OBJECTIVE

Seeking a challenging Internetwork architect position whereby my skills can be effectively utilized and enhanced while contributing towards company profitability.

SUMMARY

Internetworks

• Network Engineerwith Sr.-Level experience, primarily in theareas of integration, implementation and support of Internetworks, WAN and LAN
• Sr.-Level experience with internetworking protocols such as RIP, EIGRP, OSPF, IS-IS, BGP, MP-BGP and MPLS

• Sr.- Level Experience in managing/administering Campus Wide Gigabit Ethernet Networks involving VLANs, STP, VTP, DTP etc, deployment and management of LAN and WAN Networks. Well versed with handling issues surrounding data center migration.
• Directexperience with Cisco Routers 7600,7500, 7200, 4500,3600, 2800 and 2600 Series, Cisco Catalyst 6500/5500/3500 and Nexus 5000/7000 Series.

Personal Attributes

• A team player with excellent communication and organizational skills, combined with flexibility, creativity and exceptional analytical and problem solving skills
• Technically well versed, able to roll up the sleeves whenever necessary to get the job done, but always taking pride in team achievements. A very fast learner and a self starter who excels in team environment but can work equally well independently.

SKILLS

Routed Protocols: TCP/IP

Routing Protocols: RIP, EIGRP, IGRP, OSPF, BGP, IS-IS and MPLS

WAN/Core: BGP, MP-BGP, MPLS,MPLS TE, Frame Relay, ISDNPRI/BRI, T1/E1, DDR, Serial Encapsulation PPP, HDLC , DSL, L2TP, QinQ

Switching: Layers 2, 3 4, VLANs, Spanning Tree Protocol STP Etherchannels, ISL and Dot1q tunneling protocols

High Availability: VSS, HSRP, VRRP, GLBP, Load Balancing and Spanning Tree

Network Security: Implementation of standard and extended access lists on Cisco routers, PIX Firewall, Cisco 3000 VPN Concentrator, and Knowledge of RSA ACE/Server, CSA, IDSM, FWSM, AAA TACACS and RADIUS

Network Management: SNMP, RMON and MIB management, using HP Open View andCisco Works 2000, MRTG etc.

Protocol Analyzer: Network scanning tools: Network General Sniffer Distributed Sniffer

Cisco Routers: Cisco 7xxx,4xxx, 3xxx, 2xxx Series

LAN Switches: CiscoCatalyst 6xxx, 5xxx, 3xxx, 2xxx 1xxx Series, Cisco Nexus 5000 and 7000 series switches, 3Com Core Builder 7000, SSII Switches 3300/1100 3900

Enterprise Communication: Management and troubleshooting of Alcatel 4400 PABX/PBX

Internet/Intranet Administration of Exchange Proxy Servers, NAT/PAT, RAS, WINS, NetBIOS, POP/IMAP/SMTP, VPN, SSL/SSH, IPSec, Hashing

Server Operating Systems: MS Windows 2003, MS Win2k, NetWare 3.1x, UNIX SCO , VMWare ESX Server

EXPERIENCE

Confidential

Sr. Network Engineer

• Verizon Business provides IT outsourcing services to large enterprise customers.I've worked with several companies through Deloitte to enhance and maintain their environments. My responsibilities include:
• To be the network architect for designated clients towards any new IT initiatives involving existing infrastructure and/or new deployments
• Prepare network part of proposals in response to customer's RFPs and be the prime engineer for its implementation
• Work very closely with project managers to help achieve the project milestones and documentation such as Network Design Document, detailed execution plans etc.
• To be on call during the implementation phase of a project until it is handed over to operations
• Troubleshooting and customization of network for optimum performance, co-ordinate with Telco's and ISP with regard to any ongoing projects and connectivity issues.
• Coordinate and interface with cross-functional teams like, Tech Development, Server management, etc., planning and telecom industry's leading vendors for researching, evaluating and deployment of new products based on emerging technologies like MPLS, Traffic Engineering, QoS, VoIP, etc.

• Migration of Interac's legacy Frame Relaynetwork to state of the art MPLS based setup.
• Wrote detailed network implementation plans and actively participated in execution of the project

• Architected RSA's network migration from a mix of Frame Relay and ATM to MPLS VPN.
• Responsible for detailed design, implementation and handover to operations
• Examined data from various network elements to help with migration
• Provided detailed QoS configuration for a successful implementation of multi-vendor VoIP solution
• Helped troubleshoot any issues during the implementation
• Designed solutions for several Fortune 500 company's networks including routing and switching, security, and load balancing.
• Designed Atlanta's largest hospital network utilizing Nexus 7010s/5548s/2248s, Cisco ASA firewalls, and Catalyst 6513s giving them a 10 Gig infrastructure, and more scalable and stable environment
• Implemented Bluecoat proxy servers with content filtering and white lists to control company web filtering standards
• Implemented wireless standard utilizing 5508 WLC and 1100 series LWAPs in Local and HREAP mode to migrate away from autonomous Aps
• Implemented Cisco 4200 IPS in inline with NAC for high security network segments
• Designed and implemented dual core MPLS network with AT T and Verizon. Also implemented VRF Lite with separate VRFs within the Data Centers
• Designed and implemented TrustSec and SecureX feature sets with ISE/NAC
• Implemented 802.1x authentication for wired and wireless devices via Cisco Secure ACS 5.x
• Designed and implemented consistent enforcement of context-based policies across wired and wireless networks
• Performed accurate device identification using ISE-based probes, embedded device sensors, active endpoint scanning
• Designed and implemented WAN acceleration solutions utilizing WAVE/WAAS and replaced M A Riverbed based solutions
• Designed and implemented utilizing ASR 1002 and 1006 routers, Nexus 7010s, Juniper ISG 1000 firewalls, and Catalyst 6509 and 4948 switches. Also designed the companies load balancing infrastructure utilizing F5 LTM, Cisco ACE and GSS for local and global site balancing and failover.
• Redesigned the network to include a DR/second datacenter and to optimize the performance for remote sites.
• Implemented Cisco GSS to provide global site failover between the companies datacenters.
• Provide senior level support for Cisco Pix firewalls. The network has roughly 27 Pix clusters, and 11 single firewalls.
• Installed and configured Cisco 2951 and 3945 ISRs with PVDMs, VWICs, EVMs, Dial Peers and DSPFarm configuration

Confidential

• Working in a Business Process Outsourcing Provider as a Sr. Network Analyst. Responsible for maintaining existing network infrastructure and designing, testing and executing new projects for the enterprise level network and securing them. Summary of my responsibilities is as follows:
• Implementation of a large debt management company's network including: data centers, internet connectivity, firewalls, IPsec VPNs, QoS, routing protocols - BGP, OSPF, and EIGRP, WAN - point-to-point and MPLS: 110 sites, 100 VPNs, 80 client connections, 7 Internet connections, 2 data centers, and a disaster recovery site . Wrote architecture documentation including: IP VLAN scheme, routing protocols, WAN, Internet connectivity, security, remote sites, data centers, and configuration templates. Managed the implementation of the project, and provided senior level implementation support with a much lower than projected amount of downtime.
• Redesigned entire network for a major pharmaceutical distribution company utilizing Cisco routers/switches, OSPF, and BGP while implementing QOS to enhance the performance of their VoIP implementation. Provided all architecture documentation, as well as individual site drawings, implementation plans, and detailed migration plans.
• Designed and implemented LWAPs with WLC and WCS integration for enterprise wireless.
• Maintaining WAN circuits over Frame Relay and LAN Extension among five sites connected through Cisco Routers 7500, 3740 and 2600
• Maintaining LAN of about 1500 nodes including multiple Catalyst 6509, 3550, 2950
• Maintaining network security and remote access appliances including PIX 515, 525, IDS, FWSM and VPN Concentrator 3030
• Troubleshooting and tuning of routing protocols EIGRP and OSPF in production network
• ISDN backup using PRI/BRI running PPP with PAP/CHAP authentication.
• Troubleshooting and customization of network for optimum performance, co-ordinate with Telco's and ISP with regard to any ongoing projects and connectivity issues.
• Voice over IP connectivity of the PBXs for Toll Bypass and in depth network optimization using different QoS policies for different user applications.
• Redesigned the implementation of all of the company's datacenters.
• Engineered and implemented the company's enterprise QoS policy across all sites.
• Redesigned the company's routing protocol design. Providing a much simpler and scalable architecture that has a greater level of reliability and faster convergence.
• Wrote configuration templates used for the deployment of all of the switches, routers, QoS policy, and routing protocols EIGRP BGP .
• Provide senior level engineering support in the form of troubleshooting and project support.
• Created iRules, VIPS, Keepalives, Scripts and Persistence on F5 LTM and GTMs for redundancy and load balancing

Security:

• Maintain security policies and procedures under high level security policy document.
• Deploy and maintain network and system security services, and document all the procedures and configurations and keep them up to date.
• Threat and risk assessment, penetration tests on a periodic basis and take steps to mitigate them.
• Analyzing system logs to explore any security threats on an ongoing basis and investigate and respond to any security incidents based on their severity.
• Played a key role in getting a disaster recovery DR and business continuity plan BCP in place and provide compliance audit on an ongoing basis.

Confidential

Network Engineer

• Responsible for administration and management of LAN, WAN, Voice Communication, Service Level Delivery Measurement, Vendor Supply Management and Problem Change Management.
• Responsible for administration of NT Servers and MS Exchange Server 5.5 for about 350 users. Installed and configured Fast Ethernet LAN comprising IBM RouteSwitch 8274 as the backbone switch linked over multi-mode fiber to Cisco Switches at five remote buildings of the company.
• Installed, configured and managed multiple radio links interfaced to Cisco 2600 Router with ISDN DDR and Gandalf MUX respectively supporting different applications.

• Reviewed security requirements for mission critical engagements, designed and implemented security infrastructure from ground zero using Cisco PIX Firewall 525, Intrusion Detection System IDS 4200 series and VPN 3000 to provide protection against hacking of internal systems and DOS attacks.
• Provided security-auditing services on an ongoing basis to provide a current risk assessment of internal systems using tools such as Nessus and Cyber Cop security scanner.

• Responsible for Network Designing, Implementation, Support and Project Management
• Conduct Audit Surveys of customer's legacy networks and provide complete overhaul solution to phase-out and replace their networks with no impact to their business.
• Hands on experience of Installation and configuration of Cisco 2500/2600, 3600 and 4500 Routers and Cisco 3600/2900/1900 Switches involving IP, IPX, Frame Relay, X.25, ISDN and RIP, OSPF, BGP and other protocols. Also handled Configuration of communication equipment such as Bridges, Multiplexers, Network Access products, etc.
• Provide technical expertise when issues are escalated, and act as a Tier 3 support structure for the East Coast region on network issues, including backbone routing, customer router configuration, and Internet related services.
• Evaluate and analyze the network operations center to ensure successful operation of the network.
• Responsible for the implementation of engineering processes that provide for a timely and appropriate integration of all engineering disciplines to ensure a network system design that meets all requirements including SLAs. Identify and evaluate problems. Determines risk areas and mitigates their impact.
• Work with the development organizations to test and recommend effective solutions for the network.
• Participate in the design of extensions and additions to the network, and incorporation of new technologies and standards.
• Design, develop, and maintain configuration standards for network equipment.