SUMMARY:

• Results - oriented Sr. Network Engineer/Architect, Pre-Sales & Project/Program manager with 16+ years of year's extensive hands-on experience in experience in the design, implementation, OSS/BSS, deployment, configuration/troubleshooting and operation of design, testing.
• Migration of Data center, Multi hybrid cloud technologies Openstack, Azure, AWS, GCP, Network Automation, Docker,Kubernetes, Python, Ansible, DevOps, SDN, SD-WAN, carrier class voice, data, DOCSIS, DSL, CDMA, WiMAX, LTE, UMTS, HSDPA, GSM,SONET, DWDM, ATM, Ethernet, PBT-TE & IP/MPLS networks and supporting OSS/BSS and network management systems.
• Provide Project Management, Design/Architecture, testing, Engineering, Implementation, QA/staging, production and support..By providing a dual role as Project Manager and Senior Network Engineer, I was able to maximize profits on a per project basis by minimizing need for multiple billable resources.
• Design, developed and supported IP backbone network, VOIP,SDN, NFV, Network Orchestration, Cloud technologies, IaaS. PaaS, SaaS,IP multicast, Frame Relay, Carrier Metro Ethernet,6LOPAN, Li-Fi, ZigBee, ZWAVE, NB-IOT,5G Millimeter wave, IPTV, HSI, VoIP, Mobile, Enterprise/Business, PSTN, Security ATM, MPLS implementation for Wireless service providers, telcos, ISPs, DOCSIS, DSL service providers and a variety of corporate infrastructures / backbones and managed RAN, Transport & Core network.
• Managed, Designed, Engineered, implemented LAN/WAN, core backbone network, internet security and intrusion detection systems utilizing multi vendor solutions.
• Extreme, L3 and Checkpoint. Ability to manage multiple projects, within time constraints, from initial planning to completion.
• Sound knowledge and experience in designing and testing networks, creating test plans and implementing security including business continuity planning and risk management.
• Very good, in-depth knowledge of IMS, 3G/UMTS/HDSPA, UMA and 4G/LTE, 5G architecture & IPV6.

TECHNICAL SKILLS:

Confidential ONS 15454, Confidential BTS 10200, Confidential GSR, VXR/UBR, Nexius 5000/7000, 6500, 12000, 7609, 7500, 7000, 5300, 4000, 3000, 2600, 2500, Terminal Servers: 2511, 2509), ASR 5000/9000, CRS. Extreme Networks Switches (Summit 24), Avici IPriori, Confidential Switches (Nexus 7010, 5020, 6500, 4507, 5000, 3500, 2900). Confidential Pix Firewalls (525, 520, 515, 506), ASR1002, FWSM, Confidential ACE, Confidential 11150/111800 load balancers, ASR9000. ASA 5550 FWSM,VPN Concentrator 3000 series, Confidential IOS Firewall feature set (IOS 12.X). NetScreen Firewalls (NS-5XP, NS-5GT, NS-500), Juniper MX240,960, J2320, J4360, J6350, T320 Series, Alcatel 7750, 7670, 7470, 5620 NM, 7450 ESS, TSS-320,DMX1850 TSS, Tellabs 8800,8830 AS, Cyclades OOB,, Confidential IOS, Checkpoint Firewall-1, Floodgate,F5 Big IP,Raptor, Gauntlet,Sonic-Wall, Net screen, Watch Guard, Confidential MARS, CSA agent, IBM Proventia, Arbor Peakflow TMS 2700/3100, Wichrous ASN GW, Samsung ASN GW, Ercisson NodeB, RNC,Tellab DACS, Sandvine DPI, Ciena 311v, Ciena 5305, Ekinops 360 DWDM, ZTE Pico cell, Huaweii BS, Samsung BS, Samsung Pico cell, Kyocera Femto cell, IEEE1588 PTP, ACME SBC, Ceterus, Dragon Wave Radios, OMA/DM Provisioning servers, Wichorous ASN GW, Confidential Aironet 12000 APs, ALU 7750, Ericsson SE100/SE600, Ceragon IP10/640, SIAE, Ericsson Minilink TN, Aeroflex Racal 6402, Spirent SR3452 and Spirent Air Access, Agilent 8960 and R&S CMW 500, QXDM, QCAT, Accuver XCAL, XCAP, OpenStack, OpenDaylight, OpenSwitch, VxLan, NETCONF, YANG data model, JSON,XML,DevNet tools, including Puppet or Chef, ANSI scripts, TOSCA and YAML based file formats, HOT Template and OVF based VNF descriptors, OVS, OF-DPA, OpenFlow, BGPEVPN, TTP, ODL, ONOS, Ryu, KVM, OpenStack, ONL, Icinga2, Monasca, Nagios, Wireshark, iSCSl, Ceph, Swift, Postgres, Mysql, InfluxDB Ganglia, Zabbix,VM/Docker-Container, Ciena blue planet, Kafka, RabbitMQ, KVM, libvirt, VMWare Quagga, RouteFlow etc etc, Understanding of SDN/NFV ecosystem SDN controller, ONF, ETSI NFV, Opendaylight, ONOS, Openstack.Understanding of CloudApps & Cloud Aware software Implementation. Understanding of Cloud technologies & ecosystems - DOCKERS, MESOS, Elasticity Manager, DevOps

Tools: GRANITE, Site Handlers, Siterra Interado, Netscout,, Netrack, Alcatel PMT tool, Spirent Abacus, Avalanche, Air Access, Smartbits, IXIA Chariot, Wireshark, Ericsson-TEMS, Solarwinds, ISS, NAI TNV, Web Trends Security, ntop, HP Open View Network Node Manager, Provision Network Monitor, WhatsUp Gold, Tripwire, Tiger, SATAN, Ether Peek, Snort IDS, Confidential Works 2000, Nessus, Netcool, Cramer, OpenView IUM 4.5 mediation. JDSU CN-100, Tektronics, IXIA, Spirent, Acterna, Emprix Hammer, Agillent B9990A, E6474A Wireless Network Optimization Software, Shell Scripting, Perl Scripting, TCL/TK scripting, VB Scripting, MOSHELL, SQL server, MySQL. Confidential Transport manager, Umbrella, Cacti, Trafica, RCATS, Metasolv, Clarity, Netcracker, ICOMS, CSG, Jasper IOT,Amdocs Cramer, LHS BSCS billing platform, Tripwire, Sales Force, Remedy, Junoscope IP services manager, LAMP (RNC emulator), UBINETICS TM 100/500, Wireless Logics- XCAL, XCAP, iPerf, Fluke networks, Confidential MARS, Nessus, Wireshark, Ixia, Spirent, BroadcomOS:Windows NT . Windows XP/ME/98/95, Unix (Sun Solaris, 2.6, 2.7, 7, 8,9,10, Red Hat Linux 5.0-9.0-Fedora-Core 2-4, AIX, Confidential IOS 10-12.4. Confidential Cat OS.OS/2, Junos, Confidential NEXUS 5000,7000, ALU 7705 CSR, ALU7750 MAD, NSN SRAL-XD,SR4, Flexi Packet Hub, Tellabs 86xx ( 60 /8630 ), 73xx, 63xx, CBX3500, Netviewer, Jasper control center, Axeda, DSC,Ayla, Confidential Model DPC3925 8x4 DOCSIS 3.0 with Wireless Residential Gateway with EDVA, Clearpass, Confidential NCS2K, Confidential VTS

PROFESSIONAL EXPERIENCE:

Confidential, NJ

VP Enterprise Network Monitoring engineering/Principal Network Architect

Responsibilities:

• Manage Network monitoring tools for network engineering and productions operations, Internet and Regional and Global MPLS network connectivity. IPSec, DMVPN tunnels with clients DDOS VPN tunnels with Roxel & AWS, Azure cloud

Tools: managed and implemented for network engineering, troubleshooting, capacity planning. security engineering. API integration & Automation., Solarwinds Orion, NetBrain, NetScout nGenius, Thousand Eyes, Prometheus, AppDynamics, Moogsoft, myCIO. HIPAM, Infoblox, Confidential DNA/Prime. HPNA, Confidential IDS/IPS. Splunk, Qualys SIEM. Remedy, Service now, JIRA, Confluence. Ansible tower, playbooks & /Python for network automation for infrastructure devices Confidential Nexus 9K, Confidential ASR, 6500 SW, Leaf and Spine switches 9K, Confidential ACI, Palo Alto firewalls, Fortinet, checkpoint firewalls, Confidential ASA, Confidential UCS, APCON Switches, Confidential Viptela SD WAN and Nessus, Arbor and F5 LTM/GTM and Netscalers LB.

Confidential, NY

Sr Network Architect

Responsibilities:

• Responsible for overall network, voice & cloud, SDN/NFV architecture & RFI/RFP, OEM vendor assessment, proposal evaluation, budgeting, SOW and POC in lab.
• Install, configure, and maintain all network devices and services (e.g switches, routers, firewalls, VPN, WiFi., LAN, WAN) Confidential Meraki, Fortinet, Confidential ASA, VMWare ESXI, Vcenter, NSX, Windows 2019 servers, AD, DNS. Express route, IPSec tunnel in Azure cloud. Confidential UCS, Call manager, Unity. Avaya & Confidential IP phones. Manage all company public DNS zones
• Perform network maintenance and upgrades, change management, security monitoring, penetration testing, Vulnerability assessment. Monitor network for performance, availability, and capacity by Netscout.nGenius, Solarwinds Orion, App Dynamics.Moogsoft., Netbrain. Create change management tickets/RFC on ServiceNow and intakes from JIRA on operational changes. Perform testing and maintenance upgrades & testing on weekends
• Troubleshoot and act as a point of escalation for voice and network related issues (LAN/VMWare, WAN/MPLS & Azure cloud, Ansible)
• Develop detailed documentation of all network systems and configurations
• Partner with IT and the business to manage and participate in projects with network responsibilities and dependencies bringing best practices to NFE infrastructure. Continuous development and improvement of networking processes and procedures
• Provide solutions to address business needs, creating business proposals that outline current state, future state, risks, opportunities, and ROI
• Manage vendor relationships with network equipment suppliers, ISP’s, telecommunications providers, low voltage cabling providers, and network software vendors

Confidential, Hackensack, NJ

Principal Network Architect/Engineer

Responsibilities:

• Manage a team of 5 junior engineers, work with customer Avangrid and vendor Confidential, Confidential, Juniper and architect/designed a network high level design document to meet the objectives and requirements for the network solution that has been proposed for this SOW and Low-level design document wit design and configurations.
• Manage Confidential team of architects in collaboration with Avangrid engineers by utilizing Avangrid’s development lab to perform interoperability testing with Ciena 5142 Service Aggregation Switch equipment, Confidential 1830 PSS, Juniper MX960, Confidential 6509 FWSM and verify the solution.
• Develop reports of OT Network for ASD Network, including OSS/BSS, inventory, capacity, provisioning.
• Develop an HLD documenting the recommendations and design for transporting traffic from designated entry points towards the data centers and based on the service and network requirements provided by Avangrid with network architecture/design requirements including, Failover mechanisms Naming conventions, vendor products used as part of the network design, Ethernet port configuration parameters, IP addressing allocation, Service designs to transport Ethernet based traffic as applicable for the solution proposed: L2 VLLs (E-Pipes) & E-Line Services. Data Center build utilizing new Confidential Nexus network infrastructure.
• Installed Nexus 7010 core switches and Nexus 5548 and 2148 server access switches.
• Configured 7010’s with multiple distribution VDC’s running EIGRP for route propagation between them.
• Responsible for configuring and administering ACL’s, route-maps, route-policies, prefix-list, and redistribution between routing protocols on the edge routers (ASR 9ks).
• Working on the SD-WAN implementations Confidential all Greenfield and Brownfield utility AGR by deploying Viptela hardware in multi tenant model. Create BGP OSPF, IPSec template for vEdge router. Configured vSmart Controller, vBond Orchestrator, vSmart controller, vEdge router and authentication between devices for testing all use cases-SDWAN Circuit Aggregation, Secure Connectivity, Application Discovery, Dynamic Path Selection, Performance Based Routing, Dynamic Cloud Access, Role-based Security, vEdge Protection, ZBF, Real-time Network management and network monitoring using Confidential Works LMS and SolarWinds, application Monitoring using vManage, analytics
• Development and lab testing of transport design pertaining to transport planning/availability (e.g., analysis of available fiber/transport options, design of optical transport network, DWDM/CWDM design/wavelength assignments, link budget calculations, specifications of XFPs/SFPs to be used for various inter-nodal transport links) includes E-Line Services and E-Pipes for utility apps (SCADA, AMI, Teleprotection)Expert Analysis of current JMUX and SONET ring infrastructure connected to substations and backup integration on 4G/WiMax infrastructure with Sub station through Confidential orbit routers.
• Managed the feasibility study and evaluation of Smart grid IOT and 5G technologies for Cleantech project for County of San Diego IT Department.
• Evaluation of multivendor technologies including IoT technology (NB-IOT/5G, Zigbee, Zwave, 6LOPAN, Li-FI, LoRA, Sigx, LPWAN) POC or preferences,ASSET360® Investment Accelerator framework configured to address San Diego’s issues/needs, Network management tools, probes, data collection/analytics, tools, databases, storage -NAS/SAN, DR, Network infrastructure design to provide security for apps, scalability, performance, HA, QoS, routing, switching, cloud AWS/Azure, interoperability, standards and future roadmap, Location of GW and sensor systems, devices, BW, DR, backup. Responsible for architecting, designing, implementing and supporting of cloud-based infrastructure and its solutions.
• Created abstraction layers with Vcloud director for secure multitenancy in a three-pod design (three clusters, with one cluster in each of the pods), worked with Ericsson Orchestrator, ONAP/OSM, HPENFV director for VNF images (ISO/VMDK/OVA/RAW/QCOW2, VDI/VHD) for VMware Integrated OpenStack VNF Onboarding onboarding for LTE RAN, eNodeB, Core vMME, vHSS, vSPGW and vIMS core.
• Gathered configuration information NF format, number of networks required, East-West and North-South network connectivity, routing policy, security policy, IP ranges and performance requirements.
• Create projects, tenants, users, group, permissions and authentication with keystone and assigning qouta for the project for resource consumption. Configure VNF tenant requirements, VNF deployment requirements, a tenant can provision East-West connectivity, security groups, firewalls, micro-segmentation, NAT, and LBaaS from within the VMware Integrated OpenStack user interface or CLI.
• VNF North-South connectivity and external networks.
• Provisioned OvDCs by vCloud Director in the Resource pod and corresponding vSphere resource pool in the Edge pod, set compute resource reservations and limits for the edge devices in OvDC.
• Created Network profiles for bandwidth limits for each North-South network to ensure fair allocation of physical network resources to the tenant edge services.
• Managing Amazon Web Services (AWS) infrastructure with automation and orchestration tools such as Chef, Ansible, creating multiple VPC’s and public, private subnets as per requirement and distributed them as groups into various availability zones of the VPC. Wrote cloud formation templates in json to create custom VPC, subnets, NAT to ensure successful deployment of web applications.
• Implemented domain name service (DNS) through route 53 to have highly available and scalable applications. Maintained the monitoring and alerting of production and corporate servers using Cloud Watch service. Created EBS volumes for storing application files for use with EC2 instances whenever they are mounted to them.
• Responsible for network architecture planning, development, design and implementation for Smart Grid utility clients. Analyze client’s business needs to create System requirements document, HLD/LLD, lab acceptance docs, field acceptance docs, network diagram visios, configuration workbooks. Perform hands on lab testing with Confidential 7750, 7705, NSP, PA firewall, for migration to MPLS for core & distribution. Create IPSec back up plan doc. Provides Subject Matter Expert (SME) support and Technical advisory to customer and activities, including creating proposal as per scope, level of effort estimation as per PADDIO process and implementation plans. Lead and participate in project execution and technical delivery with customers and B&V stakeholders. Recent Utility client includes Powersouth, Cleantech, Eversource.

Confidential, Hoboken, NJ

Sr ACI Engineer & Cloud Automation consultant

Responsibilities:

• Worked on migration of 3 tier Data center with Confidential Nexus SW 9000 to Confidential ACI CLOS fabric with Confidential Titration analytics platform and Ansible tower /python YAML scripts, service chaining, VMM integration including Image upgrades, modifying config with NETCONF/YANG on Confidential 9400 SW.
• Create RFI/RFP and evaluate vendor proposals, conduct lab POC from Fortinet, Aruba, Confidential ISE., Aerohive for NAC and WiFI infrastructure, DDOS and WAF on Akamai, Radware, Neustar, Imperva, QRADAR SIEM, Palo Alto, Fortinet solutions.
• Working with Infosec security team to create requirements for POC Use cases to be tested in lab, integration testing with Confidential Nexus, PA FW, Data centers and DR site and testing integration with Service Now, Solar winds NMS and testing with VMWare ESXI clients and AWS and Azure cloud environments.
• Configured Silver peek unity orchestrator for orchestration& automation, end to end zone based segmentation, dynamic load balancing, dynamic path control between 2 DC and London DC.
• Troubleshooting bandwidth, delay/latency QoS/QoE issues for 150 + financial Loan and banking applications as per SOX, SAS70, PCI compliance.
• Working with vendors and resellers for quotes and budgeting on licenses and network equipment and sending status reports to Sr Management in Tokyo.