PROFESSIONAL SUMMARY:

• 8.3 years of experience in Cisco/Juniper Networking, Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
• Hands On experience Cisco IOS/IOS - XR/NX-OS, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for teh Nexus 7000. Configuring VDC & VPC in Nexus 9k, 7k, 5k and 2k.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 9000, 7010, 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
• Responsible for Check Point (Secure Platform R70) and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with teh firewalls as per teh design.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Worked on MPLS while ensuring secure networking, improving teh network performance by prioritizing network traffic and allocating bandwidth according to usage and service requirements.
• Worked on Multicast to use teh bandwidth more effectively while reducing teh load on teh sender.
• Knowledge of WAN Optimization Technology, Riverbed.
• Configuring Cisco Wireless Controllers and AP’s.
• Configuring Cisco WAAS.
• Configuring teh Network Admission Control (NAC).
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• Hands on Experience testing iRules using Browser(IE), HTTP watch

TECHNICAL SKILLS:

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP

Networking Hardware: Cisco Switches, Cisco Routers, ASA/Pix firewalls, Vmware, Ironport

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting

Security Technologies: PAP, CHAP, Cisco PIX, Blue Coat

Network Monitoring: Cisco Works 2000, Wire Shark, HRPing

Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR

Routers: CISCO 2600, 2800,3600,3800,7200, Nexus 9K, Nexus 7K, Nexus 3K Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Load Balancers: Cisco CSM, F5 Networks (BIG-IP)

Capacity & performance: IXIA, Spirent, Cisco works, IPerf, IXChariot

Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,5k,2k

Programming Languages: C, C++, Perl, VB Script, Power Shell, Python, SQL

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modelar, Cadence Firewalls juniper net screen(500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), McAfee Web Gateway

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR’s, HLD and LLD documents, Confidential equal logics

PROFESSIONAL EXPERIENCE:

Confidential, Houston, TX

Firewall Engineer

Responsibilities:

• To ensure dat teh day-to-day Security Operations runs smooth. Change management and 3rd level Incident management being teh primary responsibility, participate directly as well as take escalations from teh team members as and when required.
• Change Management: Need to make sure dat all teh change designs and implementations are completed and tested as per teh schedule required by teh customers.
• Rule base verification and migration

  Involved in managing a network with over 250 firewalls. Strong hands on experience with Checkpoints, Palo Alto Firewalls, Panorama (M-500) and Cisco ASAs on a regular basis.

• Responsible for decommissioning several legacy firewalls, Checkpoints (R75, R75.40s), Cisco ASAs and migrating them to Palo Altos.
• Worked on firewall migration tool to automate teh process of migration. Teh process includes, but not limited to, configuring NAT and VPN, moving network objects, policies to PAN OS, moving from ports/protocols to applications, analyzing teh current policy and compressing it fewer rules wherever necessary, policy tuning etc.
• Configured and administered Palo Alto firewalls and Panorama to manage large scale Firewall deployments.
• Configure and administer security rules and policies to permit or deny user traffic based on company security policy
• Worked heavily on Tufin and Firemon v8 to keep track of teh changes, generate teh rule and object usage reports before teh cleanup property and also to ensure dat dat teh compliance requirements are met.
• Involved in teh cleanup of around 40,000 rules on ASAs in a month’s time before teh migration.
• Also worked on Firemon’s data collectors to fix teh issue of triplicate log packets being sent from Palo Altos to teh data collectors.
• Coordinating with teh risk remediation team and teh appropriate BUs to communicate about teh legacy firewall rules being sunset and ensure dat there is no outage.
• Co-ordinated with other team members and participated in teh change management process to implement teh needed changes. Worked on service now ticketing system to follow teh change management process.
• Clean up all legacy devices and insure all systems in teh environment have been cleaned up.
• Measure teh application performances across teh MPLS cloud through various routing and switching methods.
• Designed, developed, maintained and supported wired and wireless networks. teh new team members with product technologies and Infrastructure setups. Also to make them aware of all teh processes dat needs to be followed while doing teh technical work.
• Periodically or as and when required, revisit teh process and improve it, covering any existing gaps and making it more robust as well as practical.

Confidential, Phoenix, AZ

Sr. Network Engineer

Responsibilities:

• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for teh Nexus 5000.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for teh corporate applications and their availability
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.
• Working on to set up OSPF dynamic routing on Cisco ASA Firewalls by using and following their current network structure.
• Monitor, operate and support network security devices such as cisco ASA, juniper firewalls
• Experience with converting 6500 to Cisco Nexus in teh data Center environment.
• Configuring OSPF and Static routing on JuniperM and MX series Routers.
• Experience configuring Virtual Device Context in Nexus 7010.
• Implemented antivirus and web filtering on Juniper SRX 240 at teh web server
• Design and Configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Configured VLANs with tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Developed Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying teh NX-OS operation system
• Experience with configuring OTV between teh data centers as a layer 2 extension.
• Communicating with engineers on operational issues, making recommendations to engineers about network architectures, performing complex problem solving during critical network outages.
• Experience with upgrading NX-OS to version 6.1 on teh cisco Nexus 7010
• Configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4.
• Deploying and decommissioning of Cisco Routers, Cisco switches and their respective software upgrades
• Performing teh Firewall ACL requests change for various clients by collecting source and destination details
• Working with Network Design and implementation teams on various projects across North America.
• Experience with manipulating various BGP attributes such as Local P, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Identify, design and implement flexible, responsive, and secure technology services.
• Experience innetworksecurity in a telecommunications environment.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Performing troubleshooting on slow network connectivity issues, routing issues dat involves OSPF, BGP and identifying teh root cause of teh issues.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom teh Devices, Testing( Pilot ) .
• Converting CatOS to Cisco IOS Config Conversion on Access, distribution & Core layer switches
• Planned for teh implementation of a new architecture at legacy Web Hosting Data Centers
• Experience with converting Cisco 6500 to Cisco Nexus in teh data center environment.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Implemented DHCP, DNS, IPAM configuration on teh servers to allocate, resolute teh ip addresses from Subnet.

Confidential, San Ramon, CA

Network Engineer

Responsibilities:

• Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at teh Access, Distribution, and Core layers.
• Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
• Installation and deployment of new class 9X and class 10 Server farms in multiple silos.
• Designing and installing new branch network systems. Resolving network issues, running test scripts and preparing network documentation.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Ensuring problems are satisfactorily resolved in a timely manner with focus in providing high level of support for all customers.
• Working with wireless technologies troubleshooting and configuration.
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Work with Engineering on Server Farm refresh project on consolidation and increasing teh bandwidth on Server Access silos.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configure BGP features such as as-override, Local pre, EBGP load sharing on client connections
• Configured and resolved various OSPF issues in an OSPF multi area environment between multiple branch routers.
• Working with Juniper JUNOS on M and MX series routers.
• Configuring HSRP between teh 3845 router pairs of Gateway redundancy for teh client desktops.
• Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Responsible for service request tickets generated by teh halpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with teh firewalls as per teh design.
• Providing Level 3 support to customers, resolving issues by attending to conference calls.
• Configuring multiple route reflectors within a cluster.
• Working on HP open view map for Network Management System and Ticketing.
• Working on a broad range of topics such as routing and switching, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter Vlan Routing, LAN security.
• Working on security levels with RADIUS, TACACS+.

Confidential, Newark, NJ

Network Engineer

Responsibilities:

• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. Teh LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Replaced aging Checkpoint firewall architecture with ASA firewalls and URL and application inspection.
• Worked extensively on Cisco ASA 5500(5510/5540) Series,
• Management and Deployment on Checkpoint Firewall.
• Use Checkpoint to establish Point-to-Point tunnels.
• Ability to use NAT and Firewall security policies in Checkpoint.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Deployed 7613 as PE and CE router and Configured and troubleshoot teh Edge Routers.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Estimated Project costs and created documentation for project funding approvals.

Confidential

System/Network Administrator

Responsibilities:

• Configured and supported TCP/IP networks.
• Monitored teh network with Cisco Works 2000.
• Documented teh design, implementation and troubleshooting procedures.
• Configured and troubleshoot VLAN, VTP, STP and Trunks.
• Responsible for procurement and installation of H/W, network drives and other IT infrastructure.
• Network Administrator responsible for teh full Planning, designing, installation and administration of teh Corporate WAN (wide area network).
• Worked on datacenter migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Worked on teh datacenter environment, with routers and switches.
• Configuration, Management, Troubleshooting of Network devices (Routers, Switches, Firewalls, Servers, DSL Modems etc.). Maintained teh Telecommunication Connectivity using DSL and T1 Lines.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Managed IP addressing and implemented IP Access Lists.
• Evaluate and recommend inter-connectivity hardware, software, and services to fulfill various businesses needs as requirements develop.
• Worked on Routers Cisco 2620, 3750 and 2950 Switches & Link sys wireless access points.