SUMMARY

• Over 6 years of experience in the industry, which includes expertise in the areas of Routing and Switching
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP ability to interpret and resolve complex route table problems.
• Configuring Security policies including NAT, PAT, VPN, Route - maps, prefix lists and ACL’s.
• Implementation traffic filters on Cisco routes using Standard, extended Access lists.
• Expert Level Knowledge about TCP/IP and OSI models.
• Knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics. Expert knowledge of cable connectors and replacement as RJ-11, RJ-45, V.35, RS-449.
• Worked with F5 Load balancing, IDS/IPS, Bluecoat proxy servers and Administrating, authentication controls (Radius, TACAACS+) and Technical Knowledge on Cisco ASA 5500 series firewalls.
• Extensive experience in IPAM, DHCP, Cisco technologies, and leadership experience.
• Understanding the JUNOS platform and worked with JUNOS upgrade of Juniper devices.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Knowledge on Nexus 7K, 5K and Nexus 2K switches.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes.
• SSH into routers using python, used ansible to generate network device configurations based on a template and variables file
• Experience with ASA Firewalls upgrades and build configuration for ASA Firewalls for different versions.
• Designed and implemented Firewall rules for different DMZ Projects and deployed.
• Knowledge with IPSEC VPN Tunnels, S2S VPN Tunnels, GRE Tunnels and Any connect VPN Tunnels Configurations and their activities for different partner net companies.
• Worked on firewalls - ASA, PIX, Palo Alto, SRX and Checkpoint security devices
• Knowledge on Cisco Nexus 5010 Switch and Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience in configuring HSRP and redistribution between routing protocols troubleshooting them. Implementation of HSRP, VRRP and GLBP for Default Gateway Redundancy.
• Used Shell and PERLscripts for extracting logs from web servers in the DMZ, for analyzing user activity patterns. Centrally managed DNS and DHCP for local and remote hosts in Infoblox
• Working knowledge on load balancing by F5 LTM, Viprion ADC and Cisco ACE
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts and Riverbed Steelhead/ WAN Acceleration experience.
• Experience working on Big IP/F5 load balancer,CitrixNetScaler, Cisco ACE load balancer
• Experience in testing the F5 BIG IP LTM, GTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Evaluation of Vendor proposals and coordination for establishing data center.
• Experience working on network monitoring tools like, SOLAR WINDS, CISCO works, Wireshark and splunk.
• Strong hands on experience in Remote sites migration to new MPLS links and connectivity to data centers.
• Experience in Configuring Client-to-Site VPN using SSL Client on Cisco ASA 5520.
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800).
• Experience of routing protocols like EIGRP, RIP, OSPF and BGP.
• Extensive hand on experience with complex routed LAN networks, CISCO Routers and Switches.
• Experience in the setup of Access-lists, RIP, EIGRP and Tunnel installations.
• Proficiency in configuration of VLAN setup on various CISCO Routers and Switches.
• Excellent qualities such as Teamwork, Negotiation, Analysis and Communication.
• Experience of working on various security technologies such as Firewalls, IDS/IPS, VPN, web filtering, PKI etc.
• Worked on Wireless Controllers and wireless access points to setup wireless network across the organization.
• Involved in providing technical proposals/solutions, POC’s, information security reviews, auditing etc.
• Strong knowledge in TCP/IP, network planning and system integration in IT infrastructure space.

TECHNICAL SKILLS

Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,5k,2k,1k

Cisco Technologies: Working Knowledge on 2500, 2610, 2620, 2811, 3640, 3845, 7206 VXR series routers and 1900, 2900XL, 2950, 3550, 3560, 3750, 4003, 4006, 4503, 4506, 5509, 6509, 6513 Switches

Programming Languages: C, C++, VB Script, Power Shell

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modeler, Cadence

Web Technologies: HTML, XHTML, JAVA SCRIPT, CSS.

Firewalls: Juniper net screen (500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), Checkpoint (NGX, NG AI, R65/R70/R75/R76/R77), Fortigate, FWSM, Palo Alto Networks PA-500, PA-2k, PA-3k, PA-5k & PA-7050

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP, IPAM, DHCP, CISCO, HTTP, DNS, LDAP, SNMP etc.

Networking Hardware: Cisco Switches, Cisco Routers, Pix firewalls.

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting and HSRP.

Security Technologies: PAP, CHAP, Cisco PIX.

Internet filtering: Websense, Bluecoat proxies, TrendMicro

VPN: Site to Site, Remote access, IPsec/SSL

Network Monitoring: Cisco Works 2000, Wire Shark, CA Spectrum, Solarwinds, TCP dump, Fiddler.

Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR.

Network Simulators: GNS3, Packet Tracer.

Routers: CISCO 2600, 2800,3600,3800,7200, Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Capacity & performance: IXIA, Spirent. AAA Architecture TACACS+, RADIUS, Cisco ACS, LDAP

WAN Infrastructure and Technologies: Leased Line, ISDN/Dial-Up, Frame Relay circuits, Metro Ethernet and HDLC, PPP, ATM, SONET, MPLS, VPN, IPSec-VPN, L2TP, HSRP, GLBP, VRRP, NAT, ACL, SNMP, SYSLOG, NTP, CDP, DNS, VPN, TFTP, distribution Switch and FTP Management

Antivirus & Endpoint protection: Cisco CSA, Symantec Enterprise Edition, MacAfee Enterprise Edition.

Network Analyzing Tools: Solar Winds Orion, Wire Shark, Axence Tools, IP Control.

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN Emulation

WAN: MPLS, Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Frame Relay.

Others: F5 load balancers, RSA, NAC, SIEM tools, IPAM, Amazon Web Services (AWS)

PROFESSIONAL EXPERIENCE

Confidential, East Brunswick, NJ

Sr. Network Engineer

Responsibilities:

• To ensure that the day-to-day Security Operations runs smooth. Change management and 3rd level Incident management being the primary responsibility, participate directly as well as take escalations from the team members as and when required.
• Responsible for maintaining Firewall networks as well as troubleshooting problems and making recommendations for future system upgrades.
• Proactively monitor and manage all productionsnetworksystems to maximize system availability inCitrixNetscaler
• Administer computer networks and related computing environments including LANs, WANs, network segments, and internet and intranet systems.
• Involved in Configuring and implementing of Composite Network models consists of Cisco 7600,2600,3800 series routers and Cisco 2950, 3500,5000, 6500 Series switches.
• Worked on ASA and ASDM configuring the ACL’s and monitoring. networks.
• Worked on ASA routed mode and transparent mode and Worked on ASA 5500-x platform configuring the web, SSL, any connect VPN’s.
• Support AWS end users and operate master consoles to monitor the performance of computer systems and networks, and will coordinate computer network access use.
• Migrated to R70.1 in various Checkpoint IP series appliances from R65, and building the new Smart Center server.
• Configuring the gateways in a HA cluster and clusterXL using a single virtual IP address
• Track daily changes to residential customer premise(RCP), residential cable modem(RCM), multi-media terminal adapter(MTA) IP blocks for all devices within the Charter infrastructure using Perlscripts and Pivot tables
• VLAN Configuration to different applications with RSTP, STP, VTP.
• For upgrading IOS image files and configuration files, executed, debugged and tuned the parameters in PERLand Shell scripts
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Configured L3 protocols (IP, BGP, OSPF, EIGRP, IGRP, RIP, ISIS), redistribution, summarization, Filtration (using distribute list, route map, prefix list, access list) and Performed troubleshooting tasks on Routing and switching and isolated the problem and finding the cause.
• Configured and troubleshoot Cisco PIX, ASA, FWSM, ACE, Nexus 1000v, and Juniper platforms in a multi-tenant infrastructure.
• Provide network and Firewall security to net new builds according to solutions documentation.
• Deployed BIG IP 8900 provisioning with LTM and GTM Modules.
• Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 8900 series
• Configuring & managing around 500+ Network & Security Devices that includes Juniper (Net Screen) Firewalls, F5 BigIP Load balancers and 3DNS, Blue Coat Proxies and Plug Proxies.
• Handling SSL offloading issues, HTTP monitors, and DNS allocation for the newly built applications.
• Create complex iRules using TCL language for URL redirections, HTTP header-insertion and HTTP header modification and Creating Wide IPs with various load balancing methods like, Global Availability, Topology and Round Robin.
• Deployed LTMs and GTMs in DMZ environments with FIPS solutions.
• Perform SSL Offloading on LTMs and web accelerators with 2048-bits VeriSign certificates. Also, renewing certificates to ensure the security of websites and Created HSRP between switches.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.
• Create vPC domain, design double-sided vPC, design vPC peer-keepalive, vPC peer- link, and vPC member port, and configure single and dual home fex.
• Measure the application performances across the MPLS cloud through various routing and switching methods and Implementation of HSRP, DHCP, DNS, FTP, TFTP, MRTG
• Designed, developed, maintained and supported wired and wireless networks.

Confidential, Salt Lake City, UT

Sr. Network Engineer

Responsibilities:

• Extensive experience in IPAM, DHCP, Cisco technologies, and leadership experience.
• RE-IP all sites so that they are all 7000 square feet or less. This is a regulation that needs to be met in order to comply with an E-911 project.
• Breaking down the networks to make smaller networks to meet these new standards and will be responsible for 6 a week.
• Responsible for re-configuring all Cisco switches, working with the IP control product, troubleshooting any glitches, working with IP Address Management, planning out, but also configuring the networks, and documenting changes in Visio Diagrams.
• Experience of VMware ESXi and VMware Infrastructure
• Working knowledge of Frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NAT’ing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & amp; Multicasting protocols
• Worked in IP network principles including routing (EIGRP, RIP, OSPF and BGP) and DHCP.
• Performed IP network configuration on Cisco devices, Cisco VLAN principles and configuration.
• Planed and coordinated with other diverse technical and non-technical teams regarding IP network configuration and trouble-shooting.
• Experience with Cisco Call Manager and VOIP systems
• Familiar using and managing IPAM systems, particularly IP Control.
• Created and updated Visio network documents.
• Worked with an IPAM system and different internal departments on large managed projects. Experience managing technical projects
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Assisted campus for VOIP network management and troubleshoot
• Expertise in IP Addressing, Sub-netting, VLSM and CIDR.
• Experience in configuration of VLANS, Trunks and VTP.
• Implemented and manage IP network devices including routers, switches, & working with firewalls, and VoIP teams.
• Experience working with Nexus 7010, 5000 and 2000 Series.
• Worked with outside vendors for the proper design, monitoring, maintenance and configuration of cataloged services.
• Migrated legacy systems to new platforms or perform system upgrades to existing systems.
• Dealing with Change Requests and making the required customization changes as per the requirement.
• Worked with RFC Service Management and Monitoring System and Remedy IT Service Management.
• In depth understanding of IPV4, implemented Sub-netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Configured and troubleshooting of HSRP on Cisco routers.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Helped the network team to install new switches and routers and configure the IOS according to the requirement which included VLAN, OSPF,
• Subnetting, EIGRP, BGP, VTP, PaGP, spanning - tree, IP Subnetting, wireless access points, T1 circuits and PIM-SM using auto RP
• Implemented SNMP on Cisco routes to allow for network management.

Confidential, Branchburg, NJ

Network Engineer

Responsibilities:

• Experience with all technical aspects of networking design and implementation.
• Management of Cisco ASA firewalls and contexts, rule management, device administration
• Design and Deployment of firewalls at new sites
• Management of Checkpoint firewalls, ISS Proventia IDS
• Worked with ASA Firewalls upgrades and build configuration for ASA Firewalls for different versions.
• Designed and implemented Firewall rules for Secure DMZ Project and deployed.
• Worked with IPSEC VPN Tunnels, S2S VPN Tunnels and Any connect VPN Tunnels Configurations and their activities for different partner net companies.
• Building new VPN tunnels and management of existing tunnels with various vendors and customers.
• Responsible for IOS-XR and IOS-XE software revision recommendations and risk analysis for new software. Point of contact for the resolution software issues. Advisor for software security alerts, end of software support dates, log message alerts, configurations best practices and hardware end of support reports
• Support for customer lab testing for recommended software releases. Assisted with implementation planning and installation support
• Worked on CRS TO NCS migrations, Catalyst to Nexus platform migrations, IOS-XR/NX-OS hardware upgrades, New MTSO office turn-ups, Nexus 77k installs and EDN-ITx multicast projects
• Troubleshoot connectivity issues, network performance issues.
• Analysis of bugs, threats and upgrade firewalls.
• Management of IPS devices/modules, signature and event analysis.
• WCCP configuration with Websense and URL exception management.
• Coordination with hosting providers like Akamai, Confidential .
• Firewalls standardization, risk analysis, policy formulation.
• Rule base cleanup, auditing and advocate security best practices.
• Worked with NOC team for solar winds network monitoring, managed IP Address Management (IPAM) and other activities.
• Management of Cisco switches, IDS and Bluecoat proxies.
• Designed different Dashboards for various countries DMZ Visio Diagrams and Monitored through solar winds network monitoring tool and generated weekly monitoring reports for NOC team.
• Test and validate network designs in the lab and create deployment guidelines to be used as a reference for the customer projects
• Hands on Openstackcommand line interfaces to use admin commands
• Perform network utilization audits and subsequent capacity planning
• Collaborate with Architecture, Design and Operations teams for successful completion of projects from planning to execution
• Responsible for maintaining the NNO portion of the Cisco Lab
• Troubleshooting technical issues during on call and change control support
• Troubleshoot in network environment (BGP, OSPF, MPLS)
• Configuring and troubleshooting various layer 2 technologies like STP, RSTP, VTP, vPC
• Working with Cisco CRS, GSR, ASR, Nexus and Catalyst Platforms
• Troubleshooting for various network protocols like HSRP, VRRP, EIGRP, MP-iBGP etc
• Understanding in 4G LTE EPC Networks & Signalling concepts
• Created, architect, developed, and installed solutions to complex technical, procedural, and logistical problems.
• Designed, implemented, and test information technology security mechanisms and systems in the context of the networking infrastructure.
• Identifying, testing, developing and implementation of new technologies. Preventing and coordinating responses to security incidents.
• Assisted in creating and developing formal guidelines and policies to ensure appropriate systems support and designs.
• Working with management and cross functional IT staff to provide responsive solutions and options for problems and opportunities.
• Monitoring the development of new standards with TCP/IP and other networking technologies with particular attention to the impact on the networking environment.
• Worked as a consultant to other departments regarding network design and support (meetings, design assistance, support, working with cost and budgeting on projects).
• Completed projects and tasks independently and with limited direct supervision.

Confidential, Milwaukee, WI

Network Security Engineer

Responsibilities:

• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, Checkpoint NGX firewall and Cisco 3800 series routers
• Experience with configuring Virtual Server and Configuring Load balancing methods in F5 LTM
• Support customer with the configuration and maintenance of PIX and ASA firewall systems
• Experience with configuring OTV between the data centers as a layer 2 extension.
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Perform setup of test scenarios, both hardware and software components, and perform troubleshooting as needed.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall, Juniper SRX and Palo Alto networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption
• Implemented various OSPF scenarios on networks consisting of 7600 routers
• Configured policy based routing for BGP for complex network systems
• Worked with Nortel Meridian PBX and/or Succession Call Server Technology, Alcatel-Lucent Vital QIP, Juniper SSL VPN.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s site
• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, CSR-1 series routers and Cisco 2950, 3500, 5000, 6500 Series switches
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
• Managed network IP allocations using QIP Cisco, QIP Alcatel and DSDB.
• Participated in the installation, configuration, and post installation daily operational tasks and configuration of the deployment of Cisco Nexus equipment
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local preference
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls.
• Provided technical support, design and implementation of Cisco IVR 8.5.1 and DFS applications
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Manage a very large DNS environment using Lucent QIP and manual management of DNS for DMZ/External servers
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring
• Installed, configured and set security policies on cisco and checkpoint firewalls, VPN
• Installed, configured and troubleshot Cisco wireless network, Wireless LAN controllers
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.

Confidential

Network Engineer

Responsibilities:

• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K, CSR-1 routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Perform network capacity planning and performance analyses with IT Guru Network Planner, VNE Server, ACE
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Scripting experience with Pearl.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Good knowledge on Intrusion Detection and Intrusion Prevention System.
• Policy Building using IDP.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Knowledge on multiplex techniques such as DWDM.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Experience with Synchronous Optical Networking (SONET) over optical fiber.