SUMMARY

• Cisco Network Engineer with 8 years of experience in the industry, which includes expertise in the areas of Routing, Switching and Firewall.
• Expertise in Designing, Implementation, Administration, Operations and Troubleshooting of enterprise data networks as a Network Engineer.
• Experience in handling tickets opened for network related issues and resolving as per SLA.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Expertise knowledge and experience in networking devices like Cisco Routers, Cisco Switches, F5 Load Balancers and Firewalls.
• Well versed in troubleshooting and installing CRS, Carrier Routing System (CRS 1/3), CRS-X, ISR, GSR, ASR9000 and Nexus devices.
• Experience in installation, configuration, design and ongoing maintenance of Cisco router and switches.
• Worked on Cisco Catalyst Switches series, Responsible for Checkpoint, Cisco and Fortinet firewall administration across global networks.
• Hands on experience in Physical cabling, IP addressing and Sub netting with VLSM using QIP configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Experience with Infoblox to work on DDI DHCP, DNS, & IP Address Management in large enterprise organizations
• Experienced in syslog analysis and Proxy servers.
• Worked on Cisco's Nexus 9000 series switches that address SDN with Application Centric Infrastructure (ACI)
• Hands-on with AWS (EC2, S3, IAM, VPC, Direct Connect, Route53).
• Worked with Cisco Meraki and Meraki products.
• Worked on Junos Space and Network Security Management
• Well Versed with SDN and network function virtualization (NFV) technologies like Cisco ACI.
• Hands-on experience with Aruba ClearPass for network security based on bring-your-own-device policies.
• Expertise in checkpoint, Palo alto, Illumio and FortiGate firewalls Migration and Panorama Network Security Management Box .
• Hands on experience in migrating the network infrastructure to Amazon, and Azure cloud technologies and adding firewall rules in the cloud architecture.
• Hands on experience in F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Performed penetration testing using security tools: Metasploit, WireShark, Netsparker.
• Hands on experience in Virtual standard switch, Virtual Distributed switch, VLAN mapping into VMware
• Strong knowledge on Wireless Standards and Technologies, i.e. Ethernet, WAN, LAN, IEEE 802.2, 802.11a, b, g, n (WiFi). Cisco Wireless Management system, Cisco Meraki Products, PCI standards. Very good knowledge on IEEE 802.15.1 (Bluetooth), Mesh networks, etc.
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Well versed with Aruba ClearPass Policy Manager, Policy Management, Guest Access and ClearPass onboard Feature
• Implemented Cisco Meraki Enterprise solutions for corporate infrastructures.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience
• Well versed in managing and troubleshooting of SD-WAN infrastructure
• Hands-on with experience with FortiManager, Forticlient, FortiAnalyzer and Fortinet FortiGate Appliances.
• Experience on Juniper devises like MX series routers, SRX series firewalls and EX, QFX series of switches
• Planned and implemented new infrastructure in Data Center Implementing Security Solutions using Palo Alto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Expert with TCP/IP protocol suite and OSI layers.
• Well Versed with juniper SRX240, SRX220, and SRX550 series Firewalls including Juniper environment /Junos Space and security Director and API calls .
• Experience with monitoring tools Solar Winds and Cisco Prime.
• Strong hands on experience on Cisco Catalyst (1900, 2900, 3550, 3750, 6500) series switches, VSS technology, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, PIX Firewall (506, 515, 525, 535)/ ASA (5505/5510), Palo Alto Firewalls, Cisco ISE (Identity Service Engine), Cisco Routers & Switches Cisco GSR 12000 Series, Cisco 7600 Series, Cisco 6500 Series, Cisco 3851, Cisco 3560 & 3750 Series, etc Load Balancers using Cisco ACE, F5, Security Device Manager (SDM), Cisco Works, HP Open View, Solar Winds, Sniffer.
• Experience with implementation of DNS and DHCP protocols.
• Extensive experience with supporting all aspects of Windows 2000/2003, 2008, IIS and SQL Server, installing, configuring, troubleshooting, root causes analysis, SCOM setup / Planning, OS patching.
• Experienced with Juniper JUNOS device configuration like Juniper Router, Juniper switches, SRX
• Knowledge and experience with F5 ADC, Palo Alto, Dell Force10, Brocade, Meru/Aruba WLAN, Splunk, TACACS.
• Administration, Engineering and Support for various technologies including proficiency in SDN based LAN/WAN routing, switching, security, application load balancing and wireless .
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Well Vered with switching technologies like VLAN, InterVLAN Routing, Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP), Multiple Spanning Tree (MST), VLAN Trunking Protocol (VTP), DHCP, Port based Security & IP Access Control Lists
• Manages, maintains and support Checkpoint Firewalls, IPS, IDS, and Endpoint servers, PKI and network security Infrastructure.
• Good Understanding of Python scripts for system automation, monitoring and security reporting. Maintain existing Perl scripts and migration existing Perl scripts to Python.
• Expertise in installing, configuring and troubleshooting Juniper Routers (J, M and MX-series)
• Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR 1K, 7200vxr, 3900, 3800, 2900, 2800 series routers and Cisco Catalyst 6500, 4500, 3850T, 3750, 2950 and 3500XL series switches.
• Experience in SAN, VAN in data center and VIRTUALIZATION of servers.
• Experience with Blue Coat URL filtering with white listing and blacklisting URL , creating rules for content filtering.
• Provided internal testing within Cisco team in supporting recommendations to customer on various Service Provider Multicast options including Native IPv4 BGP multicast, Multicast ISIS, various flavors of mVPN, and label switch multicast (LSM).
• Implemented positive enforcement model with the help of Palo Alto Networks.
• Worked on OTV to extend L2 VLANs between data centers over IP on Nexus 7710 switches.
• Knowledge on Cisco IOS, Junos & basic Nexus (9K, 7K, 5K&2K).
• Configuration, support and administration of Palo Alto and checkpoint and to migrate all gateways and management servers to new hardware and software.
• Designed and replaced aging checkpoint Firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.

TECHNICAL SKILLS

Routers: Cisco 1800, 2500, 2600, 2800, 3600, 3900, 7200, 7600 series, GSR 12000, Juniper MX480/960, CRS-1

Switches: Cisco 6500, 4900, 3750, 3550, 3500, 4500, 2900 series, Arista 7100, 7500

Nexus: 9K,7K, 5K, 2K &1K

Load Balancers: Kemp, Cisco CSM, F5 Networks (big-IP) LTM 8900 and 6400, GTM, APM, ASM

Firewalls: Cisco ASA, Cisco PIX, checkpoint, Juniper SRX, Meraki MX60, MX100, MX400, illumio

Routing Protocols: IGRP, RIP, EIGRP, OSPF, BGP, RIPV2, TCP/IP, STP, ACI, RSTP, VLANs, VTP, MPLS, HSRP, VRRP, Route Filtering, Redistribution, Summarization, Static Routing, TACACS+, RADIUS, SDN

LAN Technology: VLAN, RSTP, VTP, Inter-VLAN routing, STP, Domain, HSRP, Trunks, Ethernet, Fast Ethernet, Gigabit, Workgroup, Domain.

WAN Technologies: PPP, HDLC, Fiber Optic Circuits, Frame Relay, VOIP, ATM, SD-WAN, SONET, MPLS, VPN, IP sec-VPN, Leased Line, ISDN/Dial-Up.

Cloud Services: Amazon AWS, VPC, S3, Azure, Direct Connect, L2L VPN

Operations: Layer 3 switching, ether channels, Uni-layer switching.

Antivirus & Endpoint protection: Symantec Enterprise Edition, Cisco CSA, MacAfee Enterprise Edition.

Network Management Tools: SNMP, Cisco works LMS, Cisco MWTM, Wire shark, Net flow Analyzer and Ethereal, QIP.

Network Security: VPN, ACL, IPSec, IDS/IPS, Filtering, Port-security, AAA, Zone-Based Firewalls, juniper SRX, Cisco ASA, Palo Alto firewalls.

Network Technologies: TDMA, SONET, MANET, FDMA, CDMA, DSL

Operating Systems & Tools: Cisco IOS, Windows Vista/XP/NT/00/98, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Windows XP/Windows 7/8, Apache Server, Active Directory LINUX, Solaris.

PROFESSIONAL EXPERIENCE

Confidential

Sr. Network Security Engineer

Responsibilities:

• Configuring 2800,2900,3900,44XX series routers & switches 2950,3500,4500,3800 series.
• Developed ACI (Cisco Application Centric Infrastructure) based Cisco Validated Designs for Enterprises and Service Providers to transform Traditional 3 Layer Architecture to ACI based (Spine, Leaf and APIC) Architecture.
• Managing standard alone deployment and distributed deployment and Multi domain environment in Checkpoint across multiple versions R65, R 76, R 77, R 80.
• Implementing, administering and troubleshooting network infrastructure devices like routers, switches, Wireless access points and controllers.
• Involved in Creating, Deleting and modifying Security policies and troubleshooting traffic flows in Illumio firewall.
• Involved in Design and implementation of SDWAN solutions with migration from traditional MPLS platform to SD-WAN technologies (Fat Pipe, Silver Peak, Cisco Meraki)
• Involved in monitoring the logs and pushing firewall policies using TUFIN.
• Developed new WiFi Network Architecture for large WAN enterprise and worked with QIP to manage DNS names and IP addresses.
• Performed regular penetration tests of network firewall and e-mail filter servers to make sure that corporate policy is enforced and adhered to.
• Involved in configuring and managing LDAP User management with Checkpoint Smart Directory.
• Supported end user network cisco ACI infrastructure and trouble shot several implementations of LTM and APM configuration. worked with Genesys PureCloud cloud-based contact center to support customer experience wherein it helped to provide a single point for all customer interactions be it SMS, email or voice call.
• Used Aruba ClearPass to configure the Guest access and configured the ClearPass Servers to provide secure connectivity for all corporate devices.
• Created subnets to allow for both present and future network expansion and addressing for both IPv4 and IPv6 network devices.
• Involved in migration to Genesys “PURECLOUD “cloud-based contact center platform.
• Provided design and engineering support for installing Private Branch Exchange PBX and voice tandem switches into EDS voice-network control center.
• Managed networks and servers in AWS and Azure and created VPC’s, launched EC2 instances and created private and public subnets, with Auto Scaling, ELB, S3, Cloud Front, Route 53, Cloud Watch, Cloud Formation, SQS, SNS.
• Used NFV to create a virtual network on top of the physical network.
• Worked with multiple OSI Layer 2 and Layer 3 routing protocols (i.e. EIGRP, ATM, TCP/IP, BGP, OSPF, and MPLS in order to bring new routers into the production environment for Network Augmentation Team.
• Upgrading Network Bandwidth to avoid connectivity issues.
• Involved in Installing, managing and monitoring Palo Alto Firewalls in Panorama.
• Performing circuit installations with the vendors.
• Created S3 buckets in the AWS environment to store files, sometimes which are required to serve static content
• Worked in Cisco CRS-16/S IOS XR and 12000 series GSR router types with updated Version of 12.0
• Implemented routing protocols OSPF, BGP on Cisco 2500/2800 routers, IP multicast on GSR 12000
• Involved in design of QoS for voice, wireless packet data and control traffic across IP / MPLS core network.
• Involved in managing the Network infrastructure in Meraki Dashboard (Access points, Switches etc.)
• Participated in design and configuration of Wireless Network using IEEE 802.11, multicast architecture with Cisco multilayer switches
• Created multiple Virtual Public & Private Clouds (VPC) within the AWS domain.
• Involved in Configuring FortiGate firewall to authenticate users based on user identity, group, session.
• Designed and implemented firewall rules in Palo Alto firewalls in all four technologies Cisco, checkpoint, Palo Alto, Juniper SRX, Security Director
• Involved in Successful configuration of the Infoblox system to meet client needs also calls for an ability to quickly grasp client-specific current solutions for DNS, DHCP, and IPAM (DDI).
• Supported the VMware Virtual Environment by using Confidential and managing the log files and resolved VMware issues from Performance to Configuration.
• Involved in Configuring Tufin on network devices for monitoring network rules.
• Used Illumio to stop lateral movement and securely migrate applications to the cloud and overcome data center and cloud security challenges.
• Involved in execution of automation frameworks using Python. configured Citrix NetScaler for use with mobile devices, and configured ICA Proxy, virtual servers, SNIP, VIP, etc.
• Worked all physical cabling planning projects with vendors, planning physical SDN network roll out.
• Working on daily issues on priorities simultaneously to focus on key efforts needed.
• Create and assigning Incident tickets or requests, change management.
• Configuring IPSEC VPN on SRX series firewalls. configured the SharePoint server and sites for the Network Operations team including the SQL database
• Involved in helping customers with issues and connectivity between Cisco switches and routers, IOS upgrade, VLANS, VTP, and Spanning Tree Protocol
• Configured SD-WAN devices and handled SD-WAN sites which has Silver peak Devices, Meraki switches, Open gear devices
• Used Wire Shark Sniffer for setting up custom distributed sniffer system.
• Implemented Proof of Concept for Infoblox DNS Firewall and diagnosed issues and applied fixes on Infoblox Switch Port Manager.
• Worked with Junos OS REST to securely connect to Junos OS devices and execute API calls.
• Support in Ticket handling system like Incident managements regarding WIFI connectivity issues.
• Helps in task analysis and resolving the assigned workflow.
• Performed configuration and maintenance of Brocade ICX 6450 and 7450 switches in the network.
• Implemented security policies and rules on FortiGate firewalls (7040/7030) and migrated from Cisco ASA's to FortiGate firewalls.
• Configured Group Policy Mappings from Firewall Groups to Active Directory Groups on Fortinet and Meraki Firewalls
• Involved in implementation of Threat Prevention or IPS using Juniper Security Director.
• Involved in Testing new hardware and code releases for Juniper SRX
• Used illumio firewalls to segment their applications and reduce the risk of data breaches.
• Serving as a point of escalation for the monitoring team in providing answers and resolving issues.
• Involved in Configuration and troubleshooting on Juniper SRX via Juno space JA2500.
• Configured and maintained F5 SSL VPN and network access and Single Sign-On (SSO) for SAML resources.
• Involved in Designing and configuring of OSPF, BGP on Juniper Routers and Juniper SRX Firewalls
• Working on IDF security Project in assigning IP addresses and changing the configuration part of the devices for connecting the security devices for small branches and Key Business centers.
• Maintaining and implementation on complex data center network design and providing step by step implementation process.
• Working on network segmentation project in implementing all the configurations and network cabling, IOS upgrades for nexus devices and switches 3850, 4500.
• Managing assigned projects and program components to deliver services in accordance with established objectives.
• Providing daily network support for Global wide area network consisting of MPLS, VPN and point-to point site.
• Constructed dial plans in the Call Manager and also remotely troubleshot various implementation problems.
• Worked on multiple projects related to Branch networks, Campus networks, Extranet clients and Data Center Environments involving in data center migrations from one data center to another.
• Supporting EIGRP and BGP based network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Hands on experience on cisco prime infrastructure.
• Worked on upgrading Aruba controllers and Access points in troubleshooting the onboarding devices with the networks.
• Configuring and troubleshooting Apps in bringing online from small and campus environments
• Clear pass policy manager for adding devices and knowing the status of the device and onboarding the devices. Worked on provisioning, Master and local controllers.

Environment: Cisco 7200/3845/3600/2800/2900 , ASR 1000 routers, DDI, 2950/2560/3850/ nexus 7 series switches, Flow, Juniper MX480/960, Python, AWS, Azure, CRS, Cisco ACI, GSR 12000, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, Cisco Meraki, Ether Channels, IEEE 802.11, Sniffer, Tufin, Solarwinds, WAN, sharepoint, Aruba Clearpass, Juniper SRX, Panorama, illumio, VMware, Security Director, Airwave, Clear pass policy manager, Cisco Prime Infrastructure. Juno Space JA2500, Fortinet, Brocade

Confidential, Peoria, IL

Sr. Network Security Engineer

Responsibilities:

• Worked with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for data center access architecture.
• Involved in configuring Cisco routers and switch administration with enterprise level Cisco Routers such as Cisco ASR1004, 7200 series, 3800 series, 3700 series, 2800series, and Cisco catalyst series switches like 6500, 3750 and 4500.
• Deployed Layer 2, layer 3 protocols (BGP, OSPF, STP(PVST+), Ether Channel, Port channels) in Cisco and Arista platforms.
• Performed daily activities like troubleshooting and used Wireshark and monitored the network periodically to check any existing problems in the network, arp, syslog, snmp, netstat, ping, traceroutes, nagios, layer2 & 3 protocols.
• Involved in deciphering annual penetration tests, remediating security threats found therein and employing the latest encryption standards, patches, and or security best practices.
• Involved with data center migration from Cisco to primarily Arista with minimal downtime utilizing VxLAN.
• Experience configuring Virtual Device Context in Nexus 7010
• Designed QoS policies for critical applications based on business requirements and traffic patterns.
• Managed the AWS security policies and network configuration, including AWS direct connect, vpn failover, Multiple VPC's, user and site access to servers and accounts.
• Configured and maintained Quality of Service (QoS) protocols (SIP, SRTP, SDP, IAX) on VoIP along with PBX servers, VoIP Gateways.
• Configured Citrix NetScaler Load Balancer to provide local and DR site Load Balancing.
• Worked with multiple vendor environments including Cisco (ASA, ISR, ASR), Juniper (MX, SRX, EX), Palo Alto (5200) and various NMS platforms including Junos Space.
• Configured LACP, OSPF protocols on Arista 7250qx-64 switches and monitored and created Traffic Pattern on Arista 7250 switches using Open flow.
• Maintained documentation of the DCIM supported systems, inventory, record and track asset information of all systems, and storage and network device equipment in all Data Centers and upload all documents and keep them up-to-date.
• Involved in administration of Check Point and Juniper SRX firewall and supported WiFi network controllers.
• Responsibilities also include technical documentation of all upgrades done. Attending meetings and technical discussions related to current project.
• Worked with Palo Alto firewalls PA250, PA4050, PA3020 using Panorama servers, performing changes to monitor/block/allow the traffic on the firewall.
• Integrated Microsoft active directory (LDAP) into checkpoint for identity awareness and user authentication.
• Managed a very large DNS environment using QIP & manual management of DNS for DMZ/External servers.
• Involved in migrating all NAS type storage and server-based storage to cloud-based solutions.
• Involved in building frameworks based upon SDN and NFV functionality which separates the hardware from the software.
• Responsible for providing ongoing support to application centric infrastructure (ACI) solution.
• Used Aruba ClearPass Onboard feature for bring-your-own-device policy.
• Involved in troubleshooting basic Cisco CRS-1 hardware and software problems used wire shark to Identify and troubleshoot network problems.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Used Infoblox for DNS management of network infrastructure
• Involved in planning and migration of all IT related systems from Brocade NLB's with MS TMG to F5 BIG-IP Local Traffic Manager with APM and MSM modules.
• Used python scripting to automate network implementations and tasks.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Used Juniper SRX to implement site to site VPN as per client and various EX, SRX & J series Juniper devices
• Involved in Configuring InterVLAN Routing on Cisco, Brocade, and Meraki Layer 3 switches to allow hosts in different VLANs to communicate with each other and/or network resources. using various command tools on CISCO routers and network segments at various OSI layers.
• Involved in Junos Space administrator to monitor all Juniper switches on the network and alert outages and errors within remote switches
• Worked to create Direct Connect VPN Connections from AWS back to the physical Data Center for data exchanges or migrations
• Worked on Routers Switches: GSR 12000, 2900 3900, 7200, 7600, ASR 1002. 6500, 4506, 4510, Nexus 7000
• Configure VRRP & GLBP and VLAN Trunking 802.1Q, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Worked on large-scale wireless integrations into existing networks and included Cisco Wireless, Meraki Designed WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.
• Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access. Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Involved in data center migration to AWS cloud.
• Managed INFOBLOX DDI (DHCP, DNS, IPAM) for multi-tenant customer environments
• Implemented SD-WAN for smooth traffic management and security purpose.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Provide Tier III Level Load Balancer expertise on F5 BigIP Local Traffic Managers (LTM). Designing F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Worked with protocols such as Frame Relay, IEEE 802.11 and VLAN, OSPF and BGP, DNS, DHCP, FTP, NTP, SNMP, SMTP, and TELNET
• Once trouble ticket has been created keep customer informed of status of ticket and estimated time to repair.
• Coordinating with service providers for WAN link outages.
• Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.
• Working on Cisco 6509 and 4507 series switches for LAN requirements that include managing VLANs,
• Port Security and troubleshooting LAN issues.
• Design, deployment and maintenance of enterprise networks and datacenters
• Worked extensively in configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Configured, maintained, and troubleshot routers and switches ranging from the 1720 series through the 7200 series routers and the 2900 series through the 6500 series switches in a highly redundant dual-homed environment.
• Managed VMware Virtual Servers using VSphere and Vcente configured Cisco Meraki Layer 2 and Layer 3 switches like MS 225, MS 250 and MS 350
• Monitoring the NMS system for different Network Alerts.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Responsible for Cisco ASA firewall administration across our global networks.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Worked extensively in configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.

Environment: Cisco 7200/3845/3600/2800 routers, Cisco ACI, DDI, ASR 1004/9000, GSR, CRS-1, Flow, Arista, AWS, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Checkpoint, Python, Cisco Meraki, Aruba ClearPass, Panorama, Juniper SRX, Juno Space, Ether Channels, VMware, Fluke and Sniffer, IEEE 802.11

Confidential, Irwing, TX

Sr. Network Engineer/Admin

Responsibilities:

• Project planning, considering requirements for a robust and healthier network and then implementing to connect with existing network is my daily activities.
• Worked on Cisco Catalyst 6500 and Cisco 4948, 7200 series Routers.
• Making changes to the existing design by following DLA and TOR architecture.
• Deployed route reflector successfully to make the network redundant.
• Managed all switches and routers and deployed a syslog server to allow proactive network monitoring.
• Involved in Configuration and Installation of Cisco ASR1002, 3845 routers for the migration of branches to new MPLS cloud rollout.
• Provided support for Microsoft Windows 7, Microsoft Windows Server 2003/2008/Microsoft Exchange 2003/2008/2010 , Active Directory, Sharepoint
• Very familiar with HSRP, VPC, and spanning tree concepts.
• Involved in the deployment and configuration of Citrix Netscaler Load Balancer (intranet, internet) for public websites and provide support as necessary.
• Used Infoblox for documentation and tools updates.
• Involved in Supporting and managing SAN/NAS storage and networking resources.
• Involved in Setup of Aruba ClearPass policy manager and ClearPass guest access manager to authenticate users and onboarded devices to Aruba ClearPass Policy Manage
• Used Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment.
• Configured DNS & DHCP using python library and performed survey and maintenance of WiFi Installations.
• Involved in migration of juniper SRX 240 to Palo-Alto and configured firewall rules
• Involved in the configuration troubleshooting of routing protocols: OSPF, LDP, EIGRP, RIP, BGP v4.
• Responsible for implementing, engineering & level 3/4 support of existing network technologies services & integration of new network technologies / services
• Deploy and manage network infrastructure of VMware, CITRIX XenServer, XenDesktop, XenApp
• Implemented network upgrades for projected network growth and maintaining network bandwidth as per requirement.
• Creating private VLANs & preventing VLAN hopping attacks and mitigating spoofing with snooping & IP source guard
• Enabled STP enhancements to speed up the network convergence that include Port-fast, Uplink-fast and backbone-fast
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE-TO-SITE VPN on Cisco routers between headquarters and branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Configured RHEL servers using shell scripting including creating configuration menu and scripts to make process more efficient and reproducible.
• Key contributions include troubleshooting of complex LAN /WAN infrastructure that includes routing protocols EIGRP, OSPF & BGP
• Installed and configured routers including 1800, 2600 along with Cisco switches including 3750 and 6500
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling

Environment: Windows Server 2003/2008, Cisco ACI, Cisco Catalyst 6500 and Cisco 4948, 7200 series Routers, ASR1002, MPLS, Juniper SRX, python, Citrix, VMware, OSPF, LDP, EIGRP, RIP, BGP v4, EIGRP, OSPF & BGP, Linux