PROFESSIONAL SUMMARY:

• More than 8 years of experience in IP network design, network integration, deployment and troubleshooting.
• Substantial knowledge in configuring and troubleshooting Dynamic routing protocol (Interior Gateway Routing Protocol) such as Distance Vector routing protocol (RIPv1, RIPv2 and IGRP), Link - State routing protocols (OSPF and IS-IS) and Hybrid protocol (EIGRP).
• Significant knowledge in configuring and troubleshooting Exterior Gateway protocols such as BGPv4 including internal BGP (iBGP) and external BGP (eBGP).
• Generous Knowledge in configuring Redundant router protocols like HSRP, VRRP and GLBP.
• Indulgent in configuring Spanning Tree Protocol (STP), Per VLAN Spanning Tree (PVST), Rapid STP (RSTP) and Rapid per VLAN Spanning Tree (PVST+).
• Ample experience in configuring Virtual Local Area Networks (VLAN) wif IEEE 802.1Q, VLAN trunking protocol (VTP), shortest path bridging, Multiple VLAN Registration Protocol and VLAN Cross Connect (CC).
• Abundant knowledge of IPv4 and IPv6 Addressing, Fixed Length and Variable Length Subnet Masking (VLSM), OSI and TCP/IP models.
• Extensive knowledge of WAN technologies such as T1, T3, DS3, OCx, SDH, SONET, LTE, Fiber and Frame relay.
• Experience in configuring Nexus 5K Aggregation Switch and Nexus 2K Fabric Extenders.
• Effectuated VDC, VPC, VRF and OTV on teh Nexus 5505 and 7009 switches.
• Exposure in configuring high end routers like GSR 12000 series, 7500 series and Catalyst Switches like 7600, 6500, 4500 series.
• Sizable experience in upgrade, backup and password recovery of Cisco IOS.
• Worked on Cisco Nexus Switches like 5000 and 7000 series and Virtual Port-Channel configuration.
• Experience in troubleshooting connectivity issues and hardware issues in Cisco based networks.
• Plentiful experience in Tier II ISP Routing Policies and Firewalls.
• Experience in testing Cisco routers and switches in lab scenarios and deploy on site for production.
• Experienced in migration of IPv4 addresses to IPv6 addresses using mechanisms like Tunnel Broker, Transport Relay Translation (TRT), NAT64, DS-Lite and DNS64.
• Subjection in installing and configuring NAT, DHCP server, DNS in large networks and Checkpoint NGX R70.
• Monitor and troubleshoot CISCO WAAS.
• Experience in configuration of LAN protocols such as Ethernet and Fiber Distributed Data Interface (FDDI) on Cisco Switches.
• Worked on Cisco Firewalls Cisco ASA 5500(5510/5540) Series and Checkpoint R75, 76 Firewalls.
• Executed traffic filters using standard and extended access-lists, distribute-lists and route maps.
• Provided support dat included resolving day-to-day operational issues wif tickets generated by a server.
• Experience wif F5 load balancers - LTM, GTM series like 6400, 6800, 5000 ad 2000 for teh corporate applications and their availability.
• Moderate knowledge in configuring and troubleshooting cisco wireless networks: LWAPP, WLC, WCS, Wireless security basics.
• Experience in documenting and preparing teh process related operational manuals.
• Has exposure in LAN/WAN setup, installation, configuration and commissioning of network devices.
• Robust comprehension of SNMP, IP SLA and Network Monitoring wif experience in tools like PRTG.
• Thorough mastery in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3, SONET POS OCX/ GigE circuits, Firewalls.
• Experience in implementation of F5 BIG-IP load balancer, F5 GTM based on topology load balancing methods.
• Experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
• Involvement in troubleshooting an assortment of issues. Streamlined and enhanced procedure to be faster to advertise, guaranteed consistence and upgraded operational productivity. Recognized open doors for proceeded wif enhancements of procedure to guarantee most extreme yield.

TECHNICAL SKILLS:

Switches: Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus (22485548 &7010)

Cisco Switch platforms: 2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.

Switching Protocols: VTP, STP, RSTP, MSTP, VLANs, PAgP, and LACP.

Layer 3 Switching: CEF, Multi-Layer Switching, Ether Channel.

Routers: Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 72007600), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)

Cisco router platforms: 2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.

Routing Protocols: RIP, OSPF, EIGRP, and BGP.

Routing: RIP, EIGRP, OSPF & BGP, Route Filtering, RedistributionSummarization, Static routing

Redundancy protocols: HSRP, VRRP, GLBP.

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco

WAN Technologies: FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased linesDSL modems.

Firewalls & Load Balancers: Cisco ASA 5585, 5550, 5540, Juniper SRX5400, 5600, 5800Juniper NetScreen 6500, 6000, 5400. Juniper SSG Firewalls, Palo Alto PA-3060/2050, F-5 BIG-IP LTM (3900 and 8900), Blue Coat SG8100, AV 510, AV810.

Network management: SNMP, Cisco Works LMS, HP Open View, Solar winds, Ethereal.

Carrier Technologies: MPLS, MPLS-VPN.

Software: Microsoft Office Suite, MS SQL Server 2008, HTML.

Language: Unix, Turbo C / C++, basics in Perl and Shell scripting.

PROFESSIONAL EXPERIENCE

Confidential, Washington, DC

Network Security Engineer

Responsibilities:

• Significant in teh analyzing, implementing, troubleshooting & documentation of LAN/WAN architecture.
• Generous experience on IP services.
• Working on configuring and implementing of composite Network models such as Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Implementing Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links.
• Assisting OSPF and BGP based on teh network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
• Functional wif network services like DNS, DHCP, DDNS, IP4, IP6, IPsec, VPN etc.
• Worked wif Infoblox for secure DNS, DHCP and IPAM, Cisco ACE GSS 4400 Series global site selector appliances.
• Exposure on Security- Firewalls, NAT / PAT, IPSEC, S2S.
• Experienced in working wif Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches.
• Working on Data center management to analyze teh data center sites for cabling requirements of various network equipment.
• Experience in working wif load balancer for converting CSS to ACE.
• Experience wif ALG (RTP, RTSP and FTP, DNS, HTTP), DHCP.
• Knowledge on API’s for troubleshooting Network issues using Wireshark and NTOP.
• Acquaintance in Configuring static NAT, dynamic NAT, dynamic NAT overloading.
• Experience in Cisco checkpoint NGX firewall.
• Security policy review and configuration in Palo Alto, Cisco ASA firewalls in US offices and data centers.
• Implementation of F5 BIG IP load balancers.
• Expertise in creating custom iRules, Health monitors, VIP’s, pools, nodes for F5 LTM/GTM.
• Troubleshooting VPN connectivity issues, slow network connectivity issues, identifying teh root cause of teh issues.
• Extensive hands-on experience wif VSS technology wif Cisco 6500 Switches.
• Experience in working wif LTM and GTM for scaling and securing DNS infrastructure during high volumes.
• Secure all systems in teh domain wif McAfee Antivirus Protection Installed.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• Configuring ACL on ISE for making policies.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Work assigned tickets to determine teh point of failure and resolve problems remotely utilizing available tools and other Operation Center resources.
• Documenting network configuration for all new equipment and creating equipment configuration backups and monitoring to work wif existing network systems
• Provide escalation support to L1/L2 members ofnetworkteam.
• Participating in testing of teh internal network infrastructure in teh new building, and troubleshooting and remediating any issues.
• Work & escalate problems effectively in order to meet customer SLA's (service level agreements).
• Perform problem management and root cause analysis for P1/P2/P3/P4 incident.
• Providing training to new resources in team and effectively working towards a process quality improvement in teh Team.
• Efficient at use of Solar BOX (Automated Network Map) as technical documentation and presentation tools.

Environment: Nexus 2k/5k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, LAN, WAN, OSPF, RIP, BGP, EIGRP, HSRP, PPP, VPN, Checkpoint, Cisco ASA, McAfee EPO, Cisco ISE, EOP, Trend Micro, Kemp.

Confidential, Mclean, VA

Network Engineer

Responsibilities:

• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Assisted in MPLS migrations, implemented a backup for teh existing WAN connection using site-to-site IP sec VPN tunnels.
• Involved in teh activity of DATA-Center migration of regular Cisco catalyst switches wif teh new Nexus2148, 2224T, 5548, 6018, 7010using F3/M3 line-cards wif 10GE & 40GE interfaces and Supervisor 2E.
• Configuring and installing 6500, 4500 in Campus networks.
• Switches Replace branch hardware wif new 2851 routers and 2960 switches.
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst.
• Experience wif design and implementation of Data center migration.
• Experience wif manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• As part of Data Center fabric remediation/refresh project, deployed Cisco Nexus switches and implemented features like FEX Links, VPC and VDC.
• Worked on deployment/ configuration of LWAPs, WLC, WDS and 802.11 wireless devices.
• Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches wif new Cisco switches.
• Build Logical design and Implementation of Wireless Solution.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for teh corporate applications and their availability
• Involved in teh configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Performing teh ACL requests change for various clients by collecting source and destination information from them.
• Maintained complex LAN/WAN networks wif several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience wif convert PIX rules over to teh Cisco ASA solution.
• Supporting EIGRP and BGP based on teh network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Provided proactive threat defense wif ASA dat stops attacks before they spread through teh network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshoot teh Network Issues onsite and remotely depending on teh severity of teh issues.
• Performed Break Fix support through driving to different buildings, identifying teh root cause of teh hardware issues wif switches, routers.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Worked wif creating VIP (virtual servers), pools, nodes and applying iRules for teh virtual servers like cookie persistency, redirection of teh URL.
• Performing troubleshooting on slow network connectivity issues, routing issues dat involves OSPF, BGP and identifying teh root cause of teh issues.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers wif CISCO PIX 506, PIX515
• Building teh VPN tunnel and VPN encryption.
• Involved in Configuration of Access lists (ACL) on ASA firewall for teh proper network routing for teh B2B network connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying teh NX-OS operation system.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint, LWAPs, WLC, WDS, 802.11 wireless devices, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Mount Laurel, NJ

Network Security Administrator

Responsibilities:

• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Responsible for service request tickets generated by teh helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes wif all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, irules) for managing teh traffic and tuning teh load on teh network servers.
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Updated teh HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured teh Gateways, Voice Gateways.
• Configuring HSRP between teh 3845 router pairs for Gateway redundancy for teh client desktops.
• Configuring STP for switching loop prevention and VLANs for data and voice along wif Configuring port security for users connecting to teh switches.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Implementation and Configuration (Profiles, I Rules) of F5 Big-IP C2400 load balancers
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on teh security levels wif RADIUS, TACACS+.
• Set up and troubleshoot secured wireless access points (WAP) and wireless LAN controller (WLC) for broadband internet.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Configured switches wif port security and 802.1x for enhancing customer security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Validate existing infrastructure and recommend new network designs.
• Created scripts to monitor CPU/Memory on various low end routers in teh network.
• Installed and maintained local printer as well as network printers.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, PPP multilink by implementing cisco WAAS, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential

Network Administrator

Responsibilities:

• Generated network diagram for employees using teh Microsoft Visio.
• Worked to install and maintain Microsoft Exchange and worked extensively on different applications, preparing client machines for users wif Operating Systems, Software, antivirus and required utilities and mailing clients etc.
• Predominant in designing and maintaining teh budget for teh whole network.
• Accomplish daily maintenance, troubleshooting, configuration, and installation of all network components.
• Configuration of CISCO Routers (3600, 4000 Series) and 3550, 4500 series switches.
• TCP/IP network planning, Implementation and Management wif subnets.
• Allow SNMP traps for our Cacti Monitoring tool to monitor traffic and check teh regular health of Servers and Network Devices
• Implementation of Virtual LANs across Routers and Switches.
• Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Worked wif Remedy Ticketing tool in maintaining and keep a track of logs/monitor
• Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions
• Monitoring teh Servers and Networks

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential

Network Engineer

Responsibilities:

• Delivered high level technical support, including identifying and resolving problems on Cisco supported products for e-Commerce infrastructure. Which includes external and internal routing for DMZ servers.
• Implemented cable multi-service operator (MSO) to capture traditional Telco subscribers wif IP telephony and provide relevant QOS.
• Configured EIGRP, BGP, and MPLS, Firewall, QOS by SDM and provide security by Prefix list, Access- List and by Distribution list.
• Moved Core switches and several non-Cisco devices under strict deadlines to maintain network functionality.
• Implemented new ultra-secure networks in multiple data centers dat included Cisco, Juniper security devices.
• Designed VLAN’s and set up both L2 and L3 logical to has it communicate to teh Enterprise network.
• Scheduled preventive maintenance for fire-protection systems, including new protocols. Utilize MS Windows, Word, and Excel for reporting/documenting process.
• Satisfactorily Resolved Problems in timely manner wif focus on providing a high level of support for all customers.

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP and Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN's and SSL.