SUMMARY:

• A focused networking professional with CISCO (CCNA R&S) around 9 years of professional experience in Network engineering, performing Network analysis, design, Implementing, capacity planning with focus on performance tuning and support of large Networks.
• Strong knowledge in Cisco/Juniper Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Profound knowledge on various WAN technologies like E1/T1/E3/T3, HDLC, Frame - Relay and PPP.
• Proficient in configuring Cisco Catalyst and high performance data center switch like Nexus devices.
• Knowledge in logical design models (L2/L3, vPC, vPC+, VDC, FEX, Datacenter Zones, OTV, Fabric Path, Spanning tree, Port Channels)
• Expertise in installing, configuring, and troubleshooting of Cisco Routers.
• Extensively worked on Cisco catalyst 6509.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP,RIP V1,V2 ability to interpret and resolve complex route table problems and implemented strategies for the expansion of MPLS VPN network.
• Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Working knowledge with monitoring tools like Solar Winds, Cisco prime and network packet capture tools like Wire-shark.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Expertise in OSI layer model/TCP/IP and troubleshooting.
• Have knowledge on various advanced technologies like VOIP, H.323, SIP, QOS, IPv6, Multicasting, and MPLS.
• Knowledge in implementing and configuring F5 Big-IP LTM-6400 load balancers.
• Experience with installation, configuration and management of various flavors of firewalls.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
• Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200) series.
• Expertise in installing, configuring and troubleshooting Juniper Routers ( E,J,M and T-series)
• Implementation of Juniper Router, Switches SRX, J, MX, EX Series and Juniper Firewall, SSG Series, Net screen Series ISG 1000, SRX Series.
• Implementation of HA-JSRP in JUNOS devices, SRX Series Router/Firewall in both A/A and A/P mod.
• Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point/Nokia Firewall VPN-1 FW-1 NGX R65, R70 & R75 Provider-1/Site Manager-1 R65, R70.30 & R75.40 Smart Domain Manager command line & GUI.
• Experienced in design, installation, configuration, administration and troubleshooting of LAN/WAN infrastructure and security using Cisco routers/Switches/firewalls.
• Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols
• Have experience in implementing metro etherent
• Administering Firewalls access control requests to ensure security standards and policies, application security reviews using vulnerability assessment tool i.e. ISS Internet Security Systems (IBM's) for application level vulnerability assessment & Solar Winds for performance monitoring.
• Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN.
• Have knowledge on various advanced technologies like VOIP, H.323, SIP, QOS, IPv6, Multicasting, and MPLS.
• Have experience in implementing new datacenter
• Have knowledge in Designing, implementing and maintaining physical cabling for data center and for user locations
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.

TECHNICAL SKILLS:

Routers: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600

Routing: OSPF, EIGRP, BGP, RIP v1/v2, PBR,PIM, Route Filtering, Redistribution, Summarization, and Static Routing.

Switches: Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Etherchannels, Transparent Bridging.

Network Security: Cisco ASA 5540, ACL, IPSEC, Checkpoint, cisco ASA5505, ASA5525X, ASA5585X, Palo Alto

Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400, cisco ACE

LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet

WAN: PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame Relay.

Gateway Redundancy: HSRP and GLBP

WAN Optimizer: Riverbed Steelhead Appliance

DHCP and DNS: Infoblox

Various Features & Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Network Management: Wireshark, SNMP, Solarwinds, cisco prime

PROFESSIONAL EXPERIENCE:

Confidential, Detroit, MI

Sr. Network Design Engineer

Responsibilities:

• Design and implementation of Main Data Center Move project from one location to another location with minimal down time using traditional DCI with vPC and In-box configurations with same HSRP group for redundancy on four Nexus 7k switches, two on each side.
• Design and Implementation of Disaster Recovery Co-location consisting of Nexus 7K switches, ASR 1002, Cisco ASA Firewalls, Cisco 3925 routers etc. Successfully implemented OTV for VLAN Extension.
• Experienced in installation, configuration and maintenance of Cisco Nexus 7K, 5K switches in standalone as well as in V-BLOCK infrastructure
• Extensive knowledge and experience in vPC, ether channel, STP, VTP, and HSRP also VRRP protocols.
• Experienced in Cisco ASR 1000, 7200, 2700, 2900, 3900, 1800 Routers, Cisco Catalyst 4500, 2900, 3700 Switches.
• Hands on Experience in Checkpoint UTM-1, Checkpoint Smart Center R.75, Nokia Voyager IPSO-390.
• Applied ACLs for Internet access to the servers using Cisco 5520 ASA firewall, performed NAT.
• Deployment and Management of Bluecoat proxies in forward proxy scenario as well as for security in reverse proxy scenario.
• Implementing and troubleshooting (on-call) IPsec VPNs tunneling and SSL for various business lines and making sure everything is in place.
• Hand on experience in Juniper secure gateway SA-4500 7 SA-2500 for VPN.
• Deliver in-depth diagnostics and root-cause analysis for networkimpacting issues on Juniper Networks routing products (Internet backbone routers) to large Internet Service Provider and/or enterprise customers;
• Deployment and configuration of Sourcefire 3D Sensor 8250 and Defense Center 3500 with Port SPAN also creating IPS/IDS policies and intrusion report generation and monitoring.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local P, Communities.
• Create and test Cisco router and switching operations using OSPF routing protocol, and MPLS switching for stable VPNs
• Worked on Cisco Routers, Active/Passive Hubs, Switches, Cisco PIX Firewall, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like RIP, EIGRP, OSPF, ISIS and BGP.
• StrongAuth Encryption & Tokenization appliances,PaloAltofirewalls
• AddedPaloAlto's as Transparent mode in the environment and provided the Layer 2 connectivity to them to Performs IDS and IPS
• Implement rules in Cisco ASA andPaloAltoFirewalls
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Worked on F5 BIG-IP LTM 8900, configured profiles provided and ensured high availability.
• Involved in the configuration and maintenance of IPsec Site-Site VPN.

Environment: s: Nexus 7k, 5k, Cisco ASR, Checkpoint firewall, Cisco ASA, Bluecoat proxy, Reverbed, IPS/IDS, BGP, OSPF, MPLS, VPN, F5 load balancer, Cisco prime, Juniper Switches and Routers.

Confidential, Lebanon, NJ

Network Engineer

Responsibilities:

• Installed and testedCisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Worked on Heterogeneous networks such as Frame Relay, Ethernet, Fiber, etc.
• Prepared Check Point firewall configurations for conversion to Cisco ASA 5585-series firewalls.
• Primary Network Security Engineer for Fiserv Firewall/VPN Support and Management on Checkpoint (Crossbeam and VSX), PIX, ASA.
• Involved in Configuring and implementing of Composite Network models, which consists of Cisco7600, 7200, 3800 series routers.
• Configured Routing protocols such as OSPF, BGP, RIP, static routing and policy based routing.
• Team member of Configuration ofCisco7206 router with VPN and Configuration of Catalyst switches.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
• Deployed Cisco Nexus 5K Series to support Virtualization, SAN Infrastructure, and high performance computing environments.
• Implementation and Proactive Monitoring of MPLS (MPLS-VPN), QoS (Layer2 and Layer3) and BGP technology.
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and Cisco 2950, 3500, 5500, 6500 Series switches.
• Responsible for Network Support Cisco ASA 5500 firewalls.
• Extreme knowledge in device mounting, cabling and working on the device from scratch
• Upgrading OS in Checkpoints and Firewalls
• Implement rules in Cisco ASA andPaloAltoFirewalls
• Managed and troubleshotPaloAltoFirewall Solutions
• PaloAltoF/W, Websense proxy, IBM IPS/IDS administrator
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
• Experience using diagnostic security and networking tools such as NMAP, WireShark etc.
• Utilize Wireshark, NMAP and Command Line Prompts on a daily basis.
• Involved in a project for a re-design of the LAN network (Cisco Catalyst 2960 and Nexus 5000 switches) and the virtualization of some systems
• Working with vendors such as Cisco to address any configuration issues.
• Worked with Juniper net Screen 500/5200 and also Juniper SRX 650/3600.
• Installed and testedCisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Worked on Heterogeneous networks such as Frame Relay, Ethernet, Fiber, etc.
• Prepared Check Point firewall configurations for conversion to Cisco ASA 5585-series firewalls.
• Primary Network Security Engineer for Fiserv Firewall/VPN Support and Management on Checkpoint (Crossbeam and VSX), PIX, ASA
• Redesigned Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Experience with hardware load balancer administration and support, preferably with F5 and CiscoACEload balancers.
• Experience in configuring Load balancers and Riverbed WAN optimizers.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Monitored and analyzed Intrusion Detection Systems (IDS) & Intrusion Prevention System (IPS) to identify security issues for remediation.
• Configuration and troubleshooting of Cisco switches 2000, 3000, 6500, 7004, 7009, 7700 Series.

Environment: Cisco Routing and Switching, Nexus 5k, Cisco ASA, PIX, OSPF, BGP, MPLS, Juniper SRX, Juniper Netscreen, Riverbed, IPS/IDS, Cisco ACE, Cisco prime.

Confidential, Racine,WI

Network Support Engineer

Responsibilities:

• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
• Validate existing infrastructure and recommend new network designs.
• Installed and maintained Cisco and F5 Load Balancer documentation.
• Responsible for network design, bandwidth allocation, IP address allocation, supervising installation, configuration and maintenance on major network technologies.
• Worked with various internal organizations during pre/post deployment phase of different type of circuits.
• Installed and configured Cisco 2600, 2800, 3600, 3800 routers and 2950, 3700, 6500 switches.
• Maintained and managed networks running OSPF and BGP routing protocols.
• Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network.
• Daily monitoring of network traffic using sniffers (Wireshark) and access logs to troubleshoot and identify network issues.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, port aggregation
• Route redistribution and route update manipulation using route-maps; distribute lists and AD manipulation and link negotiation.
• Providing Tier II support in the provisioning, end-to-end test and turn-ups and maintenance of the major accounts. Optimizing Network by continuously and extensively working with customer to upgrade and optimize network and Circuit Move Add Changes including detailed design documentation.
• Performed Layer I, II and III troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for BGP, OSPF, RIP, RIPv2, EIGRP, Static and default route in a VPN environment using MPLS.
• Implemented and troubleshooted the MPLS network.
• Implemented changes and upgrades to network equipment and perform quality assurance reviews of those upgrades. Reviewed all changes to network configuration for technical accuracy and impact.
• Provided Network Support in the designing and implementation of Point to Point over T1s Frame Relay, DSL over ATM and IP over Frame Relay and Gigabit Ethernet.
• Documentation of network resources, systems, peripherals, procedures and policies for optimization of IT resources and security.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Co-ordinated with the Data Network and Security team and came up with possible solutions.
• Work on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Estimated Project costs and created documentation for project funding approvals.

Environment: Cisco Routers, Cisco switches, Cisco ASA, Firewall, RIPv2, OSPF, BGP, EIGRP, LAN, WAN, MPLS, F5 Load Balancer, VLAN, Trunking, ATM, PPP.

Confidential, Oaks, PA

Network Engineer

Responsibilities:

• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP and BGPV4.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Setup Access list and configured Firewall.
• Implemented QoS for Voice traffic.
• Planned and executed the migration from PSTN to IP Telephony, CUCME and 7960 IP Phones.
• Designed and implemented IT security policies and networked backup systems.
• Documented and maintained technical diagrams, documented logical and physical topology, and other IT procedures.
• Reviewed, approved, procured various IT hardware and software products to fulfill strategic and operational needs of various departments.
• Have strong knowledge in raising PR,PO and closing the requirement
• Worked with management and various departments to develop procedures and troubleshoot problems as they arose.
• Coordinated with higher-level support and external vendors for resolution
• Maintained all servers & network equipment with current stable firmware, IOS images & access control lists
• Have knowledge on alcatel switches
• Implemented strategies for operating systems, virus protection, mail systems and Internet services
• Performed scheduled Virus Checks & Updates on all Servers & Desktops.
• Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures.

Environment: Cisco routers (7900,3600,2500), Cisco switches (4500,6500), Cisco ASA Firewall (5510), Routing protocols (EIGRP, RIP, BGP), Switching protocols (VTP, STP).

Confidential

Network Engineer

Responsibilities:

• Day to Day Roles and Responsibilities:
• Working on the Magic Requests
• Desktop management.
• Managing disk quotas and maintaining user rights and permissions.
• Windows OS patch management for Hyderabad site.
• Monitoring/ Maintaining SCCM advertisements for Hyderabad site.
• Generating software products usage report using SCCM reporting to get rid of software compliance.
• User ID creation for Hyderabad and Bangkok locations.
• Implementing Desktop SOE for various projects, updating the SOE images in WDS.
• Coordination and interaction with vendors / systems integrators
• Managing Inventory of the company Infrastructure
• Desktop OS Deployment using Disk cloning software, BDD and WDS/SMS 2003 OSD
• Print, File server administration and providing access rights using NTFS file permeations
• Implementing Vlans for Network optimization.
• Work with System and Network Engineers to reset and troubleshoot routers.
• Trained on BMC Patrol Agent
• Installing and troubleshooting OS
• Antivirus - Installation, configuration, updating and troubleshooting its implementation
• Maintaining and Configuration of blackberry mobiles
• Configuring Avaya phones
• Configuring and troubleshooting Network printers
• Resolving the Desktop Issues remotely using RDP
• In the LAN Network configuring all workstations to act as DHCP clients
• Configuring IBM Lotus client
• Proactively monitor Network performance using the Tools NetQoS & NetVoyant and provide network performance statistics and reports.
• Working on change requests and incidents
• Maintain and troubleshoot LAN and WAN connectivity issues this includes new access requirements as per the client requirements.
• Update and maintain access lists on Firewalls and Routers using change control process using tools like Remedy and Magic.
• Maintain the Juniper SSL VPN concentrators for remote access.
• Maintain the WLC 5520
• Implementation of new redundant WAN/LAN equipment to eliminate single point of failures at device and connectivity in the current network topology.
• Implement and configure failover/fallback for ISP circuits as well as local loops for MAN connectivity.
• Install and configure Cisco 4500, 6500 series switches for redundancy at intermediately level for LAN & WAN networks.
• Install and configure Cisco 3750 series switches for redundancy at distribution layer.
• Implement dynamic routing with EIGRP for LAN and BGP for MAN and WAN networks.
• Implement and manage VTP &VLANs and Gateway redundancy protocol like HSRP
• Implement and configure Cisco PIX 515E, ASA 5510 and 5520 IPS firewalls.
• Upgrade existing LAN and WAN equipment with the latest IOS images and apply standard configurations to all the network devices like disabling the unused services, enabling logging & TACACS

Environment: Cisco routers (7900,3600,2500), Cisco switches (4500,6500), Cisco ASA Firewall (5510), Cisco PIX Firewalls, Bluecoat Proxy and AV Devices, Routing protocols (EIGRP, RIP, BGP), Switching protocols (VTP, STP).