SUMMARY:

• 7 years of Experience and having multiple Certifications Cisco (CCNA&CCNP) in designing, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
• Strong hands on experience in layer - 3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like ASR 9K, ASR 1K, 7200, 3900, 2900, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3850, 3750, 3500, 2900 series switches
• Working on Cisco IOS, Junos & NX-OS (7K, 5K&2K).
• Strong hands on experience on ASA (5505/5510/5540/5585 ) Firewalls, Juniper (SRX 110/210/220/550 ).
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Worked aggressively on complex Palo Alto firewalls Environment.
• Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include installations, configurations, support and maintenance of routers and switches.
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS
• Diverse industry exposure - Finance, Telecom, and IT consulting Markets.
• Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320, MX, EX,2950,2960,3600,3750,4500,6500,1700,1800,2600 and 3700 series routers & Switches.
• Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Experience configuring & troubleshooting routing protocols like RIP, OSPF, BGP, EIGRP.
• Hands-on experience with Juniper SRX - Juniper SSL VPN
• IOS/JUNOS upgrade for Cisco & Juniper routers/switches.
• Experience in testing Cisco & Juniper routers/switches in laboratory scenarios and deploy on site for production.
• Native communication skills and a team player, Effective inter-personal skills, adaptive to any environment, with the latest technologies and delivering solutions as an individual and as part of a team

TECHNICAL SKILLS:

Routing Protocols: RIP, BGP, OSPF, EIGRP, Static Routing, IP Addressing, Subnetting, VLSM

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, PPP

Redundancy Protocols: GLBP, HSRP, VRRP

Topologies: MPLS, Ethernet, Cable Modem, and Wireless

Switch Technologies: VLANs, VTP, STP, DTP, ISL and dot1q

Network Hardware: Cisco switches (2960, 3550, 3560, 4500, 6509, and 6513),Cisco Nexus Switches(2248,2232,5548,5596,7010,7718),Cisco routers (1900, 2900, 3900, 7200, ASR-1k/9k), Cisco ASA 5500 series, CSU/DSU s, network cards, Modems and F5 Network Load Balancer

Network Management Tools: MRTG, HP Open view, Cisco WAN manager, Cisco works 2000, Solarwinds Orion, Zenoss

Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Internet Content Filtering, URL Filtering -Web-sense, SSL, IPSEC, IKE, Static, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS)

Firewall: Cisco ASA, Juniper SRX, Palo Alto

Network Simulators: GNS3, Packet Tracer, Wire shark

OS: Windows, UNIX, LINUX

PROFESSIONAL EXPERIENCE:

Confidential, Franklin Lakes, NJ

Sr. Network Security Engineer

Responsibilities:

• Experience working with data center deployment where we converted from Cisco 6500 to Nexus.
• Experience working with Nexus 7010/Nexus 7018, 5020, 2148, 2248 devices.
• Regular upgrade and maintenance of Infrastructure including Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, F5 BIG IP and Palo Alto Firewalls.
• Experience with setting up IPSEC VPN on Cisco 5585 Firewalls towards the multiple vendors
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card(module) for the Nexus 5000.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls and F5 Big IP Load balancers.
• Experience in developing cloud strategies, roadmaps, architecting (hands-on) new cloud solutions end to end or enterprise level AWS/Azure migrations
• Designing and Deploying dynamically scalable, Highly available, fault tolerant and reliable applications on AWS
• Migrated complex, multi-tier applications on AWS.
• Defined and deployed monitoring, metrics and logging systems on AWS. Migrated existing on-premises applications to AWS
• Monitored infrastructure with Nagios like Firewalls, Servers, Services, Network devices, applications, web portals etc. Resolution of tickets fresh & pending
• Selecting appropriate AWS service to design and deploy an application based on given requirements.
• Automated network implementations and tasks and designed monitoring tools using python scripting.
• Dealt with creating VIP(virtual servers), pools, nodes and applying I Rules for the virtual servers like cookie persistency, redirection of the URL
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
• Operations and management of company LAN, WAN, and wireless networks, including routers, switches, Access Points, Firewalls and another network i.e. Riverbed, Bluecoat, F5 LTM/GTM.
• Supplied documentation, escalation, training and standard operating procedures as needed to allow for a smooth transition within the NOC.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing
• DMZ environments to support new and existing application platforms.
• Designed and installed new Branch network systems. Resolved network issues, ran test scripts and prepared network documentation.
• Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240.
• Troubleshoot wan related problems including OSPF, EIGRP, BGP, spanning tree switching and routing designs.
• ExperienceSupporting EIGRP, OSPF and BGP based network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Experience with configuring BGP, OSPF in Juniper M and MX series routers for branch/back office locations.
• Experience in configuring all Palo alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments
• Support Panorama Centralized Management for Palo alto firewall PA-500, PA-200 and PA3060, to central manage the console, configure, maintain, monitor, and update firewall core, as well as back up configuration
• Helped team to deploy 100 APs with 15 Switches, Cisco Nexus, Cisco Meraki and 2 Wireless controllers.
• Experience working with F5 LTM 3600/6400 and GTM 2200/4200 in data center
• Configured Virtual Servers, Configure Nodes, and configuring the load balancing Pools and also used to work with configuring load balancing algorithms.
• Experience configuring session-based persistence and I have leant configuring writing i Rules for specific redirection purpose and also i rules for persistence.
• Performed switching technology administration including VLANs, interVLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment
• Work as a part of the DMZ migration and consolidation for external vendors into a new environment on ASA 5585 devices.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Multipoint VPN: IPSec, IKEv2, DES, 3DES, AES (-128, -192, -256), Pre-Shared Key, X.509v3 Certificate, MD5, SHA-1, NAT-T, firewall rules for each VPN connection, configuration assistance via web interface, remote-controlled activate/ deactivate connection.
• Data center migration was involved in Access, Distribution and Core layers.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.

Confidential, Philadelphia, PA

Sr. Network Engineer

Responsibilities:

• Involved in Configuration of various Cisco Routers & L2/L3 Switches and implementing OSPF and BGP on the routers
• Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
• Designing and installing new branch network systems. Resolving network issues, running test scripts and preparing network documentation.
• Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Design, Installation and consolidation of local server farms in multiple branch locations with Cisco 4500-X at distribution and 4948’s replacing the 3750’s at access level.
• Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
• Ensuring problems are satisfactorily resolved in a timely manner with focus in providing high level of support for all customers.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms
• Working with wireless technologies troubleshooting and configuration.
• Establishing VPN Tunnels using IPSec encryption standards and configuring and implementing site-to-site VPN.
• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Configure BGP features such as AS-Override, Local preferences, EBGP load sharing on client connections
• Configured and resolved various OSPF issues in an OSPF multi area environment between multiple branch routers.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Provided Level 3 support to customers, resolving issues by attending to conference calls.
• Involved in Implementation of Palo alto firewalls in standalone, Vwire, active/passive & active/active modes
• Performed Setup of Central Panorama console to manage Palo Alto firewalls 3020,3050,5020 & VM-200 models
• Working on HP open view map for Network Management System and Ticketing.
• Deployed and configured Cisco ASR 1000, 7000, 9000 series routers.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter VLAN Routing, LAN security.

Confidential, Detroit, MI

Sr. Network Engineer

Responsibilities:

• Configuring ACL to allow only authorized users to access the servers.
• Maintain effective communications with vendors, peers and clients in resolution of trouble-tickets, equipment
• RMAs, and support requests.
• Troubleshoot Hardware, Cisco IOS, install and configure Cisco routers and switches.
• Participated in on call support in troubleshooting the configuration and installation issues.
• Installation, Maintenance, Troubleshooting Local and Wide Areas Network by using ISDN, Frame relay, DDR, NAT, DHCP, and TCP/IP.
• Manage and coordinate all infrastructure related moves, adds, and changes.
• Implement, and maintain Local/Wide Area Network over 13 branches.
• Configured OSPF, BGP on Juniper MX series Routers.
• Worked in Configuration and extension of VLAN from one network segment to other segment between different vendor switches (Cisco, Juniper)
• Provided Technical support in terms of upgrading, improving and expanding the network for Managed Services Customers.
• Worked on Time to time upgrade of network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing to build resilient network based on the customer requirements.
• Configured network using routing protocols such as OSPF, BGP and troubleshooting L2/L3 issues.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Configure switch VLANs and inter-switch communication. Build and setup network Laboratory.
• Actively involved in troubleshooting on network problems with Wireshark, identifying and fixing problems.

Confidential

Network Engineer

Responsibilities:

• Responsible for the configuration, implementation and operation of Cisco 3745 routers Cisco 6509 and 3560 L2/L3 switches
• Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
• Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
• Configured ether channels using PAgP and LACP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Working with Checkpoint Support for resolving escalated issues
• Created effective network security by migrating from Check Point FW-1 NG to ASA 5510 Firewalls
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
• Escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP and GLBP for first hop redundancy and load balancing.
• Configured the Cisco router as IP Firewall and for NATting.
• Prepare, update, and maintain technical and logistical network documentation

Confidential

Network Support Engineer

Responsibilities:

• Involved in Configuring and troubleshooting multi-customer network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Implemented new/changing existing data networks for various projects as per the requirement.
• Worked on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.
• Installed and maintaining Windows NT Workstations and Windows NT Server.
• Provided technical support to LAN & WAN systems.
• Monitored performance of network and servers to identify potential problems.
• Performed RIP, OSPF, BGP, EIGRP routing protocol administration.
• Prepared feasibility report for various upgrades and installations.
• Other responsibilities included documentation and support other teams.