SUMMARY:

• 8 years of experience in routing, switching, firewall technologies, systems design, and administration and troubleshooting
• Experience in designing, architecting, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
• Experience in handling tickets opened for network related issues and resolving as per SLA.
• Experience in installing, configuring, and troubleshooting of Cisco Nexus 7k, 5k, 2k, Cisco 7600, 7200, 3800, 3900, 2800, 2900 series Routers, Cisco Catalyst 6500, 4500, 2960 and 3750 Stack Switches.
• Expertise in configuring, troubleshooting network topologies which includes OSPF, BGP, HSRP, VRRP & STP
• Expertise in L3 Protocols: BGP, OSPF, EIGRP, IGRP, RIP, CEF, MPLS, MPLS Layer 3 VPN's, VRF - Lite, PFR
• Configuring and troubleshooting IPv6 protocols: OSPFv3, EIGRPv3, Tunneling techniques (GRE, v4tov6 and v6tov4)
• Multicast: PIM, MSDP, Auto-RP, BSR, IGMP, IGMP-Snooping
• Network Services: NTP, GLBP, WCCP, NAT, DNS, DHCP, DHP snooping and subnetting.
• Redundancy Technologies: Virtual Scale (CISCO VSS), VCP, Virtual Link Trunking (VLT), VRRP, HSRP
• Extensively worked on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Aggregating switch links using LACP and PAGP protocols.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
• Background in network design, including Wide Area Networking (WAN), Local Area Networking (LAN), Multiple Protocol Labeling Switching (MPLS), DS3 with Physical Labeling and IP Addressing.
• Proficiently implemented traffic filters using Standard and Extended access-lists, Distribute- Lists, Route Maps and route manipulation using Offset-list.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Experience with F5 load balancers andCiscoload balancers (CSM, ACE and GSS).
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers.
• Experience on load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL s.
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers
• Experience with Blue Coat URL filtering with white listing and blacklisting URL, creating rules for content filtering.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Implementation of Juniper Firewall, SSG Series, NetScreen Series ISG 1000, SRX Series.
• Worked on Juniper NetScreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG 200.
• Hands on experiences on McAfee EPO with deploying and removing agent on client’s machine, removing virus and manually updating DAT files.
• In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to Point, MPLS and Frame Relay
• Experience securing and managing remote access using various VPN technologies like IPSec, SSL, and GRE.
• Experience in configuring and supporting VPN on Cisco VPN concentrators and 2811 routers
• Reviewing all changes to network configuration for technical accuracy and provide solutions to Multi-Protocol Network problems.
• Strong problem-analysis talent, driven by a global view/attention-to-detail approach. “Hands on” technical knowledge Experience with different Network Management Tools and Cisco works support 24 x 7 Network Operations Center

TECHNICAL SKILLS:

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500,4900, 3750, 3500, 4500, 2900 series)

Networking Concepts: Access-lists, Routing, Switching, Sub netting, Designing, CSU/DSU, IPSec, VLAN, VPN, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: Check Point Firewall ( r77)

Network Tools: Solar Winds, SNMP, Cisco Works, Wireshark, Blue Coat proxy

Load Balancers: F5 Networks (Big-IP)

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1,DS3,OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPSEC, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

Operating System: Windows 7/10, MAC OS X, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE:

Confidential, Foster City, CA

Network Security Engineer

Responsibilities:

• Responsible forfittingthe infrastructuresurroundingswith majority of Cisco &Palo Altoappliances.
• EfficientlyexploitationService Now tool for generation of tickets,distributionseverity to incidents, following up with incidentstandingand troubleshooting incidents.
• Excellently used Splunkto researchand monitor incident management and incident resolutionissues.
• Researched, designed, and replaced agingstopfirewalldesignwith new next generationPalo Altoappliances serving as firewalls andURLand applicationreview.
• Upgraded and updated Cisco IOS fromtwelve.3T to 12.4.accustomedDHCP tomechanicallyassign reusable information scienceaddresses to DHCPshoppers.
• Configuring and troubleshooting perimeter security deviceslikestopNGX R77Gaea, Provider-1/MDM, Secure Platform,Palo Altoand ASA Firewalls.
• Palo Altostyleand installation (Application andURLfiltering, Threatbar,informationFiltering)
• Configuring rules and MaintainingPalo AltoFirewalls & Analysis of firewall logsexploitationvariedtools.
• Successfullyput inPalo AltoPA 3060 firewalls to protectsinformationCenter and provided L3 support for routers/switches/firewalls
• Implemented Zoneprimarily basedFirewalling and Security Rules on thePalo AltoFirewall

  Exposure to wildhearthfeature ofPalo Alto.

• Maintained and managed networks running EIGRP and BGP routing protocols.

  Regularly performed firewall audits aroundstopFirewall-1 solutionsfor purchasers.

• Provided tierthreesupport forstopFirewall-1software systemto support customers.

  Work onstopPlatformtogether withsuppliersensibleDomain Manager. Worked on configuring, managing and supportingstopGateways.

• Configuration of routing protocols EIGRP and BGPfor littleto medium sized branchessupportedcompany branch standards,together withdistributionand route maps.
• Accesspurposerefresh and implementation atvariedsized branches and locations.
• Used networkobservationtoolslikeSpectrumto confirmnetworkpropertyand protocol analysis tools to assess and pinpoint networkingproblemsinflictingservice disruption.
• Worked with management andvarieddepartments to develop procedures and troubleshootissuesas they arose.
• Build IT security infrastructuretogether withstop, Juniper andPalo Altofirewalls
• Configuring Juniper Netscreen Firewall Policies between secure zonesexploitationNSM (Network Security Manager)
• Backup and restore ofstopand Cisco ASA Firewall policies
• Handling Break/Fixthings, monitor, configure, policy creation on Checkpoint'ssensibleCenter Server running on Secure Platform
• Monitoring Traffic and Connections instopand ASA Firewall

  • Manage project task to migrate from Cisco ASA firewallsto examinepurposefirewalls

• Worked extensively in Configuring,observationand Troubleshooting Cisco's ASA 5500/PIX security appliance, Failoverdemilitarized zonesectionalisation& configuring VLANs/routing/NAT with the firewalls as perthe planning

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASAfive hundred, F5 BIGIPremembering, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Troubleshootingproblemsassociated withLayer 1/2/3 skills likeshift/ routing, WAN Hardwareand important network links bycoordinativewiththe ISP.
• Troubleshooting the Juniper SRX100 anda hundred and tenseries, Juniper NetScreen routers with Site-Site VPN, and firewalls for Supervalu Retail sites.
• Installing and configuring new Ciscoinstrumentationas well asCisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as perthe needofthe corporate.
• 24x7 on-callstep-upsupport asa part ofthe safetyoperations team.
• Working closely withknowledgecenter managementto investigatethe informationcenter sites for cabling necessitiesofassortednetworkinstrumentation.
• Provided application level redundancy andaccessibilityby deploying F5 load balancerslong-term memory.
• HavingknowledgeCenterstyleexpertise,putting inand Configuring Network Devicesin a veryknowledge Centeras well asmendthe cableswithin thePatch Panel.styleandenforcednetwork
• Hands-onexpertisewithin thenetwork management of circuitsmistreatmentTDM and Frame Relay Managing and providing supportto numerousprojectgroupswith regards to the additionof recentinstrumentationlike routers,switches and firewalls to the DMZs.
• Implementing traffic engineering onhighofAssociate in Nursingexisting Multiprotocol Labelshift(MPLS) network mistreatmentFrame Relay and Open Shortest Pathinitial(OSPF).
• Provided redundancyin a verymulti homed BorderentreeProtocol (BGP) network by tunings AS-path
• Handling enterprise outages effectively and driving towards the resolution. Coordination of fault escalations in conjunction withthe firsthigh-level technical management of high priority or technicallycomplicatedcalls.
• Knowledgeand skillof 802.11 a/b/g/nLANnormalfor wireless Technology.
• Working withcapabilitymanagement on networkinformation measureutilizationcoverageof thewebsites WAN link andmerchantco-ordinationfor brand spanking newsite turnovers / WAN links.
• Preparing Metrics reportdescriptionon SLA performance of tickets andmethodqualityreport back toanalyze team performance & discussion onthe advanceareas (By monthly).
• Providingcoachingto new comers and effectivelyoperatingtowards amethodquality improvementwithin the Team.
• Configurebequestroute map configurationsmistreatmentthe new Cisco IOS XR Routing Protocol Language (RPL).
• Supporting EIGRP and BGPsupportedthe network bypartitioningleveltwo&threeissuesof internalgroups& external customers of all locations
• Performing troubleshooting on slow networkpropertyproblems, routingproblemsthat involves OSPF, BGP and distinctivethe foundationreason forthe problems.
• Extensiveactiveexpertisewithcomplicatedroutedlocal area networkand WAN networks, routers and switches.
• Hands-onexpertisewith Ether Channel, Spanning Tree, Trunking, ACLs, Syslog.Expertisewithin thesetup of HSRP, Access-Lists, and RIP, EIGRP, and tunnel installations.
• Proficiency in configuration of VLAN setup onvariedCisco Routers and Switches.
• Workallottedticketsto seethe purposeof failure and resolveissuesremotely utilizingobtainabletools and differentOperation Center resources.
• Analyzed and tested network protocols (Ethernet, TCP/IP)mistreatmentWire shark tool.
• Providestep-upsupport to L1 members of network team.
• Worked withcompletely differentISP globally for any WAN circuit and BGP routingproblems.gapup cases for ceriumrouters,river bottomoptimizerproblems.
• Work &intensifyissueseffectivelyso asto satisfyclientSLA's (service level agreements).
• Performdownsidemanagement and root cause analysisfor purchaserspro re nata.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools..

Environment: Nexus 2k/5k/7k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, Juniper SRX100, LAN, WAN, OSPF, RIP, BGP, EIGRP, HSRP, PPP, VPN, Checkpoint, Cisco ASA.

Confidential, Chicago, IL

Sr. Network Engineer

Responsibilities:

• Implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Configured and troubleshoot OSPF and EIGRP.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Tested authentication in OSPF and BGP.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Generated RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Worked with Juniper Firewalls.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO.
• Estimated Project costs and created documentation for project funding approvals.
• Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall.
• Used IPSec VPN tunneling to provide access to user machines and partners in other network. Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience.

Confidential

Sr. Network Engineer

Responsibilities:

• Configured RIP, PPP, BGP and OSPF routing, and involving in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filters policies.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Documented new VPN enrolments in a database and create standard procedures for further improvement.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Racking, Stacking, configuring, Nexus 5K and 2K and 7K.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center
• Troubleshooting and verification of Fabric Path
• Deployment and support of Nexus Switches, UCS, Fabric Path (Trill) to forward Layer 2 and Layer 3 Packet from Classical Ethernet to Fabric Path mode
• Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Provide Tier 3 technical support for Riverbed Pilot, Shark, Profiler and ARX.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Co-ordinated with the Data Network and Security team and came up with possible solutions.
• Work on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience working with Cisco IOS-XR on the on the ASR9000 devices for MPLS deployments
• Created Monitoring requirements around security (SNMP, syslog) for ASR1k, WLC, AP and NCS Etc.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Installed and Trouble shoot Cisco call Manager 7.0 and 8.2.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network

Confidential

Network Engineer

Responsibilities:

• Configured and deploying Cisco catalyst 6506, 4948E, 4510 switches and Cisco 3660, 3845, and
• 7609 series Routers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Experience in migration of VLANS.
• Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like EIGRP, OSPF & BGP.
• Implementation of Access Lists for allowing/blocking desired traffic.
• Configuring VLANs/routing/NATing with the firewalls as per the network design.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Configuration and maintenance of PIX and ASA firewall systems.
• Good knowledge in systems integration, software hardware emulation experience.
• Worked on change management documentation of Network infrastructure design using Microsoft Visio.
• Perform setup of test scenarios, both hardware and software components, and perform troubleshooting.
• Experience working in Datacenter environment, configuration changes as per the needs of company.
• Manage project task to migrate from Cisco ASA firewalls to Check Point firewalls
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas.
• Configure and support Private BGP Peering with transit providers.
• Configure iBGP and eBGP peering between L3 routers and core routers
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Installing, configuring Cisco Catalyst switches 6500, 4948, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Experience in configuring, upgrading and verifying the NX-OS operation system.
• Troubleshoot issues with network connectivity and issues related to neighbor relationship and peers
• Experience working with Nexus 7010, 5020, 2148, 2248 switches.
• Experience configuring Virtual Device Context in Nexus 7k series switch.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
• Designed, configured, implemented site-site VPN on cisco ASA 5500 firewall.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Worked in projects converting P2P circuits into MPLS circuits, commissioning and decommissioning of the MPLS circuits for branch offices.
• Configuring and resolving various OSPF issues in an OSPF multi area environment,
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP.
• Performing network monitoring, providing analysis using various tools like Wire Shark, Solar winds etc.