PROFESSIONAL SUMMARY:

• Over 7 years of experience as a Networking professional in areas concerned with network design, implementation, operations and troubleshooting enterprise data networks.
• Detailed understanding of different layer 2 protocols like VTP, VLANs, STP, Port Security, and layer 3 Protocols like EIGRP, OSPF, BGP and technologies like NAT, PAT.
• Expertise in implementing redundancy gateway protocols like HSRP, VRRP and GLBP.
• Responsible for the implementation, documentation, and day - to-day support of the Imperva Database Firewall.
• Implemented route manipulation and route filtration with the usage of Off-set lists and distribution-list, access-lists respectively.
• Worked on security migration from different platforms using Palo Alto migration tool 3.0.
• Managed the design, implementation and troubleshooting of Net Screen Firewalls, Check Point Provider-1 / VSX, Nokia VPN, Palo Alto IDS, and Blue Coat Packet Shaper systems.
• Worked with MPLS in establishing peer ship with BGP protocol.
• Profound knowledge on various WAN technologies like E1/T1/E3/T3, HDL, MPLS, PPP.
• In-depth knowledge in the usage of ether channels for effective usage of bandwidth with aggregation protocols LACP and PAGP.
• Performed security operations, implementation of rules and level-3 support on ASA and Palo Alto firewalls.
• Access Control Server configuration for RADIUS & TACACS+.
• Involved in troubleshooting of DNS, DHCP, and other IP conflict problems.
• Migrating firewalls from Juniper Net screen 500 to PA 3020.
• Detailed understanding of the Palo Alto series firewalls like, PA 5000, and PA 3000 series.
• Managed enterprise grade server/application load balancing using F5 BIG-IP 3900 and 6500 and GTM to provide high data availability across data centers.
• Performed deep packet analysis to troubleshoot application issues using tools like Wire-shark.
• Experience in Layer 2 Routing protocol configurations: ATM/Frame Relay, IP services such as VPN technologies: IPSec and SSL.
• Hands on experience on up-gradation of Cisco IOS and firmware of different Cisco devices and modules.
• Extensive understanding of Layer 2 and Layer 3 technologies.
• Experience with different Network Management Tools and Sniffers like SNMP, HP-Open view, and Cisco works to support 24 x 7 Network Operation Center.
• Excellent inter-personal skills with an ability to work in a team of large members and also with minimum supervision necessary.
• Experienced in Microsoft Visio creating a detail physical and logical network diagrams.
• Hands on experience on up-gradation of Cisco IOS and firmware of different Cisco devices and modules.

TECHNICAL SKILLS:

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, LWAPs.

WAN Technologies: HDLC, PPP, MPLS, Channelized links (E1/T1/E2/T2).

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route redistribution, Route filtering, Summarization, Static route.

Routers dealt with: Cisco 7606, 7609, 3845, 3660, 2921, 2691, 1812, Juniper MX series and T series routers.

Switching Technologies: VLANs, Inter VLAN routing and Port Channels, VTP, Spanning Tree Protocols like PVST+, RSTP+, Multi-Layer Switching, Port security, VSS, CEF and DCEF.

Switches dealt: Nexus5548, 5596, 6000, 7009, 7018; Cisco Catalyst: 6506, 6509, 4928, 4948, 4507, 4510, 3750, 3560, and 2960.

Network Security Technologies: ASA 5550/5540 Firewalls, Juniper SRX Firewall, Palo Alto firewall PA 5000, 3000, Check points, Access Control Lists, IPSec, IDS, and IPS.

Load Balancers: F5 Network (Big-IP) LTM 8900 and 6400.

Redundancy Protocols: HSRP, GLBP, VRRP

NEXUS Features: VDC, VPC, VRF, FEX, Fabric Path, F & M Series line cards.

VPN Technologies: GRE Tunneling, Remote Access VPN, Site to-Site VPN.

Operating Systems: Windows (98, ME, 2000, XP, Vista, Windows 7, 8.1), Linux.

PROFESSIONAL EXPERIENCE:

Confidential, Brentwood, Tennessee

Senior Network engineer

Responsibilities:

• Involved in the activity of DATA-Center migration of regular Cisco catalyst switches with the new Nexus 2148, 2224T, 5548, 6018, 7010using F3/M3 line-cards with 10GE & 40GEinterfaces and Supervisor 2E.
• Performed Legacy Catalyst 6509 with SUP-720, Catalyst 4507 with SUP-6 switches migration to Nexus 7k with SUP-2E as part of the data center refresh.
• As part of Data Center fabric remediation/refresh project, deployed Cisco Nexus switches and implemented features like FEX Links, VPC, VDC, and OTV& Fabric Path.
• Configured and deployed VPC between Nexus 7010 and Nexus 5596, 5548 switches along with FEX 2248.
• Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like EIGRP, OSPF& BGP.
• Involved in configuration and implementation of the MPLS with BGP protocol.
• Configured and deploying Cisco catalyst 6506, 4948E, 4510 switches and Cisco 3660, 3845, and 7609 series Routers.
• Migrating firewalls from Juniper Net screen500 to PA3020.
• Involved in Replacement of FPCs, PICs on Juniper M320 and T640 router.
• Applied ACLs for Internet access to the servers using Cisco 5520 ASA firewall, performed NAT.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Good knowledge and hand on experience of implemented firewall policies on Cisco ASA, Cisco PIX, Checkpoint Provider-1/SiteManager-1 NGX R65, Firewall-1/VPN-1 NGX R65 Gateways, Fortinet-20C,110, Palo Alto (PA-3050, PA-5050)and Secure Platforms.
• Performed Security operations in terms of pushing new policies and deploying new rules. Performing security troubleshooting in terms of checking ACLs and ACEs and traffic flow analysis using packet capture features.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 6500.
• Involved in the configuration and maintenance of IPSec Site-Site VPN.
• Hands on experience in assisting the User machines and partners exterior to the network using IPSec VPN tunneling and SSL.
• Dealt with the service providers in the case of WAN outages.
• Responsible for simulating network operations with the usage of packet analyzer like Wire shark, and use to resolve tickets whenever there is an issue.

Environment: Cisco routers 2600, 2800, 3660, 3845, 7609. Cisco catalyst switches 2960, 3560, 4510, 45076509. Nexus devices 5548, 5596, 7010, Juniper routers M3200, TX 640, Palo Alto firewalls PA 3020, PA 5050.Cisco Firewall ASA 5585, Load Balancer BIG-IP LTM F5 6500.

Confidential, Fort Collins, CO

Network security Engineer/Firewall Specialist

Responsibilities:

• Security Device - Palo Alto/ASA Firewalls, Sourcefire IPS/IDS, Cisco Identity Services Engine (ISE), VPN
• Configured Firewall and updated rules (Palo Alto/Cisco ASA).
• Managed, operated and analyzed results from Sourcefire detection systems.
• Experience setting up PCI zone (PCI compliance project).
• Configured and performed troubleshooting routers and switches.
• Updated routes and ACL (Access Control List).
• Experience with network based F5 Load balancers with software module GTM & Checkpoint.
• Experience with connectivity of Cisco Networking Equipment with F5 Load Balancer.
• Experience with GTM F5 component to provide high availability with providing services across data centers.
• Experience on Check Point GAIA Firewalls R65, R70, R71, R75, R77.
• Upgrade of Checkpoint firewalls and management servers from Splat R75.30 to Gaia R77.20.
• Upgrade of Checkpoint management servers from Gaia R7 .30 GA using CPUSE via HOTFIX
• Experienced in handling Panorama firewall management tool to administer Palo firewalls.
• Worked on automating process for migration of security policy using Palo Alto Migration tool 3.0 from multiple platform and Symantec Endpoint Protection.
• Specialization on Symantec Endpoint Protection.
• Cleaned Symantec Anti-virus environment and brought previously unprotected machines into compliance with security policy.
• Configuring, maintaining and troubleshooting with Fortinet firewall and security.
• Configuring, Administering and troubleshooting the Checkpoint, Palo Alto, Imperva and ASA firewall.
• Experience with Imperva Web Application Firewall (WAF and DAM).
• Worked on DNS server for maintaining database servers and IP addressing.
• Worked on Configuring and installing DNS server, and worked on ISP to check whether IP address is arranged in DNS Domain.
• Experience with SIEM Systems/tools, having managed logging events to support various technologies, servers, apps etc.
• Security infrastructure engineering experience as well as a Microsoft Windows, UNIX, Checkpoint Firewalls, Juniper firewalls, PIX firewalls, Bluecoat Proxies, Juniper Intrusion Prevention devices, and wireless switch Security Management.
• Deploying Cisco WSA and Bluecoat Proxy SG (Web Security Appliance) S170 for URL Filtering Policies.
• Practical experience of design and implementation of VMware v-Sphere, VMware NSX.
• Administering multiple Firewalls of Juniper/ Net Screen in a managed distributed environment.
• Experience working with F5 APM sessions and manipulating session using I-Rule.
• Experience with APM including customizing login screens within APM.
• Configuring, Administering and troubleshooting MPLS, Solaris and ASA firewall.
• Experience with Using LTM F5 component to provide 24“7 access to applications.
• Troubleshoot network routes and ACLs (Cisco, Juniper).
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of MPLS, DHCP and VPN networks.
• Technically supported in configuring, troubleshooting and analysis of customer’s networks related to Cisco Identity Services Engine (ISE).
• Monitored and Optimized network performance.

Environment: Cisco routers 3845, 7609. Cisco catalyst switches 4510,4507.Nexus devices 5548, 5596, 7010, Juniper routers M3200, TX 640, Palo Alto firewalls PA 3020, PA 5050.Cisco Firewall ASA 5585, Load Balancer BIG-IP LTM/GTM F5 6500.

Confidential, Bloomington, IL

Network Engineer

Responsibilities:

• Key responsibility of LAN and WAN maintenance and troubleshooting any network related problems.
• Tuned according to the requirements of the organization for deploying and maintaining the routers and switches.
• Tasks involved in making sure that customers are satisfied for their high level of usage of the resources.
• Also involved in upgrading the necessary IOS and making sure that there is high data availability.
• Hands on experience on upgrading of JUNOS.
• Configured policies and troubleshooting on Juniper SRX 3600 to allow customer traffic.
• Helped in setting up the GRE tunneling over IPSEC between to data centers.
• Provided high level of security to the network by installing ASA 5510 along with ACLs.
• Extensively worked on layer 2 features like STP, VLAN, and VTP and implemented them on new switches and used to troubleshoot any issues.
• Tasks included in performing network administration issues like configuring RPVST+, Port security etc.
• Also gave technical support in the issues which involved tasks of debugging OSPF and HSRP features.
• Dealt with troubleshooting the EIGRP and OSPF protocols during the process of migration and establishing new client setups.
• Worked on OSPF using features like TSA, SA, NSSA and route summarization. Configured EBGP/IBGP policies also tested BGP attributes such as Local preference, MED, AS-PATH, Community and Weight.
• Migration of Checkpoint R54 to SPLAT.
• Co-ordinate with peers and customers dealing with wireless network innovations also responsible for maintaining wireless IPS infrastructure.
• Used to be responsible for resolving the service request tickets from the help desk which involved in providing entire technical support.
• Hands on experience on configuring and implementing Prefix-lists, Route-maps, Ether-channels.
• Maintained F5 BIG-IP LTM 3500 for providing application redundancy, load balancing and policies.

Environment: Cisco Catalyst switches 2900XL, 3505, 6509, Cisco routers 2600, 2500, 2800 and 7200, OSPFEIRGP, GRE, IPSec, F5 BIG-IP LTM 3500.

Confidential

Network Engineer

Responsibilities:

• Maintaining LAN and WAN environment using routers and switches, and routing protocols like OSPF and BGP with uplink to two major Service Providers.
• Upgrading the IOS on 1900, 2900, 3500 series Cisco Catalyst Switches and 2500, 2600, 3600 series Cisco Routers using TFTP.
• Monitoring network performance and providing status for early detection of network problems and resolutions.
• Monitoring and supporting remote offices through WAN and Internet connectivity using Cisco 3550 switches and 3600 series Routers.
• Installing and maintaining Router and Switches and replacing faulty network communications equipment from the client networks.
• Experience with routing, switching and WAN technologies such as RIP, IGRP, EIGRP, STP, VLAN, ETHERNET, PPP, and Frame Relay.
• Supporting large number of customers through LAN using Cisco 2950 Switch.
• Troubleshoot network problems using ping, Cisco CLI, tracert, telnet.
• Configuration of Access Lists ACL (Standard, and Extended) to allow users all over the company to access different applications and blocking others.
• Configuring security services for protecting the perimeter of the network, Cisco IOS Firewall features, PIX Firewall.
• Configuration of Cisco ASA Firewall 5585 series in existing network.
• Assisting fellow Junior and Senior Engineers, on-site management of cable-wiring technicians.

Environment: Cisco 2500, 2600, 3600 series routers; Cisco 1900, 2900, 3500 series catalyst switches; OSPF, BGP; VPN, PIX Firewall, Cisco ASA Firewall 5585.

Confidential

Network Technician

Responsibilities:

• Documented the company’s design, implementation and troubleshooting procedures.
• Performed routine network maintenance checks as well as configure and manage printers, copiers, and other miscellaneous network equipment.
• Performed scheduled Virus checks and updates on all servers and desktops.
• Got Hands-on experience in maintaining and troubleshooting RIP, OSPF and EIGRP routing protocols.
• Configured RIP and EIGRP on 2600, 2900and3600 series Cisco routers.
• Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
• Performed IOS upgrades on 2900, 3500 series Cisco Catalyst switches and 1800, 2600, 3600 series Cisco routers using TFTP.
• Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, MPLS, NAT, DHCP, TCP/IP).
• Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
• Worked on network-based IT systems such as Racking, Stacking and Cabling.
• Troubleshoot LAN related problems, provided Desktop support for local and remote end-users.
• Configured routers for client with EIGRP and HSRP protocols.

Environment: Cisco 1800, 2600, 3600 series routers; Cisco 2900,3500 series catalyst switches; OSPF; VPN, Cisco ASA Firewall 5585.