SUMMARY:

• Cisco Certified Network Engineer with 7+ years of experience in the industry, which includes expertise in the areas of Routing, Switching, Firewall and Load Balancing
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP ability to interpret and resolve complex route table problems.
• Implementation traffic filters on Cisco routes using Standard, extended Access list
• In - depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture
• Strong knowledge and experience on Amazon Web Services (AWS) CloudserviceslikeEC2, S3, EBS, RDS, VPC, and IAM.
• Worked with a successful Cisco Partner to migrate Palo Alto 5050 firewalls to CiscoFirepower9300 firewalls with throughput up to 1.2Tbps crushing the current slow Palo Alto 5050s. Responsible for the end to end design of the solution and then the migration of the policies, NAT settings, routing, logging, and VPN configuration.
• Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R75 firewalls
• Hands on experience working with Cisco Nexus 9K, 7K, 5K & 2K Switches
• Experience in Cisco, Aruba wireless access points and controllers
• Extensive understanding of the Application Security Module (ASM) technology
• Experience in working with load balancer for converting CSS to ACE
• Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application
• Strong hands on experience in installing, troubleshooting, configuring of Cisco 7200, 3800, 3600, 3400, 2800, 2600, 2500, 1900, 1941, 1921 and 1800 series Routers, Cisco Catalyst 6800, 6500, 4500, 3750, 2950, 2960 and 3500XL series switches
• Experience with Layer 2 and Layer 3 protocols like LDP, RSVP/ TE, QOS, COS L2 VPWS and VPLS, FRR
• Responsible for network design, projects and support across the globally co-located data center networks.
• Experience on Virtual Private Network (VPN) for operating Network and Data Center
• Experience with Internet/Intranet Networking Protocols and Services
• Implementation of HSRP, VRRP and GLBP for Default Gateway Redundancy and troubleshooting
• Experience in Cisco WAAS and Riverbed for WAN optimization
• Excellent qualities such as Teamwork, Negotiation, Analysis and Communication

TECHNICAL SKILLS:

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP. Wireless networks such as microwave point-point, point- multipoint and wireless mesh network RF (Radio Frequencies) technologies, CISCO ACI

Networking Hardware: Cisco Switches (9k, 7k, 5k), Cisco Routers, ASA/Pix firewalls, Checkpoint firewalls, Palo Alto and Big IP F5 Load Balancers

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS: IS, BGP, Multicasting

Security Technologies: PAP, CHAP, Cisco PIX, Checkpoint, ASA, Bluecoat proxy

Network Monitoring: Cisco Works 2000, Wire Shark, Solar winds, Network sniffer & packet analyzer, Infoblox, Solar Winds

Routers: CISCO 1900, 2600, 2800, 3600, 3800, 7200, ISR-2900, 4000, ASR-1k, 9k Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Switches: CISCO 2900, 3500, 3750, 3850, 4500, 5000, 6500, 6509, 6800, 6807, 7509, Nexus 7k, 5k, 2k

Load Balancers: Bigip F5 LTM 1600,3600,3900,6900, F5 Viprion

Firewalls: Cisco ASA 5500, Juniper net screen (500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), Checkpoint(R65, R70, NGX), Palo alto 220, 820

Confidential Architecture: TACACS+, RADIUS, Cisco ISE

Features & Services: IOS and Features, HSRP, GLBP, IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, NetFlow, Open Stack, IVR s, HLD and LLD documents, Dell equal logics, Microsoft Visio diagramming

Firewall & Security: Checkpoint (NGX R65, R77-80), Cisco ASA 5505 Firewall, Juniper Net Screen firewall

PROFESSIONAL EXPERIENCE:

Confidential, Bedminster, NJ

Sr. Network Engineer

Responsibilities:

• Responsible for Crossroads rollout LAN/WAN problem determination and diagnosis, provide project leadership (onsite, offsite)
• Working with local IT personnel on troubleshooting, problem determination, diagnosis of performance issues, bandwidth issues, throughput traffic prioritization to improve overall application response time across WAN
• Installed, configured and maintained DNS systems using BIND, Ultra DNS and Route53 (AWS)
• Configured and installed VoIP CUCM and cisco unity system, prepared network assessment for testing utilization for VoIP traffic and deployment and trained the user with more value-added services
• Responsible for performing the functional testing and bug verification of L3 protocols on cisco routers
• Used IP telephony to connect to the remote employees through WAN
• WAN optimization POC utilizing Riverbed steelhead, Cisco WASS and silverpeak appliances. Configured and installed devices into pilot sites and production data center
• Monitoring IP address blocks, Address inventory, DHCP scopes for all the inside network infrastructure through IPAM infoblox
• Worked with Network team to review current VLAN configuration, IP routing and firewall access control for existing networks, and applying the necessary network and security access rules to the installed equipment
• Allocation and designing appropriate virtual IP for F5 ADC through IPAM infoblox
• Worked with web security gateway like bluecoat proxy for content filtering, authentication and ICAP relay
• Assisting in break/fix network incidents and make necessary configuration changes like creating multiple logical switches by creating VDC’s on Cisco 9k
• Configured Nexus 7010 and 7700 with multiple distributions VDC’s running EIGRP for route propagation between them
• Monitoring Net flow protocol to control network traffic using solarwinds and analyze the packets for troubleshooting
• Worked with F5, CISCO ACE 4710 Load balancers, GSS and Wireless networks
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters
• Also worked with Extreme networks wireless devices like Access points AP3705, AP3610
• Experience in working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches
• Deployed Cisco 2500 and 5800 Series Wireless Controllers and 1xxx and 2xxx series Access Points
• Worked with Cisco ASA 5525 firewalls with current and demonstrated expertise with ACL security in a multi-VLAN environment
• Troubleshoot network Topology specifying the whole infrastructure for wireless LAN that includes Access Points, Distributed system switch, wireless LAN controllers
• Experience in working with LTM and GTM for scaling and securing DNS infrastructure during high volumes
• Working with ITS networking teams to install an Avaya VoIP phone system and tested the phone system connectivity and functionality
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems
• Designed, Integrated and rolled out more than 10 Wireless regional wide area networks (WAN/WLAN) for remote video surveillance system
• Monitor the egress and ingress filtering for the LAN and WAN traffic at the ingress and egress points
• Familiar with the working environment of Palo Alto networks
• Experience in Configuring and troubleshooting Palo alto switches PAN 5060
• Documenting network configuration, root cause analysis, MOPs for all new equipment and creating equipment configuration backups and monitoring to work with existing DIRM network systems

Environment: Cisco Catalyst 7509, 6500, 4500, 4000, 3750, 3850, 3560, F5 BIGIP LTMs-6900,Cisco ASA 5525 firewalls, Power Connect Switch 5548,Infoblox,MPLS,Multicast,Nexus-7k, Palo Alto 5060,PCI,SOX,OTV,VPC,Nexus-FEX,IOS,IOS-XR,NX-OS,IPSEC,Frame Relay, OSPF, EIGRP, BGP, IS-IS, ASR 1k,9k,cryptography,L2&L3 VPN, Metro Ethernet,802.1Q,Riverbed Steelhead, UCS, Multicasting

Confidential, Milwaukee, WA

Sr. Network Engineer

Responsibilities:

• Involved in the configuration & troubleshooting routing protocols like MP-BGP, OSPF, LDP, EIGRP, BGP v4, and MPLS
• Hands on experience on F5 BIGIP LTM. F5 Load Balancer Design, Implementation and management
• Experience with Installing and troubleshooting Data center migration with 24/7 support
• Expert in configuring Cisco Routers, Catalyst Switches, Nexus Switches
• Upgraded Cisco 6500, 3750, 2960s, Nexus 5000, Nexus 2000 and Nexus 7000 switch software
• Worked in Spine-Leaf network architecture involving Nexus 7K, 5K and 2K
• Worked extensively with ASR 9K( ), Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches
• Creating object, groups, updating access-lists on Palo Alto Firewall, apply static NAT
• Monitor performance of network appliances and WAN utilizing using network analyzer like Wireshark.
• Migration from Cisco 6500 to Nexus switches
• Configured theFirepowerchassis in clustered and then after HA mode to meet the clients ever changing design
• Review the client's Palo Alto configuration and map it to CiscoFirepower9300 features
• Experience with the connectivity of Cisco Networking Equipment with F5 Load Balancer
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall
• F5 GTM Advisory role for GTMupgrade for a major Security Monitoring Services provider
• Demonstrated proficiency inNetworkAdministration in large datacenter environment - DNS/DHCP, Load Balancing (F5Networks,AWSELB), Firewalls (Cisco Systems, JuniperNetworks), IDS/IPS, IPSEC VPN).
• Configuration and providing management support for Palo Alto Firewall
• Configuration, Troubleshooting, and Maintenance of Palo Alto Firewalls (36+ firewalls) - PA200, PA800 series, PA3000 series and PA5000 series
• Successfully configured and maintained Site to Site IPSEC and SSL VPN's on Palo Alto firewalls
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Helped installed F5 VIPRION load balancers for one of our new data centers
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls
• Monitor and troubleshoot BGP, EIGRP, TI circuits, and cellular backup circuits via ICMP and SNMP ticketing systems
• Configured name and numbered VLANs for Cisco switches
• Configured various routing protocols such as EIGRP, OSPF and BGP Cisco routers
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Monitoring and troubleshooting traffic on Palo Altofirewallthrough Panorama
• Palo Alto installation, configuration, administration, monitoring and implementing the policies
• Implementation of various protocols like OSPF, BGP and STP
• Blacklisting and Whitelisting of web URL on Blue Coat Proxy servers
• Provided administration and support on Bluecoat Proxy for content filtering and internet access between site and VPN client users
• Worked on design, configuring and managing of Blue Coat Proxy Servers
• Deploying Cisco ASA and Bluecoat ProxySG (Web Security Appliance) S170 for URL Filtering Policies
• Worked on Blue Coat Proxy SG to safeguard web applications (Blacklisting and Whitelisting of web URL) in extremely untrusted environments such as guest Wi-Fi zones
• Experience with TACACS+ and RADIUS server
• Adding agents (IDS/IPS) at Host and Network level to Sentinel
• Develop Engineering Documentations to record F5 environment and change processes LTM/iRules
• Experience with telephonic protocols like ATM and PBX

Environment: Cisco routers and switches, Cisco routers 7200; Cisco Catalyst switches 6500, 4500, 2950; Cisco ASA Firewalls, Routing Protocols OSPF, BGP; STP, VTP, VLAN; VPN, MPLS, HSRP, GLBP, Big-IP F5 Load Balancer, Cisco Works, Cisco ASA and Palo Alto firewalls, Blue Coat Proxy

Confidential, Mount Laurel, NJ

Network Engineer

Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies. Cisco CLI, Cisco works, Network Security, Network Analysis Tools
• Experience with Checkpoint Firewall policy provisioning
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Worked with telecom vendors regarding network fault isolation
• Worked on Checkpoint NGX R65 firewalls for building the ACL rules for the extranet connectivity and implementation of the rules on the corporate firewalls and monitored logs for the issues
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards
• Estimated Project costs and created documentation for project funding approvals
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration
• Network security involves web filtering on internet sites (User's restriction) using checkpoint Firewalls
• Planned resources and presented project status to higher management
• Deployed 7613 as PE and CE router and configured and troubleshooted the Edge Routers
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12
• Created and delivered internal trainings for BGP
• Configured egress and ingress queues for ISP facing routers using CBWFQ
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems
• Ability to analyze, configure and troubleshoot networks
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations

Confidential, Tampa, FL

Network Engineer

Responsibilities:

• Responsible for implementing, supporting, and maintaining 24x7 network services
• Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.
• Configure the Cisco CRS-1 Routing System, back out of configuration changes, and restore older versions of a configuration
• Troubleshooting of Cisco 2800, 2900, 3900, 7200, 7600, Series routers
• Configure the Cisco IOS XR security features in both owner SDR and non-owner SDRs
• Configure legacy route map configurations using the new Cisco IOS XR Routing Protocol Language (RPL)
• Worked with Juniper net Screen 500/5200 and also juniper SRX 650/3600
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs
• Worked extensively on troubleshooting 2900 series routers
• Experienced working with Tomcat and Apache servers in troubleshooting network issues for our internal server teams
• Designed on - premise IVRs for integrating with the ACD and CRM systems to ensure maximum efficiency in call handling
• Performed redistribution with OSPF, NAT, RIP version 1 and 2 to enable communication with backbone.
• Configured OSPF for Stub area, Totally Stubby Area and NSSA
• Executed BPDU Guard, port-fast, uplink fast and other spanning tree features on various layer 2 and layer 3 switches
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems
• PGW, XGW and SGW configuration on Data communication networks such as 4G LTE, CDMA, WCDMA network
• Route configuration and point code checks for System Technician and Network Technician
• Knowledge and experience of 802.11 a/b/g/n Ethernet standard for wireless Technology
• Worked with other team members in testing of the network architecture
• Participated in quality system implementation project
• Configure wireless routers on enterprise network

Environment: Riverbed, wireless-LTE, CDMA, WCDMA, Extreme Access Points- AP3705, AP3610, Cisco Wireless Controllers 2500 and 5800,802.11a/b/g/n, IOS, STP, PVST, RSTP, MST, Juniper- net Screen 500/5200, SRX 650/3600, FCOE, IPS, OSPF, EIGRP, BGP, NAT, Citrix-Netscalar

Confidential

Jr. Network Engineer

Responsibilities:

• Responsible for managing network & security at the Data center
• Implementation and configuration of Firewalls Especially Checkpoint and Cisco ASA
• Work on Policy administration of Cisco and Checkpoint Firewalls
• Troubleshooting end user connectivity issues through the firewalls and network
• Making sure the NAT is applied appropriately on the firewall for all the third party and DMZ traffic
• LAN/WAN level 3 support (diagnose and troubleshoot layer 1, 2, 3 problems)
• VLAN’s design and implementation, Spanning Tree Implementation and support using PVST, R-PVST and MSTP to avoid loops in the network. Trunking and port channels creation
• Responsible for ASA 8.x Firewall and Troubleshooting, IOS Security Configurations, IPsec VPN Implementation and Troubleshooting, DMZ Implementation and Troubleshooting
• Troubleshooting Layer 2 and Layer 3 issues
• EIGRP and RIP version 1 & 2 Routing Protocols. Redistributing from OSPF to EIGRP and vice versa
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Transition
• DNS, DHCP services configuration and support
• Deployed a Syslog server to allow proactive network monitoring
• Implemented VLANS between different departments and connected them using trunk by keeping one VLAN under server mode and rest falling under client modes
• Configured Client VPN technologies including Cisco's VPN client via IPSEC
• Configured Firewall logging, DMZs and related security policies and monitoring
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches
• Installing and configuring System Center Configuration Manager 2007
• Worked on Site Recovery Manager 5.0 for Disaster recovery