Led a company-wide initiative dedicated to move all existing apps and services to modern token-based Authentication and Authorization. Reported to the VP of Engineering.

Led the development of distributed and scalable Security Token Service (STS). Provided architectural guidance to 11 distributed teams. STS gives over a million of customers and company partners single sign-on access to all Intermedia SaaS applications. Integrated it into all end-user apps (Web, Mobile, Desktop, MS Exchange Server Web Mail, MS Outlook) and APIs.

STS was developed using standard-based authentication/authorization protocols SAML, OpenID Connect, OAuth 2.0, WS-Federation, JWT, Identity Server, C#, .Net, RESTful APIs, ASP.NET Core, EF, SpecFlow, SQL Server, ElasticSearch, Redis, Active Directory.

Assessed software architecture, technology stack and code base of “SaaSID” and “Telax” software products as part of pre-acquisition evaluation conducted by Intermedia.

Designed and led the development of a Federated Identity Management (FIM) solution to onboard strategic Partners which have their own Identity Providers. That increased the customer base by 20%. Provided architectural guidance, technical leadership to 10 partnering organizations including major one, NEC having 100K employees and world-wide presence. The solution reduced the cost and time-to-market compared to alternative solutions proposed by other team leaders.

Decomposed monolithic Cloud Service Control Panel to independent web applications (plug-ins) and microservices. Token-based authorization and Single Sign On (SSO) are used to combine them into a single web app within a browser. It allows autonomous teams to work independently on each app or service and use the technology stack appropriate for the task.

Provided architectural guidance for Intermedia services integration with AppDirect, ODIN (Parallels) Operations Automation, SalesForce, Azure AD, LastPass, Okta, ADFS, CRM SaaS services, Office 365, Docebo.

Designed and developed distributed Point in Time Restore of Mailbox Data service. The service runs on 1500 servers. 400 automated test scenarios were developed for each supported Exchange Server version to verify all edge cases and executed within a CI pipeline. Led the development and collaborated with Operations team to set up CD pipeline, trained Backup and Storage team which uses the service. The service helped to cut the cost of hardware and software licenses by $500K/year and lowered system operator’s time from several hours to 15 minutes. C#, .Net, ElasticSearch, RabbitMQ, LDAP, WCF, Async IO, Multithreading, Entity Framework, SpecFlow (BDD), NUnit, Rhino Mocks, Selenium, PowerShell, Git.

Led the company-wide initiative to select Security Token Service among existing solutions like Azure Active Directory, Ping Federate, Auth0, ADFS. I was responsible to evaluate and select a vendor. My proposal was approved by company VPs and Directors and implemented.

Designed Identity Source for AppID Security Token Service that allowed to use 50 existing Active Directory domains with 1M users for authentication. Provided architectural guidance to 2 teams developing the solution.

Split monolithic Cloud Services Control Panel and extracted Monitoring system into a standalone web application. Improved its dashboard performance by 10 times. ASP.NET MVC

Development of a public web service HostPilot, including management of settings for email, message exchange systems, VoIP phone systems, virtual machines and other services available to users.

I use .Net Framework 4, C#, WCF, LINQ, Enterprise Library, Unity and Rhino Mocks technologies

Led the development of a distributed image search engine and distributed multi-threaded web crawler using microservices (service-oriented) architecture, C#, .Net Framework, WCF, Task Parallel Library, Async IO, Log4Net, Lucene, Message Queues, UML.

Interviewed and onboarded 2 development teams in local office and remote one in Israel, set up development process across the teams (Issue and Project Tracking, Code Reviews, Automated Testing) and provided architectural guidance to them.

Collaborated with the Machine Learning team to integrate their components into the search engine and indexing system.

Optimized the web crawler performance by making it multi-threaded and using asynchronous IO that made its performance comparable with other public analogs. Implemented a performance monitoring system for the web crawler using Windows Performance Counters. Crawled 20 million pages a day, achieved throughput of 100Mbps for each crawler node.

Reduced the time of search engine index loading into the memory by 99% using optimized key structure of hash maps.