SUMMARY:

• Results driven professional with 13+ years of extensive technical experience in networks. To obtain a potential long - term network engineering position within a diverse LAN/WAN environment where my knowledge, and experience are aptly utilized and challenged to meet the needs of a growing global-minded company.
• In-depth knowledge of Cisco enterprise Routing Switching, DataCenter Technologies and switching platforms.
• Interaction with customers, engaged with troubleshooting calls related to testing VPN tunnels, debugging traffic logs, content filtering based on protocols, application load balancing and creating IP routing and policy rules for inbound/outbound access.
• Worked on Data Center capacity planning, network extension, re-designing of silos based on new hardware addition and involved in decision making process for smooth traffic flow within LAN and enterprise edge devices by defining policies for OSPF/BGP.
• Hands on generating physical and logical network diagrams, writing technical change control documents and present to the approval committee, performed testing on 3rd party equipment before deployment to the production network. Comfortable with 24x7 and on-Call support.
• Ability to effectively Design, implement and troubleshoot multiple IP routing & switching protocols: IGRP, EIGRP, OSPF, BGP, RIP, MPLS, HSRP, VRRP, VTP, STP, TRUNKING, Fabric Path, OTV. VPCs, VDCs and Multicast.
• Hands on Deployment, configuration, troubleshooting and upgrade of Cisco routers/switches ranging from small to enterprise level organizations (ASR1004 to 18xx series), Switches (29xx to 65xx SUP-2/SUP720with10-G series, Data Center Switches Nexus 9k, 7k, 5k, 6k and 1k), Storage MDS and Force10’s switches Comfortable with hardware installation.
• Worked on Enterprise security implementation and support using Juniper ISG 1000/2000 and SRX 1400 Firewalls., Cisco Pix/ASA Firewalls (515 /525 & 5510, 5520), Sonicwall GMS 6.x / Fortinet Firewalls 3950B/ 3810A/Enterprise 5000 series, Checkpoint R65/R70 and PaloAlto Firewall. Skillful on Radius and TACAS protocols (AAA), security vulnerability & sniffing tools like: Nmap, Tcp dump, Ethereal, managing Security protocols including IPSEC, VPNs, Cryptography, Key Management, AAA, ACL, IOS FIREWALL, 802.1x, IOS Security Features, Cisco Secure ACS.
• Working experience with QoS and multicast protocols. Comfortable in building medium/large scale networks, configuring them to run efficiently using methods that include: Redundancy, Data / Voice VLAN, Subneting, and QOS.
• Network analysis and capacity planning experience are using tools like Sniffer, BW monitors, IPSla and Application Performance Monitoring using Orion. Migrated mission critical application to cloud hosted environment in Elliemae
• Hands on Deployment and Configuring of Cisco Aironet Access Points, Meraki, and Bridges, Troubleshooting WAN links including Frame Relay, OC-48, Channelized lines, Fiber Optics Circuits and TenGig.
• Experienced with Network management tools including Cisco Works, Syslog, OpenNMS, and Global Management Systems and taking devices configurations backups with SolarWinds (CATTOOLS).

PROFESSIONAL EXPERIENCE:

Confidential, Iselin, NJ

Senior Network/Security Architect

Responsibilities:

• Developed architectural strategy, including technology standardization and modernization of enterprise, data center and disaster recovery network infrastructures.
• Designed and Implemented Security Architecture, providing support, and evaluation of security - focused detection/ audit tools and services that can be used for network security testing, internal audits, incident response, and diagnosis of security-related network issues
• Develop, Design, Deployed Cisco Nexus line switches in Primary and DR HomeBridge Datacenters. In addition that deployed multiple 6500 series switches in multiple large branches.
• Deployed Enterprise Wireless solution in Homebridge Confidential many remote locations such as Meraki and Aerohive
• In security realm done multiple Firewall deployments such Cisco ASA (5545-X, 5525-X FirePower Appliance, Risk Analytics IntelliShun appliance, Dell Sonic wall Security appliance for IPS/IDS, Gateway Antivirus and Anti-Spyware protection.
• Deployed Cisco AnyConnect and deployed Sonicwall Avential SSL VPN Appliance for remote access to internal resources, In addition to that deployed Cisco ScanSafe for WEB URL Filtering.
• Deployed F5 Load balancers for applications/webservers load balancing, In addition to that applied Application Firewalls for L7 protection. Performed multiple cloud integration to Microsoft Azure and using Amazon AWS for DNS Services.
• Created and maintained demand forecasts for core network services, and uses this as input to network roadmap and budget process.
• Supported network security technologies such as Intrusion Detection System/Intrusion Protection System (IDS/IPS), Virtual Private Network (VPN), Remote Authentication Dial-in User (RADIUS), Terminal Access Controller Access-Control System (TACACS), access lists, firewall rules, content filters and secure gateways.

Confidential, Jersycity, NJ

Senior Network Consultant

Responsibilities:

• Responsible in all technical aspects of LAN, WAN, Wireless, VoIP, VPN and security internetworking projects including, short and long term planning, implementation, project management and operations support as required.
• Administrate and maintain the security policy on Juniper Firewalls such as ISG1000/2000 and SRX 1400 using NSM, and Cisco ASA 5500 series using SDM.
• Administrate and maintain the security policy on Juniper SSLVPN appliances such as SA2000 and SA4500.
• Administrate and maintain A10 LTM Load Balancers for Web application.
• Administrate and maintain Cisco and Aerohive wireless network infrastructure.
• Administrate and maintain Bradford Network Access Control (NAC) service.
• Test and evaluate various equipment, systems, IOSs and procedures for use within the network infrastructure.
• Continually monitor, assess and improve network security, test and implement new security technologies.
• Schedule proposed network changes and worked with major business units to identify their impact.
• Member of NY Headquarter Relocation team responsible for designing and planning of the migration of the datacenter and data/voice network.
• Minimize the downtime during migration for smooth transition.
• Member of Emergency Responder team for the Network Engineering group on all major issues, such as outages, circuit issues, networking/security issues, and VoIP issues.
• Provide support after normal business hours and respond to emergency work requests in critical situations.

Confidential, Redbank, NJ

Senior Network /Security Engineer

Responsibilities:

• Providing operational support to Production network of Tekmark.
• Responsibilities include 3rd/4th level support for detailed design, configuration, maintenance, and redesign of all customer networks for Managed Network Solutions.
• Providing technical support for all Production silos, interact with end - clients and customers and support datacenters operations. Participate in network architecture and design.
• Troubleshooting multiple protocols including IP, OSPF, EIGRP, BGP, HSRP, STP, and VTP on Cisco routers/switches.
• Worked on a range of devices from different vendors including: Cisco 6500/4500/3700/3500/2900 switches, 1800/2800//2600/3600 series routers, Juniper ISG1000/2000, NSM, SRX 1400 s, Sonicwall E7500 NSA 4500 SSG 550M/ISG 2000/NS-204 & 100 firewalls, BIG IP F5 1600, 3600, 3900 series load balancers.
• Administrate and maintain Fortinet Fortigate Firewalls, Forti Analyzer and Forti Manager.
• Coordinated efforts with Global Engineering to ensure all network devices conformed to defined network standards.
• Scheduled proposed network changes and worked with major business units to identify their impact.
• Problem resolution of network and systems infrastructure as required, including 24x7 on-call support.
• Implemented a network monitoring system using OPENNMS, GMS6.x to document, report, and notify of network status.
• Worked on Data center migration, device up-gradations, testing.
• Maintain Visio documentation database of network topology. Help establish guidelines and standards for Change Procedures.

Confidential, Rutherford, NJ

Senior Network Engineer

Responsibilities:

• Responsibilities include detailed design, configuration, maintenance, and redesign of all branch networks for Managed Network Solutions.
• Developed detailed plan to migrate more than 150 branches spread across US and Canada from frame relay to MPLS.
• Installed and tested Cisco ACS Server 4.x to enforce Authentication, Authorization and Accounting of secured network equipment.
• Scheduled Frame - Relay to MPLS cutovers with Citi Global Network Command Center to streamline pre and post troubleshooting steps to minimize downtime and network impact.
• Maintain Visio documentation database of network topology. Help establish guidelines and standards for Change Procedures.
• Provide technical support, operations and problem resolution of network and systems infrastructure as required, including 24x7 on-call support

Confidential, Jersey City, NY

Senior Operations Engineer

Responsibilities:

• Implemented Network design life cycle PPDIOO for critical and non - critical technology so that your operation runs smoothly and uninterrupted, ensuring round-the-clock, reliable performance, as well as rapid escalation and quick remediation in the event a problem is detected.
• Worked directly with clients, internal staff and third party vendors to monitor maintain and troubleshoot customers' IT environments.
• Documented problems by accurately and completely recording relevant information in technical logs and trouble ticketing system, including diagnostic results, multiple product correlation, and escalation and repair performance information.
• Responded to network activities as required, which includes supporting Service Level Agreement (SLA) commitments between network operations and internal/external customers.
• Prepared escalation procedures when outage events and/or impairments are not resolved in the prescribed amount of time.
• Reduced network downtime using wide variety of network tools such as VNC, Crystal Reports, Remote Citrix and Compaq Insight Manager
• Performed event correlation for Noise and false positives reduction by correlating events from various security sensors and accurately identifying critical security incident.
• Monitor dozens of customer critical network issues using CA TNG OpenNms and escalate in timely professional manner, creates tickets, track follow up, troubleshoot, resolve.

Confidential, Piscataway, NJ

Senior Network Support Engineer

Responsibilities:

• Member of (Emergency Responder team) for the Networking group on all major issues, such as outages, circuit issues, networking/security issues, and VoIP issues. Work with Cisco TAC and Confidential & Confidential Operations to resolve the problems. Provide support after normal business hours and respond to emergency work requests in critical situations.
• Supporting & troubleshooting Confidential main data network that caries all the critical all business traffic includes campuses, data center, core sites, call centers and security DMZ zones which has a mixed high end technologies and Cisco high end routers & switches.
• Implementing & supporting the High Speed Back Bone project which builds the MPLS core network nationwide for Confidential including the Cisco GSR series and validating Quality of Service for VOIP, MPLS/VPN, core BGP sites.
• Participate in design conferences, produce network diagrams and detailed network documentation including logical and physical diagrams as required. Maintain technical and vendor product information and assisting in establishing performance standards, policies and procedures for the enterprise.
• Hands on experience with Confidential & Confidential propriety network provisioning tools such as SOTS, Instar, Pocits, Mocars, ESOR - Writer, Clarify and AOTS. Support and Manage IOS/CatOS upgrades /changes following accepted TCC procedure for the network devices within North America
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.