SUMMARY:

• I’ve over 8 years of experience in the network and application engineering field including: network design, implementation, troubleshooting, support,, vendor management, sales support, and budget planning.
• Involved with many large - scale, complex projects requiring a unique blend of expertise in strategic planning, process development, and leadership, along with in-depth technical knowledge.
• Strong experience with project management. Have led and managed multiple large-scale projects including developing project plans and schedules, allocating resources, and providing detailed status updates to management.
• Optimized network performance by gathering network statistics, benchmarking network performance, analyzing design alternatives, and recommending and implementing solutions. Makes recommendations of ways to identify and resolve problems or impairments in the network.
• Designed, planned and implemented network solutions to fulfill the business unit’s requirements. Configured and installed routed network hardware and software components.
• Experience in Network, Design, Configuration, and Troubleshooting SD-WAN, VPN, Cloud-based Data Center, LAN, MAN, WAN, Data Center, Wireless, Security in various platforms: Amazon, Microsoft Azure, Cisco, Arista, Juniper, VMware, Juniper, HP-Aruba, Palo Alto, Checkpoint, Viptella, Meraki, Fortinet, Silver Peak, VeloCloud, F5, Citrix, Riverbed

TECHNICAL SKILLS:

• Cloud Based Data Center: AWS, Azure, Google, Aviatrix Multi - Cloud Network Architecture (Overlay)Fiber Optic Carrier Integration: SONET, DWDM, ATM, F/R, ISDN, PSTN, T1/E1 T3/E3, Metro Ethernet, MPLS
• Campus LAN & Data Center: STP, vPC, vPC+, VSS, Fabric Path, VxLAN in Cisco ACI and VMware NSX-v, GENEVE VMare NSX-T
• Routing Protocol: TCP/IP, EIGRP, OSPF, BGP, MPLS, IPSec VPN, MultiCast, DMVPNVPN: GRE, mGRE, SSL, IPSec, DMVPN, Aruba Global Protect, Cisco AnyConnect
• SDWAN: Viptela, Meraki, Fortinet, SilverPeak, VeloCloud
• Security: NGFW Palo Alto, Panaroma, FirePower, ASA, CheckPoint, Fortinet, Barracuda, Juniper
• Wireless: Cisco WLC FlexConnect, Meraki, HPE/Aruba Master Mobility & Controllers
• Network Access Control (NAC): Cisco ISE, Aruba ClearPass, Radius, 802.1X
• WAN Optimization: F5 LTM/GTM; Citrix NetScaler, XenServer, XendDesktop & XenApp; Riverbed Steelhead
• SAN: FC/FCoE to support SAN solution from Dell EMC, HPE Nimble/3PAR, IBM, NetApp
• Voice over IP: Cisco Unified Communication Manager, Call Center, Avaya, SIP, MGCP
• Network Management: SNMP, Solarwinds, Paessler PRTG ; Net Flow (Layer 3, 4, 5), nGenius Probes, CiscoWorks, HP OpenView, Tivoli TME, FireScope, Netreo OmniCenter, Niksun NetVCR, NetQoS
• Networking: with Virtual Networks VPC, VPNs, AWS Cloud Hub, DirectConnect, VPC Peering, Transit VPCs
• Load Balancing: AWS Elastic Load Balancer (and other vendors Barracuda, F5, EdgeNexus, etc.), DNS Route53
• Security: IAM services (Identity Access Management); Encrypting data via KMS keys; ACM (AWS Manager); Application Firewall WAF (and other vendors Barracuda, Palo Altos, etc.); Security Compliance with AWS Inspector (internal scanning)
• Computing and Data Storage: Virtual Machines EC2 with storage EBS, Database Cache ElaticCach, DB RDS/DynamoDB; Serverless Lambda, Docker
• External Storage: S3; Video format converter service
• Content Delivery Service: by AWS CloutdFront which caches data in different Edge Locations (S3 data gets cached in nearest Edge Locations where users coming traffic)
• Azure Cloud Cloud Based Virtual Data Center:
• Storage: Blob, Table, Queue, File, Data Lake Store, Backup, Site Recovery, SorSimple
• Network: Vnet, Load Balancer, Application Gateway, Traffic Manager, Express Route, VPN, DNS
• Database: SQL DB/DW/SD, Cosmos, Redis Cache, Data Factory
• Compute: VM, Cloud service, Service fabric, Batch, VM scale sets, Container services
• Monitoring: Log Analytics, Monitor, Alert
• Security: Azure B2C, Azure MFA, Azure AD, Key Vault, Security Center
• Platform as a Service: Cloud Service, App Service, Service Fabric
• Network Monitoring: Fault and Performance: Zabbix, Nagios, Solarwinds, CA Suite Spectrum, CAPM (CA Performance Manager), Netflow to ELK. Packet Analysis: Netscout and Wireshark. Logging: ELK and Splunk

PROFESSIONAL EXPERIENCE:

Confidential - Johnston, RI

Network Consultant

Responsibilities:

• Provided Network Administration, Implementation, Migration, Support for:
• Migrating Legacy VPN/DMVPN to SD-WAN
• Routing: EIGRP, OSPF, BGP (over Ethernet and VxLAN)
• Security: Next Generation Firewall Palo Alto - Internet Failover; App-ID Security Policies; IPSec VPN Tunnels; Global Protect
• SD-WAN: Viptela, Meraki, Fortinet, SilverPeak, VeloCloud
• Data Center ACI & VMware NSX-T; Fabric Path; vPC, vPC+
• Network Access Control (NAC): Cisco ISE, Aruba ClearPass, Radius, 802.1X
• WAN Optimization: F5 LTM/GTM; Citrix NetScaler
• Security: NGFW Palo Alto, FirePower, ASA, CheckPoint
• Wireless: Cisco WLC FlexConnect, Meraki, HPE/Aruba Master Mobility & Controllers
• Cloud-based Data Center: AWS, Azure; Physical and Cloud-based Data Center Connectivity
• Cloud Transit Network: Direct VPN/VNET Peering. Hub/Transit VPC interconnects multiple VPCs
• NetScaler: Integrate the Application Delivery Controller (ADC) with StoreFront, XenApp, XenDesktop, Web Services, and Mail/File service

Confidential - Woonsocket, RI

Sr. Network Engineer

Responsibilities:

• Third Level Engineer in Design/Implement/Support Enterprise Network:
• DMVPN for Retail Stores and Data Center. Migrating DMVPN to Viptela SD-WAN
• Routing: EIGRP, OSPF, BGP
• LAN Network: Cisco, Juniper, Arista
• Security: Next Generation Firewall Palo Alto - Internet Failover; App-ID Security Policies; IPSec VPN Tunnels; Global Protect
• SD-WAN: Viptela, Meraki, Fortinet
• Data Center ACI & VMware NSX-T; Fabric Path; vPC, vPC+
• Network Access Control (NAC): Cisco ISE, Aruba ClearPass, Radius, 802.1X
• WAN Optimization: F5 LTM/GTM; Citrix NetScaler
• Security: NGFW Palo Alto, FirePower, ASA, CheckPoint
• Wireless: Cisco WLC FlexConnect, Meraki, HPE/Aruba Master Mobility & Controllers
• Cloud-based Data Center: AWS, Azure; Physical and Cloud-based Data Center Connectivity
• Cloud Transit Network: Direct VPN/VNET Peering. Hub/Transit VPC interconnects multiple VPCs
• LAN/WAN Network Traffic Analyze and Identify suboptimal network paths (congested links) and new network design/implement to optimize network traffic
• Network/System/Application Support:
• Participate in Level 3 troubleshooting tickets in related to network, servers, firewalls, cloud resources
• Monitors and remediates an extensive IT environment (databases, servers, firewalls, Cloud, and business critical applications) using various enterprise monitoring tools.
• Participates in the development, evaluation, and execution of the company’s strategic plans.
• Monitors ITSM ticket queue to ensure the resolution of issues efficiently and effectively, escalates tickets to other teams as required, and documents all troubleshooting steps and pertinent information.
• Reviews and updates department procedures.
• Participates in the creation and revision of department policies.
• Develops knowledge base articles of problems and solutions.

Confidential, Denver, CO

Network/Data Center Engineer

Responsibilitie

• AWS/Azure/On-Premise Sites/Data Center Integration:
• Cloud-based Data Center: AWS, Azure; Physical and Cloud-based Data Center Connectivity
• Cloud Transit Network: Direct VPN/VNET Peering. Hub/Transit VPC interconnects multiple VPCs
• Migrating ASA to Firepower firewall. Migrating Firepower to Palo Alto Firewall
• Aviatrix Transit Network with Palo Alto VMs Network Service to provide:
• Firewall traffice inspection: VPC - VPC; VPC - On Premise DCs; Ingress/Egress
• ELB for Ingress; Ingress SNAT
• Scaleout multiple VM-Series instances
• IPSec ECMP for BGP
• Migrate on premise servers, data base to clouds.
• WAN primary AT&T Netbond/DirectConnect/ExpressRoute with IPSec VPN as backup for AWS/Azure/On-Premise Sites/Data Center communication.
• Setup “private” and “public” peering connection. Setup intra/inter/transitive peering with Aviatrix controllers and gateways.
• LAN Network: Cisco, Juniper, Arista
• Setup cloud Barracuda, Palo Alto firewall Intrusion Prevention, Port Forwarding, and Web Application Firewall
• Created multiple Python scripts to automate my daily task in AWS and AzureData Center Migration Engineer:
• Design and Implement “Pseudo-wired tunnel - L2 Bridging Across and L3 Network (L2TPv3)” to connect 2 data centers over the Internet to allow gradual network, server, storage migration
• Replacing data center VPC and Fabric Path with VxLAN
• Implemented SD-WAN: Silver Peak and Meraki
• Routing: EIGRP, OSPF, BGP
• Design and implement SAN network include: EMC VNX storage; SAN switches: Brocade FC switches; Juniper
• AWS/Azure/On-Premise Sites/Data Center Integration:
• Migrate on premise servers, data base to clouds.
• Netbond/DirectConnect/ExpressRoute with IPSec VPN as backup for AWS/Azure/On-Premise Sites/Data Center communication. Setup “private” and “public” peering connection.