PROFESSIONAL SUMMARY:

• Over 7+ years of experience as a Data Network & Security Engineer with expertise in design, development, implementation, troubleshooting and maintenance of Network & security environments with mixed vendors Routers, Switches Firewalls, Proxy, VPN's, IPsec, NAT, Load Balancer's, and Nexus Switches.
• Expertise in design, configuring, supporting and administrating Data Centers, Cisco routers, switches, Nexus switches, Load balancers (F5) and firewalls.
• Strong hands on experiences Cisco Routers 4300, 4400, 4500, 2900, 3800, Switches 3850, 4500, 9300, 9400, 9500, 6500, 6800 series.
• Hands on experience in installing, configuring and administration of Firewalls including Cisco PIX, Cisco ASA, Checkpoint, Palo Alto and Load Balancers like Big - IP F5 (LTM and GTM).
• Knowledge on Juniper SRX220, SRX240 and SRX550, Fortinet 200D series firewalls.
• Expertise in installing, configuring and troubleshooting Juniper Routers (MX-480, MX960) and Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200) series.
• Experience with design and implementation of Virtual Switching System (VSS) for both User segment and server segment using 6509 catalyst switches.
• Proficient in Cisco IOS installation, upgradation and Configuring, Troubleshooting routing protocols like RIP, EIGRP, OSPF, BGP (E-BGP, I-BGP).
• Integrating Symantec DCS with NSX, providing server hardening.
• Expertise in configuring and troubleshooting complex layer 2 technologies such as VLANs, VTP, Ether Channels, Spanning Tree Protocol STP, RSTP and MST and redundancy protocols like HSRP, VRRP, GLBP.
• In depth knowledge and experience working with other protocols like TCP/IP, OSI model, DHCP, DNS, SMTP, IMAP, FTP, WAN, LAN, NAT, PAT, ACL, VLANs, Trunking using 802.1Q, IPv4, IPv6, LDAP, HTTP, HTTPS, UDP, VOIP, QOS.
• Expertise with IP subnetting, VLSM, CIDR.
• Proficient in implementing and troubleshooting LAN/WAN technologies.
• Worked on the migration to new Checkpoint R7x firewalls from Cisco ASA firewalls.
• Experience configuring SDH and SONET in the WAN environment
• Strong hands on experience withlayer - 2 and layer - 3 configurations, troubleshooting and dealt with Nexus models like 7k, 5k and 2k series in data centers.
• Configuration and Maintenance of ASA 5580, 5540, 5520, 5510, PIX 535, FWSM Firewalls.
• Vast experience working with configuring and maintaining security firewalls like ASA, Checkpoint, Palo Alto, Blue coat and expertise in VPN's, SSL etc.
• Worked in data centers and proficient with configuring and supporting Nexus switches, Fabric Extenders (FEX), VPC and OTV.
• Excellent knowledge and experience on multi-vendor platforms like Cisco, Juniper, Checkpoint, F5 Big-ip LTM load balancers, Bluecoat, Riverbed, Citrix, and VMware.
• Experience in Implementing, Maintaining, and Troubleshooting L2 Switching tasks: VLANs, VTP, VLAN Trunking (ISL/802.1Q), STP, RSTP, PVST, PVST+, CST, CEF and DCEF.
• Experience in T1/E1/T3 technologies and different LAN & WAN technologies.
• Managed F5 BigIP GTM/LTM load balancer appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Planned and worked on design with Network team to Re-architect F5 load-balancers to load-balance traffic anywhere in the company network.
• A good knowledge on operational aspects load balancing & WAF devices.
• Actively participated in upgrading Fast Ethernet, Layer 3 switched/routed LAN Infrastructure from Cisco 3640 to Cisco 2811 ISR Routers and Switches at access level to 2950, 3550.
• Well understanding of Cisco UCS and M-Series Modular servers to enable centralized management of highly scalable system and to Speed-up IT operations.
• Worked extensively in Configuring, Monitoring and Troubleshooting Checkpoint security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design.
• Hands on Experience on security devices and firewall infrastructure under enterprise level network.
• Extensive hands on Experience with Complex routed LAN networks, CISCO Routers and Switches.
• In-depth expertise in the Analysis, Implementation, Troubleshooting & Documentation of LAN/WAN architecture and good experience on IP services.
• Basic Experience with configuring and Managing on Snort and Suricata detection systems.
• Experience through Hands-on Experience with Configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay.
• Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
• Configured SolarWinds Orion NPM and used it to monitor traffic on a network.
• Extensive experience in Configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Well experienced in Configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in Installing and Configuring DNS, DHCP server.
• Experience with Infoblox DNS, DHCP, IPAM and reporting server.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Excellent communication skills, enthusiastic, motivated and a team player.
• Experience in installing and configuring DNS, DHCP server.
• Experience with Change management process and Project documentation tools like Excel and VISIO.

TECHNICAL SKILLS:

Routing Technology: RIP, RIPV2, IGRP, EIGRP, OSPF, BGP, TCP/IP, Static and Dynamic Routing.

Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800. CISCO High End Routers 3600, 3800, 7200, 12010, 12404. CISCO Switches 1900, 2950, 2950, 2960G. CISCO Campus Switches 3550XL, 4948 Core Catalyst 4503, 4507 RE, Catalyst 6500/6503/6507, Nexus 5000 series

Antivirus & Endpoint protection: Cisco CSA, Symantec Enterprise Edition, MacAfee Enterprise Edition.

Security & VPN: PIX 500 Firewall, ASA 5505 Firewall, AIP SSM, CSC SSM, FWSM, Fortigate, Cisco CSM, ACL-Access Control List, IPS/IDS, NAT, PAT, Cisco ACS, Juniper NetScreen firewall, PaloAlto Firewalls, Windows Patch Management (WSUS).

LAN Technology: Workgroup, Domain, HSRP, DNS, DHCP, Static, VLAN, STP, VTP, Ether Channel, Trunks.

WAN Infrastructure: Leased Line, ISDN/Dial-Up, Frame Relay circuits, Metro Ethernet.

WAN Technologies: HDLC, PPP, ATM, SONET, MPLS, VPN, IPSec-VPN.

Wireless & WiFi: Canopy Wireless Device (point to point/point to multipoint), DLink Wireless (point to point), DLink Access Point, CISCO 1200 series Access Point, and Linksys Wireless/Wi-Fi Router.

Operating Systems & Tools: Cisco IOS, Open IDM, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Outlook 365 administration Windows XP/Windows 7/8, LINUX, Solaris, Active Directory, Apache Server, MS Exchange server, Tufin, AlgoSec, Skybox, Identity Access Management, GRC, veritas Volume Manager, Amazon EC2, Rackspace, Microsoft Azure.

PROFESSIONAL EXPERIENCE:

Confidential, Santa Clara, California

Sr. Network Engineer

Responsibilities:

• Installation & Configuring of Cisco 6500, 4500, 2800, 1800 and 1700 series router.
• Installed and configured DNS, DHCP Client/Server.
• Worked on Extensively on Cisco Firewalls, Cisco ASA 5500(5510/5540) Series.
• Gathering application information which are using Splunk tool and analyze their bandwidth traffic.
• Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms.
• Responsible for developing and deploying Solar Winds which includes WAN/LAN and server monitoring.
• Reporting, and alerting and Configure Orion alerts.
• Implemented inter-VLAN routing (on Juniper EX 3300 and EX 3400 switches) among the VLANs to allow.
• Projects on Network design, Installation, troubleshooting and suggesting them suitable backup system.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Building configurations for Juniper EX 3300 and EX 4200 switches with features like port security, VLANS, VTP, and PVST+.
• Accountable for ensuring the data center operations meet the functionality and reliability to meet customer Service Level Agreements and expectations.
• Configuring STP for switching loop prevention and VLANs for data and voice along with configuring port security for users connecting to the switches.
• Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP).
• Expertise with Installation, configuration and troubleshooting of Cisco Routers (ASR 9K, NSX 5K, Meraki MX84, CISCO ISR 1K, 7600, 3800, 2800, 2600, 1800 series). and Juniper Routers (MX, PTX, T4000-series)
• Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others.
• Monitors data center devices, equipment's (HVAC, Servers, other devices) local & remote sites
• Provide visibility and support to the Facilities team when monitoring the Data Center requests.
• Configured Checkpoint and Cisco ASA firewalls to secure the infrastructure for the Data Center.
• Configured VDC (Virtual Device Context) for Nexus 7010 Switch.
• Experience with industry recognized SIEM solutions such as ArcSight, Splunk, LogRhythm, AlienVault, etc.
• Perform monitoring and support of internal network security.
• Provide support to internal users and external clients on various hardware and software issues.
• Implemented rules on Juniper SRX 550 at the server farm.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Provided firewall policy configuration and services with Juniper SRX 240 & 650 service gateways.
• Configuring various advanced features (Profiles, monitors, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Worked on physical and virtual networks to provide functionality on additional layers on VMware NSX.
• Monitoring servers like domain controllers, exchange servers and connectivity.
• Managed network connectivity and network SSL Security, between Head offices and Branch office.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for SSL Security Settings of the networking 3750 devices (Cisco Router, switches) co-coordinating with the system.
• Understanding the JUNOS platform and worked with JUNOS upgrade of Juniper devices.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Used load balancers ACE and load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Performed migration of Cisco ACE/GSS onto F5 LTM active/passive pair.
• Troubleshoot on security related issues on JUNIPER SRX/PIX, Checkpoint and IDS/IPS.
• Environment: Router series (2800, 3800, 7200) and switch series (3750, 3550, 4509E, 6509E), SRX 550firewall, Palo Alto (PA-4000/PA-2000), Juniper EX, Routing Protocols (EIGRP, OSPF, ISIS, BGP), Switching protocols (VTP, STP), Site to Site VPN, Remote Access VPN.
• Performed IOS upgrades/Password recover on 2900, 3500 series Cisco Catalyst switches and 1800, 2600, 3600 series Cisco routers using TFTP.
• Implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, and Ether channel, STP, RSTP and MST.

Environment: Cisco routers Series 7200/7600/3800, ASR 7000/9000; Cisco catalyst switches 6500/5000/3500/2950 and Nexus 7K; Juno OS, Cisco PIX Firewalls 535, 525 Routing Protocols OSPF, BGP; VPN, MPLS, HSRP, GLBP, Big-IP F5 LTM Load Balancer, ACE 4400, Ansible, Python scripting, Wireshark, PowerShell, Cisco Works, MS Visio, Cisco ASA and Palo Alto firewalls, Blue Coat Proxy.

Confidential

Security Network Engineer

Responsibilities:

• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented Cisco Wireless Access Points and WLC’s at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Experience in working with Cisco Nexus 5000 series switches for data center.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.
• Installation and Configuration of various types of Personal Computers and Printers. Installation of different operating systems on Intel based PC's.
• Installed Hard disks, Floppy drives, CD Drives, Sound Blaster cards, CPU, Memory, Power supply unit, Network card, Video graphics card, Hard disk controller card on PC systems.
• Troubleshooting of personal computers. On line Support to customers concerning their computer problems.
• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
• Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuring Vlan’s, VTP’s, enabling trunks between switches.

Environment: ASA Firewall, VLAN, HSRP, VTP, OSPF, EIGRP, BGP, Juniper, MPLS, CISCO 3750, 4500, 6500, DMZ.

Confidential

Network Engineer

Responsibilities:

• Maintaining mission-critical networks and ensuring the IT operations of the customers to be uninterrupted.
• Troubleshooting network problems, vendor co-ordination and IP resource management, providing technical support for customers.
• Implementing Application Servers and Web Servers for Network Operations Centre & managing IP Address Management.
• Ensuring optimum usage of Bandwidth & configuring Netflow and to identify network traffic flow.
• Monitoring and testing network performance and providing network performance statistics and reports.
• Providing Level3 Support for Firewalls, Leased Line and Radio Frequency Corporate Customers.
• Configuring and Maintenance Static routes, RIP, OSPF, Load Balancing with Backbones and Shaping Customers Traffic.
• Implementation of customer network, which includes configuration of routing protocols, Leased lines, ISDN lines, IOS installations and Password recovery.
• Configuration of RF devices such as Subscriber Units and Access Points and trouble shooting of customer WAN issues.
• Preparing Incident reports, Network diagrams and documentation of all the work for ISO certification and future reference purposes.
• Troubleshooting of customer WAN related issues (Modems, SUs, and Routers & Switches).