PROFESSIONAL SUMMARY:

• Network Engineer with over 9+ years of experience in network design, implementation, support. Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800).
• Working Knowledge of Cisco IOS, Junos & basic Nexus (7K, 5K&2K).
• In - depth knowledge and hands-on experience in ISP Routing Policies, Network Architecture, IP Addressing, Sub netting, ARP, VLSM, TCP/IP, MPLS, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Extensive knowledge with VLAN’s, Trunking, RSTP, SNMP, Ether Channels, HSRP, Port Security, ACL’s, QoS, Traffic Policing, Shaping, NAT, PAT, Inspections, VPN’s, DHCP, Wireshark etc.
• Expertise in configuring and troubleshooting of Palo Alto, Juniper NetScreen& SRX Firewalls and their implementation.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls, Check Point and Cisco ASA.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include Integrated, Integrations, configurations, support and maintenance of routers and switches.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server.
• Expertise in installing, configuring and troubleshooting Juniper Routers ( J,M and MX-series)
• Proficient in setting up IT infrastructure including wide area networks (WAN) local area networks (LAN), security management systems network device administration.
• Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks.
• Advanced proficiency in designing, deploying, and maintaining perimeter security devices such as IPS, IDS, Radware, etc.
• Experience in Implementing & managing Symantec Data Loss Prevention.
• Deployment of NAC - Network Access Control System. Knowledge in Proxy servers.

TECHNICAL SKILLS:

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series) Huawei AR Series Routers

Juniper Platforms: M, J and MX Series Routers

Access: lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPsec, VLAN, VPN and Wireless Technology

Firewall Network Tools: Cisco,Palo Alto, Juniper NetScreen and Juniper SRX, Check Point IBM ITNM, Splunk, StealthWatch, Solar Winds, SNMP, CiscoWorks, Wireshark

Load Balancers: F5 Networks (Big-IP)

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

IKE, IPSEC, SSL: VPN, SSH

Operating System: Windows 7/XP, Windows Server 2012/2008, Linux, Unix

PROFESSIONAL EXPERIENCE:

Confidential

SR. NETWORK SECURITY ENGINEER

RESPONSIBILITIES:

• Experienced in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and Configuration of CSU/DSU, T1, T3 & OC3 circuits.
• Datacenter upgrades from C6500s to Nexus 7k/5k/2k, double-VPC between distribution and access, single-VPC to servers.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing.
• Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco ASA firewalls.
• Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) and etc.
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.
• Very good Experience in using and maintaining various network monitoring tools like Solarwinds, Fluke, plunk.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured IP, RIP, PPP, BGP, OSPF and EIGRP routing.
• Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies.
• Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, from scratch to match design.
• Has a good experience working with the Trouble Tickets on F5 Load balancers on LTM module.
• Deployed of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Implementation and maintained intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
• Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Security policy review and configuration in Palo Alto and JuniperSRX Firewall in US offices and Datacenter.
• Working knowledge of the UNIX and CLI based command to implement the networking tools.
• Configured and monitored Firewall logging, DMZ’s and related security policies.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support of 24/7.

Confidential

SR. NETWORK SECURITY TECHNICAL SPECIALIST

RESPONSIBILITIES:

• Remote infrastructure management of offices in different locations nationwide.
• Managing Co-location and Datacenter infrastructure in North America.
• Troubleshooting and escalation management of day-to-day issues for offices.
• Ensure connectivity and communication among networks, servers and clients inside and outside department.
• Configuring, testing, troubleshooting multiple vendor device platforms like Cisco routing and switching: Cisco ASR9010, ASR901, ASR903, Catalyst Cisco 7609, 2960, and Juniper routing and switching devices: MX960, MX 480 and SRX5200, ACX2200, ALU service aggregation router: 7705 SAR 8 and 7750 service router.
• Designed and maintained the VLAN architecture, IP address scheme, security architecture, security policies, OS hardening, ADS architecture, and DNS Name Space across a globally dispersed infrastructure.
• Security policy review and configuration in Palo Alto and JuniperSRX Firewall in US offices and Datacenter. Troubleshooting of CISCO routers with ping, trace route and basic issues.
• Installed controller and light weight access point coordination with JTAC.
• Responsible for IOS upgradation DNS and TCP/IP support, VPN site to site implementation.
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
• Integration and trouble-shooting of static and dynamic routing protocols.
• ManagingF5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Designed and deployed hosted network and security infrastructure supporting a single vSphere cloud across two geographically dispersed data centers in 10 days.
• Conduct research on network products, services, protocols, and standards to remain abreast of developments in the networking industry.
• Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies.
• Create and maintain documentation and Visio diagrams as it relates to network configuration, network mapping, processes, and service records.

Confidential

NETWORK ENGINEER

RESPONSIBILITIES:

• Responsible for Configuring SITE TO SITE VPN on Cisco ASA 5500 series firewall between Head office and Branch office.
• Installation & configuration of Cisco VPN concentrator 3060for VPN tunnel with Cisco VPN hardware & software client and PIX firewall.
• Designed and implemented F5 Big IP load balancers that resulted in improving application performance.
• Configured Firewall logging, DMZs& related security policies & monitoring.
• Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
• Performed and technically documented various test results on the lab tests conducted.
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Support various Routers like 2600/3600/7200 series.
• Configure and Install F5 New Virtual Servers, Profiles, IRules, Pools, Nodes, Generate CSR Certificate, SSL Certificates Etc.,
• Actively participated and completed many projects based on MPLS VPN, VLAN, Internet Solutions for corporate customers in COLT.
• Responsible for troubleshooting complex networking issues in service provider MPLS & internetBackbone.
• Actively participated Implementation and customization of customer network.
• Designing, Provisioning and Installation of the Customer Sites in Oracle IPSA for MPLS Backbone.
• Implementation and testing of ISDN BRI/PRI circuits.
• Responsible to troubleshoot the connectivity between CPE router and the COLT's edge router (SAR).
• Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and worked closely with RIR(Regional Internet Registry) to procure PI(Provider Independent) and PA(ProviderAggregately) IP addresses and AS numbers for COLT and customers.
• Set up DNS Reverse Delegation according to RIPE rules in RIPE Database.

Confidential

JR. NETWORK SECURITY ENGINEER

RESPONSIBILITIES:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Implemented ISL and 802.1Q for communicating through VTP.
• Working with Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Deploying the network infrastructure to meet the requirements.
• Created VLAN and Inter-VLAN routing with Multilayer Switching.
• Documenting and Log analyzing the Cisco ASA 5500 series firewall.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed administrative support for RIP, OSPF routing protocol.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites.

Confidential

TECHNICAL NETWORK SECURITY ASSOCIATE

Responsibilities:

• Performed troubleshooting, maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Providing technical support to LAN & WAN systems.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Configured the Cisco router as IP Firewall and for NATting.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Installation and maintenance of new network connections for the customers.
• Configuring all the required devices and equipment for remote vendors at various sites and plants.
• Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
• Installing and maintaining local as well as network printers.
• Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.
• Installing and maintaining Windows NT Workstations and Windows NT Server.
• Monitoring Memory/CPU on various low end routers in a network.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites.
• Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.