SUMMARY

• Network Engineer with 14+ Years’ of experience in design, implementation, configuration of Cisco Routers, Switches, F5 Load Balancer, Cisco Wireless, Checkpoint, Juniper & Palo Alto Firewalls. Troubleshooting network related problems in Enterprise& Data Center Networks.
• Hand - on experience F5 Load balancers on LTM, GTM, BigIQ centralised solutions.
• Experienced in configuring and Troubleshooting BIG-IP F5 load balancer LTM, Creating Vip’s, Nodes, Pools, Pool members and iRules on BIG-IP F5 LTM.
• Hands-on experience in Planning of Corporate Firewalls architecture and implementing in distributed environment i.e. configuring & troubleshooting - Checkpoint, Cisco ASA, Juniper and Palo Alto Firewall.
• Extensive understanding of the Application Security Module (ASM) and Application policy manager (APM).
• Hands-on deployment, tuning, and troubleshooting experience, ideally with Palo Alto Networks, Check Point, Juniper, or Cisco security product suites.
• Advanced Knowledge in site-to-site IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.
• Expert knowledge in Threat prevention (Anti-Spyware, Antivirus, Vulnerability protection), Data filtering, URL filtering, Palo Alto’s APP-ID to enable application-based traffic inspection.
• Responsible for configuring and implementing network, firewall andsecurity solutions (IDS/IPS) usingPaloAltonetworks.
• Knowledge in AAA related technology like Cisco Identity Services Engine (ISE), Cisco ACS.
• Analyse the data packets regularly using scanning and sniffing tools like Wireshark, Solarwinds & Splunk.
• Managing Wireless infrastructure of Cisco Wireless Lan controllers and Wireless Access points across the Datacentres and Campus network.
• Provisioning of Cisco LWAP and configuration of Wireless LAN controller.
• Hands-on experience configuring and troubleshooting of routing protocols as EIGRP, OSPF, BGP.
• Expertise in installing, configuring, and maintaining Cisco Catalyst Switches (2900, 3500, 7600, 3700 series, 6500 series, 3650, 9300, 9500), and Nexus 2k, 5k, 7k & 9k.
• Responsible for switching tasks such as VTP, ISL/ 802.1Q, IPsec and Ether Channel, STP, RSTP and PVST+.
• Deployed networks with redundancy and fault tolerance/isolation using Hot Standby Router Protocol HSRP, failover devices, paired switches, and dual-port network cards.
• Experienced working on network monitoring and analysis tools like CISCOworks, Spectrum, RIVERBED, Spectrum and Net Brain.
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, TFTP, WinSCP, Quality of Service (QOS), PAP, CHAP, HTTPS, ICMP, TCP, UDP.
• Evaluate daily recommended best technical solutions migrate applications to AWS
• Evaluate VPC and security groups design on initial implementation phase.
• Evaluation of Elastic load balancer & provides the SSL certs and manages scalable & highly available system on AWS cloud.
• Excellent communicator and ability to relate well with people at all levels.
• Flexibility of working well as part of a team and independently.

TECHNICAL SKILLS

F5 Load Balancers: LTM, GTM, APM, ASM, Enterprise Manager and BigIQ.

Firewalls: Palo Alto, Juniper SRX, CheckPoint and Cisco ASA.

Wireless Technologies: Cisco Wireless Controller 5520, 5080, Cisco Wireless access point 1572,2702 and 3802 and Cisco Miraki

Switches: Cisco L2 & L3 Switches (2900, 2921, 3550, 3560, 3750, 4500, 5000, 5505, 6509, 3650, 9300, 9500), Nexus 2k, 5k, 7k, 9k.

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, VLAN, Inter-VLAN Routing, VTP, STP, RSTP

Routers: Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800, 7200, ASR 1001x, 4331, 2911)

OS products/Services: DNS, DHCP, Windows (2000/2003, XP), UNIX, LINUX, Microsoft SQL Server 2000 and 2005, VMware, Hyper-V.

Protocols/Services: Routing Protocols (RIP v1 & v2, IGRP, OSPF, EIGRP, BGP), QoS, HSRP, VRRP, TCP/IP, load balancer, Proxy servers, IPSec, MPLS, PPP, VoIP, SIP, H.323, IPV6

Network Management Tools: Wireshark, Netflow Analyzer, HP OpenView, Cisco Works, Ethereal, OPNET, SolarWinds, Spectrum, Splunk, CISCO ACS, CISCO ISE, Infoblox, Cisco Prime.

PROFESSIONAL EXPERIENCE

Confidential, Atlanta, GA

Sr. Network Engineer

Responsibilities:

• Configuring Installing and Implementing F5Products, LTM-5050, 5250, 10250, iSeriesi2800, i5800, i7800, i10800, GTM 2200, i5800, VCMP and VM’s
• Licensing and provisioning of F5 modules such as LTM, GTM, VCMP (Virtual Cluster Multi Processing).
• Setting up New provisions of VIP’s for DEV, STAGE and PROD environments as per the request submitted by App/Web engineering.
• Configured VIP’s and WIPs using different load balancing methods on F5 LTM & GTM and worked on one-connect profiles and HTTP compression and several persistence profiles depends on the application requirement .
• Engineering and configuring Virtual Server, Pools, iRules, Profiles, Persistence, and monitor on F5 LTM.
• Configured Palo Alto Firewall Clusters in Active/Passive mode for High-Availability. Thorough knowledge on the Active/Active HA mode for complex infrastructure.
• Actively use, smart view tracker, and Checkpoint CLI (to security gateways) for troubleshooting. Perform advanced troubleshooting using Packet tracer and TCPdump on firewalls.
• Managed VPN, IPsec, Endpoint security, status policy, Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning, DLP using Palo Alto.
• Responsible for configuring the Palo Alto to mitigate DOS, DDOS, Data leak attacks using Dos Protection, Threat Prevention and Data Filtering.
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review, evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router.
• Configured Routers for OSPF, EIGRP, BGP protocols and route redistribution.
• Network Deployment of constructed, implemented, tested and launched various network nodes featuring BGP, OSPF, MPLS and VLANS using RSTP, gateway redundancy protocols HSRP, GLBP and VRRP.
• Extensively worked on code upgrades for LTM, GTM and BigIQ, with current N-1 version across all Data Centres up to date on the environments.
• Experience in managing the load balancers in a high-availability infrastructure.
• Extensive knowledge and experience with SSL certificates renewal on F5 platforms and automation certificate renewal using Venafi automation solution.
• Extensive Knowledge in configuring on Security findings and Mitigate the weak ciphers as per PEN test reports on SI, DEV and Prod environments.
• Hardware refresh project - Onboarding and Certifying new F5 device to replace End of Support, End of Life legacy F5 appliances
• Configuration ofCiscoIdentifyServicesengine(ISE) and 802.1X to enable the creation and enforcement of security and access policy(ACL) of End users to company network.
• Worked in Firewall Migrations to help create a migration from Juniper Netscreen to Palo Alto.
• Responsible to evaluate, test, configure, propose and implement network, firewall andsecurity solution withPaloAltonetworks.
• Performing Vulnerability scans across the Assets, Web Application Scanning for PCI compliance, running Reports and sharing with Compliance team for remediation of Vulnerabilitiesand performing firewall policy Audits.
• Planning, Designing & Implementing VPN connections using Checkpoint, ASA, Cisco PIX, and Cisco Routers using site-to-site VPN’s.
• Editing and Changing Palo Alto Polices and Monitoring threats on firewalls according to the latest versions.
• Addressing Vulnerability exceptions and false positives reported by Audits and fix the audits to stop reporting false values.
• Working with vendors for critical issues and RMA’s for hardware replacements.
• Captured packets by configuring span port and analyzed using WIRESHARK and TCPDUMP.

Environment: F5 Load Balancer-LTM-5050,5250,10250, iSeriesi2800, i5800, i7800,i10800, GTM, APM, BigIQ, PaloAlto, Checkpoint,Cisco ASA, Juniper, CISCO ISE, Infoblox, Bluecoat Proxy, IPS signatures Wireshark, Service Now LTM-5050,5250,10250,iSeriesi2800, i5800,i7800,i10800, GTM 2200, i5800, VCMP and VM’s

Confidential, Minneapolis, MN

Sr. Network Engineer

Responsibilities:

• Experience with managing the completed end to end solutions.
• Working on Layer 2 and Layer 3 Network Designing, implementing protocols such as BGP, EIGRP, OSPF, STP, VLANs and troubleshooting, which involves Cisco routers, Catalyst 3560 CX,6509 E A, 3650-CX A X series and Nexus 7k,9k series switches in multi VLAN environment usinginter VLANrouting, HSRP, ISL-Trunk, &Ether-channel.
• Troubleshoot Infrastructure Network related issues In Target environments for stores, Distribution centers, HQ Locations and Data centers
• Configuring new hardware or replacement of faulty hardware like Cisco Switches/Routers, Wireless Access Points.
• Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
• Experienced Tech Support as it relates to LAN system.
• Working with Cisco TAC for critical issues and RMA’s for hardware replacements.
• Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches and Cisco Nexus switches 7000 and 7700 series.
• Miraki device configuration and troubleshooting
• Troubleshoot and hands on experience on security related issues on Checkpoint, IDS/IPS, Palo Alto firewalls.
• Implement and configured firewall rules in Checkpoint Gaia R77.20, R75, R70, VSX and Palo Alto Pa-500, Pa- 3000 series
• Support day-to-operations of firewalls (Policies, Route, NAT, VPN Implementation & Troubleshooting).
• Analyzing existing extranet and VPN connectivity and firewall rules targeted for migration to next generation juniper SRX firewall and network platforms.
• Implement all changes to security infrastructure in accordance with standard procedures and change control policies and procedures
• Configuring and troubleshooting of Palo Alto, Juniper NetScreen & SRX Firewalls and their implementation.
• ImplementRemote AccessSSL VPN certificate based solution (Cisco AnyConnect) onCisco ASA firewalls and also, helped in preparing for a SSL VPN migration from cisco to Palo Alto Firewalls.
• ImplementGlobalProtectSSL/IPSec VPN certificate based solution onPaloAltoPA-3000 series firewalls.
• Administering Check Point VSX gateways in high availability/ cluster environment and Multi Domain Security Management Servers.
• Firewall cleanup analysis and implementation using Tufin Policy Orchestration and Secure Track tool.
• Full-connectivity upgrade of Check Point clusters from R75.40VS to R77.30 with zero downtime.
• Modify the configuration properties to achieve the maximum security for your enterprise - Rule, Remediation activity.
• Configured DNS IP address assignment for A & PTR records using InfloBox.
• Used Infoblox for DNS management of network infrastructure.
• Configured Routers for OSPF, EIGRP, BGP protocols.
• Hands on experience and Good Understanding of OSPF, BGP, MP-BGP, MPLS-VPN.
• Network Deployment of constructed, implemented, tested and launched various network nodes featuring BGP, OSPF, MPLS and VLANS using RSTP, gateway redundancy protocols HSRP, GLBP and VRRP.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.
• Configured Object Grouping, Protocol Handling and Code up gradation on Checkpoint Firewalls.
• Configured and monitored Firewall logging, DMZ’s and related security policies.
• Trouble Shoot Firewall (Checkpoint) Related issues on traffic flow.
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Configuring rules and maintaining Checkpoint Firewalls& Analysis ofFirewall logs.
• Configuration of IP-Sec VPN tunnels to remote sites using IKEv2.Using tools like cisco works, we can monitor the remote sites connectivity.
• F5 BigIP pools, monitors, profiles and VIP's configuration and troubleshooting.
• Live VIP's cutover from local traffic manager to Global traffic manager.
• Configured different load balancing methods on F5 LTM & GTM and worked on one-connect profiles and HTTP compression and several persistence profiles.
• Engineering and configuring Virtual Server, Pools, iRules, Profiles, Persistence, and monitor on F5 LTM.
• Configurations to F5 GTM wide-ip's.
• Installed and configured f5 Big-Ip LTM and GTM to provide Load Balancing across multiple datacenters.
• Troubleshoot Load Balancer (F5 LTM, GTM) related issues.
• To secure configurations of load balancing in F5, SSL connections, Troubleshooting SSL related issues .
• Managing Wireless infrastructure of Target Corp which consists of 44 pairs of Cisco Wireless Lan controllers and 70000 Wireless Access points across Stores, OSBR, DC and HQ locations.
• Tier 2 and Tier 3 Wireless Engineer for Wi-Fi connectivity Support for various locations.
• Migration from Autonomous Access Points to Light weight Access Points across all Target stores.
• Monitor, analyze and troubleshoot on Cisco Aps (1572, 2702 and 3802) and wireless controllers (4400, 5508 & 5520) through cisco prime.
• Successfully completed Code upgrade project of 4400 & 5520 & 5508 wireless controllers across Target environment.
• Connect with Vendors and receive the latest security vulnerability information and perform code upgrade on devices for security bug fixes, configuration and Technical assistance.
• Knowledge of 2.5 GHz & 5 GHz radios, CAPWAP, Mobility Anchors, Client Roaming, AP groups, Root, Mesh and Local AP, AP power Level, Channel, SNR, RSSI, 802.1X with EAP TLS, Co-channel & Adjacent interference, HA Pairing, Guest WLAN, Power Injectors
• Knowledge of wireless security features including Access-lists, WPA/WPA2, RADIUS and TACACS
• Coordinates with Vendors for raising RMAs.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Performing network monitoring, providing analysis using various tools like Riverbed, Spectrum and Syslog.
• Provide on 24x7 on call support to ensure stable operation.
• Performed coordination, guidance and help field technicians remotely who are on-site performing the hands-on work (e.g. wiring, racking, equipment. relocation, etc.)
• Experience on tools such as Cisco Prime Infrastructure to design and support WLANS.

Environment: Catalyst 3560 CX,6509 E A, 3650-CX A X series and Nexus 7k,9k series switches, F5 Big-IP LTM, GTM, APM, ASM, Checkpoint R75, LAN,HSRP, RIP, OSPF, BGP, EIGRP, VLAN, MPLS, STP, RSTP, CISCO WLC, LWAP, Cisco-Prime Infrastructure, Infoblox, Spectrum, Service Now, Microsoft-Visio, Wireshark.

Confidential

Member Technical Staff

Responsibilities:

• Regression Testing of Routing features on Cisco router, ASR and 12K series routers.
• Manually Upload the Firmware to test beds with contains Cisco Switches, Routers and traffic generators before regression kick start.
• Different approaches to trace the bugs in IOS image such as manual testing.
• Well diverse in Fix based testing, feature based testing to improve the bug count of the team.
• Sending Test Status Report and defect reports on weekly basis.
• Executing Test Cases manually for failed cases.
• Adjust the test cases based on the test bed architecture.
• Maintaining of the test bed which include Routers, Switches and Traffic Generators.
• Troubleshooting the problem with test bed.
• Coordinating with Technical team for any new provisioning of the Test beds.
• Client Interaction for new integration and weekly meetings for test cases reviews.
• Automated test cases using Earms tool.
• Debug the scripts in case of any issues reported.
• Pause the automated test cases using sleep timer in the script.

Environment: Cisco Switches, ASR, Cisco 10k and 12k Platforms, Tcl/Tk, EARMS and ATS.

Confidential

Network Engineer

Responsibilities:

• Managing For all Andhra banks network with Cisco Routers and switches .
• Maintaining & Configuration of Cisco Routers & Switches
• Job duties included resolving WAN issues
• Configuration, Implementation & Troubleshooting of channelized E1, ISDN PRI & ISDN BRI
• Proficient in trouble shooting leased lines and ISDN using debugging tools
• Good understanding and hands on various routing protocols - RIP, IGRP, EIGRP, OSPF & Static routes
• Good experience in project management and customer management
• Excellent communication, presentation, negotiation and inter- personal skills
• Hands on Layer-1: Copper cabling installing including patch and crossover cables, as well as crimp down RJ 45 connectors.
• Preparation of Technical Documentation for installations and Implementations.
• Disaster Recovery Plan for network equipment (Cisco routers and switches) in Core and Distribution locations of WAN.
• Disaster Recovery Plan for data traffic flow during the scheduled/non-scheduled network breakdown.
• Responsible for Trend Analysis of Leased Lines for Utilization of links and providing suggestions for up gradation of bandwidth
• Handling the Network Uptime as per SLA
• Diagnosing and resolving network faults
• Installation and Configuration of Routers, switches and asynchronous modems
• ISDN call setup/tear down/debugging and their configuration
• Trouble shooting and testing of leased lines/ISDN connectivity
• ISDN as backup operation - setting up dial back up and testing the back up
• Responsible for Trend Analysis of Leased Lines for Utilization of links and providing.
• Knowledge on RAD, MMLN, ASCOM modems

Environment: OSPF, EIGRP, Cisco Routers 1800, 2600, 3500 and 3600, RAD, MMLN, ASCOM.

Confidential

Network Engineer

Responsibilities:

• Managing For all Andhra banks network with Cisco Routers and switches.
• Maintaining & Configuration of Cisco Routers & Switches
• Maintaining & Configuration of Cisco Routers & Switches
• Job duties included resolving Leased Line issues.
• Configuration, Implementation & Troubleshooting of channelized E1, ISDN PRI & ISDN BRI
• Installing and Administering LAN, Peer to Peer and Client-Server based Networks
• Installing Layer 1, 2 and 3 Networking devices, and to promote the cabling work.
• Administration of LAN.
• Structure Cabling both design, coordination and Implementation.
• Maintaining 100% network uptime.
• Independently handling & closing of major Projects within stipulated Time Frame.
• Job duties included resolving WAN issues
• Configuration, Implementation & Troubleshooting of channelized E1, ISDN PRI & ISDN BRI
• Proficient in trouble shooting leased lines and ISDN using debugging tools
• Good understanding and hands on various routing protocols - RIP, IGRP, EIGRP, OSPF & Static routes
• Good experience in project management and customer management
• Excellent communication, presentation, negotiation and inter- personal skills
• Handling the Network Uptime as per SLA

Environment: OSPF, EIGRP, Cisco Routers 1800, 2600, 3500 and 3600, RAD, MMLN, ASCOM.