PROFESSIONAL SUMMARY:

• IT Professional with 7+ years of professional experience in Network Planning, Implementing, Configuring, Troubleshooting and Testing of networking system.
• Experience in installing, configuring, and troubleshooting of Cisco series Routers, Cisco Catalyst and series switches.
• Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR, 7200, 3900, 3800, 2900, 2800, and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Familiar with Cisco firewalls PIX 515, ASA 5500 series and Checkpoint Firewalls.
• Installing & troubleshooting of Checkpoint Firewall, Bluecoat Proxy.
• Worked on Load Balancers CSM and F5 BigIP LTM like 3900, 6900 for corporate applications.
• Implementing of Site to Site VPN and Remote client VPN.
• Extensive hands on experience with complex routed LAN and WAN networks, routers and switches.
• Have extensive experience in setting up LAN and troubleshooting related issues.
• Have WAN awareness and assisted in setting up and troubleshooting various WAN related issues.
• Strong Knowledge in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
• Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS) and deploying GRE Tunnel.
• Expertise in configuration & troubleshooting of routing protocols and deployment of OSPF, EIGRP, BGP, MPLS, IP Multicast.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Hands on experience on Up - gradation of Cisco IOS & Firmware of different Cisco devices & modules
• Strong general management, negotiation, inter-personal, communication and team building skills.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Highly motivated with the ability to work independently or as an integral part of a team and Committed to highest levels of professional.

TECHNICAL SKILLS:

PROTOCOLS: OSI,TCP/IP,DHCP, UDP, RIP v1, RIP v2, IGRP, EIGRP, TACACS+, RADIUS, OSPF, BGP, SSH, TFTP, FTP, SMTP, NTP, LDAP, Active Directory, Kerberos, L2F, L2TP, PPP, Frame Relay, ATM, Sonnet, Fast/Gig Ethernet, HSRP, Token Ring, ISDN, AAA, DES, 3DES, AES, and MD5, VPN (IPsec and SSL),VRRP, HSRP, DNS (BIND, DJBDNS, Infoblox), CARP, SNMP.

NETWORK MONITORING Tools: HP OpenView, Netscout, Ethereal, tcpdump, netcat, Sniffer, Snort& Snortsnarf, MRTG.

OPerating Systems: Microsoft XP/Vista/7, UNIX, Linux

SSL Security Technologies: Cisco FWSM/PIX/ASDM & Checkpoint

ROUTERS: Cisco GSR 12416, 12418, 7200vxr, 3640,3600

SWITCHES: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

VOIP: SIP H.323, MGCP, TDM, SS7, Avaya Voice gateways.

LAN/WAN TECHNOLOGIES: T1, DS3, OC3, SONNET, MPLS, DSU/CSU

NETWORK EQUIPMENT: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation)

HARDWARE PLATFORM: Cisco Routers, Ethernet Switches, F5 LTM, GTM

PROFESSIONAL EXPERIENCE:

Confidential, Chicago

Sr. Data Network Engineer

Responsibilities:

• Designed and Configuring the Cisco 819 series 4G routers for 1000+ branches and ATMs.
• Responsible for complete datacenter layout and migration, configured ACI after migration of datacenter using nexus 9k, 7k.
• Worked on OTV, LISP for datacenter migration configured Nexus 9k, 7k and ASR-1001-X for the same.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer's WAN infrastructure.
• Deploy Configuration and activate 4G routers for branches in multiple states.
• Configuring the WAN infrastructure consisting of dedicated MPLS connectivity of 50 MB to upgrade back offices.
• Installation of Cisco ASA 5500 series firewalls, Cisco 3500, 4500, 6500 series switches.
• Facilitated backup of servers, routers, switches, and firewall configurations in core network
• Installation and administration of Checkpoint R 75.40 Firewall.
• Built IPsec site to site VPN tunnel between 2 vendors using firewall.
• Site to site VPN implementation on ASA Firewalls
• OSPF configuration.
• Provides 3rd level technical support on data network related issues.
• Firewall Log monitoring using RSA Envision and Q RADAR.
• Manage devices through NCM, EMC NCM and Zenoss monitoring tool.
• Directed the migration of core infrastructure from Windows 2000 to Windows 2003 Server, which include migrations to Exchange 2003.
• ASA software upgrade on Failover setup.
• Installed and configured network monitoring system on centos to monitor wide range of workstations and server in us.
• Monitor the ticket queue for incoming tickets, update tickets in accordance to Service Level Agreement (SLAs) requirements and, escalate based on severity levels using NetCool.
• Worked on Operation team member to troubleshoot daily basis incident tickets and solve them.
• Supports weekly basis 24x7 On Call incident support.
• Guaranteed the security and protection of customer networks from various attempts to breach or compromise networks with firewalls, CiscoWorks, intrusion prevention systems (network- and host-based), and Gateway Antivirus systems.
• Rendered assistance to security officer in isolating security threats.
• Minor hands on F5 LTM/GTM.

Confidential, New York City, NY

Sr. Network Engineer

Responsibilities:

• Design and deploy multi-sensor Sourcefire Intrusion Prevention System covering public shared web hosting, corporate web storefront, three remote data centers, and public E-Commerce environments directly leading to a reduction in attack volume to near zero percentage within the first 4 months of implementation.
• Provide security oversight and best-practices advice for ongoing operations within other organizations.
• Assisting in the maintenance/development of security policies and procedures to support computer forensics and investigations as a part of Staples SOC/NOC build-out.
• Installing and tuning of perimeter devices such as Radware, Terminal servers, Xstream40’s, and Copper/Fiber TAP’s.
• Configured and deployed Cisco FireSight and FirePower IDS devices for two diverse networks.
• Deployed latest security technologies utilizing next-generation Cisco ASA 5525x firewalls across all borders, McAfee DLP, McAfee AV, and Cisco FirePower, maximizing SPOG methodology.
• Work tasks also include operating and analyzing results from enterprise detection systems such as Orion, Radius/TACACS for user authentication, and several others.
• Configure, maintain, repair, and replace SourceFire 3D8350, 3D8370, and DC3500 appliances
• Upgrading Sourcefire IPS sensors and management appliances from V5.2 to V5.4.1.
• Provide status reports on security matters to develop security risk analysis scenarios and response procedures.
• Working experience on tools and devices like Gigamon, SourceFire, Fireeye, Aruba, Cisco ASA, Cisco ISE
• Experience with FireEye Network Security (NX) products.
• Configure, administer, and document firewall infrastructure, working with Check Point for Data Centers
• Troubleshoot access issues, and configuring retail store firewalls.
• Analyze and review security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Radware, and other security threat data sources.
• Configure, manage, and upgrade FW, IDS, IVS, and IPS, TAP’s, Xstream load balancers (XLB), Encryption and a wide variety of other security products/appliances.
• Create and maintain detailed network diagrams on the infrastructure of the company using Visio.
• Security monitoring process with the help of Log management tools (i.e. Splunk) and Security Information Event Management (SIEM) tools.
• Configure, deploy, and manage Radware DefensePro DDoS systems.
• Utilize network analysis tools such as tcpDump, WireShark, QRadar, and ArcSight SIEM
• Identifying reported incident, analyze impact to Network Operations, and develop action plan to mitigate incident
• Design, engineer and implement security infrastructure.
• Creating changes adhere to the change management processes, using service-now tool.

Confidential, Cary, NC

Network Administrator

Responsibilities:

• Provided Firewall Administration (Creating and removing firewall rules as needed), Network Security Administration, and Network engineering duties within an OSPF / BGP environment.
• Configured a Cisco ASR 1001 router to replace and upgrade.
• Function as part of a Firewall and Security team in support of Zscaler Proxy, Juniper Portals, SecAuth, Open LDAP, and Active Directory.
• Configured Cisco 2821, 2921 and 3845 CE routers to change them from EIGRP to a complex MPLS environment that includes VRF; IPSEC VPNs, Broadband Tunnels, HSRP and VLANs.
• Configured 2960, 3560, 3750 and 4507 switches to add VLANs for wireless project, and QoS protocols for MPLS.
• Accessed Cisco Prime NCS/WCS and 5508 series Wireless Controller to manage wireless networks.
• Configured Cisco Wireless Access Points 1100, 3600 through Cisco NCS Prime. Imported diagrams to create campuses, buildings and to map wireless AP's location.
• Responsible for verifying Change Records, router, switch and DHCP configurations before applying.
• Prep multiple routers simultaneously for circuit turn-up, pushing MPLS configuration, and MPLS migration using Cisco NCM and pre-scripted TCL configurations.
• SSH to routers to manually configure routers for: Controller Card Prep, applying MPLS Configurations, MPLS Circuit Turn-up, MPLS Circuit Migration, Broadband Migration, Post Migration Clean-up, PPP, PPP Multilink, QoS, VPNs, Broadband Tunnels.
• Update Visio network diagrams, documentation (Excel, SharePoint), and before and after ICMPs.
• Responsible for resolving tickets from MMO's users, using HP OpenView, for access to MMO's intranet and to the internet; Creating and removing firewall rules as needed.
• Managed user’s access thru Open LDAP, SecAuth and supported Active Directory.
• Monitored Network with Orion monitoring software. Admin for Sonexis Phone conferencing.
• Redesigned, updated, and established network topography standard.

Confidential, Westmont, IL

Network Engineer

Responsibilities:

• Configuring and resolving various OSPF issues in an OSPF multi area environment,
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
• Experience working in Datacenter environment, configuration changes as per the needs of company.
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas.
• Redesigned Internet connectivity infrastructure for meeting bandwidth requirements.
• Configuring, implementing and troubleshooting VLAN's, VTP, STP, Trunking, Ether channels.
• Configured and managed Cisco access layer routers and switches
• Provided support for troubleshooting and resolving customer reported issues
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Configuring HSRP for network redundancy and High availability.
• Involved in designing of LAN (Ethernet) and WAN infrastructure for the new Data Centre Using MS Visio.
• Configuring VPN for site-site and remote access.
• Designing and configuring IP address schemes.

Confidential

Network Support

Responsibilities:

• Able to troubleshoot, think analytically, and solve complex problems.
• Prioritized and managed progress on multiple outstanding projects.
• Server setup, system maintenance, and hardware/software installation.
• Windows 2003 Server and Windows 2008 Server (Standard, Enterprise, R2, and etc.).
• Knowledge of Active Directory, DNS, DHCP, and WINS.
• Cisco Routers and Switches (configuration and setup).
• Router: 2800 and 2900 series.
• Switches: Cisco catalyst 3560, 3750, 4506, and 6500 series.
• Knowledge of Layer 3 routing protocols (RIP, OSPF, and EIGRP).
• Knowledge of Cisco Layer 2 technologies (STP, VLANs, VTP, ISL, 8021Q, and etc).
• Understanding of TCP/IP, LAN\\WAN, OSI model, and network equipment.
• Knowledge of Wireless Control System conjunction with Wireless Controller 4400 and 5500 series.
• Wireless Access Point: 1142 and 1242 series.
• Monitored Network (Routers, Switches, Firewalls, etc) using HP Openview.
• Delivered system maintenance and backup using Veritas Backup Executive software.
• Provided professional technical support for customers with network, hardware, and software issues.