SUMMARY

• 8+ years of experience Network & Security Engineer in Administration of LAN, WAN and Security Technologies.
• Experienced in design, installation, configuration, administration and troubleshooting of LAN/WAN infrastructure and security using Cisco routers/Switches/firewalls
• Configuration of Palo Alto Firewall PA - 5k and CMS
• Experience in Red seal for modeling actual network and determining security policies
• Advanced knowledge, design, installation, configuration, maintenance and administration of CheckPoint Firewall R55 up to R77, Secure Platform Installation, VPN
• Experienced Checkpoint Firewall, Security and Network Administrator
• Real-time experience in designing and assisting in deploying enterprise wide Network SSL Security and High Availability Solutions for ASA
• Advanced knowledge in Cisco ASA 5000 series and PIX installation, configuration and maintenance
• Technical knowledge & proficiency in system administration, network maintenance, hardware maintenance, OS
• Worked on BCWF (Blue Coat WebFilter)
• Worked on PCI security baseline support and as Cyber security professional
• Worked on integrate feeds and features like Net Flow Feeds (Traffic Analyzer), LDAP synchronization connector
• Fulfilling routine change requests of Firewall and resolving trouble tickets, maintain and monitoring firewalls using scanning software Nessus
• Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN
• Experienced in DHCP DNS, AD, NIS, NFS, SMTP, IMAP, ODBC, FTP, TCP/IP, LAN, WAN, LDAP, HP RDP, security management and system troubleshooting skills
• Experience in managing and migration of large scale enterprise networks, extensive knowledge in developing test plans, procedures and testing various LAN/WAN products and protocols
• Advanced knowledge in TCP/IP suite and routing protocols, such as OSPF, BGP, and EIGRP
• Manage network capacity in cooperation with the Network Operations Center (NOC)
• Worked on implementation strategies for the expansion of the MPLS VPN networks
• Familiar with working of Intrusion Prevention System (IPS) developing, maintaining and documentation, IPS backup and Intrusion Detection System (IDS)
• Working experience on Cisco Nexus Architecture 5000
• Real time analysis using SIEM

TECHNICAL SKILLS

Protocols: NAT, VTP, VLAN, TCP/IP, UDP, ARP, NTP, EIGRP, OSPF, RIP, SSL, VPN, HTTP, HTTPS, FTP, POP3, SMTP, DNS, ICMP

Switches: Cisco Catalyst VSS 1440/2960/4900/6513 , Cisco Nexus Switches

Routers: Cisco Routers ASR 1002/2600/3945/7606

Firewalls: Palo Alto PA 500/2k/3k/5k, CheckpointR65/R70/R77/Firewall-1, Cisco ASA

Languages: C/C++, Java, Perl

Operating Systems: Windows XP/7, RHEL

PROFESSIONAL EXPERIENCE

Confidential, Wilmington, DE

Network Security Administrator

Responsibilities:

• Manage firewall policy lifecycle process from review, approval, implementation, publishing, verification and maintenance
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center and provided L3 support for routers/switches/firewalls
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall
• Experience in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server with SPLAT operating system
• Performed system and network audits against FISMA and FIPS200 regulatory requirements
• Worked on Cisco 871 DSL, IAD, 1800, 1900, 3900, 7200 series routers and Cisco Nexus Architecture 5000
• Worked as a Cyber Security Specialist to protect organizations IT environment against web threats including malware, phishing, viruses, denial-of-service attacks, hacking etc.
• Worked on PCI security standards to prevent risk, Payment card data protection
• Third Party VPN migration from old data center to new data center and A complete Security Solution includes both URL filtering and Anti-malware protection.
• Designed and implemented Windows networks and Active Directory (AD) and security group hierarchy based on delegation requirements
• Implement Cisco Secure Intrusion Detection Sensors, IDSM and CSPM to monitor network activities
• Configure and maintain Windows NT/2000 environment services, including Active Directory, DFS, WINS, DNS, DHCP, file replications and logon scripts
• Experience with working on cisco switches like 2960, 3750, 4500, 6500
• Maintained, upgraded, configured, and installed Cisco routers, Cisco Catalyst Switches and Load Balancer F5
• Designing, Implementing and Troubleshooting Cisco Routers and Switches using different routing protocols like RIP, OSPF, EIGRP, BGP, ISIS & MPLS L3 VPN, VRF
• Implement LAN protocols like STP, RSTP, VTP, VLAN and WAN protocols like Frame relay, PPP, port channels protocols like LACP, PAGP
• Implemented VLAN, VTP domain, trunking and Ether Channel on Cisco 5500 switches
• Coordination with Unix, Windows administration and PMs

Confidential, Lebanon, NH

Firewall Specialist

Responsibilities:

• Troubleshooting complex CheckPoint issues, Site-to-Site VPN related
• Performed upgrades for all IP series firewalls from R65-R75
• Support for all migrations, upgrades, PCI and SOX audit requirements, and vulnerability assessments
• Support for all firewalls and related environments
• Checkpoint firewall upgrade from R55 to R65 for remote sites
• Detailed knowledge of SNMPv3, Syslog, Net flow management protocols
• Documented network problems and resolutions for future reference
• Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using Wireshark protocol analyzer and recommended solution for better performance
• Risk assessments where done using Nessus, and Internet scanner, on a monthly basis to help ensure that risks to the network are mitigated in a timely manner
• Managed Smart Center Checkpoint management server (SmartView Tracker)
• Managed Checkpoint Firewalls from the command line (cpconfig and Sysconfig)
• Installing and setting up Firewall Analyzer product to facilitate consulting on an IDS deployment project, using my Cisco Nexus 7k/5k experience to place IDS devices globally
• Working and commenting on global firewall polices
• Migration with both Checkpoint and Cisco ASA VPN experience
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Implemented and troubleshooting the Virtual firewalls solutions in ASA
• Providing input on day-to-day security architecture policies and procedures
• Developing systems and process to protect, various user groups while accessing public Internet content from malicious hack attacks
• Perform troubleshooting through command line interface
• Network migration from OSPF to EIGRP.

Confidential, Indianapolis, IN

Network Security Engineer

Responsibilities:

• Configuring multiple Cisco 6509 with MSFC2, 3500, 2948G-L3 switches, 2600 and 3600 routers, Frame relay, dedicated T1s and ISDN lines Implement network security for remote access
• Configure and maintain Windows NT/2000 environment services, including Active Directory, DFS, WINS, DNS, DHCP, file replications and logon scripts
• Configuration and maintenance of ACL lists on Cisco routers
• Responsibility includes regular maintenance, security patch update and troubleshooting
• Configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms
• Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN
• Administration and management of all firewall environments
• Management of each firewall is done remotely and onsite at client sites
• Black listing and White listing of web URL on Blue Coat Proxy servers
• Managed network IP access via Dynamic Host Configuration Protocol (DHCP)
• Redistribution of routing protocols and Frame-Relay configuration
• Prepared technical documentation of configurations, processes, procedures, systems and locations

Confidential

Network Technician

Responsibilities:

• Setting up Checkpoint devices, configuring, maintaining and troubleshooting
• Perform network security, administration, analysis, and problem resolution for networks, including NT 4.0, Windows 2000, UNIX (Solaris & BSD), CISCO, TCP/IP, and Checkpoint firewalls
• Setting up Windows server 2000/2003 as domain controller & adding client machines to domain
• Managing Agilent software and configuring it on LAN
• Managing remote Location user PCs at grid stations and troubleshooting the same either remotely or visiting the clients as and when required
• Creating SQL Database, everyday Backup and maintenance plans
• Installation and configuration of Thin Client Pc's
• Re-punching of around 200 points done on jack panel, managing of Network Cables in the Server room
• Manage LAN & WAN and Bluecoat proxy servers
• Provides technical expertise in configuration and troubleshooting of various IP routing protocols including OSPF, EIGRP, and BGP
• Troubleshooting Network Problems