SUMMARY:

• Cisco Certified Network Engineer with 8 years of experience in the industry, which includes expertise in the areas of Routing, Switching and Firewall.
• Expertise in Designing, Implementation, Administration, Operations and Troubleshooting of enterprise data networks as a Network Engineer.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Worked on Cisco Catalyst Switches series, Responsible for Checkpoint and Cisco firewall administration across global networks.
• Expertise in installing, configuring and troubleshooting Juniper Routers (J, M and MX-series).
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS
• Implementing security Solutions using Palo Alto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new WAN links.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team.
• Experience with implementation of DNS and DHCP protocols.
• Good knowledge of OSI Model and TCP/IP networking standards with protocols such as SNMP, FTP, ICMP and IPv6.
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• IPv4, IPv6 subnetting and super netting for Host or Network requirements.
• Familiar with REMEDY for ticket change management process .
• Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Good Understanding of Python scripts for system automation, monitoring and security reporting. Maintain existing Perl scripts and migration existing Perl scripts to Python.
• Expertise in OSI layer model TCP/IP.
• Implementing changes as per ITIL change management.
• Juniper: EX -2200, EX -4200, EX -4500, … M Series, SRX210, SRX240
• Configure and troubleshoot network devices; Aruba Wireless, Cisco, Foundry/Brocade, Juniper .
• Substantial knowledge, including the configuration, of Spanning Tree Protocol (STP), Per VLAN Spanning.
• Experience with Blue Coat URL filtering with white listing and black listing URL , creating rules for content filtering.
• Creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 in LTM module.
• Experience with Firewall migrations from PIX firewall to Cisco ASA and Juniper SRX firewall appliances.
• Experience in Network LAN/WAN deployment. Expert in Monitoring, implementing Network Access Control (NAC) configurations on switch port.
• Performing network monitoring, providing analysis using various tools like Wireshark, SolarWind etc .
• Network security including NAT/PAT, ACL, VPN Concentrator.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Configuration, support and administration of Palo Alto and Checkpoint and to migrate all gateways and management servers to new hardware and software.
• Designed and replaced aging Checkpoint Firewall architecture with new next generation Palo Alto appliances serving as Firewalls and URL and application inspection.

TECHNICAL SKILLS:

Routers: Cisco 1800, 2500, 2600, 2800, 3600, 3900, 7200, 7600 series

Switches: Cisco 6500, 4900, 3750, 3550, 3500, 4500, 2900 series

Nexus: 7K, 5K, 2K &1K

Load Balancers: Kemp, Cisco CSM, F5 Networks (big-IP) LTM 8900 and 6400

Firewalls: Cisco ASA, Cisco PIX, checkpoint.

Routing Protocols: IGRP, RIP, EIGRP, OSPF, BGP, RIPV2, TCP/IP, STP, RSTP, VLANs, VTP, MPLS, HSRP, VRRP, Route Filtering, Redistribution, Summarization, Static Routing, TACACS+, RADIUS

LAN Technology: VLAN, RSTP, VTP, Inter-VLAN routing, STP, Domain, HSRP, Trunks,, Ethernet, Fast Ethernet, Gigabit, Workgroup, Domain.

WAN Technologies: PPP, HDLC, Fiber Optic Circuits, Frame Relay, VOIP, ATM, SONET, MPLS, VPN, IP sec-VPN, Leased Line, ISDN/Dial-Up.

Operations: Layer 3 switching, ether channels, Uni-layer switching.

Antivirus & Endpoint protection: Symantec Enterprise Edition, Cisco CSA, MacAfee Enterprise Edition.

Network Management Tools: SNMP, Cisco works LMS, Cisco MWTM, Wire shark, Net flow Analyzer and Ethereal.

Network Security: VPN, ACL, IPSec, IDS/IPS, Filtering, Port-security, AAA, Zone-Based Firewalls, juniper SRX, Cisco ASA, Palo Alto firewalls.

Network Technologies: TDMA, SONET, MANET, FDMA, CDMA, DSL

Operating Systems & Tools: Cisco IOS, Windows Vista/XP/NT/00/98, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Windows XP/Windows 7/8, Apache Server, Active Directory LINUX, Solaris

PROFESSIONAL EXPERIENCE:

Confidential, Denver, CO

Sr. Network Engineer

Responsibilities:

• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Maintain responsibility for the network engineer, including Cisco routers and Switching, firewall configuration, deployment, maintenance and troubleshooting.
• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Implementing IOS upgrades for Cisco router and switches.
• Designed Campus branches and data networking centers.
• Configuring and troubleshooting site-to-site IPSEC VPN tunnels using Cisco ASA 5540 for third party connectivity.
• Installed, configured and troubleshot Cisco wireless network, Wireless LAN controllers.
• Supported TCP-IP, DNS, DHCP, WINS, DFS, Group Policy, and Organizational Units.
• Helped the network team to install new switches and routers and configure the IOS according to the requirement which included VLAN, OSPF, Subnetting, EIGRP, BGP, VTP, spanning - tree, IP Sub netting, wireless access points, T1 circuits and PIM-SM using auto RP.
• Experience working with ASR 9000 series switches with IOS -XR. working with High performance data center switch like nexus 7000 series.
• Created Network diagram for Cisco/ Juniper switches .
• Built IPSec based Site-to-Site VPN tunnels between various client locations.
• Involved in the DATA CENTER Implementation techniques and methodologies.Provide Tier 3 technical support for Riverbed Pilot, Shark, Profiler and ARX.
• Designed and implement security strategies with Cisco and Palo Alto firewalls.
• Assist in network design, deployment, and maintenance of network hardware. (E.g. Layer2/Layer3 switches, CWDM/DWDM multiplexers and SFP+ optics etc .). .
• Experience in migration of data to cloud environment. Good working knowledge of Azure and AWS.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring Cisco Nexus (7k, 5K & 2K) and Brocade devices(MLX) for Network and SAN connectivity.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Implementing, configuring and troubleshooting routing protocols such as RIPv2 HSRP, GLBP.
• Implementation, Configuration and Support of Checkpoint (NGX R65, R70 and R71), Juniper Firewalls (SRX5400, SRX5600, and SRX5800).
• Responsible to evaluate, test, configure, propose and implement network, firewall and security solution with Palo Alto networks.
• Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches.
• Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPSec, VPN etc.
• Configured and maintained IPsec and SSL VPN's on Palo Alto Firewalls.
• Experience with Riverbed, Steelhead, Netflow and Wireless LAN Controller configuration.
• Implemented SNMPv3, GLBP, Rapid STP, regular scheduled IOS updates, and configured network components of Video Teleconferencing deployment across HRSA.
• Validating and reporting Wireless network based on post Wireless site survey.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Worked with Cisco ACE GSS 4400 Series global site selector Appliances.
• Configuring SNMPv3, NTP, DNS, SSH parameters on routers, switches and terminal servers as well as MD5 authentication on routers for OSPF protocol.
• Configured and monitored Riverbed WAN X and WAN Interceptors.
• Creation of documentation and reporting tools using SQL codes, MS- Word, Excel, Access, SQL Server Integration Services (SSIS) and SQL Server Reporting Services (SSRS)

Environment: Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, Palo Alto, Nexus 2k/5k/7k, Juniper SRX100, Juniper Switches EX4200, Juniper routers (MX960, MX480, MX240, MX104, PTX3000, PTX1000, M7i, M10i, M320), ASR 1000, 9000, Cisco ISE, Cisco PIX (525, 535), ASA (5505, 5510), Unix, Linux, HSRP, PPP, VPN, OSPF, RIP, BGP, EIGRP,, LAN, WAN, Checkpoint.

Confidential, Atlanta, GA

Sr. Network Engineer

Responsibilities:

• Implementation of Wireless access points, Cisco 3750, 3850 switches and Cisco 3900 and ASR 1000s routers to new sites.
• Worked on 2600, 3500, 7613& ASR 9KCisco Routers and 4500 and 6500 series Cisco Switches.
• Performed VSS on Cisco catalyst 6500 series switches.
• Working in high availability Nexus Environment and provide Level 3 Network Support.
• Configuring, upgrading and verifying the NX-OS operation system.
• Performed VOIP sector configuration and service administration.
• Worked on Riverbed Steelhead Appliance for WAN Optimization.
• Implemented VMware ESX server to provide multiple virtual hardware platforms while keeping hardware costs and energy consumption low.
• Configured and administered Riverbed Steelhead.
• Managing User accounts in TACACS and HPNA tool.
• Assigning various subnets to HPE internal SPI.
• Responsible for designing and implementing Cisco VOIP infrastructure for a large enterprise and multi-unit office environment.
• Sole point of contact for all wireless issues.
• Worked on connecting to database and fetch the data with Perl/Python.
• Writing shell scripting for several jobs to clean up disks and bad files on the server.
• Configuring and managing network traffic using 3COM SNMP and access list.
• Localized and updated PERL modules.
• Configured IPsec tunnels with Palo Alto to enable secure transport and cloud based/site-site VPN to both Azure and AWS.
• Working on different monitoring tools SolarWinds, Riverbed and Net scout to resolve the issues.
• Worked on Cisco ACE load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Implement Cisco Works 2000 device to manage Cisco routers, switches, PIX and ASA firewall, Access Points, Concentrators.
• Deploy Qos for VOIP implementation across Vanguard Infrastructure.
• Upgrading and downgrading OS on ASA firewalls, Palo Alto Network firewalls, Cisco Routers, Cisco Switches, F5 LTM and F5 GTM.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NAT'ing, NAC product sub-netting, also including DNS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols.
• Worked in managing VMs in Amazon using AWS -EC2, RDS, Redshift EMR.
• Implemented WAN Optimization using Riverbed Steelhead CMC and SMC Appliances.
• Hands-on expertise with Ether Channel, Spanning Tree, Trunking, ACLs, Syslog.
• Worked on Juniper MX 480 and Juniper MX 80 .
• Solid experience on ALU GSM, UMTS, LTE equipment.
• Set up DNA testing, established support orders for child support.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls .

Environment: Cisco ASR9000, 9006, 9001, 6500 series Routers, Cisco 4500, 3750, 3550, 3500, 2960 switches, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, Ether Channels, Juniper M series router.

Confidential, NC

Network Engineer

Responsibilities:

• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Configuring SMC Router & links Routers, and to provide networking solution.
• Performed Site preparation for 2.5 LTE Commissioning.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Involved in HSRP standby troubleshooting and load balancing protocol GLBP, Port channel management of the network.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Extensive knowledge of WAN technologies such as T1, T3, DS3, OCx, SDH, SONET, LTE, Fiber and Frame relay.
• Provided Network support and maintained Riverbed Steelhead 2050 series.
• Setup UNIX servers as Samba integrated Windows domain file and print, DNS, Nagios (SYSLOG), FTPS/SFTP, and Apache web servers.
• Worked with customers in all stages of the child support process.
• Create tickets for maintenances using HPE Service Manager.
• Experience in Active Directory, GPOs, File & Print Server, FTP, Terminal Server, NAT, and Exchange Mail Server. Administration of production Windows Servers infrastructure that includes Domain Controllers, IIS Web Servers, SharePoint, File and Print and FTP/SFTP servers
• Configured Cisco switches for L3 and L2 VLANs with HSRP, VTP and EIGRP implementations.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Network security including Cisco IDS/IPS, AAA, IPsec/SSL VPN, NAT/PAT, ACL, ASA/PIX Firewalls, and L4-L7 protocol. Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Involved in the troubleshooting aspects of complex network infrastructure using routing protocols like EIGRP, OSPF and BGP. Configuring Palo Alto policies and setting different device configurations.
• Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company.
• Installed dual DS-3 SAN replication WAN with Riverbed Interceptors and 6050 Steelhead appliances to optimize the traffic.
• Assisted with management of IT Infrastructure work streams for HPE integration.
• Designed and developed solutions architecture, work plan and a proposal for creating a provider enrollment infrastructure in AWS using Amazon RDS for operational data store and Redshift for data warehousing and analytics.
• Worked extensively with 3Com & Cisco routers and switches; AGS+, 1000 series, 2500, 4006, 5500 (for WAN MAN & LAN) and some Juniper routers
• Planned and implemented Sub netting, VLSM to conserve IP addresses.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Designed and implemented SFTP solution with Linux to provide encrypted data transfers with free open source technology.
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP and SCP file transfer protocols
• Installation and configuration of Cisco catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per network design document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches.
• Configured and Maintained the Local Network using 2900, 6500 series Switches and 2800 series Routers. Configured and installed the 3600 series Router.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505
• Designed and implemented VLAN using Cisco switch catalyst 1900, 2900, 5000 & 6000 series.
• Creating change tickets according to the scheduled network changes and implementing the changes.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 7200/3845/3600/2800 routers, Cisco ASA(5505, 5510),LTM, Checkpoint,F5 Load Balancer Cisco Nexus7K/5K, MPLS, Frame Relay, RIPv2, OSPF, BGP, IPSEC, VLAN, STP, VTP, HSRP.

Confidential

Network Engineer

Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the client's based network.
• Upgraded Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 3560, 4500 switch configurations.
• Design, implement and administer IPv4 enterprise network infrastructure utilizing Cisco routers.
• Implemented antivirus and web filtering on Cisco devices.
• Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
• Establish and enforce child support orders.
• Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) and etc
• Verify existing data on an automated child support system.
• Configured and troubleshoot OSPF, BGP and EIGRP.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers
• Used various scanning and sniffing tools like Wire shark. experience with a complete insight of Software Development Life Cycle (SDLC).
• Worked with snipping tools like Ethereal (Wire shark) to analyze the network problems.
• Worked in setting up redistribution, access-lists and dynamic routing.
• Worked with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• SNA/SDLC to TCP/IP migration for all endpoints.
• Performed software upgrades on Cisco devices by SCP servers.
• Installation, configuration, and testing Cisco equipment’s, IOS updates, and configuration changing, troubleshooting various LAN/WAN technologies issues for internal and external clients, monitoring network performance, defining network policies and procedures.
• Providing support to networks containing more than 2000 Cisco devices.
• Optimized OSPF and EIGRP network reducing network multicast traffic.
• Had knowledge in Router memory & IOS upgrade with SCP
• Maintenance and troubleshooting of network connectivity problems using PING, Trace Route.

Environment: Cisco routers 2900, 2600, CISCO 3300 and 2900 switches, DNS, DHCP, Routing Protocols: EIGRP; STP, Inter-VLAN routing, VLSM

Confidential

Network Engineer

Responsibilities:

• Worked in Network building and Network infrastructure management team.
• Creating VLANs and Inter-VLAN routing with Multi Layer Switching (MLS).
• Maintenance the general networking objectives of system/network operations.
• Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
• Configured EIGRP for lab environment.
• Answer questions to case participants relating to their financial child support/spousal support.
• Project managing complex network implementations, including Cisco PIX firewall and Cisco Intrusion Detection System installation, Cisco VPN and Layer 3 implementations.
• Involved in troubleshooting IP addressing issues and updating IOS images using TFTP.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Handled installation, configuration and troubleshooting of operating systems NT/2000, XP, and Solaris.
• Experience in troubleshooting of Layer 2 features (VLAN, STP, RSTP, VRRP, and Ether Channel).
• Worked with up gradation, replacement of NICs, display cards, RAM, peripheral devices.
• Coordinating with vendors in ordering new products.
• Cisco IOS Architecture for Cisco routers and switches
• Provide high level technical support, including identifying and resolving problems on Cisco supported products for e-Commerce infrastructure. This included external routing and internal/intranet routing for DMZ servers
• Provided helpdesk support that involved identifying and escalating the tickets to specific groups.

Environment: CISCO 2600, 2800 and 3200 series routers, CISCO 3300 and 2950 switches.