PROFESSIONAL SUMMARY

• Network Engineer with 8 years of experience in designing, capacity planning, upgrade/maintenance & implementing internet works using Cisco Products with deep understanding of application level security.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP and ability to interpret and resolve complex route table problems.
• Expertise in configuration of Cisco Catalyst Switches of 1900/2900/3550/3750/6500, Cisco Routers of 2600/2800/3600/3800/7200/7600, Load Balancers ACE, Citrix NetScaler and F5.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960).
• Experience in working with Palo Alto - Next Gen firewall, Checkpoint, Cisco ASA.
• Experience working with Nexus 9372,9396, 7010, 7018, 5020, 2148, 2248 devices, Cisco Dynamic Fabric Automation and Cisco Datacenter Network Manager.
• Dealt with Cisco Unified Communications Manager (CUCM), telephonic concepts including TDM and SIP.
• Experience with Cisco ACS, Prime, ISE, ACI, UCS.
• Expertise and extensive experience in managing ASA/SRX Firewalls, Catalyst switches, nexus switches and customer integration. Ability to setup devices, modify ACL’s and trouble shoot issues.
• Experience with Juniper Routing, Switching and Security products.
• Experience with Service Now, Jira,Remedy ticketing system.
• Experience in Cisco WLAN 5500 series, Meraki,Aruba WAP, Clear pass.
• Configuring High availability on Cisco WLC’s, adding Access points on Cisco wireless controller.
• Experience in cloud computing, Vmware, HyperV, Windows server environment,Active directory, DNS, DHCP servers,other technologies including Skype for business, Lync.
• Experience working on Windows servers and desktops, Linux, Centos, shell, python scripting.
• Experience working with Tacacs and radius servers.
• Experience with Cisco Umbrella Content Filter Management
• Worked with Cisco for opening TAC Case and resolving issues to meet project deadlines.
• Experience on Checkpoint, Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ &RADIUS).
• Expertise in VOIP protocols like H.323, MGCP, SIP, and SCCP.
• Experience in deploying site-to-site VPNs over IPsec and GRE.
• Implementing standard security measures on all the Routers and Switches. Configuring AAA on all network devices with TACACS+ using Cisco ACS.
• Experience with load balancing using F5 LTM and Citrix NetScaler
• Worked on F5 Local Traffic managers (LTM), Global traffic manager (GTM) of series 8900, 6400, 6800, 3400 and 4200.
• Experience with penetration testing and vulnerability assessment tools like Qualys, Nessus.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Knowledge om IPAM tool.
• Experience with Amazon Web Services(AWS)

TECHNICAL SKILLS

LAN Technologies: Private VLAN’s, VTP, DTP, MLS, STP, RSTP, MST, Ether Channel

Routing Protocols: BGP, IBGP, EBGP, OSPF, IGRP, EIGRP, RIP

Wireles: s 802.11 a/b/g WLANS

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, leased lines Exposure to DS1, DS3, OC3, OC12, OC48 & T1 /T3.

Infrastructure Services: DHCP, DNS, SMTP, POP3, FTP, TFTP.

Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration (L2 and L3), Internet Content Filtering, IDS/IPS, URL Filtering, Bluecoat, Checkpoint, Palo Alto NGFW Cisco PIX (506E/515E/525/535) & ASA (5500/5510/5540), Juniper SRX & SGS.

Network Management: SNMP, Cisco Works LMS, HP Open View, EtherealSolar Winds, Wire Shark, Splunk, Sniffer.

Scripting: Python, PowerShell, Shell scripting.

Hardware Cisco: GSR 12416.Cisco Catalyst Switch 6500, 3500, 3700 2900

Cisco Router: 7200, 3700, 3600, 2800, 1600, 800 series.

Cisco Nexus: 9k,7k, 5k, 2k, ASA

Juniper: M320, T640, MX960, EX4500, M10i.

Juniper: Netscreen 550, Juniper SRX650, DNSF5 load balancer 1600, 3600 IDS-Snort.

PROFESSIONAL EXPERIENCE

Confidential, Philadelphia, PA

Network Engineer

Responsibilities:

• Experience with layer 3 routing and WAN related technology, including EIGRP, BGP, IWAN, PfR, VRFs, MPLS, DMVPN, WAAS, and QoS.
• Worked on Multi-Site Network support including MOE, WAN, LAN, Network, Cabling, Peripheral device.
• Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, Route maps, prefix-lists etc.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local Preference, Communities.
• Configuring and implementing Routed and Routing protocols including: OSPF, EIGRP, BGP and MPLS.
• Routing related tasks included providing Juniper router configuration and change management, providing technical support for Juniper Router configurations and installation for Customer.
• MPLS traffic engineering design, configuration, and troubleshooting.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Configured Firewall to allow site to site VPN access and configuring ACL to ensure better security, migration of VPN tunnels.
• Extensive technical experience working with VPN technologies (IPSEC, SSL VPN, WebVPN, AnyConnect, DMVPN)
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Worked with Cisco advance services to implement data center Nexus environment for new Upgraded the NX-OS in nexus 7018,7010 and nexus 5548 and 5596.Consolidated multi-tiered environment into a pair of Nexus 7000 switches using VPC and VRF.
• Experienced in Configuring Checkpoint Firewall (Version R62, R71 and R77) and CISCO ASA firewalls as Standard and Distribution deployment to have the network secure and maintained Site to Site VPN connection through the Firewalls.
• Experience with traffic management on F5 BIG-IP LTM, Checkpoint SSL VPN, and Juniper SRX
• Experience with Juniper Routing, Switching and Security products.
• Juniper SRX Firewall deployment as perimeter firewalls at multiple sites .
• Experience with JunOS SRX and SRX clustering Juniper Space consoles.
• Experience in Juniper NetscreenOS, JunOS, Cisco and Pulse Secure systems.
• Configured Cisco ASA, checkpoint,palo alto firewalls which includes licensing,software upgrades, installations and migrating between different platforms using LLD.
• Experience with LLD of firewalls and implementation.
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention & URL filtering.
• Worked on Palo Alto and Checkpoint design and installation for Application and URL filtering, Threat Prevention, Data Filtering as well migrations from one Firewall to another.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Experience with Citrix NetScaler’s and Citrix GSLB 8005, 11515, 9500 series.
• Deployed F5 LTMs and F5 GTMs in DMZ environments.
• Analyzing parsed data from SPLUNK, Qualys, Nessus for Vulnerability Remediation.
• Experiecne with Qualys vulnerability scanning, Qualys Guard vulnerability management penetration testing.
• Assisted with IPS, IDS, and other prevention/security systems such as Cisco ASA, IPS tipping point.
• F5 GTM WIP'S configuration for Global Server Load Balancing and Disaster Recovery
• Perform SSL Offloading on F5 LTMs. Also, renewing certificates to ensure the security of websites.
• Worked on F5 LTM/GTM of 5100, 6400, 6800, 8900 for a Server and site load balancing environment.
• Configuring F5 GTM solutions, including WideIP and Pool Load Balancing Methods.
• Worked on Security features of the F5 AFM product: ACLs, DoS, Protocol Security (SIP DNS and HTTP)
• Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
• Working knowledge of Citrix NetScaler infrastructure, administration and design.
• Experience with Enterprise Data Center: Cisco ACI, Virtualization, SDN .
• Software Defined Network (SDN) experience (Cisco ACI).
• Migration of routers/Switches from telnet to SSH and created secure access using ACI.
• Experience with networking tools for analyzing the real-time traffic flow of the packets, Wireshark, Solarwinds Orion NPM for network monitoring and troubleshooting tools.
• Hands on experience with Barracuda security products.
• Installing, con figuring and troubleshooting Wireless Solutions (Wireless LAN Controllers, Access Points, and Prime) in a multi-campus environment.
• Installation, configuration and troubleshooting of Cisco Meraki, Cisco WLAN Controller, Autonomous and LAP wireless technologies.
• Administer, maintain, and customizations (reports, etc.) as necessary to systems management tools-Cisco Prime Lan Managing system.
• Experience with network management tools and technologies such as Cisco ISE, Cisco Prime, Solarwinds Orion NPM, Nagios, IP SLAs, Wireshark, Splunk and Netflow analyzers.
• Engineer, configure and lead the design, configuration and deployment of Cisco ISE, Cisco routers / switches, firewalls, load balancers and other network infrastructure devices.
• Experience in Cisco WLAN 5500 series, configuring high availability on WLC.
• Experience with Amazon Web Services(AWS), VPC peering, configuring servers on AWS.
• Worked on establishing connectivity to AWS through direct connect.
• Working knowledge on other technologies including Skype for Business, Lync.
• Configuring and troubleshooting in Windows server environment which includes, WINS,DNS,DHCP,Active directory,WSUS.
• Configuring group policies,primary and secondary DNS, DHCP scope configuration and lease management.
• Experience with Python, shell scripting .

Confidential, GA

Network Security Engineer

Responsibilities:

• Configuring Big-IP F5 LTMs, F5 GTMs (virtual servers, pools, SNATs, health monitors) for managing the traffic and tuning the load on the network servers.
• Dealt with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Knowledge on windows servers DHCP, DNS, Exchange, DFS, AD.
• Experience with Upgrading and troubleshooting Cisco / Juniper on the edge side
• Configured Juniper EX series Layer2 and Layer3 and supervised equipment installation work.
• Troubleshooting experience on Juniper EX, MX and QFX series
• Configuration included VLANs & VTP, STP port features, Gateway redundancy using HSRP, enterprise security using Cisco Port Security and Dot1X framework.
• Vulnerability assessment and fixing vulnerabilities using Nessus.
• Worked extensively on setting up encoders/decoders over ip and video control software.
• Provided strategic technical direction, road map design, installation, and configuration with Cisco ASR’s and 7600 series.
• Expertise and extensive experience in managing ASA/SRX Firewalls, Catalyst switches, nexus switches and customer integration. Ability to setup devices, modify ACL’s and trouble shoot issues.
• Experience on Check Point Firewalls NG, NGX, NG R55, NGX 60, NGX R65, R70, R75,UTM and Cisco ASA 5505, 5510, 5540, 5500 series.
• Checkpoint - R75/R70/R65 with product like Nokia IP 390, 560, 690, 1280, 2450, 61000 etc.; in Provider-1 environment.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Provided VPN services to site-to-site and, Remote access VPNs using IPsec and GRE tunneling mechanisms.
• Worked on vulnerability assesment using Nessus.
• Experience with Splunk for monitroing devices,application performance analysis etc..
• Hands-on experience in developing scripts using Perl scripting language.
• Worked on Cisco Prime and Prime LAN management solutions(LMS).
• Troubleshoot Cisco Meraki solutions remotely including 802.11a/b/g/n/acWireless networks
• Configuring WLC’s, WAP’s and troubleshooting wireless issues.
• Experience in Cisco WLAN 5500 series, Aruba WAP, Aruba Clear Pass.
• Network Engineer

  Confidential

  Responsibilities:
• • Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
  • Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team
  • Experience with WAN, Routers, nexus switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
  • Experience with troubleshooting equipment and network problems and to open and track Cisco TAC cases through to problem resolution on pre and post production issues
  • Experience with Cisco ASR routers.
  • Carried out testing of new features and functionality required by the customer in a lab environment and to implement and verify that they are operating correctly in the production environment.
  • Trained the customer's design, implementation and support personnel to configure and operate the Juniper Networks products.
  • Install, test, and support various network devices, including UCS Servers with VMWare Hardware and Software installations, IP Phones, Router gateways, UCCX, UC 300 and UC 500s, ATAs, and IADs.
  • Experience with VOIP protocols like H.323, MGCP, SIP, and SCCP.
  • Managed Cisco Unified Call Center Managers, UNITY voicemail systems, H323 and SIP voice gateway, LAN/WAN and System Integration
  • Experience on cloud computing, Hyper-V, V-sphere, VMware 5.5.
  • Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
  • Troubleshoot and technical support for Global wide area network consisting of Multi-Protocol label switching MPLS, VPN and point-to point site.
  • Experience with Citrix NetScaler’s and Citrix GSLB 8005, 11515, 9500 series.
  • Experience in configuring virtual servers (VIPs), pools, customized monitors and irules.
  • Experience with network management tools and technologies such as Cisco ISE, Cisco Prime, Solarwinds Orion NPM, AVC, IP SLAs, Wireshark, Microsoft SCCM/SCOM and Netflow analyzers.
  • Experience with Cisco ISE configuration and troubleshooting.
  • Implemented Vulnerability assessment and worked on closure of vulnerabilities using Nessus.
  • Experience on IPSEC Peer VPN Tunnel on Cisco ASA firewalls for Security Purposes and on Checkpoint VSX, GAIA along with site to site VPN.
  • Worked on Checkpoint Firewall version R75 on daily operations such as access through the firewall, rule verification and cleanup of redundant rules, drafting and installation of Checkpoint Firewall rules and policies
  • Worked on Cisco Routers, Active /Passive Hubs, Switches, Juniper SRX firewall, VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
  • Monitoring and troubleshooting traffic on Palo Alto 5020 firewall.
  • Experience with common encryption schemes such as symmetric/asymmetric encryption, hashing, SSL/TLS, IPsec, SSH etc. Using openssl commands to troubleshoot issues related SSL certificates.
  • Configuring and troubleshooting Cisco, Motorola WLC’s and WAP’s and other wireless issues.
  • Managed the testing, deployment and configuration of WLC, WCS and WiSM systems. Worked on Cisco 1242, 2400 & 3500.
  • Cisco Unified Communications Express (UCCX 7.0) remote administration, configuration, and support.
  • Experience on Unix/Linux operating system.
  • Involved in Switching Technology Administration including creating and managing VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, LAN security etc
  • Implement Vulnerability assessment and closing of vulnerabilities.
  • Monitoring and capturing the traffic with multiple network management tools like Ethereal, Wire shark, Sniffer, Infoblox.

  Confidential, Irving, TX

  Network Engineer/Security

  Responsibilities:
• • BGP configuration and troubleshooting for ISP failover, Configuring and Troubleshooting OSPF as well as Redistributing OSPF, BGP routes, load balancing/failover configurations, GRE Tunnel Configurations and MPLS conversions from GRE.
  • Involved in provide higher technical support to NOC and other operation teams regards to IP/MPLS infrastructure.
  • Worked with Video encoders and decoders over IP and video control.
  • Duties also include performing regular system maintenance; code upgrades, reviews, configuration changes, and monitoring
  • Installation, configuration and maintenance of Palo Alto Firewalls, Cisco ASA firewalls.
  • Configured Cisco ASA firewall through Initial setup.
  • Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
  • Intrusion detection and Vulnerability assessment using Nessus.
  • Involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.
  • Configuration, Troubleshooting and Maintenance of Palo Alto PA-5060, PA-5020 series.
  • Implemented firewall rules in Palo Alto firewalls using Panorama for one of the environment.
  • Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
  • Worked on F5 LTM/GTM of 5100, 6400, 6800, 8900 for a Server and site load balancing environment.
  • In-depth knowledge of Cisco Unified Communications like UCM, Unity Connection.
  • Documentation and draw network diagrams using MS Visio and use SharePoint portal as site repository.

  Confidential

• Network Engineer Responsibilities:
• • Work with the data center planning groups, assisting with network capacity and high availability requirements.
  • Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
  • Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure.
  • Creating Stub Areas & configuring Summarization for effective Routing.
  • Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, Route maps, prefix-lists etc.
  • Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
  • Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
  • Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
  • Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series.
  • Designing and maintaining floor maps for WAPS in Visio.
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols OSPF & BGP.
  • Regular backup network configurations adhere to disaster recovery.

  Confidential

  Network Engineer

  Responsibilities:
• • Provided High level support for Service Desk escalated trouble tickets.
  • Experience with Os deployment on desktops, Active directory.
  • Experience with routing protocols like OSPF, RIPV2, EIGRP, BGP.
  • Worked on a migration project which involved the removal of all static routes from core devices.
  • Extensive knowledge in Natting and Expert in Troubleshooting clientless VPN issues
  • Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
  • Worked on change management as per ITIL standards.
  • Worked on installation, configuration,troubleshooting of windows, centos, linux desktops.
  • Configured Active directory, group policy, DNS,DHCP servers.
  • Knowledge on SAN and NAS storage devices.
  • Configuring HSRP, VRRP, GLBP andVLANTrunking(802.1Q & ISL), STP, Port Security on Catalyst 6500 switches.
  • Implementation and troubleshooting of the Network Managed Services (NMS)
  • Cisco switches and routers: Physical cabling, IP addressing.