Alessio Fiorentino

I am actively contributing to the integration and optimization of federated authentication within the customer's Microsoft Entra ID environment, focusing on enabling secure and seamless Single Sign-On (SSO) across multiple applications. The project involves implementing federated authentication flows using SAML 2.0, OpenID Connect (OIDC), and OAuth 2.0, ensuring a scalable and standards-compliant access management framework. Additionally, I am leveraging Azure Application Proxy in proxy-mode to extend secure access to both on-premises and cloud-based applications.

As part of the initiative to enhance passwordless authentication, I am integrating FIDO2 Passkey technology within Entra ID, strengthening security while improving the user experience. At the same time, I am working with Azure AD B2C to design and implement custom authentication policies and flows, tailoring identity experiences to meet specific business and security needs.

I contributed to the strengthening of the security posture of the existing platform by analyzing vulnerabilities, optimizing defenses, and implementing advanced protection strategies leveraging Azure technologies. The project focused on enhancing resilience against DDoS threats, integrating Azure DDoS Protection through a cost-benefit analysis to select the most effective plan.

To ensure proactive threat detection, I configured automated security breach alerts, enabling real-time monitoring and rapid response to potential incidents. Additionally, I implemented tailored security rules on Azure Application Gateway with Web Application Firewall (WAF) to provide layered protection for exposed services.

The effectiveness of these measures was rigorously validated through targeted testing across both development and production environments, ensuring a robust, well-integrated, and future-proof security framework.

I actively contribute to the evolution and optimization of the customer's identity platform, leveraging Oracle Identity Manager (OIM) 12c, Oracle SOA, and Oracle Service Bus (OSB) to develop new features and implement architectural improvements that enhance security, efficiency, and interoperability with target systems. My role involves analyzing complex scenarios and implementing tailored solutions using Java, Spring Boot, PL/SQL, and stored procedures, ensuring seamless integration between identity services and business applications.

In addition to driving platform enhancements, I develop targeted interventions to address data consistency and synchronization challenges, designing automated processes and Oracle Workflows to proactively mitigate misalignments and optimize identity lifecycle management. When needed, I also support issue resolution by analyzing reported anomalies and applying corrective measures, leveraging PL/SQL and Java-based solutions, to ensure platform reliability and alignment with business requirements.

Ph.D. in Mathematics and Computer Science, followed by a postdoctoral research position, with a focus on knowledge representation and logic programming. Research contributions include publications in leading scientific journals and presentations at international conferences. Worked on formal methods and reasoning techniques for scalable computation, developing solutions at the intersection of theoretical research and practical applications.