Server
· IBMs NetView network management software and console automation facility
· CISCO Router Alert processing by NetView NLDM
· Webmaster experience for organizational and personal Internet sites using Trellix and IBM WebSphere.
· Service Level Agreement based configuration of end to end physical network components based on device & application protocols - Compliance & Configuration
· VTAM, CDRM and NCP subarea configuration and dynamic activation of SNA Architecture & VPN topology
· Desktop Java Console, and DSL implementation
· Maintained research security lab data for PKI tools, Network Protocols: TCP/IP, SNA, IPX, SNMP, IGRP, RIP, BGP DLSW and ISPF
· Internet/Intranet: Network infrastructure development/deployment of DNS, NIS+, NFS and HFS
· Unix System Services and Open Edition MVS architecture and workload planning under OS390 MVS and Z/OS Operating Systems
· Support OS390 MVS SNA, TCP/IP and Checkpoint configuration in network topology.
· RACF IRRDBU00 DB2 Extract Utility and using SyncSort with SAS to report on specific database record content
RESEARCH
RACFDB2 Database creating a desktop version for DB2 V8 Beta for Windows (produced by MVS IRRDBU00 Extract Utility) using DDL and SQL statements provided in IBM’s SYS1.SAMPLIB
RACFDB2 Database instance creation of an alternate desktop version using Oracle 9i for Windows (records produced by MVS IRRDBU00 Extract Utility) using DDL and SQL statements provided in IBM’s SYS1.SAMPLIB.
Oracle Application Server test environment configured with Windows NT and Windows 98.
DB2 Version 8 (Beta for IBM Partner members) installed and configured on Windows NT and Windows 2000.
Wireless IEEE 802.1 Telecom network connection using VPN access into IBM 3270 and TCP/IP OS390
PROFESSIONAL AND CONSULTING EXPERIENCE
Project Manager 1998 to 2002 Independent Consultant System Integration Projects
Executive Officer of Platinum Precision Software Inc.
Manage all aspects of client engagement from Business Development Sales cycle: Statement of Work execution, itemized purchase order and procurement contract, billable change order (if required), recruit and hire personnel, prepare and maintain project schedule with costs on an internet accessible database using MS Project, Excel and Access reporting with annual budget range of 75K to 2.4M US Currency.
Formalized Partner agreements with technology firms including IBM Global Services, EMC Corporation and Cognigen.
E Commerce marketing strategy implementing URL site traffic to acquire sales prospect contacts.
RFP proposal writing with all technical specifications for proposed integration deliverable, and RFP proposal bid writing for commercial and government contracts. Closed winning sales cycle efforts for services only client engagements by providing executive and technical management with a detailed overview of technology approach, maintaining a Total Cost of Ownership focus within the project and delivering a technology solution which immediately becomes a winning IT Asset to that client’s IT organization.
Partnership formalized with IBM Global Services and EMC Corporation for Consulting Reseller Services.
Clients in 2001 – 2003: Guardian Life Insurance New York, NY, IBM ITSO Poughkeepsie, NY and Newark Housing Authority City of Newark, NJ
Computer Security Officer Advisory Consultant Role
Assessed IT Security, Enterprise computing platforms, Software upgrade configuration and licensing for Parallel Sysplex Data Sharing, TCP/IP Security Planning and Network Intrusion Detection, Web enabled OS390 Mainframe applications and Data Warehouse Infrastructure on a project basis with white paper authorship directed at Chief Executive and Information Officer leadership. Drafted and published several policy statements regarding privacy law, intrusion detection logistics and HIPAA compliance for client organizations.
Sysplex and Data Sharing Logistics Provided mentoring to both Security administrators and MVS Systems Programming staff, provided client management with security planning logistics during introduction of new RACF environment to their data center’s operational function. Sysplex project requirements definition and technology platform positioning to implement a data center use of IBM’s RRSF (RACF Remote Sharing Facility a data sharing feature of Parallel Sysplex).
Z/OS Systems Software Project Role Created all new RACF SMP/E FMID Usermod source code members, maintained change control for all table activation including Started Task Table, RACF Range Table, Class Descriptor tables, Router Tables and Dataset Name Table. Provided technical consulting on batch/online program callable routines to SAF and RACF for authentication and authorization. Reviewed JES2 Undefined User configured scenario, RACFVARS, RACLCNDE and
Information Security Forensics Platinums technical expertise developed a z/OS MVS environment SAS reporting mechanism using SMF Data extract and record management to review RACF ICH408I message type “913” access violations and extracted IRRDBU00 flat file records, the SAS software became a productivity tool for cloning RACF permit statements to authorized corporate users and group entities.
Project Manager Nov 1994-March 1995 MCI WorldCom Colorado Springs, CO
Built RACF infrastructure into newly created Omaha Nebraska data center running four OS390 MVS LPARs using RACF utilities and Vanguard Integrity Professional Suite. Install and customize RACF Group Tree, Started Task Table with explicit and asterisk entries, user profile management, production and test dataset generic profiles with ownership and custodial access levels, CICS and IMS transaction profiles, DB2 AUTHID group grants in prod and test subsystems, coded exits, application and telecom node profile definitions.
Systems Engineer May 1994-Oct 1994 GE Capital Stamford CT
OS390 MVS ESA Systems programming support for IBM and OEM Program Product software. Installed and customized operating system software components using SMP/E, Assembler and IDCAMS across nine LPARs; configured GEIS outsourcing environment toward future Parallel Sysplex RRSF feature. Supported Compuware Xpediter, Abend Aid for MVS and CICS, Netview, ACF2 & RACF Security interfaces, Group 1 Direct Market Software environment,
Project Manager, Sept 1993-May 1994 JP Morgan New York, NY
IBM RACF administration in OS390 MVS ESA and VM/ESA systems of corporate users, groups, test and production batch applications, violation reporting using SMF and SAS, intrusion detection, and program product interface maintenance for New York and Delaware data centers.
· Managed DB2 secured environment of programs, tables, BINDs, VIEWs, and Query reporting options for test and production database configuration. Reviewed scope of control with DBA group.
· Approved/disapproved client/server applications running Oracle, SQL Server and Sybase interfacing with legacy DB2.
· Wrote corporate position paper on Candles Omegamon user authentication exit.
· Implemented SSO single sign on solution across JPM Enterprise using NC Syncom running as APPC messaging between VTAM network sub-areas.
· Tested JES2 exits enforcing Job naming convention and RACF SURROGAT user class resource.
Technical support of database BDAM files using IBM RACF data management utilities for template initialization and record load, Vanguard Integrity Professional daily Extract, Load and Transfer of live database contents, SETROPTS configuration of RACF system parameters, Started Task Table contents and options, and monitored space block usage of all primary and backup RACF files.
Systems Engineer March 1993-Aug 1993 MCI WorldCom Arlington VA
OS390 MVS ESA storage management technical support for test and production LPARs; migrated datasets to DFHSM controlled DASD according to STGADMIN policy.
Systems Engineer April 1992-December 1992 IBM Japan Manassas VA
Installation and customization of Netview Distribution Manager in MVS ESA and OS/2 LAN Manager using Corrective Service Diskette Pack, SMP/E, VTAM, Assembler, RACF, User Profile Management and Communications Manager.
Systems Engineer Sept 1991-Mar 1992 IBM Bethesda IMAGE PLUS Development
MVS ESA software upgrade via CBIPO across MVS, DB2 and CICS SMP/E zones. Built RACF database contents from Master Catalog alias and system level dataset entries, DASDVOL, SYS1.UADS TSO entries and CICS Signon table. Implemented RACF software environment from SAF password-only authentication.
Systems Engineer Otis Elevator Account, IBM Professional Services Farmington CT
ACF2 to RACF conversion tech support activities in MVS ESA production and test environment; implemented DFSMS Storage Policies and deploy RACF interface to IBM and OEM program products. MVS Systems Programming support for OEM third party software products executing on OS390 MVS LPAR configuration.
Network Engineer December 1989-March 1991 MCI WorldCom Reston VA
Provided IBM MVS ESA technical leadership in a business process engineering project of MCI Call Detail Records and Billing system. Constructed design prototype into test application routing CDR (Call Data Record) objects into three traffic CICS hosts. Supported CICS running with MRO with DB2 database configuration supporting CICS, Batch Connect and TSO SPUFI workload access for query reporting and real time access of traffic data.
Systems Engineer March 1989-Dec 1989 Sikorsky, Pitney Bowes Business Systems & Ames Retail ACF2 to RACF security software conversion activities in MVS Systems programming and Security Officer role; used IBM Corporation migration tool to extract ACF2 Rules into corresponding RACF profile creation commands (run later as Batch TMP). Formulated production and test RACF Groups from batch HLQs defined in Master Catalog. Configured TSO, IMS and CICS user profiles from ACF2, SYS1.UADS and Sign on table. Took inventory of active versus inactive user profiles as part of cleanup prior to migration cutover into new subsystem, CICS transactions and DB2 grants.
RACF 1.8.1 IBM product upgrade using SMP/E, Assembler and IDCAMS for IBM customer Ames Retail Stores. Installed, customized and deployed RACF product environment from test "sandbox" LPAR. Activated all exits and program product interface through test system IPL followed by production system deployment during Sunday midnight outage standalone time.
Systems Engineer March 1988-March 1989 IBM Netview & VTAM Software Product Group RTP NC
Provided technical support in MVS ESA Systems Programmer role for Netview Product development and test teams; customized six MVS guest machine images routing messages and timers to central focal point console. Maintained VTAM and NCP network definitions for SNA, SDLC, ASCII terminal, Token Ring, and 3745 front end processor.
IT Staff Positions
Systems Programmer 1983 - 1987 Martin Marietta Data Systems - Orlando FL Data Center
Configured outsourcing data center DASD inventory, special attention to private and spare drives; IBM MVS storage management using DFHSM, DFDSS and FDR; corporate RACF administration function supporting technical issues and IT risk management; RACF FMID exits and related systems programming, ICF and VSAM catalog shared system DASD environment, SMF archival, Sunguard Disaster Recovery compliance, Master Catalogs, TSO and ISPF products, CA1 Tape Management and DFP-related software. Led a team of 9 software professionals and managed department in manager’s absence.
Systems Programmer 1982 to 1983 Aetna Life and Casualty - Hartford CT
Maintain DASD software environment, device service level agreements, production and test 3380 availability for Aetna corporate programming and operations staff, configured FDR backup for 3380-3350 inventory and coordinated batch scheduling with data center operations, researched EROPT with hardware vendors, supported migration of VSAM and Non-VSAM objects from 3350 to 3380 drives, maintained inventory of VSAM user catalog volume ownership.
RESEARCH
RACFDB2 Database creating a desktop version for DB2 V8 Beta for Windows (produced by MVS IRRDBU00 Extract Utility) using DDL and SQL statements provided in IBM’s SYS1.SAMPLIB
RACFDB2 Database instance creation of an alternate desktop version using Oracle 9i for Windows (records produced by MVS IRRDBU00 Extract Utility) using DDL and SQL statements provided in IBM’s SYS1.SAMPLIB.
Oracle Application Server test environment configured with Windows NT and Windows 98.
DB2 Version 8 (Beta for IBM Partner members) installed and configured on Windows NT and Windows 2000.
Wireless IEEE 802.1 Telecom network connection using VPN access into IBM 3270 and TCP/IP OS390
REFERENCES PROVIDED UPON REQUEST
