SUMMARY:

• Cisco and Palo Alto certified professional with 7+ experience in network design, implementation, and support.
• Experienced in routing, switching, firewall technologies and troubleshooting of complex network systems.
• Experience in working with Nexus 9k,7K, 5K and 2K series switches.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs and switches.
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP on various Cisco Switches.
• Experience in migration with both Checkpoint and Cisco ASA VPN.
• Hands - on experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience in installation and configuration of DNS, DHCP server.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Experience with Change management process and Project documentation tools like Excel and VISIO.
• Hands-on experience of python scripting, automation using python, string parsing, libraries.
• Experienced in working on network monitoring and analysis tools like, Solar winds, Cisco works, River bed and Wireshark.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP’s on a need basis.
• Worked on F5 BIG-IP LTM 8900, configured profiles provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Experience with BIG-IP F5 load balancers, version 9.x, 10.x, 11.x, Citrix Netscalars and Web Accelerators.
• Experience in working with Cisco ACI.
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
• Migration with both Checkpoint and Cisco ASA VPN experience.
• Experience in site-to-site and remote access VPN solutions.
• Worked with Palo Alto Panorama management tool to manage all Palo Alto firewall and network from central location.
• Configured and setting up DMVPN, GRE based VPN on Cisco-IOS based router.

TECHNICAL SKILLS:

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS, VPNs

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Cisco Switches: Cisco 2960, Cisco 3560, Cisco 3750, Cisco 6500 series

Cisco Nexus Switches: Cisco 7010, Cisco 7018, Cisco 5020, Cisco 2148, Cisco 2248

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, HDLC, and CSU/DSU.

Firewalls: Palo Alto PA-500, PA-2k, PA-3k & PA-5k series, Checkpoint Provider-1 R65/R70/R75/R77 & Cisco ASA

Operating Systems: Windows 7/8/10, Linux, Cisco IOS, NX-IOS, IOS-XE, IOS-XR

PROFESSIONAL EXPERIENCE:

Confidential, Boston, MA

Sr. Network Engineer

Responsibilities:

• Installing, Maintaining and Troubleshooting of Cisco ASR 1K, 7200, 3925E and 2951E Routers and Cisco 6500, 4510, 4500-X, 4948, 3560X, 3750X and 2960S Switches for deployment on production network.
• Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548and Nexus 9k as per the requirement of the Organization.
• Involved in upgrades to the WAN network from existing 7200vxr with ASR1004 and 3845/3945 routers.
• Worked as a part of data center deployment where we converted Cisco 6500 to Nexus.
• Experience in configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 7010/7018
• Worked on network projects involving Cisco Routers- ASR 1000/9000, Switches-Nexus 7K/5K/2K.
• Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
• Responsible for Cisco ASA and Palo Alto configuration and administration across global networks
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Worked on Cisco ISE to support authentication for the Wi-Fi users.
• Managed Core network upgrades and unified communications and Identity Services Engine (ISE) deployment.
• Deployed Cisco UCS C series server. Installed and configured ESXi 5.x and vCenter for UC on UCS.
• Used Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment.
• Implemented Cisco Application Centric Infrastructure (ACI) as a solution for data centers using a Spine and Leaf architecture.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.

Confidential, Phoenix, AZ

Sr. Network Engineer

Responsibilities:

• Configuring, Maintaining the Routers and Switches and Implementation of EIGRP, OSPF, BGP routing protocols and troubleshooting Remote infrastructure management of offices in different locations nationwide.
• Troubleshooting and escalation management of day-to-day issues for offices.
• Managing Co-location and Datacenter infrastructure in North America.
• Automated network implementations and tasks using python scripting.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls. f Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Upgrade Cisco 6500, 3750, 2960s, Nexus 5000, Nexus 2000, Nexus 7000 switch IOS software
• Worked extensively with Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches
• Experience working with ASR 9000 series switches with IOS-XR
• Worked in Cisco IOS-XR and NX-OS software upgrade projects and manage deadline to accomplish goals.
• Convert IOS/IOS XE routers to ASR9k/IOS XR with Network virtualization.
• Troubleshooting experience on Cisco ASR 9K devices and also have an experience to upgrade IOS-XR software.
• Deployed several multisite VoIP installations with centralized call processing using CUCM 7.x/8.x/9.x
• Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED. providing technical support to LAN & WAN systems.
• Hands on experience on how to create different application policies in the ACI including Tenants, Application Network Profile (ANP), End Point Group (EPG), Contracts, Subjects and Filters

Confidential, Providence, RI

Network Security Engineer

Responsibilities:

• Firewall Policy administration and work with user requests submitted by users.
• Configured and setting up DMVPN, GRE based VPN on Cisco-IOS based router.
• Had an Exposure to wild fire feature of Palo Alto.
• Build Site to Site IPSec based VPN Tunnels between various client and business partner sites
• Perform advanced troubleshooting using Packet tracer and tcpdump on firewalls.
• Firewall Policy Optimization using third party tool Tufin.
• Perform Firewall OS upgrades using CLI, Splat and Voyager GUI.
• Modify and implement ACL changes on Client routers and assist the user when there are any issues using Network Authority. Authentication to this is also done through TACACS.
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments
• Supporting more than 100 Site to Site IPSec based VPN Tunnels for all B2B and 3rd party communications.
• Work on Cisco based Routing and Switching environment with MST and Rapid Spanning tree and using Routing Protocols such as BGP and OSPF.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Configured AAA to restrict the VPN access to limited users using TACACS+, as per requirement.
• Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers.
• Configured and set up of Juniper SRX firewalls for policy management and Juniper SSL VPN.
• ITIL Based Incident, Change and Problem management.
• Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
• Worked on Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.

Confidential

Network Engineer

Responsibilities:

• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5585 Security appliance.
• Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Worked on design and implementation of Dial-plan for Inbound and Outbound calls in CUCM Clusters.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• DMZ environments to support new and existing application platforms.
• Implementation and Configuration (Profiles, I Rules) of F5 Big-IP LTM-3600 load balancers
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• Automated the process of neighbor check in OSPF using python scripting.
• Performed Cabling check automation using python.
• Plan, Survey, Design, Deploy, implement Cisco Meraki wireless managed network infrastructure.
• Product knowledge of Cisco Meraki cloud product line up, complete edge and branch portfolio includes wireless
• Installs and configuration of high-performance Cisco wireless access points, switches, and security appliances.
• Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP.
• Troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP, MPLS
• Involved in implementation of Data Center Migration, worked on strategies for the expansion of the MPLS VPN networks
• Operational support and troubleshooting of production wireless network issues

Confidential

Jr. Network Engineer

Responsibilities:

• Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Configured the Cisco router as IP Firewall and for NATting.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
• Configuring all the required devices and equipment for remote vendors at various sites and plants. Installation and maintenance of new network connections for the customers.