Summary:

• Around 7 Years' experience in implementing and maintaining enterprise level data networks as Network Engineer
• Experience in Designing, Implementation and Operations of enterprise data networks as Network Engineer.
• Configuring and Troubleshooting Route Redistribution between static, RIP, EIGRP OSPF BGP protocols.
• Experience in Configuration of Cisco Routers and Catalyst Switches.
• Extensively worked on Cisco Routers, Switches, Load Balancers Firewalls
• Expertise in physical infrastructure like structured cabling, IP address management, racking, stacking and Data Center concepts.
• Enterprise Routing experience using protocols RIP, EIGRP, OSPF and BGP.
• Enterprise Switching with VLANs, Trunks, Spanning Tree, Port Spanning etc.
• Configured Security policies including NAT, PAT, Route-maps and Access Control Lists.
• Experience in WAN technologies like T1/T3, OC and DS3 circuit types.
• Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, and PPP.
• Experience with Load Balancers for administrating and monitoring global local traffic.
• Highly motivated with the ability to work independently or as an integral part of a team and Committed to highest levels of professional.
• Good Documentation and ITIL process skills.
• Experience in Network Integration and consolidation.

Technical Skills:

Routers:

Cisco 2600, 2800, 3800, 3900, 7200 7600 series.

Switches:

Cisco 3550, 3750, 4500, 4900, 6500.

Firewalls:

ASA 5500

Routing:

OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing.

Switching:

VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security.

LAN/WAN Technologies:

Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3, OC Standard, ISDN

Protocols:

IP, TCP, UDP, ICMP, NAT, DNS, DHCP, SNMP, IPSEC, SSL, HTTP, SSH.

Professional Experience:

Confidential

Security Engineer

• Configuring Palo alto policies and setting different device configurations

• Monitoring threats on firewall and changing policies to prevent attack.
• Creating Playbook containing rules for upcoming changes to be made on firewall for the respective data centers.

• Responsibilities also included placing order for new SFP's, implementing inline capabilities for home agents and running network cables from Palo Alto direct to required firewall.
• Regular meetings with project Manager and security team to discuss Palo Alto weekly Status and updates on changes made on the firewalls.
• Configuring Palo Alto's for inline use and Adding signature attacks on prevention lists.
• Created new policies for CDE and syncing the same policies in all the Data Centers.
• Auto Tuning Palo Alto Signatures and syncing between the data centers, working on PCI's and managing it during peak if needed.
• Creating new policies for Share Point Production and Development policies and categorizing them under new address groups.
• Creating New Policies for Critical and high level signatures.
• Making list of attacks on firewall of Critical and High Severity and Auto-Tuning them creating new policies.
• Editing and Changing Palo Alto Polices and Monitoring threats on firewalls.
• Maintenance and Troubleshooting of LAN connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks VLSM .
• Dealing with Cisco ASA 5500 providing advanced application-aware firewall services with identity-based access control, denial of service DoS attack protection all built upon market-proven Cisco PIX Security Appliance technology.
• Experience in configuring various ASA models such as Cisco ASA 5510, ASA 5520, and ASA 5540.
• Primary responsibilities were to maintain the Cisco ASA and maintain its conditions in which it acted like a security device that combines firewall, antivirus, intrusion prevention, and virtual private network VPN capabilities.
• Supporting OSPF based network by resolving level 2 problems of internal teams external customers of all locations.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Debugged and resolved problems for serial links, Channelized T1 controllers, PRI controllers
• Router memory IOS upgrade with TFTP.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.

Confidential

Network Engineer

Responsibilities:

• Designed and installed new Branch network systems. Resolved network issues, ran test scripts and prepared network documentation.

• Performed Network Operations by health monitoring using NMS, Issue and Incident resolution using ticketing system and workflow software.
• Monitoring the NMS system for different Network Alerts.
• Ensure problems are satisfactorily resolved in a timely manner with focus on providing a high level of support for all customers.
• Coordinating with service providers for WAN link outages.
• Checking and configuring Cisco 7600 routers at data center for remote sites' issues.
• Working on Cisco 6500 and4500 switches for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues.
• Perform Wireless Administration and troubleshooting for the corporate Wireless infrastructure.
• Involved in troubleshooting of DHCP and other IP conflict problems.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation link negotiation.
• Configuration of Access List ACL STD, Ext, Named to allow users all over the company to access different applications, Internet and compliance to the security policy and standards.
• Worked with application team to understand their requirements and come up with the best load balancing options.
• Integrate and Implement various internal Network Projects. Did designing and project co-ordination with multiple stake holders and vendors.
• Responsibilities also include technical documentation of all upgrades done. Attending meetings and technical discussions related to current project.
• Prepared engineering documents and network diagrams in Microsoft Visio
• In F5 I did configure Virtual Servers, Configure Nodes, and configuring the load balancing Pools and also used to work with configuring load balancing algorithms.
• I did work with configuring F5 LTM 8950, 6900, VIPRION 2400 models.

Juniper Experience

• Experience with working on Juniper Routers like, M320 and MX80, MX960, MX480, I worked on configuring OSPF BGP and routing Policies.
• Experience with working on juniper switches like EX2200, EX2500.

Nexus Experience

• Deployed Nexus 7k instead to Cisco 6500 CAT OS devices.
• Also worked with VPC, VDC on the Nexus 7k and also added fabric extenders in the data center environment.

VoIP

• Experience in IP telephony encompassing the full suite of VoIP enabled services including the interconnection of phones for communications related services such as billing and dialing plans and basic features such as conferencing, transfer, forward, and hold.

Palo Alto

• Experience and helping in Identify applications regardless of port, protocol, evasive tactic or Secure Sockets Layer
• Resolving and Identifying and control users regardless of IP address, location or device
• Experience in helping to protect against known and unknown application-borne threats

F5 Load Balance

• I worked as a design and deployment engineer with routing switching firewall and F5 Load balancer. I worked with data center environment. Campus environment, and also in extranet client environment.
• I did work with configuring F5 LTM 8950, 6900, VIPRION 2400 models.

ASA Firewalls

• Dealing with Cisco ASA 5500 providing advanced application-aware firewall services with identity-based access control, denial of service DoS attack protection all built upon market-proven Cisco PIX Security Appliance technology.
• Experience in configuring various ASA models such as Cisco ASA 5510,ASA 5520,ASA 5540

Checkpoint Firewalls

• Dealing with various Check Point firewalls such as the R series R71 to R77 and experience and dealing with the DLP Market by moving from Detection to Prevention of Data Loss Incidents
• Also primary and responsibilities was to Prevents data loss of critical business information, Combines technology and processes to make DLP work, Easy deployment for immediate data loss prevention.
• Making various improvements in the Management Blades deployment e.g. ability to install Management Server on Windows with DHCP , usability enhancements, and new features such as Firewall Rule Expiration .

Confidential

Network Admin

Responsibilities:

• Working on Network support implementation related internal projects.
• Ensure network, system and data availability and integrity through preventative maintenance and upgrade.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Supporting OSPF based network by resolving level 2 problems of internal teams external customers of all locations.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Debugged and resolved problems for serial links, Channelized T1 controllers, PRI controllers
• Router memory IOS upgrade with TFTP
• Configured and debugged policy based routing for special traffic, route filtering with route maps, route redistribution.
• Configure VLAN Trucking 802.1Q, STP, and Port Security on Catalyst 6500 switches.
• Install and maintain routers and switches in various network configurations supported VLANs, and advanced ACL.
• Manage Network IP Address for PWC Infrastructure and update internal and external DNS.
• Maintain prepare Network drawings of all major Data Centers operational sites.
• Network cabling, dressing, labeling and troubleshooting network drops onsite.
• Also dealing with Internet Group Management Protocol IGMP as a communication protocol used by hosts and adjacent routers on IP networks.

F5 Load Balance

• In F5 I did configure Virtual Servers, Configure Nodes, and configuring the load balancing Pools and also used to work with configuring load balancing algorithms. I also configured Session based persistence and I have leant configuring writing I-Rules for specific redirection purpose and also I-rules for persistence.

IPv6

• I worked on IPv6 with multiple service providers in Installing and Troubleshooting T1, DS3, OC3 and Gigabit Circuits and 10 Gigabit circuits.

MPLS

• Have hands on experience on MPLS applications such as Virtual Private Networking VPN ,Traffic Engineering TE , Quality of Service QoS ,Any Transport over MPLS AToM .

Palo Alto

• Responsibility to maintain Fine-grained visibility and policy control over application access/functionality
• Experience in Multi-gigabit, low latency, in-line deployment.

ASA Firewalls

• Primary responsibilities were to maintain the Cisco ASA and maintain its conditions in which it acted like a security device that combines firewall, antivirus, intrusion prevention, and virtual private network VPN capabilities.
• Experience in configuring various ASA models such as Cisco ASA 5550, Cisco ASA 5580-20, and Cisco ASA 5580-40.

Fortinet Analyser

• Help monitor and maintain identify attack patterns, acceptable use policies, and demonstrate policy compliance
• Experience in Fortinet analyzers 3500E, 3000E, 2000B and product matrix.

Confidential

Network Operations

Responsibilities:

• Experienced in installation, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas configuring Summarization for effective Routing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.
• Implemented and used SDM to configure Cisco IOS security features and network connection.
• Network Segmentation-application migrations for enterprise Private Data Firewall and data behind ASA 5585-Xs
• Configured Object Grouping, Protocol Handling and Code up gradation on ASA Firewalls.
• Implementation and maintained intrusion detection/ prevention IDS/IPS system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
• Design, implement and provide second level support for host load-balancing solutions at SWA.
• Configuration the access-list rules, network object-service group based on well-known port the port i.e.
• Worked with different vendors and implement Site-to-Site VPNs over the Internet.
• Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Working knowledge of the UNIX and CLI based command to implement the networking tools.
• Configured and monitored Firewall logging, DMZ's and related security policies.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.

QOS

• Resolving issue and guarantee that packet traffic for a voice or other media connection will not be delayed or dropped due to interference from other lower priority traffic.
• Dealing with network performance within the scope of Qos which include availability, bandwidth, latency, and error rate.

VPN

• Experience in VPN Protocols such as PPTP, L2TP/IPsec and open VPN

VoIP

• Experience in Voice over Internet Protocols such as Real-Time Transport RTP , Real-Time Transport Control Protocol RTCP , Session Description Protocol SDP etc.
• Helping in Simplify voice systems with unified communications to cut costs and dramatically simplify provisioning and maintenance.

Linux/UNIX

• Experience in dealing with operating systems to organize and control hardware and software so that the device it lives in behaves in a flexible but predictable way.
• Help and maintain, and resolving issues regarding memory manager, disk manager, network manager, Other I/O services manager, and Other I/O services manager

F5 Load Balancers

• Primary responsibility was to deal with Load balancers that were generally grouped into two categories: Layer 4 and Layer 7.
• Maintaining Layer 4 load balancers that act upon data found in network and transport layer protocols IP, TCP, FTP, and UDP . And Layer 7 load balancers which distributed requests based upon data found in application layer protocols such as HTTP.

Confidential

Network Support Engineer

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Implemented ISL and 802.1Q for communicating through VTP.
• Working with Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Deploying the network infrastructure to meet the requirements.
• Created VLAN and Inter-Vlan routing with Multilayer Switching.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed administrative support for RIP, OSPF routing protocol.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites.

Confidential

Network Support Engineer

Responsibilities:

• Assisted with various duties that will arise including: implementation, configuration, management, rules definition, problem solving, design advice, troubleshooting, updating, maintenance, etc.
• Maintenance and Troubleshooting of LAN connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks VLSM .
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Worked along with the team in ticketing issues.
• Assisted in troubleshooting LAN WAN connectivity and hardware issues in the network of 10000 hosts.
• Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
• Experience with configuring BGP, OSPF on 7609 router.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP OSPF routing protocol administration.