SUMMARY:

• Network engineering professional with over eight years of experience in network design, implementation, troubleshooting and management of large - scale enterprise networks.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Experience working with 2600, 2900, 3600, 3800,3900, 7200, 7600 series Cisco Routers
• Proficient in configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and Nexus 2248, 5548 and 7010 switches.
• Hands-on experience with Palo Alto firewalls (pa 200, pa 500).
• Implemented Quality of Service throughout the network infrastructure and was responsible for policy routing.
• Expert in configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter VLAN routing and VLAN trunking using 802.1q.
• Installation, advanced configuration and troubleshooting of Cisco and F5’s load balancing devices.
• Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and policy routing over Cisco routers.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps, and route manipulation using Offset-list.
• Managed inventory of all network hardware. Management and monitoring by use of SSH, Syslog, Netflow, SNMP, NTP.
• Network security skills include Telnet, SDM, NAT/PAT, ACLs, AAA, ASA firewall.
• Knowledge in implementing and configuring F5 Big-IP LTM-6400 load balancers.
• Worked on T1/E1/T3 technologies and different LAN & WAN technologies.
• Hands on experience with Cisco ASA and Checkpoint Firewalls and cloud-based systems like Azure.
• Experience in F5 LTM, APM and ASM 4500 appliances to include of creating pools and nodes.
• Performed professional level documentation using Visio diagrams.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution layer.
• Excellent verbal and written communication skills and fast learner of new technologies.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds etc.
• Worked on deployment of network architecture cloud.
• Excellent inter personal, solid project management and client management skills
• Good understanding of SOX 404 AND COBIT 5 industry requirements.
• Experience on PCI compliance evaluation.
• Good knowledge on auditing and evaluating IT controls.

TECHNICAL SKILLS:

Cisco Routers: Cisco L2 & L3 Switches

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC.

WAN Technologies: Frame Relay, PPP, HDLC, T1/T3, DS3, OC192

Firewalls: Cisco ASA, Pix, FSM, Juniper SRX, Palo Alto, Checkpoint, Fortinet

OS products/Services: DNS, DHCP, Windows (2000/2003, XP), UNIX, LINUX.

Protocols/Services: Gateway Load Balancing

Routing Protocols (RIP v1 & v2, OSPF, EIGRP, BGP), IPSec: HSRP, GLBP

Network Management Tools: Wireshark, Fiddler, Netflow Analyzer, NetScout, IBM Netcool, Cisco Works, Ethereal. OPNET Modeler, Bluecoat, cisco meraki.

Security Server Protocols: TACACS+, RADIUS

Facilities: DS0, DS1, DS3, OCX, T1/T3

Load Balancers: Cloud security

Operating systems: VM ware

MS: A10 Networks(AX2500), Cisco CSM, F5 Networks (Big-IP), L4, L5 Load balancers.

SD-WAN, DCC.: Linux, UNIX, windows.

NFV, SDN: Word, excel. PowerPoint.

PROFESSIONAL EXPERIENCE:

Network Security Engineer

Confidential, Los Angeles, CA

Responsibilities:

• Worked on a business framework complying COBIT 5 (ISACA).
• Hands-on experience with Palo Alto products (PA-200, PA-500PA-7050,PA5000,PA3000).
• Worked on Palo alto network APP ID to customize applications meeting client’s needs.
• Experience identifying threat id on Palo-alto under antivirus signature tools like(SWFZWS- 6000000.6000500 ).
• Good understanding on policy and log management deploying virtual Palo alto integrating panorama
• Strong experience in networking, including hands-on experience in providing network support, installation, upgrades, analysis for a broad range of LAN/WAN communication systems.
• Responsible for establishing and maintain a corporate-wide information risk management program.
• Maintain, and implement network access, security, and services, operations support and troubleshoot for network equipment, skills in architecture and design of network security.
• Knowledge of Data networks, monitoring all the network components.
• Configuration and installation of Barracuda firewalls.
• Experience with SolarWinds, Active Directory.
• Experience with AWS services: AWS Flow logs, VPC.
• Installation, configuration, migration and troubleshooting of VLANS, Port security, Trunking, STP, RSTP, Rapid PVST+, PPP, VTP, 802.1x, VLAN, L2VPN- L2TP, RTP, VTP, VPN, Inter-VLAN routing, and LAN security.
• Configuring and implementing and troubleshooting Remote Access Solution: IPSec VPN, Anyconnect VPN, SSL, VPN, and GRE.
• Working knowledge of SNMPv3, SNMP Traps and Syslog.
• Strong networking concepts, firewalls, VMware, VLAN, Linux based networking, Cisco routers, switches, access points.
• Worked with Cisco Catalyst 6500, 4500, 3750, 3560, 2960 switches and Cisco 2800, 3600, 3800, 7200, 7600 and ASR series Routers.
• Enterprise-level Cisco ISE configuration and troubleshooting, good experience implementing Cisco Prime.
• Worked Extensively on Cisco Firewalls ASA 5500(5520/5540) Series and internet proxy devices.
• Perform quality-assurance testing on new firewall platforms, functionality, and technology.
• DMZ Network infrastructure knowledge including topology, security policies.
• Experience in threat prevention,Wildfire,URL filteringand Global Protect functions.
• Experience in Securing Amazon Virtual Private Cloud Infrastructure.
• Involved in the team for designing and Configured Nexus 7000/5000/2000 in Top of Rack & End of Row Architecture for a Scalable Production Network that supports Rack & Blade server architecture in a Multi-Tenancy environment using VPC, VDC & VRF
• Experienced in Configuring/Troubleshooting Routing Protocols EIGRP/ OSPF/ BGP/ IS-IS/ RIP.
• Experienced in Configuring/Troubleshooting NAT/PAT.
• Experience in using network sniffers and diagnosing network related issues.
• Installed and Configured A10 (AX2500) load balancer, good troubleshooting knowledge.
• Advanced understanding of Aruba wireless architecture, design, implementation, and administration.
• Troubleshoot layer1, layer2 and layer3 technologies for customer escalations.
• Troubleshooting Routing/Switching, wireless LAN controllers, VMware, and VPN issues.
• Use network diagnostic equipment to evaluate and diagnose potential network related issues.
• Develop and follow Information Security standards, guidelines.
• Worked closely with the scrum team responsible for the CI, CD implementation.
• Tracking and minimizing the untested codes in CI, CD.
• Part of the team responsible for CI, CD testing using Shellcript and Makefile.
• Experienced working on SD-WAN splitting the traffic onto the cloud.
• Part of the team on creating hybrid cloud architecture with supporting background applications like PAAS, SAAS etc.
• Experience working on cisco meraki MX during SD-WAN deployment.
• Worked on meraki AUTO- VPN architecture to leverage SD-WAN functionality.
• Experience working on VIP using F5 BIG-IP configuration to direct traffic.
• Worked on F5 SSL orchestrater to outbound TLS traffic.
• Experience on BIG-IP AFM to defend network layer 3-4 threats.
• Used MPLS to map low routing routes.
• Used MPLS to establish LSP.
• Experience working on SDN design to encounter unpredictive network patterns.
• Hands on experience working on NSX L4-7 load balancers.
• Experience on NSX neutron plugin in deploying applications and topologies via open stack platform.
• Experience working on TDM for synchronizing signals on switches.
• Experience working on metro ring at configuring Layer-2 protocol spanning-tree.

Environment: Cisco ASA 5540,5520, Palo alto Firewalls, Nexus 7010,5548,2248, VPC, VDC, AX2500 load balancer, STP, VLANS, VTP, Etherchannel, Portchannel, Access Points, Switch Stacking, Wildfire.CI, CD, cloud networking, SAAS, PAAS applications, cisco Meraki, F5, MPLS, VMware, TDM, Metro-ring.

Network Engineer

Confidential, Warren, MI

Responsibilities:

• Managed (installed, upgraded, configured) and troubleshot Cisco 6500, 4500, 4000, 4300, 3900, 2900, 5500 series.
• Purchased, installed, configured, maintained, upgraded network hardware, operating systems, supporting software.
• Provided design, technical support and analysis for network systems and components, LAN/WAN communications. Effectively communicated with all stakeholders.
• Conducted analysis and prepared reports.
• Involved in Network Performance Analysis and Capacity Management.
• Worked on Catalyst 6509 series with SUP 720, Sup Engine II Plus, processors with various line cards such as 24 port Gig E SFP, 48 port Gig E copper cards.
• Product testing and support for a wide range of products like routers, Layer2/layer3 switches, 802.11 wireless access points (Aruba - 105, 125) etc.
• Experience with Aruba wireless equipment.
• Differentiated between System and Network issues and provided quick resolutions.
• Worked with IP routes BGP, OSPF and Cisco LAN Switches.
• Used TCP/IP protocol.
• Troubleshooting DHCP.
• Worked on Proxy server.
• Analyzed of traffic behaviors during reboots or restarts of core infrastructure components.
• Designed and managed network infrastructure.
• Created and maintained network documentation.
• Auditing the network environment ascertaining its health in accordance with the network/organization requirements.
• Expertise on Python object-oriented design.
• Established a peer to peer connection between several nodes and made selected files available for sharing amongst peers in Python.
• Web development by writing the server code with python.
• Maintain the infrastructure and security maintenance of CI, CD tools.
• Check the CI, CD workflow using cumulus VX and cumulus NETQ.
• Used CRM roadmap to determine and implement new product portfolio for the client.
• Was responsible for financial reporting and documentation of work.

Environment: Cisco switches 6500, 4500, 4000, 4300, 3900, 2900, 5500 series, Catalyst 6509 series with SUP 720, IP routes BGP, OSPF, Cisco LAN switches, Proxy server, Troubleshooting DHCP, CI, CD, Roadmaps.

Confidential

Environment: Switching, Routing, Nexus, Access-lists, Subnetting, STP, RSTP, VTP, HSRP, Port-Channel, EIGRP, RIP, PPP, HDLC. SNMP, DNS, DHCP,SMEs.CI, CD.

Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the Kaiser Permanente network and partner WAN connectivity. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network infrastructure.
• Provide daily troubleshooting support for Routing, Switching, and Wireless Services for global infrastructure.
• Extensive worked on BMC Remedy for creating the Change Requests (CRQ’s), Work Orders, Incident Management.
• Good knowledge of various WAN technologies (T1, E1, T3, E3, STM, SONET
• Responsible for reviewing current and planned network designs, particularly F5 load balancer implementations. Identified opportunities for implementation of network best practices.
• Implement and maintain policies, procedures, and associated training plans for network administration, usage, and disaster recovery.
• LAN/WAN using unified 3900 series routers and enterprise 4500/3800/2600 switching solutions.
• Implemented Quality of Service (QOS), Policy Maps, Class-maps, Policy Routing in the network infrastructure throughout all the different sites.
• Participate in the design and installation of physical cabling, IP addressing, WAN configuration.
• Played responsible role for implementing, engineering, & level 2 support of existing network technologies / services & integration of new network technologies / services
• Worked with Cisco Layer 3 switches 3560, 3750, 4500, 6500; Cisco Nexus 5000 and 7000 in multi VLAN environment with the use of inter-VLAN routing, 802.1Q trunk, ether channel.
• Good knowledge of 802.3 Ethernet Bridging and Switching Standards.
• Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
• Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall.
• Working knowledge and deployment experience withload balancing technology.
• Load balancing implementation, plans and configurations, design, and deployment of F5 load balancers from ground up, ensure network interoperability.
• Installed redundant BigIP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
• Configured and deployed BIG-IP LTM 8900 for providing application redundancy and load balancing.
• Good hands on experience on the load balancing concepts like - LACP, PAgP.
• Provide daily troubleshooting support for Routing, Switching, and Wireless Services.
• Determine the point of failure and resolve problems remotely utilizing available tools and other Operation Center resources.
• Worked on CI, CD tools like Jenkins.
• Part of the devops team responsible for building and maintaining CI, CD tools.
• Troubleshooting experience with Wireless LAN Controllers AIR-WLC/CT, Access Points AIR-AP/CAP/LAP, Cisco WAAS technology, WAN Optimizer/Accelerators. Worked on voipong to separate wave lines on communication.
• Used ISIP for packet manipulations, fuzzing and simulating dos attacks
• Worked on voipong to separate wave lines on communication.
• Experience working on WiMAX in deploying DSL broadband access.
• Responsible for implementing, engineering, & level 2 support of existing network technologies / services & integration of new network technologies / services.
• VPN configuration, dynamic routing, networking engineering and administration of large-scale enterprise network.
• Installation, monitoring, maintenance, support, and optimization of all network hardware, software, and network facilities, IP address design and optimization.
• Design and deploy company LANs, WANs, and wireless networks, including UCS servers, routers, hubs, switches, UPSs, and other hardware.
• Identify research and resolve technical problems establishing root cause and mitigations solutions.
• Testing of hardware, peripherals, and associated equipment.
• Ability to configure and troubleshoot MPLS/VRF.
• Good understanding of process framework like ITIL.
• Extensive knowledge of Cisco switches, routers, ASA\Firesight\DMZ, Wireless, ISE, Collaboration, and NX-OS.
• Perform and configure port-based, protocol-based, and MAC-based VLANs.
• Perform diagnostics on switches, Command Line Interface structure.
• Ensure all network technologies comply with industry standards (PCI and SOX).
• Develop a long-term strategy to optimize the network wireless infrastructure to provide increased security, flexibility, availability, business benefits and budgetary efficiency.
• Knowledge and experience of integration with phone system and switch.
• Develop and maintain the overall telecom system strategy and plan to facilitate growth and stability.
• Participate in 24 x 7 x 365 incident & problem support(NOC)
• Ability to independently lead Layer-3/Layer-2 network troubleshooting and troubleshoot hardware and IOS related issue.
• Monitor network to ensure network availability to all system users and perform necessary maintenance to support network availability.
• Document any working environment leveraging applicable tools to produce a consumable product (Visio/QRG/as-built/user-guide)
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Planning and Implementation of Subnetting, VLSM to conserve IP addresses.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Worked on Clustered and Load Balanced environments.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance.
• Provided Level 1 Support for Broadband Connection to Virgin Media customer
• Worked as a Technical Support Executive under Virgin Media.
• Received inbound calls of technical nature, independently resolved customer complaints, concerns, and inquiries regarding their Internet connection.
• Managed LAN and Wireless Network and performed troubleshooting on LAN, WLAN, Customer Modems (NTL 250, TERAYON, and MOTOROLA) And CPE Router (Cisco-Linksys, Belkin, D-LINK and Dynamode).
• Set up Home Network and provided troubleshooting and full support on virgin- media security Software (PC-guard).
• Troubleshoot a wide range of technical support issues and connectivity problems such as authentication, connection speed, e-mail configuration, and loss of synchronization.
• IOS upgrades on catalyst series switches like 2900, 3560, 3750.
• Troubleshoot TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
• Implemented trunking protocols like 802.1q on 3750 switches.
• Configured ACLs to provide accessibility and restrict unauthorized users.
• Involved in maintaining RSTP and PVST+ for the catalyst switches I worked on.
• Configured and maintained RIP, OSPF and routing protocols on 2600 and 3600series Cisco routers.
• Maintaining and troubleshooting of connectivity problems using Ping, Traceroute.
• Responsible for quality checks of CI, CD pipeline on every stage.
• Pipeline such as YAML, JENKIN files in relate to CI, CD.
• Assisted in racking and stacking.
• Technical assistance for LAN/WAN management and customer issues.
• Other responsibilities also included documentation.
• Gained expertise in writing test procedures and test plans with a strong understanding of design, implementation, and execution of testing methodologies.
• Worked on Cisco VoIP infrastructure for a large enterprise environment.
• Good working knowledge of OSI Model and TCP/IP networking standards.
• Worked on Configuring, Monitoring and Troubleshooting Cisco ASA, configuring VLANs/routing with the firewalls as per the design.
• Configured, Maintained, and performed troubleshooting on checkpoint point Firewall.
• Hands on experience with Cisco ASA and Checkpoint Firewalls and cloud-based systems like Azure.
• Experience in F5 LTM, APM and ASM 4500 appliances to include of creating pools and nodes.
• Worked on load balancer and provided solutions for many network related issues.
• Configuring and implementing prefix-lists, route maps and ether channels.
• Configured F5 load balancer LTM & GTM.
• Involved in installing and configuring PIX 515E, 506E firewalls.
• Performing the configuration and troubleshooting of routing protocols such as OSPF and BGP.
• Configuration and administration of cisco and juniper routers and switches.
• Configured redundancy protocols such as HSRP and GLBP.