# Sergey Khutornoy

> Principal Software Engineer

Location: San Francisco Bay Area, United States
Profile: https://flows.cv/sergeykhutornoy

16 years of software development experience.
I specialize in design and development of large-scale Distributed Software Systems from scratch. I’ve developed Identity and Access Management systems, Web Services, Software Systems Integrations, Web Crawler and decomposed monolithic applications into microservices, database design.

## Work Experience
### Principal Software Engineer @ Okta
Jan 2021 – Present

### Principal Software Engineer, Software Architect @ Intermedia
Jan 2015 – Jan 2021 | Sunnyvale, USA
Led a company-wide initiative dedicated to move all existing apps and services to modern token-based Authentication and Authorization. Reported to the VP of Engineering.

Led the development of distributed and scalable Security Token Service (STS). Provided architectural guidance to 11 distributed teams. STS gives over a million of customers and company partners single sign-on access to all Intermedia SaaS applications. Integrated it into all end-user apps (Web, Mobile, Desktop, MS Exchange Server Web Mail, MS Outlook) and APIs. 

STS was developed using standard-based authentication/authorization protocols SAML, OpenID Connect, OAuth 2.0, WS-Federation, JWT, Identity Server, C#, .Net, RESTful APIs, ASP.NET Core, EF, SpecFlow, SQL Server, ElasticSearch, Redis, Active Directory.

Assessed software architecture, technology stack and code base of “SaaSID” and “Telax” software products as part of pre-acquisition evaluation conducted by Intermedia.

Designed and led the development of a Federated Identity Management (FIM) solution to onboard strategic Partners which have their own Identity Providers. That increased the customer base by 20%. Provided architectural guidance, technical leadership to 10 partnering organizations including major one, NEC having 100K employees and world-wide presence. The solution reduced the cost and time-to-market compared to alternative solutions proposed by other team leaders.

Decomposed monolithic Cloud Service Control Panel to independent web applications (plug-ins) and microservices. Token-based authorization and Single Sign On (SSO) are used to combine them into a single web app within a browser. It allows autonomous teams to work independently on each app or service and use the technology stack appropriate for the task.

Provided architectural guidance for Intermedia services integration with AppDirect, ODIN (Parallels) Operations Automation, SalesForce, Azure AD, LastPass, Okta, ADFS, CRM SaaS services, Office 365, Docebo.

### Senior Software Engineer @ Intermedia
Jan 2013 – Jan 2015 | Mountain View, California, United States
Designed and developed distributed Point in Time Restore of Mailbox Data service. The service runs on 1500 servers. 400 automated test scenarios were developed for each supported Exchange Server version to verify all edge cases and executed within a CI pipeline. Led the development and collaborated with Operations team to set up CD pipeline, trained Backup and Storage team which uses the service. The service helped to cut the cost of hardware and software licenses by $500K/year and lowered system operator’s time from several hours to 15 minutes. C#, .Net, ElasticSearch, RabbitMQ, LDAP, WCF, Async IO, Multithreading, Entity Framework, SpecFlow (BDD), NUnit, Rhino Mocks, Selenium, PowerShell, Git.

Led the company-wide initiative to select Security Token Service among existing solutions like Azure Active Directory, Ping Federate, Auth0, ADFS. I was responsible to evaluate and select a vendor. My proposal was approved by company VPs and Directors and implemented.

Designed Identity Source for AppID Security Token Service that allowed to use 50 existing Active Directory domains with 1M users for authentication. Provided architectural guidance to 2 teams developing the solution.

Split monolithic Cloud Services Control Panel and extracted Monitoring system into a standalone web application. Improved its dashboard performance by 10 times. ASP.NET MVC

### Senior Software Engineer @ Intermedia
Jan 2011 – Jan 2013 | Russia, Saint-Petersburg
Development of a public web service HostPilot, including management of settings for email, message exchange systems, VoIP phone systems, virtual machines and other services available to users.
I use .Net Framework 4, C#, WCF, LINQ, Enterprise Library, Unity and Rhino Mocks technologies

### Principal Software Engineer @ Wesee Ltd
Jan 2010 – Jan 2011 | Russia, Samara
Led the development of a distributed image search engine and distributed multi-threaded web crawler using microservices (service-oriented) architecture, C#, .Net Framework, WCF, Task Parallel Library, Async IO, Log4Net, Lucene, Message Queues, UML.

Interviewed and onboarded 2 development teams in local office and remote one in Israel, set up development process across the teams (Issue and Project Tracking, Code Reviews, Automated Testing) and provided architectural guidance to them.

Collaborated with the Machine Learning team to integrate their components into the search engine and indexing system.

Optimized the web crawler performance by making it multi-threaded and using asynchronous IO that made its performance comparable with other public analogs. Implemented a performance monitoring system for the web crawler using Windows Performance Counters. Crawled 20 million pages a day, achieved throughput of 100Mbps for each crawler node.

Reduced the time of search engine index loading into the memory by 99% using optimized key structure of hash maps.

### Team Lead @ CQG, Inc.
Jan 2009 – Jan 2010 | Samara, Russia
Setting and planning goals for team members;
Control of task execution by the team; 
Control of the usage of appropriate development processes; 
Collaboration with managers, third parties and other teams;
Collaboration with support service of other used products.

Accomplishments:
I put together a process of team work using separation of duties between team members, based on their skills and interests. Also, I set goals of different levels of difficulty and shared my experience and knowledge with team members to improve their skills level.

### Project Architect @ CQG, Inc.
Jan 2009 – Jan 2010 | Samara, Russia
Participated in the ALM project of customization of commercial MKS Integrity Application Lifecycle Management tool according to CQG needs.
Collection, analysis and documentation of multilevel requirements (Enterprise Architect), architecture analysis, technical risks and completion time assessment;
Architecture development of the project;
Explanation of the architecture to the project manager and development team;
Consulting the project manager on the project calendar;
Assisting the development team in all stages of project design.

Accomplishments:
Completed the project based on MKS Integrity platform and suggested a new strategy of further system development and transfer of outdated systems to a new platform. The suggested approach significantly decreased the time of the development process and allowed the usage of existing systems together with new systems during the transfer period.

### Senior Software Engineer @ CQG, Inc.
Jan 2008 – Jan 2009 | Russia, Samara
Software project design using Enterprise Architect;
Development of domain systems and business logics using Java6SE, JavaScript, Ant Build, Java Beans, Log4j, Digester;
Development of client application software using WinForms, DevExpress UI Controls, IKVM, VSTO, WIX, Log4net, Cruise Control .NET;
Inspection of project requirements, design and code of other programmers;
Improvement of application productivity and deadlock elimination using 
SQL request optimization (SQL Profiler);
Integration of a new system with other systems used by the company;
Customer support of software users.

Accomplishments: I improved productivity of “Users notification about incorrectly entered or missing data in the system” feature 30 times. A daily manual restart of the feature was required before, and after optimization of the code the block started working uninterrupted 24/7.

### Software Engineer @ NetCracker
Jan 2007 – Jan 2008 | Russia, Samara
Rolled out a process for collaboration on System Design Documents for a team of 10 devs.
Developed a Business Activity Monitoring system using Java, JMS, JSP, XML, RegEx, XSLT, SQL.
Developed an ETL pipeline that exports data from OLTP Relational Database to Data warehouse to speed up reporting.

### Software Engineer @ Electronic Systems
Jan 2005 – Jan 2007 | Russia, Samara
Designed and developed a distributed system for vehicles, freight cars and rail tank cars access control to the restricted areas using automatic license plate recognition. 
Delphi, Windows Desktop apps, DevExpress components, backend services COM/DCOM; MS SQL Server.

### Information Technology Engineer @ Ministry of Finance of the Russian Federation
Jan 2004 – Jan 2005 | Samara, Russia
Installed and configured computer systems, networks and accounting software.


## Education
### Certificate of Achievement in Machine Learning
Stanford University

### Master’s Degree in Applied Mathematics and Computer Science
Samara State Aerospace University


## Contact & Social
- LinkedIn: https://linkedin.com/in/sergeykhutornoy

---
Source: https://flows.cv/sergeykhutornoy
JSON Resume: https://flows.cv/sergeykhutornoy/resume.json
Last updated: 2026-04-12