Designed and built a centralized system for monitoring and enforcing enterprise security controls.
VB.NET 2008 DLL interfaced with micro applications (Access, Excel) to log usage and errors.
- Streamlined new coding; existing mainframe code modules were incorporated and standardized.
- Allowed for easy and flexible metrics capture and reporting.
- Created robust platform for easily upscaling micro-applications to SQL Server or Oracle.
- Provided per-application flexibility for security responses (warn or close) and messages.
- Incorporated several blocks from Enterprise Library 4.1 (Data Access, Logging, Cryptography).
- Built a standalone executable for packaging settings from the database into an encrypted XML file.
- Created a web service that streamed an encrypted XML file to client desktops upon scheduled request; distribution of encrypted XML configuration file greatly simplified change management process.
- Required applications to use digital signatures to ensure authenticity and prevent code tampering.
- VB.NET 2008 DLL interfaced with micro applications (Access, Excel) to log usage and errors.
- Created an IIS-based website for display of metrics, forensics, and error logging collected by the system.
- Responsible for overseeing testing and rollout of .NET Framework (3.5) for Securities Finance division.
- Responsible for entire lifecycle of micro-application development; provided significant enhancements.
Working closely with key members of the Securities Finance Division, we created a centralized system to track/monitor/log all of the micro-apps (Excel and Access) in use on the short-side equity, fixed-income and currency desks. This guaranteed consistency among applications, insured user-based permissions and logging, and enabled lockdowns in case of unauthorized use. Prior implementations of security on the micro-apps were trivial to crack; our new system used cryptography and unique algorithms to eliminate security risks. Each micro-app was programmed to pull XML-based data on a schedule (and most on startup) from a central server and database, thereby insuring timely upgrades and system-wide changes.