SUMMARY:

• Senior Network& Security Engineer with an experience of about 7+years in Network Security, design, install, support, troubleshoots.
• Administered & Designed LANs, WAN internet/intranet with strategic budgeting for upcoming projects.
• Configured UTM like Web Filtering, URL Filtering & Application Control on Fortigate & Sonic wall Firewalls
• Configured Router and Troubleshooting for VPN & ILL links CE routers of all clients.
• Worked on Cisco Catalyst (3550, 3750, 6500) series switches, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, ASA Firewall (5505/5510), Load Balancers using Cisco ACE, F5 LTM/GTM, Security Device Manager (SDM), Cisco Works, HP OpenView, Solar Winds, Sniffer, Palo Alto Networks Firewall models (PA - 2k, PA-3K and PA-5K).
• Configured and Troubleshoot on different protocols like Static, EIGRP, BGP, OSPF, VLAN, DMZ, MPLS, HSRP, VRRP, NAT, VTP & IPSEC
• Managed all network and devices including Cisco routers, switches, VPNs, SSL, Check Point, Cisco PIX, Cisco ASA, Cisco FWSM as well as content delivery networks (F5 BigIP LTM and GTM 1600 and 3400 load balancers) enterprise environment.
• Handled of Dockets for Customer WAN Links Connected via MPLS.
• Responsible for Cisco ASA (5540/5580) and Palo Alto firewalls (PA-5020/PA-3020) configuration and administration across global networks.
• Worked in Data center environment with Cisco UCS 6200 interconnects Cisco UCS B-series Blades and Cisco UCS 5100 series blade server chassis and implemented RAC mounted servers
• Configured Cisco 1000v switches for virtual VMware servers in the Cisco UCS environment
• Troubleshooting and Configuration of Cisco ASA 5580, 5540 FWSM, firewalls for all the connecting to City net.
• Worked in Routing Protocols like RIP, BGP, OSPF, EIGRP etc.
• In Depth understanding of the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Configured Change Request of MPLS for Enterprise Customers on Router.
• Hands on experience on Cisco 7206, ASR 9K, 2811, 2911, 3800, 3700, 3600, 2900 series routers, Juniper M & MX Series, Alcatel 7750, IOS, IOX XR.
• Worked on Cisco Catalyst (3550, 3750, 6500) series switches, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, ASA Firewall (5505/5510), Load Balancers using Cisco ACE, F5 LTM/GTM, Security Device Manager (SDM), Cisco Works, HP OpenView, Solar Winds, Sniffer, Palo Alto Networks Firewall models (PA-2k, PA-3K and PA-5K).
• Expertise in installing, configuring and troubleshooting Juniper Switches (series EX3300, EX4200, EX4600), Juniper Routers (series J, M and T) and Juniper series SRX Firewalls, Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1. Experience deploying ACI in Network-Centric model.
• Configured Link in Network Monitoring System (NMS).
• Designed the Solution for IP/MPLS and Core Networks.
• Expertise in access control server configuration for RADIUS & TACAS+.
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Experience in Cisco: Physical cabling, IP addressing, wide area Network Configuration (Frame-relay &MPLS), routing protocol configuration (RIP, EIGRP, OSPF, BGP).
• Expertise in working with Cisco ASA and PIX firewalls with IP sec tunnels, zones, global protect mode, Zone based tunnels, IKE Crypto.
• Worked in vendor platforms such as Cisco, Juniper routers and Switches, F5 load balancer, Checkpoint firewalls and Cisco ASA and PIX firewalls.
• Monitored and Troubleshoot of MPLS& Internet Leased Line links using Network monitoring tools like concord (E-health) and WATSUP gold.
• Checked the status of the links, like Link Down, Packet Drops, Flaps, CRC Errors, Destination IP Not Reachable, Latency and Utilization of the link using MRTG and raising the trouble tickets for the same.
• Designed & configured internal network with routing protocols and switching technologies.
• Configured and troubleshooting on firewalls - ASA, Fortinet and Checkpoint for NAT, Access-Rule, IPSEC and SSL based VPN.
• Worked on TAC cases with vendors such as Cisco, Fortinet, Checkpoint and Citrix for device Fault.
• Managed network domain configuration for HP & Dell blade chassis for Virtual Infrastructure.
• Monitored and troubleshooting network device alert through Nagios monitoring tool.

TECHNICAL SKILLS:

Router platforms Cisco: routers (7600, 7200, 3800, 3600, 2800, 2600, 2500, 1800 series),ASR 9K,GSR 12K& Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900, 6807 series), Nexus 9K,7K, 5K, 2K & 1K.Switch platformsCisco 2900XL, 2950, 2960, 3560, 3750, 4500 and 6500, Nexus (2K, 5K, 7K and 9K)

Juniper Platforms: SRX, MX, EX Series Routers and Switches

Networking Concepts: Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: Juniper Netscreen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, Check Point (NGX, R65, R70 and R71), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks (PA-2K, PA-3K and PA-5K).

Network Management/Monitoring: Solar winds Orion, HP NNMi 8xi (Network Node Manager), Net flow and Cisco prime, Ethereal / Wireshark, TCP Dump, PRTG, Infoblox, Riverbeds.

Load Balancers: F-5 BIG-IP LTM 2000, 3900, 5000, 6400, 6800 AND 8900, Bluecoat SG8100, AV 510.

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix, Arista

Software: GNS3, Microsoft Vision, Remedy, Service Now, MS SQL Server 2008, HTML

Wireless Technologies: Canopy Wireless Devices, D-Link Point-to-point Wireless, D-Link APs, CISCO 1200 series APs, Aruba wireless and APs, Cisco Meraki, Linksys Wireless/Wi-Fi Routers

Cloud Networking: AWS, Azure. Google Cloud

PROFESSIONAL EXPERIENCE:

Confidential, Macedonia, OH

Sr. Network Security Engineer

Responsibilities:

• Expanded my expertise into other areas such as Cisco UCS, Checkpoint Firewalls,Cisco ASA, and VMware NSX
• Managed and configured VPN’s, NATing and Object group-based ACL’s on Cisco ASA Firewalls.
• Migrated SAP based applications from old Cisco ACE load balancers to new VMware NSX edges.
• Deploying and decommission of VLANs on core ASR 9K, MIX routers, Nexus 9k, 7K, 5K, HP switches and its downstream devices.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured and tested F5 I Rules using Browser (IE), HTTP watch.
• Worked on F5 LTM series like 1600, 6400 and Viprions for the corporate applications and their availability.
• Worked on Aruba Controller, Wireless Access Point, and RAP. Extensively work with Aruba Controller (7210, 7240 Series) and Aruba Wireless Access Point (335,325,225) and RAP (303H and 203 H).
• Deployed Site to Site VPN’s, Cisco Any Connect VPN Clients and SSL based Citrix Clients is part of my daily activities
• Worked on Multisite distributed ISE 2.0 (10 VM nodes) Design, Implement, Configure, Planned and migrated ACS existing configured devices like WLC, Radius, Tacacs+, 802.1x, Guest portal, posture policies and VPN authentication.
• Worked on Check Point and Cisco ASA firewall administration across global networks.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5580 security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Managed and Upgraded the SecureAuth, UCS Firmware and Mobile Iron.
• Use and maintain routing protocols EIGRP, OSPF and BGP on the ISR Router models like 2951, 3845, 3945, 7206 in the network & also worked on BGP Route Reflectors, Confederations.
• Experience with Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater visibility and scalability in a data center environment.
• Worked with Cisco Channel partners to build practices around Cisco ACI, worked on configuring tenant policies, VXLAN, VTEPS, VNI, Bridge Doamins.
• Architecture of Dev, QC, and Prod internal Corp and customer facing Ecommerce VPCs for AWS cloud environment
• Experience with F5 LTM, GTM, APM, NetScaler, Cisco ACE and A10.
• Conducted a POC on SilverPeak, Versa and Viptella SD-WAN solution as a team and worked on evaluating the solutions.
• Configured a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Installed and configured firewalls, IPS, IPSec VPNs and various screens for intrusion prevention on Juniper SRX equipment.
• Installed, turn-up and configured Juniper hardware for Matrix & CPA test labs; routers, switches
• Tested network resilience & failover by oversubscribing links, capacity planning, apply vendor software updates.
• Wrote MoPs to configure Juniper and Tellabs interfaces10Ge Trunks, OSPF, CoS, QoS, VPLS, EVPL, RSVP.
• Supported Juniper hardware of MX960e, MX480e, M10, M120, M320, T1600, T640, and Tellabs 8860.
• Managed Datacenter of F5 load balancers, Cisco 4500, Juniper M120 and Extreme switches.
• Supported for Juniper M120 & J series, Cisco 3745, 6500, Extreme Summit, GPRS CGSN, Memotec switch.
• Devised and Implemented procedures for configuration and management of up to 400 Juniper Ex3300 access switches, including planning and development of a standard configuration template.
• Upgraded network equipment, software and hardware components and system configuration.
• Maintained technical detailed documentation of LAN and WAN systems and applications.
• Configured and Managed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.Juniper firewall rules deployments.Provide JUNOS administrator worldwide.Juniper firewalls 50.
• Configured and sponsored portal Cisco ISE for access to the wireless devices.
• Installed and configured two new Juniper switch environments. The new models; Juniper EX4200 & EX4550 switches.The EX4200s to become their new CORE switches and the EX4550 for customer's new Storage environment.
• Involved in Virtual Chassis and OSPF configuration for EX4200 Cores and bonded twinax for EX4550's for their storage environment. Configured Multihoming BGP routing on customer's Juniper SRX firewall infrastructure.
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall.
• Configured and provided management support for Palo Alto and Checkpoint Firewall (R75, R76, R77).
• Configured, Troubleshooting, and Marinating Palo Alto Firewalls (36+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Successfully configured and maintained site to site IPSEC and SSL VPN’s on Palo Alto firewalls.
• Palo Alto designed and installed (Application and URL filtering, Threat Prevention, Data Filtering).
• Successfully installed Palo Alto PA-3060 firewall then configured and troubleshoot using CLI an worked with Panorama management tool to manage all Palo Alto firewall and network from central location.
• Managed the Cisco Identity Services Engine (ISE) 2.2 in the distributed deployment to provide the authentication to the endpoint devices also monitor the networking devices in the network.
• Worked on the Cisco ISE 2.2 in enterprise network security infrastructure including profiling utilization, MAB, 802.1x for Wired/LAN connection etc.
• Assisted in MS Switch Setup, Enable & Configure Routing on the Switch
• Established AWS, Azure technical credibility with customers and external parties
• MR Wireless Setup, Wireless Reconfiguration for Optimizing Deployment
• Worked on the Migration project for security levels with AAA, TACACS+
• Experienced provisioning SD-WAN service as automated failover solution for MPLS VPN by Cisco Meraki MX 80 Firewall

Environment:AWS, Azure, Aruba, Cisco UCS, SD-WAN, Cisco SD, VPN’s, F5, NATing, Check point, Cisco ASA Firewalls, Trunks, OSPF, CoS, QoS, VPLS, EVPL, RSVP. Cisco Identity Services Engine (ISE), Palo Alto firewall, Juniper EX4200 & EX4550, Checkpoint Firewall (R75, R76, R77, Nexus 9k, 7K, 5K, Leaf architecture, Cisco UCS, SD-WAN, Cisco SD

Confidential, Chicago, IL

Sr. Network Engineer III

Responsibilities:

• Supported operational business systems by providing 1st and 2nd line IT support, utilizing a high standard of technical and customer service skills, knowledge and ability
• Installed, configured, tested, maintained and troubleshooting of a wide range of Cisco products; Firewall, various switch and router product lines
• Installed, configured and troubleshooting of Cisco Routers (3945, 3800, 2800, and 3600) and Switches (6509E, 4507, 4500-X, 4900M, 3850, 3650, 2960) to perform functions at the Access, Distribution, and Core layer.
• Worked on routing protocols like EIGRP, OSPF, RIP, BGP also static route, MPLS, VPN, IPSEC
• Complex routing, multicast routing, QoS, Internet breakout at the hub and spoke sites, and interoperability betweenIWANsites and legacy non-IWANsites during migration toIWAN.
• Maintained DNS, BGP, OSPF, LACP, 802.1q, 802.1x, MPLS, TCP/IP, IPv4, IPv6, Ethernet, WAN Technologies, VPN tunneling
• Implemented CiscoiWANacross all sites providing WAN optimization, redundancy and load-balancing. The overall branch uptime was drastically increased allowing an SLA commitment with executive management of over 99%, and lowering the cost per branch for ISPs.
• Deployed and managed of the following firewalls: Fortinet 100D, Fortinet 60C, Fortinet 60E, Fortinet60D, Fortinet 200E (HA), this includes the whole UTM (app control, Web Filter, IPS, DoS, DDoS, etc.
• Configured & implemented VLAN,VTP,LAN switching, STP and 802.x authentication in access layer switches.
• Experience with WAN connectivity, MPLS circuits, leased Lines, Metro Ethernet, Site to Site IPSec tunnels, ISP circuits, Customer Edge configurations. Experience with SD-WAN solutions that include Viptella and Versa.
• OSPF configures at firewall level Policy's, static routing, IPSEC, SSL, Proxy and SSO Configures and edit ACL's in routers and Zone Base firewalls.
• Experience with Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater visibility and scalability in a data center environment.
• Worked with Cisco Channel partners to build practices around Cisco ACI, worked on configuring tenant policies, VXLAN, VTEPS, VNI, Bridge Doamins.
• Worked in FortinetFirewall(model 100 D and 60 C) IOS Upgrade (version 4.0 and 5.0).Fortinet firewall
• Fortinet firewall IPSEC and SSL VPN Configuration.
• Scripted in multiple languages on UNIX, LINUX and Windows - Batch, Shell, Perl script etc and developed applications in python for multiple platforms
• Worked on Solarwind to log and even the suspicious activity and security threats, conducting an investigation and respond to mitigate issues in real-time, which include blocking IP addresses, disable accounts, changing privileges and permissions and killing applications.
• Network Consultant for Nexus Next-Generation project. Builtout several MPLS/BGP VRFfor multiple clients. Included implementation of 9K, 7K, 5K, 3Kand 2K configuration for integration witch UCS and legacy systems. Developed process for Network Engineering Peer review for all network related systems.
• Configuring high availability protocols like HSRP, VRRP, GLBP
• Worked in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM and Frame Relay
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, systemsecurity,firewall infrastructure, network architecture andCisconetworkrouting/switching(Layer 2 and 3) experience, including LAN and WAN, design and implementation which include Layer 1 to Layer 7 experience.
• Routed, multicast routing, QoS, Internet breakout at the hub and spoke sites, and interoperability betweenIWANsites and legacy non-IWANsites during migration toIWAN.
• Maintained DNS, BGP, OSPF, LACP, TCP/IP, IPv4, IPv6, Ethernet, WAN Technologies, VPN tunneling
• Implemented and managed traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Experience in cloud networking (Azure Express Route and AWS connections)
• Worked in Check Point and Cisco ASA firewall administration across global networks.
• Experience in managing Active Directory Domain Controllers, DNS and DHCP Servers
• Migrated Users, Groups, Workstations and Application windows servers from source domain to Target domain using QMM and AD Domain
• Created AD Group policies to Enforce Domain and OU Level Security of Users and Computer objects
• Expertise in Migrating Group and Exception Policies from one domain to another domain in AD forest
• Experience in installing, maintaining and managing various rack mounted and Blade servers from CISCO UCS, Dell, HP, and IBM
• Established development lab for testing of network equipment. Models included EX4200, EX3200, J2350, J6350, Cisco 6500, and Cisco 3560.
• Planned & performed quarterly microcode, firmware and driver updates on all SAN switches, arrays & hosts
• Implemented security Solutions using PaloAlto (PA-5020/PA-3020), Cisco 5580/5540.

Environment: Cisco Routers (3945, 3800, 2800, and 3600) and Switches (6509E, 4507, 4500-X, 4900M, 3850, 3650, 2960) Cisco ASA Firewalls,Check point, AWS, Azure,Catalyst, Trunks, OSPF, VPLS, EVPL, RSVP. UNIX, LINUX Cisco Identity Services Engine (ISE), Palo Alto firewall, Juniper EX4200 & EX4550, Checkpoint Firewall (R75, R76, R77, Nexus 9k, 7K, 5K

Confidential, SFO, CA

Network Consultant

Responsibilities:

• Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 9k/7k/5k/2k.
• Migrated old Nokia firewalls to standard HP hardware’s.
• Deployed a BIG-IP VE virtual machine using vSphere Client using OVA template
• Designed and configured OSPF, BGP on Juniper Routers and SRX Firewalls.
• Reviewed Security policy and configured in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
• Configured & managed around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Regular upgraded and maintained of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Configured various BGP attributes such as Local P, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Designed, implanted and installation on AWS cloud engineering for AWS internal business units.
• Architecture of Dev, QC, and Prod internal Corp and customer facing Ecommerce VPCs for AWS cloud environment
• Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATTing with the firewalls as per the design.
• Converted CatOS to Cisco IOS Configured Conversion on distribution layer switches
• Converted Branch WAN links from TDM circuits to MPLS & convert encryption from IPSec/GRE to Get VPN.
• Converted to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Planned, Designed and assisted in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Maintained multi-vendor devices (Cisco, Juniper, Checkpoint, Arista etc) of the AWS
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Worked in UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Worked on IP/MPLS/Optical Transmission network for access transport & back haul network to facilitate 2/3/4G Network.
• Worked in mobile backhaul network on IP, Ethernet, ATM, PW& TDM.
• Completed two Business integrations with a very strict timeline and gained some very good knowledge in understanding the roadblocks in Network integration and feasible methods to fix it.
• Maintained Riverbed for the North American offices.
• Maintained a data collection environment build of ISG1000 Clustered environment at the central site and SSG5/SSG20 at the remote site. This is an IPSEC tunnel environment of 600 sites and my primary responsibility is to maintain, install and troubleshoot. I configure and ship out Juniper SSG5/SSG20 for remote sites.
• Worked in SPOC for the Data center across Canada and Mexico. This environment has a primary Frame-relay link backed up by the IPSEC tunnel built over 5510 and 5505 for remote sites. I configure and ship out devices for any new installation, moves and troubleshoot any day to day issues. I also maintain a F5, Link proof and Checkpoint firewall in addition to 3500 switches and core 6513 switch for the switching environment.
• Worked with F5 products & technology including GTM, LTM and SSL offloading.
• Worked on Local Traffic Manager (LTM) configuration and design, utilizing features of LTM including protocol profiles, persistence profiles and health monitors.
• Worked in SSL offload, pass-through and re-encryption scenarios, SSL configuration management via client and server-side SSL profiles.
• Assisted in designing Global Traffic Manager (GTM) providing multi-side load balancing and global availability of generic hosts and/or LTM virtual servers, iQuery-based monitoring of LTM virtual servers.
• Worked in tmsh scripting-load balancer work orders are created, tested, peer reviewed and implemented in tmsh script format.
• Configured different load balancing options & features OneConnect, persistence, SSL offload functions, HTTP profiles etc.
• Worked on Network troubleshooting methods including tcpdump, curl.
• Managed ongoing F5 configuration, troubleshooting, deployed additional virtual servers for newly implemented applications and services, leveraging SSL offload/termination when possible, writing customize rules and health monitor scripts.
• Used to create s on Venifi tool on F5.

Environment: Cisco Routers, Cisco Switches,AWS, Cisco Nexus 7k/5k/2k, IPSEC, MPLS, VLANS VTP, RSTP, ACL, NAT, IDS/IPS, firewalls, Arista, Catalyst, Nexus Switches, Palo Alto, AWS, F5 BigIP Load balancers, Virtual servers, Pool, SSL Profiles, iRules, Persistence, HTTP profiles, Venifi tool, Curl, Cisco ACE load balancers, Blue Coat Proxies, Riverbed WAN Optimizers, Data center, Spanning Tree, Checkpoint Juniper Routers, Juniper SRX, Network2/3/4G.

Confidential, Mountain View, CA

Network Engineer

Responsibilities:

• Maintained and configured AT&T Accelerated 6200 -FX Wireless device for Back-up Circuits.
• Provided access control Processed visitors; escorted emergency personnel
• Support operational business systems by providing 1st and 2nd line IT support, utilizing a high standard of technical and customer service skills, knowledge and ability
• Installed, configured, tested, maintained and troubleshooted for a wide range of Cisco products; Firewall, WSA, various switch and router product lines
• Installed, configured and troubleshooting of Cisco Routers (3945, 3800, 2800, and 3600) and Switches (6509E, 4507, 4500-X, 4900M, 3850, 3650, 2960) to perform functions at the Access, Distribution, and Core layer.
• Created multiple ISE authorization rules for 7 sites.
• Configured and implemented VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches
• Configured various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital s, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Envision and drove Cisco's SD-WAN (IWAN) and VPN for Enterprise and MSP networks
• Deployed Cisco ISE on mid to enterprise project.
• Configured high availability protocols like HSRP, VRRP, GLBP
• Strong Knowledge in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM and Frame
• Worked on Service Provider migration project (Verizon to AT&T) for the backup circuits of 1300 Ferguson Branches.
• Worked with multi-vendor devices (Cisco, Juniper, Checkpoint, Arista etc) of the AWS
• Responsible for maintaining and configuring various Cisco Devices.
• Designed and configured OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls (SRX240)
• Configuring and deployment of Juniper ERX310 router.
• Worked on juniper switches like EX2200, EX2500, and QFX switch with Spanning tree.
• Performed IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN, WAN development.
• Worked with High performance data center switch like nexus 7K series.
• Worked with Nexus 7010, 7018, 5020, 2148, 2248 devices.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 with ACL, NAT, Object Groups, Failover, Multi-Contexts.
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA Firewalls.
• Maintained thenetworkfor169locationsforwhichclientalreadyhadWalMartrunningasprimary. (Other IP links are being used as backup).
• Implemented EIGRP, BGP & OSPF and mutual redistribution on Core Routers & Core Switches for proper routing and fail over for customer.
• Troubleshooting various issues during the running network and at the time of implementation.
• ImplementingandtroubleshootingexperienceonCiscoandJuniperSRXdevices.
• MPLS Link management with ISP includes link commissioning, closing, up gradation &billing.
• ImplementedPBRfor somelocationstoprefercertainpathwhileusingsomespecificapplications.
• Working in a team of 6 associates working 24x7 and assisting them if any issue is unsolved.
• Prepared SOP for L1 team for assuring proper escalations are followed and Incident tickets are resolved within agreed SLA.
• Provided service improvement plan (SIP) viz. hardening of devices,IOS up gradation, sharing End of Life &support of devices.

Environment: Cisco Routers, F5, Cisco Switches, Cisco Nexus 5k/2k,NAT, IDS/IPS, firewalls,, AES/AES-256 with ASA Firewalls, Arista, Nexus Switches, Palo Alto, AWS, F5 BigIP Load balancers, Virtual servers, Pool, SSL Profiles,HTTP profiles,Curl, Cisco ACE load balancers, Blue Coat Proxies, Data center, Spanning Tree, Checkpoint Juniper Routers, Juniper SRX, Network2/3/4G.