Loading 3D scene…
Vaibhav Singhal

Vaibhav Singhal

vaibhav@portfolio ~ %
_

I build backend systems that serve millions — identity platforms at Workday, voice AI at LivePerson, serverless pipelines at Black Knight. I care about resilient architecture, clean APIs, and making other engineers faster.

0+ Years Experience
0+ Systems Built
0 Certifications
0+ Certificates
Email LinkedIn GitHub Resume
Scroll to explore
01

Work Experience

Building distributed systems at scale across identity, voice, and fintech.

Senior Software Engineer

Workday (Evisort)

IdentitySCIMOIDCMulti-tenantCPS

Owning the identity platform post-acquisition — SCIM provisioning, unified OIDC auth, single logout, per-tenant schema isolation, and a resilient CPS publish queue with exponential backoff retries. Serving thousands of auth requests/min across Workday and Evisort.

7 identity systems delivered
10K+ auth requests/min
4 services owned
Oct 2024 – Present Toronto, ON

Architecture & System Design

Built SCIM API endpoints for Workday-Evisort user provisioning
  • Delivered the first Workday-Evisort integration post-acquisition (CRUD + Restore) in the identity service.
  • Implemented dynamic model creation for provisioning flexibility across Workday and the legacy identity provider.
  • Led GA hardening: deterministic role mapping ("highest role wins"), SCIM import failure fixes, and Workday identifier handling for migration stability.
Improved identity and document platform services for Workday user provisioning
  • Established a dedicated internal service-to-service channel (HTTP Signature Auth, dedicated port) for secure provisioning.
  • Fixed 2 critical IDOR vulnerabilities in document version endpoints — changed cross-tenant access from 403 to 404.
  • Built an async user creation task for post-SCIM user provisioning with retry logic and outbox events.
Implemented unified authentication via OIDC
  • Built a high-throughput token exchange endpoint handling tens of thousands of requests per minute.
  • Designed OIDC callback handling across identity and auth services (JWT generation, token verification, identifier resolution).
  • Integrated cookie-based session management and state-based redirection for deep linking.
Designed end-to-end unified logout between Evisort and Workday
  • Implemented frontchannel (Evisort-initiated) and backchannel (Workday-initiated) Single Logout flows.
  • Built dynamic JWT logout token validation using internal certificate authority discovery.
  • Demoed the complete logout flow to the engineering team and company-wide.
Owned the Super Admin Toggles EPIC for migration-safe identity architecture
  • Drove full technical design, ticket decomposition, and implementation across 4 services and the UI.
  • Introduced per-client toggles (user_management, authentication_provider) to decouple tenant mapping from login enforcement.
  • Designed backward-compatible data migration with feature flag controls for safe rollout.
Architecting per-client PostgreSQL schema isolation for the auth gateway
  • Replacing shared public schema with per-tenant isolation to reduce cross-tenant blast radius.
  • Implementing dual-write architecture with feature-flagged reads for zero-downtime migration.
Built CPS Publish Queue with retries and exponential backoff
  • Designed a DB-backed task queue so all CPS publish operations (REGISTER, DEREGISTER, UPDATE, RECREATE) are enqueued asynchronously and processed by a dedicated worker.
  • Implemented exponential backoff retries (base 30s, max 600s, 6 retries) — CPS publishes survive 12+ hours of downtime during quarterly hybrid patching.
  • Built atomic RECREATE (deregister old → register new) with partial-failure recovery and snapshot-based DEREGISTER resilience.
  • Reduced Sentry alerts from ~50 per task to max 6; created a datapatch to re-enqueue previously failed tasks.

Technical Leadership

Conducted live engineering demos and led design reviews
  • Presented SCIM, UPW, and unified authentication at Evisort Tech Demo and Eng Syncs.
  • Documented workflows and recorded sessions to support team onboarding.
Owned on-call rotations and incident response
  • Reviewed and documented 5+ past incidents (SCIM sync failures, token verification issues).
  • Built a Confluence debugging playbook and mapped service ownership across 4+ platform services.
Buddied 2 new hires; participated in 14 interview loops (3 successful hires)
  • Created a repeatable onboarding reference guide.
  • Provided feedback to improve onboarding documentation and materials.
Led Operational Readiness Reviews (ORR) for the auth gateway
  • Authored ORR documentation aligned with Workday reliability standards.
  • Enabled Prometheus-based observability and alerting; extended instrumentation to the NestJS gateway.
  • Raised authentication test coverage to 80%+.

Development & Operations

Improved platform stability and scalability across identity and document platform services
  • Resolved key integration bugs and profiled the high-traffic token exchange endpoint.
  • Refactored core components for maintainability and increased test coverage.
Drove cross-service integration resilience
  • Built robust SSO token validation using internal CA certificate discovery.
  • Enabled auth gateway observability via /ping and /health endpoints.
  • Standardized metadata propagation across platform services and UI.
  • Refactored auth library naming conventions across Python and TypeScript codebases.

Software Engineer

LivePerson Inc

Voice AIKafkaMicroservicesGCP

Built Voice AI platform end-to-end — media microservices, SIP APIs, and Kafka schema service. Cut latency 35% and scaled concurrent calls to 700.

700 concurrent calls
35% latency reduction
87% test coverage
Jan 2022 – May 2024 NYC → Toronto

Architecture & System Design

Rebuilt Connector Service — Reduced data event size by 40% and latency by 35%.
  • Identified bottlenecks in inter-service communication.
  • Designed an optimized event pipeline with Redis-backed brand configuration lookups.
Redesigned Media Service into microservices — Increased concurrent calls by 50% (450 to 700).
  • Decomposed monolithic service into TTS, STT, and media microservices.
  • Defined and implemented the observability strategy (metrics, monitoring, alerting).
Owned Audio File Management Service end-to-end — Drove 25% increase in user engagement.
  • Architected storage and retrieval layer for audio blobs and Azure client keys using GCS and Redis.
  • Integrated Azure Text-to-Speech for multi-language support via SSML.
Proposed and drove adoption of Centralized Schema Service — Reduced integration overhead by 40% and debugging time by 25%.
  • Identified fragmented Kafka schema management as a cross-team pain point.
  • Designed the service to enforce schema evolution and consistency.
  • Authored internal documentation and onboarding guides adopted across teams.
Designed and delivered SIP Connection APIs — Increased customer retention by 20%.
  • Built SIP connection support (IP, FQDN, Credentials) using Telnyx SDKs, Java, and Micronaut with Kafka.

Development & Operations

Optimized shared utility libraries — Improved code efficiency by 22% across internal services.
  • Tools: Redis, Log4j, GCS, Firestore.
Built automated OOM diagnostics — Reduced debugging time by 25%.
  • Automated thread and heap dump backups to GCP buckets during Out-of-Memory incidents.
Secured transaction logs and reduced on-call burden — Cut on-call debugging time by 4 hours weekly.
  • Built bash tooling for log retrieval from Kubernetes pods and GCP Logs Explorer.
Drove data security improvements
  • Implemented data redaction for NPIs, auth tokens, and credentials across GCP logs and Kubernetes pods.
  • Eliminated sensitive data exposure in production logs, enabling compliance with enterprise data handling requirements.
Raised test coverage from 36% to 87% — Cut testing costs by 20%.
  • Used JUnit and JMeter; established testing standards for the team.
Led Inbound Call Automation Bots initiative
  • Established a fully operational system for weekly performance runs.
  • Built the initial proof of concept and coordinated cross-team end-to-end testing.
  • Delivered knowledge transfer to ensure long-term ownership.

Software Engineer

Black Knight Inc

AWSOCRPythonServerless

Architected serverless APIs on AWS — improved OCR accuracy to 89%, cut production costs 20%, and automated 80% of manual transaction retries.

89% OCR accuracy
20% cost reduction
80% retries automated
Jun 2020 – Jan 2022 Philadelphia, PA

Architected and developed APIs for Input & Output Handler Services on the AIVA (Artificial Intelligence Virtual Assistant) team.

Built customer environment management APIs — Reduced production costs by 20%.
  • Utilized AWS services (API Gateway, Lambda, S3, DynamoDB, SSM).
Designed OCR data extraction microservices
  • Increased data accuracy from 80% to 89% and improved performance by 25%.
Led greenfield service development
  • Built resilient services and orchestrated infrastructure stacks using Python, CloudFormation, and S3.
Resolved provisioning and build pipeline failures
  • Reduced testing load times and lowered AWS costs across environments.
Automated transaction anomaly recovery using Python and Boto3.
  • Eliminated 80% of manual retry attempts caused by code defects or AWS outages.
Earlier Experience

Research Scholar

Bharati Vidyapeeth's College of Engineering

Jan 2017 – Sep 2017 Delhi, India

Published two research papers on cloud security steganography and NLP-based clinical decision support systems.

2 published papers
SteganographyNLPCloud Security
View details →

Consulting & Software Intern

TATA Computer Management Corp

May 2016 – Aug 2016 Delhi, India

Built a full-stack web app with Flask and MongoDB — drove 45% sales increase and 30% faster query performance via ETL optimization.

45% sales increase
PythonFlaskMongoDBETL
View details →

Android App Dev Trainee

Bharati Vidyapeeth's College of Engineering

May 2015 – Jul 2015 Delhi, India

Developed an Android video player with gesture controls, custom UI, and third-party SDK integrations.

AndroidJava
View details →
02

Technical Arsenal

Technologies I work with daily and at depth.

Python
Java
TypeScript
Bash
C/C++
SSML
FastAPI
Micronaut
NestJS
Flask
Django
Kafka
RabbitMQ
OIDC
SCIM
JWT
Docker
PostgreSQL
Redis
MySQL
MongoDB
Firestore
DynamoDB
S3
GKE
Kubernetes
CloudFormation
API Gateway
Compute Engine
Prometheus
Grafana
Sentry
GitLab CI/CD
JMeter
Swagger
Gradle
Spark
Hadoop
Sqoop
Jira

Languages

PythonJavaTypeScriptBashC/C++SSML

Database & Storage

PostgreSQLRedisMySQLMongoDBFirestoreDynamoDBCloud StorageS3

Back-end

FastAPIMicronautNestJSFlaskDjangoKafkaRabbitMQOIDCSCIMJWTDocker

Cloud (GCP & AWS)

GKEKubernetesCompute EngineLoad BalancingCloud BuildCloudFormationAPI Gateway

Big Data

Spark StreamingHadoop HDFSSpark RDDDataFramesSqoopApache Flume

Tools & Observability

GitLab CI/CDPrometheusGrafanaSentryJMeterSwaggerGradleJira
03

Projects

Hover a folder to peek inside. Click a card to expand.

04

Education

2018 – 2020

Arizona State University

Tempe, Arizona, USA

MS M.S. Software Engineering
2014 – 2017

Guru Gobind Singh Indraprastha University

Delhi, India

BT B.Tech Computer Science
2011 – 2014

Guru Nanak Dev Institute of Technology

Delhi, India

AS Associate — Electronics & Communications
05

Certifications

CCA-175

Cloudera Certified Associate

Spark and Hadoop Developer

PCAP

PythonInstitute Certified Associate

Python Programming (PCAP-31-02)

OCA

Oracle Certified Associate

Database SQL (1Z0-071)

GCP

Google Associate Cloud Engineer

Google Cloud Platform

Data Warehouse — The Ultimate GuideSoftware Architecture & Design of Modern Large Scale SystemsMicronaut — Cloud Native Microservices with JavaGCP Associate Cloud Engineer — Google Cloud CertificationSpark and Hadoop Developer — Python (PySpark)Spark and Python for Big Data with PySparkREST APIs with Flask and PythonAdvanced REST APIs with Flask and PythonGCP: Complete Google Data Engineer & Cloud Architect GuideOracle SQL Developer From Scratch
06

Let's Connect

Open to conversations about distributed systems, identity platforms, and interesting engineering challenges.

LinkedIn GitHub Email Resume