SUMMARY

• Over 8 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
• Cisco Certified engineer with Expert level knowledge in troubleshooting, implementing and testing of static and dynamic routing protocols such as EIGRP, OSPF, RIP and BGP
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse and proxy ARP, Ping concepts
• Manage operational monitoring of equipment capacity/utilization and evaluate the need for upgrades; develop methods for gathering data needed to monitor hardware, software, and communications network performance
• Working on Cisco Routers and Switches and Wireless networks 802.11a/n at Enterprise level.
• Cisco’s Application Centric Infrastructure (ACI) implementation (Nexus 9K,APIC).
• Configuring Cisco switches including Nexus9K, Nexus7K, Nexus5K and Nexus2K
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Load Balancers & Cisco Firewalls
• Hands on experience with Checkpoint Firewalls. Hands on experience with configuring firewalls and managing issues
• Extensive knowledge of firewall Checkpoint, McAfee, Juniper Net Screen on SRX 550, 650 Series and IPS/WAF(Tipping Point, Imperva, and Citrix NetScaler) Technologies.
• Experience with Cisco ACI fabric networks
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS)
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs
• Wide experience in implementing and managing F5 BIG-IP load balancing, including GTM, APM, ASM, and custom iRule development.
• Planned and worked on design with Network team to re-architect F5 load-balancers to load-balance traffic anywhere in the company network.
• Network analysis and capacity planning experience using tools like Sniffer, Wireshark, and tcpdump.
• Integrated ForeScout product to work together with Cisco, Juniper, Aruba, or other 3rd party network equipment.
• Perform installs, configure and troubleshooting on stateful inspection firewalls and inline/passive IPS/IDS sensors.
• Install, Upgrade and Configure Next-Gen Palo alto Firewall series PA-200,500, Panorama M500
• Constructed IPSEC VPN tunnels in PA Firewalls in different locationsPerform firewall migration projects between different technologies.
• Troubleshoot routing protocols OSPF and BGP on company’s complex multiprotocol architecture
• Good knowledge on Active Directory, Group PolicyInvolved in troubleshooting of DNS, DHCP and other IP conflict problems
• Ensures the project will achieve targeted dates to ensure business continuity. Involved in meetings with engineering teams to prepare the configurations according to the client requirement
• Excellent communication, interpersonal and analytical skills and a highly motivated team player.
• Ability to learn and adapt quickly to the emerging new technologies and paradigms.
• Committed to continual performance development in the workplace, thus adding value to the organization.
• Exceptional experience working in fast-paced, deadline-oriented environments.

TECHNICAL SKILLS:

Operating Systems: DOS, Windows 95/98, Windows NT/2000/XP/Vista/7/8.

IP Routing: RIPv1, RIPv2, BGP, OSPF, IGRP, EIGRP,BGP, Multicasting

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, RARP, PPP, SIP.

Network Peripherals: Cisco switches (2900, 2924, 2950, 3550, 3560, 4000, 5500, 6500, 6509, 6513,), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, and 7206), Cisco PIX 500 series, and Cisco ASA 5500 series

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux, Redhat, OpenSuse, Fedora, Windows Servers 2003/2008Windows MS-Office

PROFESSIONAL EXPERIENCE

Confidential, Wilmington,MA

Network Security Engineer

Responsibilities:

• Install, upgrade and configure Next-Gen Palo Alto Firewall series PA-200,PA-500
• Designed and configured IPSEC VPN tunnels on PA firewalls to establish remote site connectivity
• Install, manage and monitored Palo Alto Firewalls in Panaroma
• Developed technical documentation and Visio diagrams for PA Firewall configurations and IPsec tunnels
• Extensive Knowledge on monitoring tools like Solarwinds,Netflow,Netbrain and Infoblox
• Resolved tickects on timely manner. Troubleshooting tickets based on switches, routers, Palo Alto Firewalls
• Configured site-to-site and client VPNs. Identify and resolve firewall and VPN connectivity issues.
• Monitored Firewall interfaces in Netflow for alerts and troubleshooting
• Installed and configured the ACE and CSM for firewall/Server Load balancing for Cisco Catalyst switches.
• Worked with vendors to resolved circuit issues. Raised tickets on escalations concernd with network to providers like AT&T,WorldWide,Verizon
• Configured BigIP F5 Local Traffic Manager (LTM) for application load balancing
• Advised application teams on load balancing needs. Worked with Application teams to configure VIPs and tweak F5 settings to meet application needs
• Configured VIPs, Pools, Monitors, ssl profiles on F5 Load balancers.

Confidential, Kalamazoo, MI

Sr. Network engineer

Responsibilities:

• Expertised in F5 BigIP GTM/LTM appliances including writing iRules, SSL offload and everyday task of creating WIP and VIPs
• Planned and worked on design with Network team to re-architect F5 load-balancers to load-balance traffic anywhere in the company network.
• Experienced in implementing and managing F5 BIG-IP load balancing, including GTM, APM, ASM, and custom iRule development
• Worked on migration of Citrix NetScaler load balancer to F5 load balancer.
• Worked on ACE load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Maintenance of citrix-Netscalar 9800 load balancer to monitor the traffic at the severs end
• Network analysis and capacity planning experience using tools like Sniffer, Wireshark, and tcpdump.
• Used the Wireshark tool to study HTTP, telnet, and SSL traffic
• Testing Cisco IOS as per existing requirements of technology, involving Layer 3 and Layer 2 Protocols, routing and switching for the Service Provider.
• Worked on Cisco 2600, 3600, 3700, 3800, 7613 seriesrouters and 3750-G,4500, 6500 seriesCatalyst switches.
• Good hands on experience in configuring site-to-site VPN with IPSEC security layer.
• Configured RIP, EIGRP, OSPF, BGP routingand IP access filter policies.
• Worked on the upgrades on Cisco Routers during production maintenance windows.
• Implemented Routing protocols like OSPF, BGP
• Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes.
• Working on Cisco Routers and Switches and Wireless networks 802.11a/n at Enterprise level
• Handling Network design, upgrades and implementation.
• Handled most networking problems including servers, routers, switches, base stations and wireless connectivity.
• Installing & Troubleshooting Cisco Switches and Routers.
• Experience with Cisco ACI fabric networks
• Cisco’s Application Centric Infrastructure (ACI) implementation (Nexus 9K,APIC
• Troubleshoot routing protocols OSPF and BGP on company’s complex multiprotocol architecture.
• RIP to OSPF migration at certain branch sites and Implemented OSPF stub networks at some sites.
• Implemented BGP Mutihop for Load Balancing and preventing SPOF utilizing parallel lines.
• Configured BGP Multihoming connecting two different service providers.
• Changes in BGP attributes such as Weight, Local Preference, MED and Extended Communities.
• Design and create dedicated VLANs for Voice and Data with QOS for prioritizing VOICE over the DATA on Catalyst switches and basic VOIP configurations.
• Implemented Layer 2 security using a dedicated VLAN ID for all trunk ports and setting the user ports in non-trunking mode.
• Manage and implement STP, VLAN, VTP, HSRP, VRRP, GLBP and firewalls (ASA 5525 and 5545) and routers (1800, 2800, 3660, 2621, 1601, 1700, 2610, 7200, 7500, 12000). Implementation of T1/
• PRI/related equipment in remote locations. Maintain Cisco (3662-3661-2511-1601) Brocade and IDS, IPSand routing between 800+ nodes which uses Cisco architect routing protocols IGRP, EIGRP, BGP andOSPF.
• Install/troubleshoot LANS, WANS, routers, switches, software/hardware.

Environment: Cisco 2800, 2921, 3845, 7200, 7500 Series Routers, Cisco Catalyst series Switches 2960G, 3750G, 4503, 6513, Cisco PIX/ASA Firewalls, BGP, OSPF, STP, VLANs, HSRP, PAGP, WAN, Site to Site and Remote Site VPN,AAA, RADIUS, DHCP, DNS

Confidential . Perrysburg, OH

Sr. Network Engineer

Responsibilities:

• Excellent Troubleshooting Skills and Customer Centric approach.
• Worked On UNIX, Linux, and Windows Platforms and also involved in capacity planning of Network Maintenance.
• Experience with design and implementation of Data center migration at NBC Universal
• Data center migration was involved in Access, Distribution and Core layers.
• Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Integrated ForeScout product to work together with Cisco, Juniper, Aruba, or other 3rd party network equipment
• Perform installs, configure and troubleshooting on stateful inspection firewalls and inline/passive IPS/IDS sensors.
• Perform firewall migration projects between different technologies.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Experience in working with cisco Nexus 5000 series switches for data center.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Worked on Extensively on Cisco Firewalls ASA 5500(5510/5540) Series.
• Extensive knowledge of firewall Checkpoint, McAfee, Juniper Net Screen on SRX 550, 650 Series and IPS/WAF(Tipping Point, Imperva, and Citrix NetScaler) Technologies.
• Configuring routing protocols OSPF, EIGRP, RIP, LDP and BGP.
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418(with PRP and RPR processors)
• Plan Design and assist in deploying enterprise wide Network Security and High Availability Solutions for ASA.

Environment:Cisco Nexus 7K/5K, 2248/3560/5020/6509,Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco ASA5510.

Confidential

Network Engineer

Responsibilities:

• Conducted a thorough technology analysis as a complete upgrade of existing network, which was required by the company
• Maintained a Network with more than 600 Network devices, some 25,000-end hosts, and the otherNetwork devices like DHCP, DNS servers, and Firewall servers
• Configured routers including 3925, 3845, 2811, 2600 series along with Cisco switches including 2960,3750
• Performed OSPF and BGP protocol administration and used redundancy protocols like HSRP, VRRP
• Configured VLANs, VTP, RSTP, STP (Spanning Tree Protocol), and Ether channel and port security at switching level
• Works with the end users to validate problem descriptions and perform detailed problem diagnosis, trackand update problems in HP Service manager (Trouble-ticketing System)
• Assisted Operations with troubleshooting and root cause analysis for network incidents in theenvironments
• Assisted in migration of existing B2B VPN tunnels with the vendors from the 3060 VPN concentrator to ASA Firewall and configured site-to-site IPSEC VPN
• Performed multiple firewall changes on the PIX, ASA, and Palo Alto firewall based on the requirements and monitored firewall changes using firemon Tool
• Performed updating of F5 wide ip configurations, persistence profiles, updating the SSL certificates across the F5 devices for the resource updates
• Used multiple network monitoring tool Solar Winds, Cisco Prime for supporting the existing core network environment and Network edge devices
• Configured WAP and performed troubleshooting of WAP and WLC using Cisco NCS Monitoring Tool.
• Extensively used Infoblox for IP address management. Created and added IPv4 Network, Reserved IP addresses for various devices, Defined DHCP Scope as per the requirements, Created DHCP scopeoptions for setting up Voice VLANs and PXE Clients etc.
• Set up and troubleshoot secured wireless access points (WAP) and wireless LAN controller (WLC) forbroadband Internet and continuous network mobility
• Created live events on Show and share. Coordinated with users to check on any issue during the livestreaming
• Responsible for configuration and administration of over 25 firewalls which includes Checkpoint, andCisco ASA firewalls
• Audited network devices to confirm network policies and guidelines meet or exceed targets forsuccessfully audits
• Worked closely with Sales representatives for the AVAYA Dialer Project
• Assisted Cisco and Presidio (Blue water) during the design and implementation on various projects in our company
• Scheduled and monitored multiple Videoconferences using TMS (Tele management Suite)
• Used Cisco works, Content Management Systems (CMS), Cisco secure access control server (ACS),Cisco SmartNet Network tools to update the network documentation

Environment: Network edge routers, Switches, WAP, WLC, OSPF, BGP, VLAN, VTP, RSTP, STP (SpanningTree Protocol), HSRP, IPSEC VPN tunnels, ACL, NAT/PAT, Firewalls (ASA, PIX, Checkpoint, Palo Alto), F5 LoadBalancers, TMS, DMP, S&S, Cisco Works, Solar Winds, Cisco ACS, Cisco NCS, Cisco SmartNet, CMS, Firemon,NetMRI, Service Manager (Trouble ticketing system), ASDM, Riverbed

Confidential

Sr. Network Engineer

Responsibilities:

• Identify, design and implement flexible, responsive, and secure technology services
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Ability to analyze, configure and troubleshoot networks
• Estimated Project costs and created documentation for project funding approvals.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope
• Experience with implementing and maintaining network monitoring systems (Cisco worksand HP Open view) and experience with developing complex network design documentation and presentations using VISIO

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches

Confidential

Network/systems Engineer

Responsibilities:

• Design, install, upgrade, configure and repair local and wide area network hardware and resolve infrastructure issues
• Lead in Planning, design, documentation and implementation phases of project systems to including Servers, Network equipment, PC & Software applications
• Maintained all servers & network equipment with current stable firmware, IOS images & access control lists
• Tracking inventory of hardware and maintenance of records
• Liaising and communicating with external support providers such as HP, Cannon, Toshiba and Dell.
• Ensuring data backup and virus checks on all desktops and servers
• Serve as Liaison between IT Managers and system engineers on projects.
• Liaising and communicating with external support providers such as HP, Cannon, Toshiba and Dell.
• Installing, configuring and administering network technologies.
• Designed, implemented and management hosted server applications.
• Effective troubleshooter, adept at solving problems rapidly
• Provided escalated IT support including hardware troubleshooting, backup and recovery, email communication and application support.
• Setup and maintained LAN connectivity and wireless networks.
• Planned and built redundancy into existing systems to eliminate downtime due to server failure
• Cabling of RJ45 and fiber optic Ethernet, and serial interfaces of test devices,
• Installation and configuration of copper and fiber optic Ethernet switches and terminal servers.