SUMMARY:

• Over 7 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN communication systems.
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, and Ether-channel.
• Switching tasks include VTP, ISL/802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
• Experienced in VOIP calling features and highly proficient in SIP call flow scenarios
• Switching related tasks included implementing VLANS, VTP, RSTP, STP and Port security.
• Configured VSANs and zoning on Cisco MDS 9506 switches and migrated VMWare ESXi hosts to the Nexus 1000v distributed virtual switch.
• Experienced in handling and installing Palo Alto Firewalls and Integrated Palo Alto next-gen firewalls with overlay VMware NSX SDN network.
• Performed EIGRP, OSPF & BGP routing protocol administration.
• Maintain and configure HSRP & VRRP for consistency on all VLAN's across a redundant Core.
• Maintain a thorough understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, Email Routing etc.).
• Performed IOS upgrades on various models of IP Internetworking layer 2/3 switches
• Experience in configuration of Checkpoint 600, 1100, 4800, 12000 appliances and Checkpoint clusters.
• Efficient in preparing technical documentation using Microsoft office and Visio.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco Nexus 7k, 5k, 2k, Cisco 7600, 7200, 3800, 3850, 3900, 2800, 2900 series Routers, Cisco Catalyst 6500, 4500, 2960 switches, 3750, 3850 Stack Switches.
• Demonstrated experience in developing, implementing, auditing Checkpoint firewall (R77.30) configurations and analyzing, optimizing rule sets.
• Experience with configuring DMVPN tunnels for the MPLS and ISP clouds, which are responsible for Transport Independent Design of IWAN.
• Strong Experience in using various tools for management, analyzing, and troubleshooting, monitoring & process automation in Lab & Production environment
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Highly motivated with the ability to work independently or as an integral part of a team and Committed to highest levels of professional.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experienced in facing the Bluecoat and Palo Alto product lines, up to pre-sales type of function
• Configuring and troubleshooting different Cisco ASR's like 1002, 1013, 3750, 3850, 4510 and 9K routers.
• Knowledge on AAA authentication servers such as TACACS+ and RADIUS.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550)
• In-depth knowledge on Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS.
• Expertise in structured cabling, IP address management, Racking, Stacking, UCS management.
• Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
• Experience in installing and configuring DNS, DHCP server
• Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7 Network Operation Center

TECHNICAL SKILLS:

Network Configuration and Troubleshooting Protocol: BGP, EIGRP, OSPF, Access Control Lists (ACL), Network Address Translation (NAT), Cisco Discovery Protocol (CDP), Port Address Translation (PAT)

Switching Technologies: VTP, Spanning Tree 802.1d, 802.1w, Rapid-PVST, VLAN, Inter VLAN, 802.1q Trunking, Port-Channel(PAGP/LACP) HSRP, VRRP, GLBP (Load Balancing)

Networking Tools: WhatsUp Gold, Solar Winds Orion, HP open view, NMS, Manage engine firewall analyzer, Spice work etc.

Operating System: Windows2008/ 2003 Server Windows 8 / 7 / Vista / XP / 2000 / 9X, Microsoft Office 365 (Cloud), 2013, 2010, 2007, 2003

Network Products: Cisco Switches 1900, 2950, 2950, 2960G, Switches 550XL, 4500/6500 Nexus 7k/5k/2k

Cisco Routers 800, 1600, 1700, 2500, 2800, 3600, 3800, 7600 Series

Firewalls: Cisco ASA (5585/5550/5520/5510/5505 ), Pix (535/525/515), Juniper (SRX 3600/650/210 , Net screen 500), Palo Alto (PA3020, PA5020).

Servers: Domain Servers, DNS Servers, Proxy servers, Print Servers, Application Servers, FTP Servers

WAN Technologies: Frame Relay, ISDN, PPP, Leases Lines, Cable modem, DS1, DS3, T1, T3

F5load balancers: F5 BigIP 1500, 3400 LTM, GTM 5, and F5 3DNS Load balancer GTM

PROFESSIONAL EXPERIENCE:

Confidential, Clearwater,FL

Network Engineer

Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4 .
• Configured and involved in troubleshooting with L3 and L2 Ether channel
• Performed Cisco ISE deployments on mid to enterprise projects.
• Installed, configured, and maintained Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) , Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) , Juniper Routers.
• Possesses a thorough understanding of SIP and H.323 VoIP signaling protocols.
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Created, deployed and managed BigIP F5 load balancer nodes and pools
• Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals. Good at Routing Protocols like EIGRP, OSPF, BGP, DMVPN, and Wireless
• Managed IP addressing and implemented IP Access Lists.
• Worked extensively on Cisco Firewalls, Cisco PIX &ASA 5500(5525/5585), Palo Alto 200 Series.
• Experience with Firewall Administration , Rule Analysis, Rule Modification.
• Configuration and administration of Cisco Switches and Routers 3900/2900/7200.
• Installed and maintained network hardware and software. Managing Palo Alto firewall.
• Configured with F5 Load balancers in Failover for Load balancing and SSL handling
• Involved in the migration of F5 3DNS to Global traffic manager (GTM) for the wide area-based load balancing environment of the datacenters
• Support third party technologies within the ACI ecosystem such as VMware ESX, OpenStack
• 24x7 on-call escalation support as part of the security operations team.
• Developed PowerShell scripts to automate various tasks in Exchange 2010 and 2013.
• Implemented PowerShell scripts that automated creation of contacts from Active Directory users and updating of address books -increasing productivity and efficiency.
• Managed the large security, risk and compliance initiatives of SOX-404 IT, PCI DSS and HIPAA/HITECH, Privacy Act, FFIEC, FTC including security policies, procedures and controls.
• Extensive hands on support of F5 Products including AFM, ASM, LTM and APM.
• Modified BigIP F5 Load Balancer config for new servers, also configured firewalls.
• Worked with setting up MPLS Layer 3 VPN cloud in data center and worked with BGP WAN towards customer
• Involved in SNMP Network management .
• Cisco Call Manager and VOIP Maintenance and setup
• Part of IT security professionals and identified the security gaps relating to HIPAA and PCI DSS.
• Bridging/Switching & 802.x protocols knowledge, ( MPLS, STP, RSTP,802.1x, 802.3)
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall .
• Involved in design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls .
• Worked in Switching technologies like VLAN, Inter-VLAN Routing , Ether-channel, VTP, MLS, HSRP, VRRP.
• Aruba S-3500 mobility access switch/ Azalea MSR wireless mesh routers (1200/2000/4000 )
• Managed corporate Checkpoint Firewall implementing security rules and mitigating network attacks.
• Involved in writing test plans for different 802.3 & 802.11 protocols.
• Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1

Environment: LAN, WAN, IWAN, MPLS, Cisco ASA, HSRP, VRRP, GLBP, VLAN, OSPF, EIGRP, BGP, TCP/IP, STP, PVST, RSTP, VTP, F5loadbalancer, NAT, Cisco ASA firewalls, VoIP, Palo Alto Firewall, SSH, Syslog, SNMP, NTP, Solarwinds, Netflow, NetBrain and Infoblox VPN.

Confidential, Dallas, TX.

Network Engineer

Responsibilities:

• Installed, configured and maintained of Cisco 7206/3660/3640/2600/2500 series routers.
• Configured Cisco 6500, 4500 & 3750 Catalyst Switches for network access. Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability
• Configuration of security policies in Net screen and Checkpoint.
• Solid understanding and experienced in VoIP systems and related protocols including H.323, SIP
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches
• Troubleshooted and implemented VoIP/SIP, RTP (SRTP/RTCP, H.323, H.263/H.264, and SIP), Provisioning, Trunk, PSTN and ISUP, Performance, Charging, Packet Switching & Core Switching, OSS/NOC, RAN
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls .
• Strong experience in creating firewall policies as per the requirements on Palo Alto firewalls.
• Knowledge of working with TRILL and SPB protocols for ACI Fabric Layout with Leaf-Spine topology.
• Part of team to identify the security risks relating to PCI DSS.
• Provided guidance on PCI DSS requirements . Enabled and assisted internal business units to build and maintain PCI certified systems and infrastructures.
• Configure NAT such as Dynamic, Static, and Manual NAT policies as required for user traffics going out to the internet.
• Implemented and validated various cloud solutions based on Cisco and 3rd party products such as Cisco ACI. Nexus 9K/7K/1Kv, CSR1000v, ASAv, vWAAS, Netscaler 1000v, UCS VMware vSphere and NetApp.
• Configure URL filtering to enable and/or disable user traffic access to unauthorized web sites.
• Configure new routes for new endpoints into Palo Alto Firewalls .
• Managed Palo Alto Firewalls from the command line interface.
• Extensive Packet level debugging and troubleshooting on Palo Alto Firewalls to resolve numerous network issues.
• Involved with companies to implement Python programming and train on-site Python Programmers
• Capture the packets in SSL Session send between Server and Host on Wireshark while purchasing an item.
• Manage user authentication, authorization and posture assessment utilizing Cisco Identity Services Engine (ISE)
• Building, configuring, maintaining, troubleshooting firewalls. Develop & implement the company's security policies, rules implementation. Coordinate lab testing of new software to ensure stable implementation.
• Planned, installed, monitored and was the single point of contact for all intrusion detection for client systems. Monitored and maintained client firewall, intrusion detection systems and VPN systems including (Checkpoint FW-1/VPN-1/Cisco PIX/SecureVPN /SecureIDS).
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Provide Information Security Risk Assessment and consulting for internal projects
• Primarily worked on the Border Gateway Protocol (BGP) and L3VPN technologies for both core and edge routers like the Carrier Routing System (CRS-1), C12K and ASR9000 routers running IOS-XR which is one of the most complex scalable distributed operating system
• Performed technical support for Windows 7/8/10 operating systems on various workstations
• Involved in designing, implementing and supporting Cisco VOIP technologies.
• Involved in Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP , Spanning Tree, 802.1q , etc.
• Provide on-site repair, maintenance, and upgrade services for HP press
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Effectively evolved with the quickly advancing Azure platform and its capabilities.

Environment: 6500/3750/3550/3500/2950 switches, Juniper (M320, T640),LAN, WAN, IWAN, Nexus 7k/5k/2k Routing protocols, Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, VoIP, OSPF, BGP, VPN, MPLS, Ether Channels, NMN (Network Node Manager)

Confidential, San Jose, CA

Network Administrator

Responsibilities:

• Configured Cisco 2911, 2921, 2951 routers , Cisco switches, Cisco 5520 Firewalls , Cisco Wireless LAN controllers and Access Points, Brocade VDX and ICX switches, Force 10 C300 switch, Fortinet F600 firewall , Windows 2008 & 2012 servers. Installed and created Vlans and VPCs for Nexus 5K
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505.
• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices .
• Involved in importing the ASA rules to Palo Alto Networks Firewall rules
• Responsible for Checkpoint firewall management and operations across our global networks.
• Maintained, configured, and sustained the Cisco VoIP network
• Worked with Cisco ASA and ASR Firewall .
• Provided Tier III troubleshooting support, in ACD, Call Recording, CTI, SIP Trunk. Complete familiarity with Avaya CM platform products.
• CheckPoint Management server HA for fail-over for network management reliability.
• Firewall security policy implementation and monitoring
• Firewall traffic tracking using tcpdump and fw monitor for packet capture and analysis
• Well experienced in configuration of Cisco routers and switches for packet routing and switching.
• Experience in network intrusion detection/intrusion prevention systems and firewalls
• Managed Checkpoint Cluster Firewalls in Provider1 environment.
• Extensive Packet level debugging and troubleshooting on Palo Alto Firewalls to resolve numerous network issues
• Delivered technical expertise in supporting NetApp storage and VMware VSphere environment
• Worked with other engineers to redesign DMVPN infrastructure for branch site connectivity.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Involved in updating the F5 wide IP configurations, persistence profiles, updating the SSL certificates across the F5 devices for the resource updates.
• Review network change settings to make sure access interface settings and appropriate uplink to help QoS and VoIP
• Created, deployed and managed BigIP F5 load balancer nodes and pools
• Configuration and troubleshooting L3 switches with VLAN, STP, SPAN, ETHERCHANNEL, HSRP, VRRP and GLBP
• Reproduced customer issues with Azure test environment to verify the integrity of solutions prior to deployment.
• Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using Wireshark protocol analyzer and recommended solution for better performance.
• Responsibilities as a NOC technician include develop, implement and maintain the solutions that support and help the company’s wireline and wireless networks.
• Installed and configured Cisco Catalyst 3550, 3750, 4500, and 6509 switches .
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Worked with Checkpoint Support for resolving escalated issues
• Install, configure and maintain Palo Alto PA200, PA220, PA500, PA3020 and PA5020.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls.
• Migrate from Cisco ASA Firewall to Palo Alto Firewall using PAN 3.0 tool.
• Strong experience in creating firewall policies as per the requirements on Palo Alto firewalls.
• Configure new routes for new endpoints into Palo Alto Firewalls .
• Managed Palo Alto Firewalls from the command line interface.
• Extensive Packet level debugging and troubleshooting on Palo Alto Firewalls to resolve numerous network issues.

Environment: Cisco Routers, Cisco Switches, Nexus 7k/5k/2k Routing protocols, F5, Load Balancer HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA firewall, Load balancer, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, SIP, RTP, RADIUS, TACACS+, Juniper SRX 240, ASR 9000, Catalyst 6500, Wireshark, Check point R77, Blue coat proxy server, Symantec Endpoint protection.

Confidential

Network Administrator

Responsibilities:

• Configuring and troubleshooting multi-customer ISP network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with MPLS, BGP, EIGRP, OSPF and RIP protocols) technical issues.
• Providing support to networks containing more than 2000 Cisco devices.
• Commissioning and Decommissioning of the MPLS circuits for various field offices.
• Preparing feasibility report for various upgrades and installations.
• Deployed Cisco ACS using TACACS+ for Authentication, Authorization and Accounting of access to network devices
• Installed and configured SolarWinds server.
• Configuring IPsec VPN Site-site, GRE Tunneling and SDM along with troubleshooting.
• Optimized OSPF and EIGRP network reducing network multicast traffic
• Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds

  Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.

• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks .
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Implementing & Troubleshooting of T1, MUXES, CSU/DSU and data circuits.
• Experience on designing and troubleshooting of complex BGP and OSPF routing problems,
• Involved in configuring IP Quality of service (QoS)
• Have experience with Cisco Works LAN Management Solution
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
• Configuration of switches with VLAN trunk setup for co-location networks.

Environment: Cisco 6505/4500/3550 Switches, Cisco 6500/7500/7200 Routers, LTM, GTM, F5 Load Balancer, ASA, OSPF, BGP, EIGRP, RIP, LAN, WAN, SSL/VPN, HSRP, VLAN Trunking.

Confidential

Network Engineer

Responsibilities:

• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Project managing complex network implementations, including Cisco PIX firewall and Cisco Intrusion Detection System installation, Cisco VPN and Layer 3 implementations.
• Involved in migration of ACE 10 and ACE 20 to ACE 30 module.
• Implementing NAT solutions on Cisco IOS routers.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Providing Technical Support and solutions for Network Problems. Hands on Experience in Inter-vlan routing, redistribution, access-lists
• Involved in all technical aspects of LAN and WAN projects including, short and long-term planning, implementation, project management and operations support as required
• Working knowledge of Terminal server and the configurations
• Utilized Wireshark, NMAP and Command Line Prompts on a daily basis