SUMMARY:

• Over 14+ Years extensive hands - on experience of Advanced Network design, Deployment, and experience with a vast noledge of network technologies-Routing,
• Switching, Wireless, Firewall, IPS/IDS, and network security platforms. An Enthusiastic team player with excellent skills, large scale Network projects working experience and deadline driven. Solid background of latest Networking technologies Solution implementation and deployment on large scale customer facing projects.
• Expert Level Knowledge of Cisco Hardware and software
• Switches from Catalyst series to Nexus Class Switches
• Router All Models- ISRs, ASRs, vEdge Routers
• Routing protocols- OSPF, BGP, EIGRP
• Advanced Network Implementation-HSRP, VRRP, VPC, VTP, STP, NAT, PAT, ACL, Route-map, multicast.
• Cisco Firewall-ASA, Firepower, IPSEC VPN, DMVPN, Security Zones, ACLs, Cisco AnyConnect
• Palo Alto Firewalls, Panorama, Prisma Solution SDWAN Global Connect VPNs, Content Filtering, IPS/IDS
• Knowledge of New Cisco SDA and Palo Alto SASE SDWAN Network Platform
• Expertise in SDWAN Viptela Solution Deployment and Implementation-vManage, vBond, vSmart, vEdge
• Cisco ACI - Spine and Leaf Concept and hands on experience-VX-LAN, BD, EPGs, VRFs, Contracts
• Cisco Wireless Controller (8500,5500,2600) and Access-points Deployment experience of large infra.
• Cisco ISE and TACACS, NAC, Radius Integration experience.
• Fortinet Firewall, VDOM, Forti-client VPN, Policy, and configuration experience -100E,100D FWs
• Cisco Appliance- Cisco Prime, Cisco FW Manager, DNA Center, APIC Controllers
• Certified Hands-on Expert in GCP Google Cloud Network Infra- vpc peering, Cloud NAT, Direct Link, VPNs
• Network Tools: - SolarWinds, PRTG, IPSLA, Live action, Splunk, Wireshark, Firewall Analyzer

PROFESSIONAL EXPERIENCE:

Senior Principal Engineer

Confidential

Responsibilities:

• Managing Ajace Customer Projects: Related to Network Infra -Network Design, implementation, and Operation Support for Advanced Routing, Switching, Firewall, IPS/IDS, Wireless, Network design, implementation and troubleshooting of complex Network systems.
• Handling configuration/Design of Cisco Nexus 9K Leaf Spine, Nexus 7K,2K,5k, 7609 Router ASR 1000, Cisco 4400 series Router, Extender Switch configuration, VPC, VDC, MLAG Features experience.
• Troubleshooting routing issues and maintain various enterprise network devices such as Cisco Nexus 9k's,7k', 6k's, 5k's and 2k's, Cisco Catalyst switches 4500/6500
• Cisco Switches Provisioning and Stacking configuration design and implementation 2960-XR,3850 switches.
• Expert in managing Routing Protocols- OSPF, BGP, EIGRP, Layer 3 HSRP and VRRP Solution and Design Experience.
• Cisco Layer 2 Technologies and Protocol expert- IP PIM Multicast, VTP, Spanning Tree (STP/RSTP), VPC, Port-channel
• Demonstrated experience with IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols- DMVPN, Cisco VTI, AnyConnect, P2P IPsec VPNs, Global AnyConnect, FortiClient VPN
• IPv4 to IPv6 Transition strategies plan and implementation for smooth migration of IPv4 to Ipv6. IPv6RD,ISATAP Implementation, DHCPv6, DNS64, NAT64 concept deployment
• Firewall Expert- Cisco ASA, Fortinet Firewall, Checkpoint FW, Palo Alto and Juniper SRX firewall
• Work on Change Management for migration from Cisco ASA to Palo Alto, Installed and configured Palo alto images, upgrading code onPaloaltofirewalls PA 5200/3000 to meet company security policy.
• Worked on Next Gen Firewall features like IPS/IDS, Application and URL filtering, SSL Forward Proxy, SSL Decryption, Web-filtering
• Participated in planning and implementation of Cisco Systems and SD- WAN solutions in direct support of targeted objectives. SDWAN Viptela solution hands on experience, ZTP, vManage, vBond, smart controller concepts. Device Provisioning, template base configuration, Troubleshooting and Access policy configuration using vManage Management portal and monitoring.
• Management of proxies, firewalls and Redware load balancers, F5 Load balancer
• GCP Cloud Network Security, Cloud NAT, VPC Peering Setup and Terraform Automation for Compute Engine and VMware Template Instances creation. On Prime to GCP Cloud Migration services, Settings up Interconnect and Direct Peering using Edge.
• Involved in deployment of Cisco ISE and Firepower as well as, created/modified necessary profiles dat allowed authorized devices on teh network.
• Network Design and configuration on Wi-Fi Network- Cisco Wireless LAN Controllers 8500,5508 for Wireless Network Access Control (NAC) integration with Cisco ISE.
• Implemented Cisco Application Centric Infrastructure (Cisco ACI) as a solution for data centers using a Spine and Leaf architecture- APIC Controller Policy management, Contract based policy mapping, VxVlan, EPG, Bridge Domain, Multitenant, Leaf/Spine Configuration, L3 Outbound rules, Cisco OTV, Cisco Vlan extend (Bridging) multisite concept.
• Network Technologies, Tools- Live action. SolarWinds, Firewall Analyzer, Splunk Enterprise Security, Wireshark, Cisco Prime, PRTG/MRTG Monitoring, Network Scanning Tools-Nessus, Rapid7(Metasploit), SolarWinds Logging Server.

Senior Principal Engineer

Confidential

Responsibilities:

• Managing Hughes’s Internal and External Customers Projects Network Solution Design and Execution of complex to standard network, Network In-depth analysis, and Infra Auditing expert.
• Cisco SDWAN Network Design Deployment and Operation experience, ASR 1000, ISR 4400 Series Cisco vEdge, vManage, vBond, vSmart, PnP, ZTP Provisioning for edge SDWAN Devices, BFD,OMP Protocol, Policy configuration on vManage, Routing and VPN configuration on SDWAN.
• Handling configuration Cisco Nexus 9K Leaf Spine, Nexus 7K,2K,5k, 7609 Router ASR 1000, Cisco 4400 series Router, Extender Switch configuration, VPC,VDC, MLAG Features experience.
• Wireless Controller and Access-points Cisco, Miraki, Aruba. WLC 8500,5000,2600. Wifi Roaming, Wi-Fi Survey analysis and advance Solution . Wi-Fi Switchover SSID, Captive portal and application autantication. Hotspot solutions and SSID fall over. Internal and external Wi-Fi tuning and management, ACL rules, MAC address Autantication BYOD Wifi Solutions
• Technical noledge routing protocols such as OSPF, BGP, EIGRP
• New Networking Concepts POC and Production Deployment- Cisco ACI, Cisco SDA, Palo Alto SASE, Palo Alto Prisma Configuration and Testing.
• Cisco, Palo Alto and Google Cloud Expert with Core Hands on Experience of deploying solutions and in and out aspects of Network technologies concepts.
• Strong foundation innetworksecuritytechnologies such as Firewalls, VPNs, Good troubleshooting and configuration skill of SSL VPN, GRE TUNNEL, Site to Site IPSEC configuration, Troubleshooting VPN related issue.
• Global Protect, FortiClient VPN, Cisco AnyConnect configuration and access policy configuration on Firewall, user group autantication, integration with AD/ISE Solutions. Remote VPN Troubleshooting and support
• Expert in Firewall Technologies and Product configuration-Palo Alto firewall, Cisco PIX, Cisco ASA Firewall, Cisco FWSM, Juniper SRX, Juniper SSG,Fotinet FortiGate and Checkpoint Firewalls, PANORAMA Palo Alto, Cisco Firepower Configuration and design from scratch to build as enterprise network security Solution.
• Bluecoat Proxy SG610,SG510,SG810 products.
• Google Cloud expert for managing daily operation and migration Services, Cloud VPN, Routing, Switching, Site to Site VPN, ACLs, Bandwidth and resource allocation. VPC Peering, Shared VPC, Dedicated Interconnect, Cloud VPN, Partner Peering, VMware Data Center migration to Cloud. Cloud Proxy, Cloud DNS solution setup in Global Google VPC Network.
• Deep understanding of teh GCP architecture, and environment and Google Network Architecture, APIs, Cloud Deployment manager, bastion Hub, IAM Resource setup. and Cloud VM Palo Alto Installation solution experience. Cloud Based Firewall Management and Policy Rule Setup.
• Configuration, Design and Managing Inter Vlan, Access-list, STP, Ether Channel, and Redundancy of Network.
• Experience of configuration of Implementing Redware Link Proof Load balancer & F5 Load balancer, Traffic redirection/Load sharing/Bandwidth Shaping on Link Load Balancer and Troubleshooting Load Balancer related issues.
• Participating in assessing possibilities for project expansion, project Designing and Implementation of Cisco Core switches 6500,4500, Cisco PIX 515, FWSM, ASA and Cisco ASR routers, Cisco ISR Routers, Firewalls, WLC Controller series, Wi-Fi LAN controller and access points.

Principal Network Engineer

Confidential

Responsibilities:

• IT Network infrastructure administration and involved in Engineering, R&D Projects Network design.
• Development of innovative and appropriate Network solutions, manage teh execution of teh Network Engineering Design Process. Implement and enhance strategies for teh continuous improvement in delivering technical solutions in accordance with design, provisioning, installation, and commissioning guidelines. Full life cycle of teh Network system design process including requirement definitions, prototyping, Design, interface implementations, testing, maintenance, and meeting SLA’s

  Covers but is not limited to teh following aspects:

• Network design and engineering activities including:
• Own teh technical design on Managed Networking Value Proposition Involved in
• Layer 2 /Layer 3 Technologies (LAN/WAN)
• Project based design and engineering tasks
• Presales based design and estimation tasks
• Participating in assessing possibilities for project expansion, project Designing and Implementation of Cisco Core switches 6500,4500, Cisco PIX 515,FWSM,ASA 5510 and Cisco ASR routers 5000,9000,Cisco Routers 3745, 2800, 7200, 7600, Firewalls, Wi-Fi LAN controller and access points.
• Development of processes, eg, design, implementation and execution of standards and best practices
• Evaluation and reporting of new and emerging networking technologies and solution

  Support and troubleshooting for VPN Access via CISCO-NAC and SSL VPN

• IT Network Daily Maintenance and Support call replated to network
• Configuring and handling Cisco ACS server, TACACS+ autantication and RADIUS server
• Network Diagram updation, Network Records capturing and Network documentation for audit point of view.
• BCP/DR Test cases with results And SOP designed documentation.
• Vendor and product selection

Senior Network Engineer-IT

Confidential

Responsibilities:

• Responsible for identification of secure and network solutions to technical requirements within data center environments.
• TEMPEffectively deployed and designed new WAN networks in many international organizations leading to massive cost savings.
• Deployed new networks with higher capacity and security enabling teh organization to use more complex and improved applications.
• Deployed and designed new LAN networks in organization to improve and modernize / secure LAN networks and ensured new complex applications can be deployed (VOIP / TOIP).
• Managing HCL's Multiple Sites Network Infrastructure.
• Handling of Escalated calls from Team & Customer.
• Responsible for maintaining day to day operation ensuring dat IT infrastructure is available 24 X 7
• Securityfundamentals with a solid understanding of threats, vulnerabilities, risks, defenses,securityprincipals and policies
• Layer2 and Layer 3 Switch, VLAN, EtherChannel, Port-channel Configuration and Support, Switch Stacking configuration, VTP configuration
• Site to Site VPNs configuration and operation Support
• High Severity Network outrage support and troubleshooting to give SLA based resolution