SUMMARY:

• 12+ years of professional experience in Network Planning, Engineering and Implementing of CISCO products.
• Experience in designing - high performance Juniper network.
• Strong hands on experience on ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS. ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP, Spanning Tree, Frame-relay, MPLS, IPv4
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3900, 3600, 2900, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3650, 2900 series switches
• Worked on ACE load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Dealt with Cisco IP phones and VOIP devices
• Good understanding of security infrastructure including Antivirus, Encryption, DLP, SIM, IDS and IPS
• Working knowledge of Cisco UCM, VCS-C, VCS-E and TMS.
• Demonstrated success record in: Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
• Highly enthusiastic, creative team player, project implementation, excellent customer service focus and analytical problem-solving abilities, interpersonal and communication skills.

TECHNICAL SKILLS:

LAN Technologies: Ethernet - fast Ethernet, gigabit and 10 gigabit Ethernet, Port - Channel, VLAN, VTP, Inter-VLAN routing, STP, RSTP, PVST, 802.1x

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines, T1/T3, SONET

TCP/ IP: Subnetting, VLSM, NetBUI, IPX/SPX, IP. v4, VoIP

Routing Protocols: Static, RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP, GLBP, MPLS, HDLC, PPP and X.25

Network Security: NAT/PAT, VPN, Filtering, Load Balancing, IPSec, ACL, Switchport port security, Firewalls, Internet Content Filtering, Load Balancing, IDS/IPS, Dynamic, Reflexive ACL and authentication AAA

Infrastructure Services: DHCP, DNS, SMTP, POP3, FTP, TFTP

Administration and troubleshooting: CDP, TELNET, SSH, ICMP, PING and TRACEROUTE, SNMP and SYSLOG, CISCO IOS software and configurations, Call Manager 8.5, Cisco Contact centre 8.0

Network Analysis Tools: Packet Sniffer, Vitalnet, NetQoS, Net screen Manager(NSM), Wireshark, Netcool Monitoring and Infinistream Mgmt Console, What s-Up Gold, Netbrain, Solarwinds, Remote Access Server Nortel (1680) administration, Nagios, Splunk

Operating Systems: Windows server 2003, Windows server 2008, Windows server 2012, Windows 95/98/NT/2000/XP/Vista/7/8/8.1/10, Novell Netware, Red Hat Linux 7.x and UNIX

CISCO and another vendor equipment: CISCO 1900 2900 Series routers and 2960, 4507, 6509 switches, ASA 5500X, Nexus 7K, 5K, 2K & 1K, Cisco routers Cisco GSR 12416 (7200, 3800, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (7600, 6500, 5500, 4900, 3750, 3500, 2900 series). PIX Firewall (506/515/525/535 ), ASA Firewall (5505/5510), Cisco ACE Load Balancers. Juniper M/MX, Juniper SRX/SSG, Juniper EX Series and MAG Series VPN Gateways . Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Palo Alto network, ACE Module and F5 Load Balancers

Other hardware support: Server / PC/ Printers - all hardware support

Other: Confidential Office (Word, Excel, Visio, Project, Outlook) 2003/2007/2010/2013

PROFESSIONAL EXPERIENCE:

Confidential, WA

Sr. Network Architect

Responsibilities:

• Provide expert level Solutions Architecture support for all technology insertion and integration projects.
• Hand on skills in strategic planning, network architecture design, vendor negotiation and budget management.
• Configured and maintained Brocade DCX and Cisco MDS fabric switches to support SAN connectivity.
• Configured and maintained Brocade IronView Network Manager (INM)
• Configured and maintained Brocade Network Advisor (BNA)
• Utilized Brocade E-health to monitor the Brocade MLX network.
• Use customer gathered technical information, requirements, and analysis to develop a best fit vendor agnostic solution, including project implementation plans and post implementation design documentation to meet information security requirements.
• Forward thinking in audit and compliance efforts including risk review, business monitoring, documentation of policies and procedures.

Confidential, Chicago, IL

Sr. Network Architect

Responsibilities:

• Provide Subject Matter Expert (SME) and in-depth knowledge across multiple technical disciplines including but not limited to; network routing/switching, firewalls, IDS/IPS, and Network Access Control.
• Utilize in-depth knowledge of networking, network security, virtualization, storage, server, data center services, and other leading-edge products and technology in conjunction with business skills to help customers visualize the solution and influence their decision.
• Provide innovative approaches to customer challenges.
• Technical leader for incidents, diagnosis and determining the most effective way of resolving problems.
• Lead, manage and develop strategic relationships, service, quality and costs with service vendors in collaboration with the Global Management team.
• Experience with NAC
• Manage and contribute to Vendor service performance and account/domain reviews
• Review and audit projects documentation for project delivery team.
• Consult on issues that occur during reviews.
• Meet all agreed-upon turnaround times for deliverables, deliverable reviews, or deliverable sign-off.
• Validate builds for cost savings and driving optimization projects to meet cost objectives.
• Initiate and lead ‘productivity’ programs for the simplification, consolidation, standardization and optimization of the platforms.

Confidential, Reston, VA

Sr. Network Architect

Responsibilities:

• Worked for ASCOM (planned, designed, implemented and co-ordinated the completion of the project) migrate their network from CISCO to Juniper devices with minimum downtime and 24/7 technical support at various locations - Irvine, Bahrain, Dubai, India, Sweden, Switzerland, Hong Kong and UK
• Configure IPSEC VPN (Site -Site to Remote Access, site-site VPN using juniper platforms) on SRX series firewall.
• Involved in Migration of SSG firewalls to Juniper SRX firewalls, as well as experience working directly with customer in a service/support environment. Configuration and troubleshooting on Juniper SRX via Juno space JA2500. Migrated Check Point 680 to juniper SRX 650.
• Hands on experience on Juniper MAG-SM360, 4610, SRX, MX and EX. Configuration and troubleshooting of SRX 1400 and SRX 3400.
• Daily exposure to IP based network security protocols with Juniper SRX and SSG firewalls, Operating Systems and security configurations LAN/WAN/Security solutions.
• Extensive implementation of firewall rules on Juniper SRX 3600, SRX 3400, 650 SRX and SSG140 daily, using NSM.
• Coordinate with Network Engineering/ Planning team of Dimensional Data on their Data Center, to migrate to MPLS to improve delivery of services and new/emerging business requirements at various locations like New York, Texas, Los Angeles, Singapore and India
• Design, and Implementation MPLS VPNv4 (MP-BGP), including development of VRF & RD/RT Import/Export configurations
• Design, and Implementation Load Balancing and Application Acceleration Services.
• Implement and configure HSRP, IPSEC/GRE, FW/DMZ(Internal/external)
• Consult and negotiate with application owners, project managers, vendors, consultants, and contractors to design and implement network solutions.
• Perform network asset management, including maintenance of network component inventory and related documentation and technical specifications information.
• Make use of standard operating procedures and applications for service, change, and incident management.

Confidential, Denver, CO

Network Architect

Responsibilities:

• Responsible for implementing, supporting, and maintaining 24x7 network services.
• Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.
• Configured and troubleshooting HSRP, BGP, OSPF, EIGRP, MPLS WAN, QoS and Route Maps.
• Configured and maintaining Cisco 7200, 4400, 5000 and 6500 platforms.
• Troubleshoot connectivity issues involving VLAN’s, OSPF, QoS etc.
• Support, monitor and manage the IP network.
• Build and maintain a secure network for PCI network.
• Configuration system security parameters and protect cardholder data at rest.
• Protect sensitive data in transit and Implement tools to protect against malicious software and viruses.
• Develop and maintain secure applications PCI network Infrastructure.
• Knowledge of F5 TMOS Architecture including currently generally available software versions.
• Experience of F5 LTM and GTM hardware platforms including engineering design and deployment.
• Experience with configuring Nexus 5000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 7000.
• Hands on experience - troubleshooting, performance tuning, capacity planning, user management, client communication across multiple technology platforms.
• Experience in testing Nortal switches & Aruba in laboratory and deploy them on site production.
• Designed and managed LAN, WAN, VoIP and Wireless network including Cisco and Aruba.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Performance monitoring of various applications and web servers to maintain quality of service and network stability
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Maintained core switches, creating VLAN’s and configuring VTP.
• Designed IP Addressing schemes, VLAN tables and Switchport assignments, Trunking and Ether-channel implementation.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Gained hands on experience with VLSM, STP, VTP, VLAN Trunking.
• Installed and set up Cisco routers and switches according to deployment plans.
• Applied access lists and NAT configurations based on implementation guidelines.
• Managed and developed network projects designed to strengthen network continuity and deploy security elements in an attempt to meet and exceed contract requirements, including system analysis and troubleshooting.
• Change management, monitoring network performance with network tools.
• IP Distribution for existing devices and new devices as they were added.
• Preformed maintenance on equipment as necessary, performing device upgrades, modification of configurations, password changes and diagnostic testing.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in an event where a core router became unreachable.
• Responsible for maintenance of multiple CheckPoint-1 firewalls on NT environment
• Worked with vendors and Engineering team to test new hardware and procedures.
• Prepared and maintained documentation using MS Visio.
• Basic and advanced F5 load balancer configurations, general troubleshooting of the F5 load balancers.
• Route configuration and point code checks for System Technician and Network Technician.
• Knowledge and experience of 802.11 a/b/g/n Ethernet standard for wireless Technology.
• Worked with other team members in testing of the network architecture.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF and BGP etc.
• Upgrade multiple Checkpoint firewall and NG on distributed NT environment. And manage network security policies which include access control, NAT, content security and authentication.
• Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
• Perform network analysis using various tools like Wireshark and Solarwinds.
• Utilize Intermapper, WhatsUpGold SolarWinds, MRTG, and Network Device Expert for network monitoring
• Configured and Maintained SolarWinds, Broadcast Station Manager and CACTI to monitor and maintain data networks.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Experience in migration of VLANS.
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint, Cisco ASA other security products
• Installed various network hardware including concentrators, bridges, and hubs to establish communication connections with remote locations.

Confidential

Pre-sales Engineer Regional

Responsibilities:

• Hands on experience on Cisco Gold partner Tools experience and Tandberg telepresence
• Full solution BOM and Diagram for project submission and on active and passive including fail over redundancy using 6509 core switches and 3945 routers and Juniper security with F5 LTM 3600 with ASD Bundles Load Balance for Air Arabia Data Centre.
• Worked on a project for Arabtech - The entire 51 Floor network connectivity for 5000 nodes each floor using Cisco multi core switching solution 6807 switches for core switching and 3750X for distribution, 2960S for Access switches, ISR 1000X router for WAN connection, and ASA 5585 for internal and external security, F5-3600 LTM Load Balancer Network diagram, BOM, preparation for the both active and passive.
• Experienced with Websense, blue Coat, Riverbed, F5 Load Balancers LTM, Packeter, Cisco Video IP Surveillance
• Implemented Checkpoint GAIA R76 Interface, NAT and VLAN using Smart Dashboard
• Configuration, troubleshooting Checkpoint Firewall using R76 SmartView Tracker and Monitor
• Strong Knowledge and extensive experience on enterprise change management process and tools.
• Responsible for procurement and installation of Hardware, network drives and other IT infrastructure. Documented the design, implementation and troubleshooting procedures with Method of Procedure (MOPS).

Confidential

Sales Manager, Products

Responsibilities:

• Network Architect for datacenter consolidation project. Consolidated 16 global datacenters consisting of Cisco 6500, 4500, 2800, ASA 5540, F5 BIG-IP 3600. Consolidation was in preparation to upgrade datacenters to Nexus 7000, 5000, 2000, and ASR 1000 backbone infrastructure.
• Worked with other Network Services Project team members to complete the requested site/device refreshes on a per site basis (i.e. Coordinated with Design and Engineering, Field Engineers, Project Manager, etc),
• Worked for a project for US Navy Data Center and wireless solution for US Base - Us navy Project 3800 series cisco routers with 2 ASA 55520 through leased line and channelized connection PRI to RO to head office as ISDN as backup. Two 6500 Chassis and 24 No’s 3750 Distribution and 40 No’s of 2960 Access switches.
• Project for MoH (MOH College of nursing) 2800 routers and 4500 Chassis with HA .48 No’s of access switches Campus wide with 100 No’s internal and external Wifi access points with 4400 series controller) was handled.
• Operated as the remote Cutover Engineer directing and managing the Field Engineers for each of the site/device conversion events.
• Update the Configuration Management & Asset Inventory databases required to maintain our operational inventory and physical asset inventory records.

Confidential

Pre-sales Engineer

Responsibilities:

• Upgraded distribution Switches 6509 to Nexus 7010 with Sup 1.
• Providing design, technical support and analysis for network systems and components, LAN/WAN communications. Effectively communicates with all stakeholders.
• Experienced with CRS-1 and Alcatel-Lucent 7750 routers.
• Experience in the ISP, Wireline & Wireless Technologies
• Worked with service providers in Installing, Troubleshooting T1 and Switched Ethernet Service (SES) circuits. Experience in Configuring Site-to-Site and Remote Site VPNs, NAT/PAT policies
• Worked on Catalyst 6509 series with various line cards such as 24 port Gig E SFP, 48 port Gig E copper cards.
• Experienced with Honeywell TDC 3000 and DCS.
• Experienced in DDoS detection and mitigation
• Experienced in spirent tools -Agilent, Ixia and Spirent Test Center.

Confidential

Customer Support Engineer

Responsibilities:

• Completed a minimum of 171 cutovers within the first six (6) months as a benchmark within a ten (10) month project
• Maintained the data center equipment and software and performed regular troubleshoot on the process.
• In-depth experience with multiple IDS (Intrusion Detection System) packages such as Sourcefire 10/100 and GigE appliances and Snort.
• Initiated and Contributed to specification changes, in the Network layer of ZigBee Protocol.
• Worked with configuring and troubleshooting of HP 5500, 5900, 12500 series switches, Cisco 2900, 3500, 3500X, 3700, 4500, 6500 series switches and Cisco 7K (7010), 5k (5548) series nexus switches and Nortel switches.
• Worked on 501 Cisco PIX Firewall and 5500 series Cisco ASA Firewalls, CSM, IPSEC LAN to LAN and DMVPN.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Experienced in OTN/ROADM Technologies and Optical EMS.
• Experience with DWDM, OTN, SONET test equipment.
• Upgrade 12K GSR’S running IOS to IOS-XR.
• Provided support for incidents with PLS (Port Level Security) by working on platforms Juniper's Infranet Controller, Greatbay's Beacon Profiler/Auth-servers and Beacon Collectors.
• Provided in depth analysis using but not limited to Vitalnet, NetQoS, Net screen Manager (NSM), Wireshark, Netcool Monitoring and Infinistream Management Console.
• Participate in design conferences, produce network diagrams and detailed network documentation including logical and physical diagrams as required. Maintain technical and vendor product information and assisting in establishing performance standards, policies and procedures for the enterprise.

Confidential

Customer Support Engineer Trainee

Responsibilities:

• Experienced in Netbrain 5.x in network troubleshooting and network mapping.
• Proven expertise in monitoring network using Infinistream and standard unix-tcp dump sniffer.
• Experienced in Brocade routing and switching.
• Experienced in Python and Linux environment for socket programming.
• Experienced in ILO and DRAC.
• Monitored SAN connectivity of CISCO 9513's, 9909's using Cisco Fabric Manager, and Cisco Device manager.
• Manage deployment and testing of code updates for wireless systems, such as WCS, WiSM, and WLC.
• Experienced in Aruba wireless.
• Experienced in URL filtering techniques.
• Experienced working with Netscaler VPX in application delivery services