SUMMARY

• 7 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 Arista 7050/7060/7260/7150/728 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Load Balancers & Cisco Firewalls.
• Experience with various LAN and WAN technologies and protocols like: - TCP/IP, VLAN, VTP, STP, EIGRP, OSPF, BGP, IKE/IPsec VPNs, NAT, DNS, MPLS and access list.
• Excellent knowledge and experience on multi-vendor platforms like Cisco, Juniper, Checkpoint, F5 Big-ip LTM load balancers, Bluecoat, Riverbed, Citrix, and VMware.
• Experience in implementing and designing new solutions with Cisco ASA Firewall series 5505, 5510, 5512-X and Palo Alto Firewall series PA-500, PA-2050.
• Extensive knowledge of Load balancing technology including algorithms and health check options.
• Experience directly managing routers, switches, load balancers and SSL accelerators in a high-availability infrastructure.
• Expert understanding of TCP as it pertains to packet inspection and network/application flows.
• Expert ability to troubleshoot issues and make recommendations for system changes, as needed, to resolve issues.
• Designing and implementation of DMVPN based IPSEC on all ATM centers Installation and configuration.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Has a good experience working with the Trouble Tickets on F5 Load balancers on LTM module.
• Experience in configuring and troubleshooting BIG-IP F5 load balancer LTM creating virtual servers, nodes, pools and iRules on BIG-IP F5 in LTM module.
• Basic knowledge of Palo Alto Firewalls and Panorama centralized management.
• Working knowledge of IIS Server, DHCP Server, DNS Server, proxy server on Linux and windows. Implementation and administration of DNS, DHCP and WINS.
• Knowledge in OTV, Virtual Device context, Fabric path, Virtual Port channel and VSS cluster.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view).
• Expertise in creating groups and pruning traffic flow using VLAN, VTP, ISL, 802.1Q.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Network planning and implementation of WAN technologies including E3, E1, T1, T3, ISDN, HDLC, PPP, Frame Relay, ATM and MPLS VPN
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550), Bluecoat Proxy SG300/600.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
• Hand on experience on Site-to-Site and Remote access VPNs.
• Experienced with HSRP, VRRP, and GLBP protocols.
• Knowledge in MPLS Technologies and MPLS VPN’s.
• Experience in the configuration of Aggregation protocols for Ether Channel i.e. PAgP and LACP.
• In-depth knowledge and hands-on experience on IP Addressing, Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Effective inter-personal skills, adaptive to any environment, keep abreast with the latest technologies and delivering solutions as an individual and as part of a team.
• Well organized, Self-starter, Quick learner, Self-Motivated, Team player with analytical, technical and communication skills.

TECHNICAL SKILLS

Routers: Cisco 1800, 2600, 2620, 2900, 2901, 3900, 3925, 3945E, 4000, 7201, 7613

Switches: Cisco Catalyst 2232, 2960, 3560, 4507R+E, 5596, 6509-E, 7009 Nexus 2232, 5596, 7009, Arista ( 7050/7060/7260/7150/728 )

Switching Technologies: LAN, Vlans, Trunking, Ether Channel, Port Fast, Up-link, VTP, PVST+, RPVST+, STP, RSTP, DTPMLPPP, IEEE 802.1q, MPLS, ISL and dot1q, SMTP, Inter-VLAN Routing, Multi-Layer Switch, Ether channels, MPLS, Transparent Bridging, Light weight access point

Routing Technologies: RIP (Versions 1 & 2), IGRP, EIGRP, OSPF, PBR, BGP v, IS-IS Static RoutingLoad Balancers: F5 Networks (Big-IP) LTM 8950, GTM 6400, ASM, F5 Vipiron

Network Management Tools: Wireshark, Net flow Analyzer, Cisco Works, Solar Winds, InfoBlox, Ethereal, Splunk, SNMP, GNS3, EMC Smarts

Firewall: Bluecoat, Juniper Secure Access VPN Appliance, Cisco ASA firewalls, checkpoint R77, R76, Palo Alto, Cisco PIX, ASA.

AAA Architecture: TACACS+, RADIUS, Cisco ACS

OS products/ Services: Windows (98, 2000, XP, Server 2003/2008, Vista, Windows 7), Mac OS X, Unix and Linux

PROFESSIONAL EXPERIENCE

Sr. Network Engineer

Confidential, Seattle, WA

Responsibilities:

• Proactively monitored network health and activity through eHealth, Infoblox, Proteus, ServiceNow, Wireshark and Splunk.
• Deployment, configuration, and management of 802.1x solutions to include Cisco Identity Services Engine (ISE), ACS (Radius and TACACS+), and Cisco Prime Infrastructure.
• Update and modify KB network monitoring tool, Net Flow, Solar Winds and NETMRI for all new/old devices.
• Worked on automation of test environment using Shell, Python Scripting.
• Black listing and White listing of web URL on Bluecoat Proxy Servers.
• Performing URL filtering and content filtering by adding URL's in Bluecoat Proxy SG's.
• Experience in using Net Scout sniffer analysis for testing the performance of the network.
• Successfully put in Palo Alto PA 3060 firewalls to protect information Center and provided L3 support for routers/switches/firewalls.
• Performed on Palo Alto Firewall on network security software and hardware, security monitoring systems, encryption software, threat and vulnerability management services.
• Build and configure monitoring systems and other network related tools such as Introscope, Splunk, MRTG, Solar winds, and RANCID on a Linux/Windows 2003 platform.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Experience implementing an intricate SDWAN solution for proof of concept projects.
• Integrated TACACS and LDAP for user authentication on webpage and device.
• Implemented Zone primarily based Firewalling and Security Rules on the Palo Alto Firewall Exposure to wild hearth feature of Palo Alto.
• Involved in deploying complex networks to provide the network connectivity that support the Confidential web services (AWS) cloud networks.
• Create or modify the configuration templates and Yaml files, code review submissions and pushing the configurations into the centralized repository for updating the device deployment configurations for the new and existing devices.
• Current responsibilities include estimating the upcoming capacity requests and port requirement for late binding server racks. Plan and deploy ports to serve the upcoming capacity in time.
• Involved in working with OOB management (Cisco 4331) to provide the console connectivity to the hosts connected to it.
• Configured and deployed Top of Rack devices (Qfx5200) to provide network connectivity to the hosts in order to interact with different network elements.
• Procuring, Reserving and Assigning new IP addresses from the provided IP space containers to the deploy new devices using IPAM.
• Key contributions include troubleshooting of complex LAN /WAN infrastructure that include routing protocols OSPF & BGP.
• Prioritize and coordinate tasks to complete project within deadlines.
• Troubleshoot and resolve blocking issues during or post network deployment.
• Responsible for turning up links and routing during as a part of deployment process.
• Working closely with Data center team to resolve the link issues, device issues, environmental issues and SD card issues.
• Linux and UNIX systems integration with Microsoft Active Directory.
• Replacing and rebuilding devices whenever needed as a part of troubleshooting.

Environment: Juniper switches QFX5200, MX 240, MX 480, PTX1000, LB9 Quanta, OSPF & BGP, SNMP, DNS, Apollo Environment, python, Linux, Unix, Blade Runner workflows, Git Repo, Yaml Files, Brazil Workspace, IPAM, AWS Dashboard, Linux .

Sr. Network Engineer

Confidential, Dallas, TX

Responsibilities:

• Responsible for fitting the infrastructure surroundings with majority of Cisco ISE & Palo Alto appliances except for varied different instrumentality.
• Efficiently exploitation ServiceNow tool for generation of tickets, distribution severity to incidents, following up with incident standing and troubleshooting incidents.
• Excellently used Splunk to research and monitor incident management and incident resolution issues.
• Perform 24x7 log monitoring - review and analyze system security logs.
• Monitored & analyzed system logs on Symantec Endpoint Protection anti-virus, Symantec Data Center Security & Credant Encryption servers.
• Responsible for implementation/installation of LAN/WAN/SAN, Aruba Switches Aruba Wireless AP’s and Aruba Virtual Controllers.
• Installing and configuring CISCO Wireless LAN Controllers (WLC) with active/ standby state with controlling more 100 Cisco access points.
• Hands-on experience and expert knowledge of Cisco Intelligent WAN (IWAN).
• Hands on Experience in wireless RF site surveys and RF spectrum analysis.
• Good Experience in performing wireless site surveys using Air magnet software.
• Working on Cisco 4400, 5500 series wireless controllers, Cisco 1130, 1140, 1200 3702, 3602 and 2600 Series Access point.
• Experience working on Cisco Nexus 9k, 7k, 5k, 2k, Cisco Catalyst 6500’s, 4500’s &VPC, VDC, VRF
• Administration of Cisco Meraki Network switches, routers and teleworker gateways.
• Support, Trouble shoot and upgrade small Aruba Wireless Networks Confidential 2,200 remote dialysis clinics across the United States.
• Policy provisioning, access to specific segments of the networks through Cisco ISE.
• Engineered, configured and deployed routers using Cisco ISE.
• Daily responsibilities included design, implementation, support and administration of multiple security products running Checkpoint Provider-1, Source Fire.
• Trained in products like Extrahop, Clear Pass, Splunk, F5, Palo Alto, Gigamon and Inflobox.
• Modified existing ACL's, IPSec and perform network translations. WAAS installed for increased network efficiencies and speed. Setup InfloBox for local DHCP & DNS configuration. Axon's for accessing Motorola and Symbol wireless network. Configure Imdyne, SMDR, LRT devices and IP adjustments for local NAS.
• Using InfloBox - Grid Manager - to Assign IP address to new server Builds, Production DNS System - Used for IPAM.
• Deployed Intelligent WAN (IWAN) in both Hybrid and Dual-ISP branches to provide an increase in bandwidth capacity, security and reliability.
• Creating virtual chassis (EX switches) and chassis clusters (SRX 240).
• Design for Guest Network and Mobile Access Network for NAC Solution, comprising of an Aruba Wireless LAN Controller solution in DMZs/Internet Gateways with Fore Scout Counter Act NAC Appliances for NAC.
• Work with layer 2 technologies including Ethernet multi-mode fiber, single mode fiber and media converters.
• Developed disaster recovery procedures for Symantec Endpoint Protection anti-virus, McAfee anti-virus & Symantec Data Center Security enterprise security solutions.
• Investigates traces with TCP, UDP, SCTP, IP, S1AP, GTPv2 and Diameter.
• Linux / Unix systems integration with puppet, pulp and RHSAM.
• Linux and UNIX systems integration with Microsoft Active Directory.
• Security Device - Palo Alto/ASA Firewalls, Source fire IPS/IDS, Cisco Identity Services Engine (ISE), VPN

Environment: Nexus 2k/5k/7k/9k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, HP (7510,7506) switches, Brocade VPX, ICX series switches, Palo Alto Firewalls, Viprion 2400 Bluecoat proxy server, LAN, WAN, WLAN, OSPF, RIP, SNMP, BGP, LDAP, IGMP, SSH, EIGRP, HSRP, PPP, VPN, Checkpoint, Cisco ISE.

Network Engineer

Confidential, Atlanta, GA

Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuration 7609, 7606 with OSPF and catalyst 6500, 4500, 3550 switches with various VLAN.
• Worked on Cisco switches (6509, 6513, and 4510) for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues.
• Work with Cisco product teams and SVS Lab to refine UCCE roadmap for smoother resolution of security vulnerabilities.
• Management of roughly 800 nodes through Solar Winds Orion network performance monitor
• Performed LAN operations and troubleshooting which involves working on VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Worked on Cisco Firewall ASA 5500(5510/5540) Series. Performed Security operations in terms of pushing new policies and deploying new rules.
• Tier3 implementation and day2 service management for Cisco UCCE 7.5, 8.x, 9.x, 10.5.3 (CVP, ICM, VXML gateways).
• Provide advanced help desk support for Cisco UC/UCCE products as well as providing support from RTMT traces and/or CVP logs.
• Experience in working with Nexus 7010, 5020, 2148, 2248 devices.
• Responsible for the design and implementation of campus-wide secure unified Wired & wireless networks using Cisco Prime Infrastructure (PI).
• Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required.
• Conduct consultation for wired/wireless LAN/WAN hardware and software and recommended solutions.
• Responsible for interoperability testing between Avaya and Cisco voice and data products such as Avaya Communication Manager.
• Knowledge of Cisco Unified communications experience installing, maintaining, configuring, and troubleshooting VoIP equipment including Cisco gateway routers, call managers, Unity servers, etc.
• Installation and troubleshooting of Cisco 5508 and 2504 WLAN controllers and Aruba Mobility controllers.
• Handling the Configuration and troubleshooting nexus different series switches.
• Performing security troubleshooting in terms of checking ACLs and ACEs and traffic flow analysis using packet capture features.
• Working with Cisco Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
• Developed backup and restore procedures
• Network and system monitoring with Solar Winds and syslog-ng using SNMP, ICMP, and syslog for all Servers, switches, and UPS
• Support routing protocols including BGP and OSPF routing, HSRP, load balancing/failover configurations, GRE Tunnel Configurations, VRF configuration and support on the routers
• Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout
• Actively involved in design & deployment of a new datacenter using Cisco Nexus 9000 platform in spine & leaf architecture utilizing VXLAN fabric & BGP-EVPN overlay technologies
• Implemented site to site VPN in Juniper SRX as per customer and various EX, SRX & J series Juniper devices.
• Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1.
• Experience in Handling F5 LTM, GTM, ASM series like 6400, 6800, 8800, 8950 for the corporate applications and their availability.
• Maintain BIG IP F5 configuration for modules LTM, ASM, APM and future GTM
• Managed the configuration inventories and timely revisions for ACI policies.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.

Environment: Palo Alto, BMC Remedy, Cisco 3560/2950/2924/6509/6513/5500 Switches, Arista ( 7050/7060/7260/7150/728 ), Cisco 1800/2800/2500/2600/2800/1600/3800/3900/7204/7606 routers, Cisco ASA 5540, BIG-IP LTM 8900, QOS, Policy-maps, Class-maps, Vlans, Avaya, Transition/Migration, Wi-Fi, STP, RSTP, PVSTP, VTP, HSRP, Ether Channel, BGP, OSPF, EIGRP, MPLS, ATM, PPP, HDLC. SNMP, DNS, DHCP, InfoBlox, Solar Winds, Syslog, Checkpoint, F5 Load balancer, Nexus 7K,5K,2K,9k, Juniper 3600, 5600, Cisco AP’s, LAN, WAN.

Network Administrator

Confidential

Responsibilities:

• Managed LAN/WAN infrastructure using dynamic routing protocols (EIGRP,OSPF,BGP)
• Created VLAN using trunk link, access link, and creation of VTP mode
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair
• Created Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
• Configured and implemented IPSEC/GRE VPN
• Installed MacAfee anti-virus software
• Created standard access lists to allow SNMP, NTP and logging servers.
• Configured Cisco Wireless access points using LEAP and Cisco Radius for authentication, greatly increasing Wireless security
• Maintained complex LAN/WAN networks with several VLANS
• Worked with configuring IP Multicast, STP, HSRP
• Knowledge of LAN, WAN, TCP/IP, UDP and OSI models
• Configured PIX/ASA firewall version 8.4 by using NAT, ACL and SECURITY LEVEL
• Managed work stations, servers, applications and installed printers on the network
• Consistent network design deployed across all nodes throughout county consisting of core Cisco 7600 routers, distribution layer Catalyst 6500 switches, WAN aggregation Cisco 7600 routers, and access layer Catalyst 2900/3500/3750/3850 switches.
• Identified additional Network operations requirement and improvement opportunity.

Environment: OSPF, BGP, Private Vlans, Gre / site to site vpn, Dhcp Snooping, IP source guard, Wireless Access Points, Vlan, Catalyst 2900/3500/3750/3850 switches, Cisco 7600 routers.

Network Administrator

Confidential

Responsibilities:

• Have ability to install and maintain Microsoft Exchange and worked extensively on different applications.
• Created network diagram for employees using the Microsoft Visio.
• Preparing Client Machines for users with Operating Systems, Software, antivirus and required utilities and mailing clients etc.
• Primarily responsible in designing and maintaining the budget for the whole network.
• Perform daily maintenance, troubleshooting, configuration, and installation of all network components.
• Configuration of CISCO Routers (3600, 4000 Series) and 3550, 4500 series switches.
• TCP/IP network planning, Implementation and Management with subnets.
• Enabled SNMP traps for our Cacti Monitoring tool to monitor traffic and check the regular health of Servers and Network Devices.
• Implementation of Virtual LANs across Routers and Switches.
• Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2.
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Worked with Remedy Ticketing tool in maintaining and keep a track of logs/monitor.
• Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions.

Environment: LAN, WAN, Subnetting, VLAN, VTP, VPN, NAT, OSPF, BGP, EIGRP.