We provide IT Staff Augmentation Services!

Sr. Network Engineer Resume

Farmers Branch, TX

SUMMARY:

  • CCNA CCNP CERTIFIED professional with over 8 years of experience in network design, implementation and support, Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
  • Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
  • Good understanding with QoS, PCP and MPLS with over 3+ years of experience.
  • Expertise in configuring and troubleshooting of Palo Alto, Juniper Netscreen & SRX Firewalls and their implementation.
  • Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
  • Working Knowledge of Cisco IOS, Junos & basic Nexus (7K, 5K&2K).
  • Switching tasks include VTP, ISL/ 802.1q, VLAN, Ether Channel, STP and RSTP.
  • Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, NSX, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
  • In - depth knowledge and hands-on experience in ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
  • Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
  • Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include Integration, configurations, support and maintenance of routers and switches.
  • Good understanding in FabricPath Spine and leaf Topology.
  • Well experienced in configuring HSRP, VRRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
  • Experience in installing and configuring DNS, DHCP server
  • Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series), KVM (kernel based virtual machine) switch, Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700)
  • Have good knowledge in virtualization and hypervisors like VMware
  • Have good knowledge in MPLS VPN cloud and can be able to configure CE and PE using protocols like eBGP and iBGP.
  • Have good knowledge in MPLS VPN and can configure VRF’s on Customer Edge routers.
  • Expertise in installing, configuring and troubleshooting Juniper Routers ( J,M and MX-series)
  • Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
  • Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
  • Have experience in Active Directory tools.
  • Experience working with Nexus 7K, 5K and 2K.
  • Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
  • Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
  • Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS.
  • Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320, MX, EX, 2950, 2960, 3600, 3750, 4500, 6500, 1700,1800,2600 and 3700 series routers & Switches.
  • Troubleshooting & implementation of VLAN, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
  • Knowledge on complex Checkpoint, Cisco ASA & Palo Alto firewalls Environment.
  • Proficient in setting up IT infrastructure including wide area networks (WAN) local area networks (LAN), security management systems network device administration.
  • Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.
  • Implementation of DHCP, DNS, FTP, TFTP, Frame Relay, MPLS, ATM, software Defined Networking (SDN)
  • Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks.
  • IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.
  • Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.

TECHNICAL SKILLS:

Routers: Cisco 1700, 1800, 2600, 2800, 3700, 3800, 3900, 7200, 7600 series, ASR9k

Switches: Cisco 3550, 3750, 4500, 6500 series & nexus 7k, 5k, 2k, 1000v, 1010

Load Balancer: Cisco CSS, F5 Networks (BIG-IP)

WAN Optimization: Cisco WAAS, PPP Multilink

Routing: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing

Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN, Emulation

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Fiber Optic Circuits, Frame Relay, ISDN, MPLS, DMVPN

Voice: Cisco call manager 8.x, 7.x

IP Telephony: VOIP, ISDN, PRI, Unified Call Manager

Wireless: Cisco 4400 Wireless Controller (WLC) and 1100, 1200 series Access Points

Firewalls: Cisco PIX, ASA, Juniper Netscreen, Palo Alto, SRX, Checkpoint

Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management

Network Monitor Tool: MRTG, Netbrain & Solarwinds & Cisco Prime Infrastructure

Protocol Analyzer: Wireshark

Ticketing tool & Data: BMC Remedy 8 & Nlyte

Center Tool Security: Cisco ASA, Check point, Juniper SRX, Palo Alto

Operating System: DOS, Windows (95, 98, NT/2000, XP, Vista/7/8/10), Cisco IOS, Pan-OS

PROFESSIONAL EXPERIENCE:

Confidential, Farmers Branch, TX

Sr. Network Engineer

Responsibilities:

  • Responsible for managing and maintaining Data-center, DR and network Infrastructure. Respond to outages, user problems by triaging and troubleshooting, plan for Device & OS upgrades.
  • Have implemented OSPF within the four areas I administer. Setup Data-center and DR in area 0 and other regions in different areas.
  • Worked with PAN migration tool to migrate from to Palo-Alto. Initially started with Like to like migration and then manually configured polices like used id, app id, URL filtering etc. to take complete advantages of PAN devices.
  • Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure.
  • Communicated with Command Center Management to provide frequent status updates regarding change related technical issues and provide accurate status updates on the change remediation efforts.
  • Configured PA-5020, and PA-5050 to meet organizational requirements and industry best practices.
  • Worked on Panorama to manage multiple Palo alto firewalls from one central location. Constantly ensured Software Upgrades and Content Updates are up to date on those devices.
  • Worked on configuration of Anti-Virus, Spyware, Wildfire, APP-ID, USER-ID, and Global Protect on Palo-Alto devices. Also enabled Security Policy, URL filtering, Threat Prevention etc.
  • Implemented VDC, VPC, VSS, VRF and OTV on the Nexus 5505, 6500 and 7009 switches. Deployed Fabric Extender (FEX) 2248 for access layer.
  • Made changes to data center environment, setup Nexus 7k and 5k hardware in a VPC topology
  • Administered Cisco catalyst (6500, 4500), Nexus (2k, 5k, 7k), and Juniper (EX2300 EX3400) switches, enabled all L2 critical configurations like 802.1Q encapsulation, Port channels, VTP, VLAN, inter VLAN routing, etc.
  • Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and configure 2k, 3k,7k series Routers.
  • Gained abilities to take preemptive measures to mitigate DDoS attacks on Cisco and Palo alto Firewalls.
  • Expertise on configuring and maintaining SSL VPN's on Palo alto and Cisco ASA firewalls
  • Involved in migration from Site-to-site GRE tunnels network to MPLS-based VPN for customer's WAN infrastructure.
  • Took initiative to block traffic from rouge nations, also worked in blocking traffic from malicious sites as per the Information Security Systems guidelines using bluecoat proxies.
  • Completely administered and maintained F5 Big-IP (LTM and GTM) and Brocade Load balancers.
  • Worked with Quality of service traffic. Involved in QoS issues related to Policing, Shaping and queuing towards access and distribution level L2 and L3 devices.
  • Configured Cisco 6500, 4500 & 3750 Catalyst Switches for Network access.
  • Worked on configuring BGP, OSPF, EIGRP protocols on Cisco (7200, 3800), Juniper (MX240, MX280) series Routers, also enabled HSRP and VRRP protocols for redundancy.
  • Assisted in setting up new 510 and 810 Blue Coat Proxy SG units, performed one to many proxy migrations.
  • Worked with Aruba 7200,3600, series wireless controllers, Airwave Wireless Network Management System and clear pass servers. Setup ClearPass policy manager and ClearPass guest access manager to authenticate wireless users.
  • Set-up Tufin clusters in virtual environment, worked on monitoring tools like, SolarWinds & Splunk and Sniffing tools like WireShark
  • Worked on VMware ESXi 6.x with an emphasis on vSAN HCI environments. Windows Server 2003, 2008, 2012. Windows 7.
  • Worked with Infoblox IPAM and SolarWinds IPAM for IP address management

Confidential, Jersey City, NJ

Network Security Engineer

Responsibilities:

  • Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
  • Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS
  • Configured IPSEC VPN tunneling protocols including NAT, PAT and Access Control Lists.
  • Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
  • Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
  • Experienced in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
  • Assist Senior Network Engineer in the design and implementation of new VoIP platform using Open Source software (FreeSwitch).
  • Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
  • Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
  • Configured CIDR, IP, RIP, PPP, BGP and OSPF routing.
  • Implemented SNMP on Cisco routes to allow for network management. Completed the installation and Configuration of CSU/DSU, T1, T3 & OC3 circuits
  • Support various Databases using MySQL and MSSQL that are related to the VOIP network.
  • Maintain & prepare Network drawings of all major Data Centers & operational sites.
  • Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies
  • Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, NSX, from scratch to match design.
  • Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
  • Implemented and used SDM to configure Cisco IOS security features and network connection.
  • Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
  • Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) and etc.
  • Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
  • Datacenter upgrades from C6500s to Nexus 7k/5k/2k, double-VPC between distribution and access, single-VPC to servers
  • Responsible for all routing, switching, VPN, network security, and server load balancing.
  • Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing.
  • Implemented various EX, SRX & J series Juniper devices.
  • Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco ASA firewalls.
  • Very good Experience in using and maintaining various network monitoring tools like Solarwinds, Fluke, plunk.
  • Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
  • Has a good experience working with the Trouble Tickets on F5 Load balancers on LTM module
  • Implementation and maintained intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
  • Security policy review and configuration in Palo Alto and Juniper SRX Firewall.
  • Support Asterisk platforms used for ACD and Voicemail service as part of the VOIP network.
  • Working knowledge of the UNIX and CLI based command to implement the networking tools.
  • Configured and monitored Firewall logging, DMZ’s and related security policies.
  • Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all-around technical support of 24*7.
  • Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN.

Confidential, Philadelphia, PA

Network Engineer

Responsibilities:

  • Remote infrastructure management of offices in different locations nationwide.
  • Managing Co-location and Datacenter infrastructure.
  • Troubleshooting and escalation management of day-to-day issues for offices.
  • Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
  • Security policy review and configuration in Palo Alto and Juniper SRX Firewall in Confidential and Datacenter. Troubleshooting of CISCO routers like ping, trace route and basic issues.
  • Configuring, testing, troubleshooting multiple vendor device platforms like Cisco routing and switching: Cisco ASR9010, ASR901, ASR903, Catalyst Cisco 7609, 2960, and Juniper routing and switching devices: MX960, MX 480 and SRX5200, ACX2200, NSX, ALU service aggregation router: 7705 SAR 8 and 7750 service routers.
  • Maintained, configured, and sustained the Cisco VoIP network.
  • Ensure connectivity and communication among networks, servers and clients inside and outside department.
  • Involved in the redesign of the routing architecture while replacing the 6500’s edge routers with ASR 9K routers in the data centers
  • Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
  • Installed controller and light weight access point coordination with JTAC.
  • Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multilayers Switching.
  • IOS upgrade for Cisco routers & switches.
  • Responsible for DNS, and TCP/IP support.
  • Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
  • Strong experience in designing, implementing and supporting Cisco VOIP technologies.
  • Integrated, Integration and trouble-shooting of routing protocols like static and dynamic.
  • Implemented site to site VPN in Juniper SRX as per customer.
  • Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 Big IP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
  • Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
  • Operations and management of company LAN, WAN, and wireless networks, including routers, switches, Access Points, Firewalls and other network i.e. Riverbed, Bluecoat, F5 LTM/GTM.
  • Configure networks to ensure their smooth and reliable operation for fulfilling business objectives and processes.
  • Designed and deployed hosted network and security infrastructure supporting a single vSphere cloud across two geographically dispersed data centers in 10 days
  • Designed and maintained the VLAN architecture, IP address scheme, security architecture, security policies, OS hardening, ADS architecture, and DNS Name Space across a globally dispersed infrastructure.
  • Procured, installed, configured, and maintained Cisco switches, Cisco routers, ASA/PIX firewalls, Checkpoint Firewalls (on Sun Solaris hardware), f5 BigIP Load balancers, Nortel VPN Hardware, Avaya Firewall/VPN Hardware, and Dell Windows 2000/2003 Servers.
  • Regular upgrade and maintenance of Infrastructure including Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
  • Monitor network performance and troubleshoot problem areas as needed.
  • Conduct research on network products, services, protocols, and standards to remain abreast of developments in the networking industry.
  • Create and maintain documentation and Visio diagrams as it relates to network configuration, network mapping, processes, and service records.
  • Ensure network connectivity of all servers, workstations, telephony equipment, fax machines, and other network appliances.
  • Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies
  • Responsible for creating and maintaining Microsoft VISIO diagrams and MS WORD documentation of network systems

Confidential

Network Administrator

Responsibilities:

  • Responsible for Configuring SITE TO SITE VPN on Cisco ASA 5500 series firewall between Head office and Branch office.
  • Installation & configuration of Cisco VPN concentrator 3060for VPN tunnel with Cisco VPN hardware & software client and PIX firewall.
  • Designed and implemented F5 Big IP load balancers that resulted in improving application performance.
  • Configured Firewall logging, DMZs& related security policies & monitoring
  • Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
  • Performed and technically documented various test results on the lab tests conducted.
  • Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series
  • Worked on Cisco Layer 2 switches (spanning tree, VLAN).
  • WAN Infrastructure running OSPF & BGP as core routing protocol.
  • Support various Routers like 2600/3600/7200 series routers.
  • Configured and Install F5 New Virtual Servers, Profiles, IRules, Pools, Nodes, Generate CSR Certificate, SSL Certificates Etc.,
  • Tested authentication in OSPF and BGP.
  • Actively participated and completed many projects based on MPLS VPN, Internet Solutions for corporate customers in COLT.
  • Responsible for troubleshooting complex networking issues in service provider MPLS & internet Backbone.
  • Hands on experience working on Cisco 7600, 12K, ASR routers & Juniper MX series and Juniper BRAS.
  • Actively participated Implementation and customization of customer network.
  • Designing, Provisioning and Installation of the Customer Sites in Oracle IPSA for MPLS Backbone.
  • Implementation and testing of ISDN BRI/PRI circuits.
  • Responsible to troubleshoot the connectivity between CPE router and the COLT's edge router (SAR).
  • Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and POS controllers for STM1 links.
  • Worked closely with RIR (Regional Internet Registry) to procure PI (Provider Independent) and PA (Provider Aggregately) IP addresses and AS numbers for COLT and customers.
  • DNS Zone administration for 13 countries across EU for COLT customers.
  • Set up DNS Reverse Delegation according to RIPE rules in RIPE Database.

Confidential

Jr. Network Engineer

Responsibilities:

  • Designing private network and maintaining the hardware, software installation & configuration.
  • Designing and implementation of routing policy for customer internet route with link utilization.
  • Configuring the routes like default, static routing and dynamic routing in the devices.
  • Involved in Local Area Network design, troubleshooting and maintenance as per requirement.
  • Creating and Maintaining the Network stability on VLAN, LAN and WAN.
  • Troubleshooting issues related to VLAN, VLAN- Trunking, and STP.
  • Involved in implementation of Trunking Encapsulation IEEE 802.1Q and ISL on Cisco catalyst switches L2, L3
  • Designing the VLAN along with INTER- VLAN routing.
  • Configuring Cisco routers 26xx series using OSPF and EIGRP.
  • Configuration to different applications with RSTP, VTP, VTP Pruning.
  • Redistributing from OSPF to RIP and vice versa by implementing hub and spoke topology with a Frame Relay Switch in between.
  • Troubleshooting TCP/IP problems troubleshoot connectivity issues in multiprotocol Ethernet.
  • Configuring static Nat, dynamic Nat and Nat pooling.
  • Designed the network with sustainable IP using SUBNETTING like FLSM, VLSM.

Hire Now