SUMMARY

• Cisco Certified Network Engineer with 8 years of experience in the industry, which includes expertise in the areas of Routing, Switching and Firewall
• Expertise in Designing, Implementation, Administration, Operations and Troubleshooting of enterprise data networks as a Network Engineer
• Experience in handling tickets opened for network related issues and resolving as per SLA.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Expertise knowledge and experience in networking devices like Cisco Routers, Cisco Switches, F5 Load Balancers and Firewalls.
• Experience in installation, configuration, design and ongoing maintenance of Cisco router and switches.
• Worked on Cisco Catalyst Switches series, Responsible for Checkpoint and Cisco firewall administration across global networks.
• Experience with F5 load balancers andCiscoload balancers (CSM, ACE and GSS).
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Implementing security Solutions using Palo Alto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers.
• Strong hands on experience on Cisco Catalyst (1900, 2900, 3550, 3750, 6500) series switches, VSS technology, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, PIX Firewall (506, 515, 525, 535)/ ASA (5505/5510), Palo Alto Firewalls, Cisco ISE (Identity Service Engine), Load Balancers using Cisco ACE, F5, Security Device Manager (SDM), Cisco Works, HP Open View, Solar Winds, Sniffer.
• Experience with implementation of DNS and DHCP protocols.
• Knowledge and experience with F5 ADC, Palo Alto, Dell Force10, Brocade, Meru/Aruba WLAN, Splunk, TACACS.
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Good Understanding of Pythonscripts for system automation, monitoring and security reporting. Maintain existing Perl scripts and migration existing Perl scripts to Python.
• Expertise in installing, configuring and troubleshooting Juniper Routers (J, M and MX-series)
• Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR 1K, 7200vxr, 3900, 3800, 2900, 2800 series routers and Cisco Catalyst 6500, 4500, 3850T, 3750, 2950 and 3500XL series switches.
• Experience in SAN, VAN in data center and VIRTUALIZATION of servers.
• Experience with Blue Coat URL filtering with white listing and black listing URL, creating rules for content filtering.
• Implemented positive enforcement model with the help of Palo AltoNetworks.
• Knowledge on Cisco IOS, Junos & basic Nexus (7K, 5K&2K).
• Configuration, support and administration of Palo Altoand checkpoint and to migrate all gateways and management servers to new hardware and software.
• Designed and replaced aging checkpoint Firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.

TECHNICAL SKILLS

Cisco router platforms: 2600, 2811, 3640, 3700, 3825, 7200, 7204, 7206, ASR1002X, ASR9K.

Cisco Switch platforms: 2900XL, 2950, 2960, 3560, 3750X, 4500X, 4510, 6509E, Cisco PIX 500 series, Nexus (2k,5k, 7k), CSU's/DSU's, Catalyst 6500, 7600, 4500

Aruba platforms: S2500 switches, 7200, 3600 series wireless controllers, Aruba IAP 105

Juniper platforms: MX80, MX240, MX 480, MX960, M320 and T640 routers, EX 2200, EX 4200, EX 4500, MX-480, M Series, SRX210, QFX, Q-FABRIC, PTXseries.

Redundancy Protocols: HSRP, GLBP, VRRP.

VPN Technologies: GRE Tunnelling, Remote Access VPN, Site-to- Site VPN.

Firewalls: Cisco PIX 501, 510, 515E, Cisco ASA 5520, 5540, ISE appliance, JuniperSRX 240, FortinetFortigate 7000, 5000, 3000, 900, PaloAltofirewalls PA 3020, PA 5050, Checkpoint, checkpoint r60, checkpoint r65, Sourcefire IPS/IDS, SDM.

LAN Technologies: VTP, Inter-Vlan routing, STP, RSTP, PVST, 802.1x, TCP/IP, Trunks, Ethernet channel.

Routing Protocols: RIP, RIP 2, IGRP, EIGRP, OSPF, BGP, HSRP

Switching Protocols: VTP, STP, RSTP, MSTP, VLANs, PAGP, and LACP.

Network Management: Opnet, Cisco works, HP Openview, Riverbed Cascade, Alarm point, Netcool, Infinistream, NetQos, Ethereal, Solarwind IPMonitor, Infinisteam, Sniffer, Solarwinds, Wire Shark, ForeScoutCounterAct NAC, SNMP, Bluecoat, FortiManager, Citrix Netscaler.SDN,InfobloxDDI/NetMRI.

Operating Systems: Linux, Windows, Mac OS, Cisco IOS, ONOS.

Load balancers: F5 LTM and GTM, A10Load balancers, NetscalersSDX,Kemp,Cisco ASA, Cisco PIX.

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.

Language skills: C, C++, Python, Bash, SQL, oops, Linux OS, JavaScript.

Antivirus: Kaspersky Server/Client stations, AVG, Norton 360,McAfeeAV.

PROFESSIONAL EXPERIENCE

Confidential - Chicago, IL

Network Engineer

Responsibilities:

• Responsible for testing and documenting hosted VoIP/PBX. Programming of VoIP/SIP endpoints, Routers, switches, cabling, DHCP/ FTP/ TFTP servers and firewalls.
• Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port-based authentication.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Configuration of OSPFv3, BGPv6 on Juniper M and J Series Routers.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked on documentation to create Visio diagrams using MS Visio.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Worked on NetScaler F5 BIG-IP and A10, configured profiles, provided
• Worked on team that designed and implemented F5 Big IP Load Balancers for use with in-house web and database applications.
• Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor.
• Troubleshooting Firewall Connectivity related issues using Smart view tracker on Checkpoint, NSM Log viewer for Juniper Firewalls.
• Juniper Firewall Policy management using NSM and Screen OS CLI.
• Day-to-day work involves scheduling firewall policy provisioning and working with users to identify connectivity related issues and troubleshoot using both Smart Utilities and CLI.
• Managing and administering Juniper SRX and Checkpoint Firewalls at various zones including DMZ, Extranet (Various Business Partners) and ASZ and internal.
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Net-screen routers with Site-Site VPN, and firewalls for Supervalu Retail sites.
• Train the Customer’s design, implementation and support personnel to configure and operate the Juniper Networks products.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.
• Troubleshooting various network security related issues using Cisco SDM.
• Monitoring links using Solar Winds.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, port aggregation
• Hands on experienced in Telecom/ Datacom testing tools like Spirent
• Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers.
• Configured VPC, FEX and VDC’s on Nexus 5K, 7K.
• Coordinate with Server, Security, Application teams along with 3rd party vendors to provision and setup third party servers, network devices in Data Center environment.
• Worked on ASA 5510/5520 firewalls configuration and Implementation for the network.
• DNS Updates/Removals/New Adds via InfoBlox DNS Appliance.
• Used Infoblox for documentation and tools updates
• Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.
• Advanced knowledge, design, installation, configuration, maintenance, migration and administration of Checkpoint R55 up to R77.
• Good knowledge on Riverbed Administration, Login to Riverbed Central Management CMC 8150, View/Manage Steelheads, Upgrade software, Push the Policy, and Add SSL license, and other Riverbed Administrative processes.
• Good understanding on how Riverbed optimizes client-server dataflow between the Client and a remote Steelhead Appliance in the dataflow path.
• Performed an analysis of source host and destination path by tracing it through the network router and switches as well as the firewalls it passes.
• Created a detailed design drawing of the sites, which are under up-gradation and getting it validated from the technical design team.

Environment: Cisco 7600/7200/3800 routers, Cisco 2950/3500/5000/6500 switches, Cisco ASA Firewall 5510/5520, Juniper SRX100, OSPF, BGP, EIGRP, RIP, VLAN, LAN, WAN, VPN, F5 BIG-IP LTM 8900, Nexus 5K/7K, VOIP, SNAT,ACL

Confidential - Maryland, MD

Network Engineer

Responsibilities:

• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Installation, Configuration and troubleshooting Cisco switches and Firewall on multi-mode context-based environments.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Involved in HSRP standby troubleshooting and load balancing protocol GLBP, Port channel management of the network.
• Configured Cisco switches for L3 and L2 VLANs with HSRP, VTP and EIGRP implementations.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Network security including Cisco IDS/IPS, AAA, IPsec/SSL VPN, NAT/PAT, ACL, ASA/PIX Firewalls, and L4-L7 protocol.
• Planned and implemented Sub netting, VLSM to conserve IP addresses.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN. Unix/Linux shell
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Installation and configuration of Cisco catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per network design document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches. AND SSH remoting and OOB Devices.
• Configured and Maintained the Local Network using 2900, 6500 series Switches and 2800 series Routers. Configured and installed the 3600 series Router.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505
• Designed and implemented VLAN using Cisco switch catalyst 1900, 2900, 5000 & 6000 series.
• Creating change tickets according to the scheduled network changes and implementing the changes.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 7200/3845/3600/2800 routers, Cisco ASA (5505, 5510), LTM, Checkpoint, F5 Load Balancer Cisco Nexus7K/5K, MPLS, Frame Relay, RIPv2, OSPF, BGP, IPSEC, VLAN, STP, VTP, HSRP.

Confidential - Denver, CO

Network Engineer

Responsibilities:

• Primary Duties include 24x7 Level II support for the Network. Providing support to offices all over the State.
• Maintained and updated the Network diagrams.
• Worked on Cisco Routers, Cisco 3750, and Cisco 2960-SF Switches
• Responsible for Capacity planning, Contingency planning & disaster recovery.
• LAN Segments monitoring/troubleshooting LAN related issues.
• Carried out periodic backup of Router/Switch configurations, configured and upgraded Cisco IOS
• Troubleshoot IOS related bugs based on past history and appropriate release notes
• Worked in VPN (IPSEC and GRE) migrations and new designs for the clients.
• Configured SSH on all network switches and routers for secure management purposes.
• Troubleshoot the Network Routing protocols (OSPF and RIP) during the migrations and new client connections.
• Planned and Implemented New Infrastructure in the Data Center.
• Used Wireshark Network Packet Analyzer to capture live packet data from network interface and troubleshoot network related problems
• Hands on experience of Cisco works and Cisco configuration professional tools used for Network discovery, topology views and VLAN management
• Configured IP, RIP & OSPF in routers.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Responsibilities also include technical documentation of all upgrades done
• Design, execution of installation and configuration of VPN, LAN/WAN as per organizational requirements.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients
• Involved in troubleshooting of DNS, DHCP, and other IP conflict problems
• Upgrades and backups of Cisco router configuration file to a TFTP server
• Cisco IOS upgrade and device password recovery
• Configured and Implemented VLANS over the core Switch, configured VTP to manage VLAN database
• Enable STP attack mitigation using BPDU guard, Root guard and BPDU filters.
• Managed IP addressing and implemented IP Access Lists
• Converted Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Respond to inbound requests via phone and via Remedy Ticketing tool for technical assistance with managed services in a timely manner (within documented SLA) to support, threat and other cases.
• Worked with Configuration Management Database (CMDB) a centralized repository that stores information about the IP address, Vlan's info of the hardware devices.
• Collaborate effectively with local team members and offshore staff to create best practice processes

Environment: Switches- 3750, 3850, 2960-SF, 4500, 4900 series, ISR Routers-2900, 3800, 3900 series, Cisco ASA and Checkpoint firewalls.

Confidential - Warsaw, IN

Network Engineer

Responsibilities:

• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF and BGP.
• Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches and routers.
• Provided IP address management applying SUBNETING and VLSM.
• Configured VLANS, implemented inter Vlan routing.
• Implemented redundancy using STP protocol in switched Network
• Assisted Network Engineer in the installation and configuration of firewalls.
• Performed on-call support for installation and troubleshooting of the configuration issues.
• Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment
• Developed network drawings and documentation utilizing Visio, Word, and Excel programs
• Maintained an overview of network addressing schemes and documentation
• Responsible for special functions as directed by management and other duties as assigned.

Environment: Cisco Routers 2900, 2600, 3600; Cisco Switches 1900, 2900, 3500, 3700 and 450 Series; LAN/WAN: Frame relay, NAT, DHCP, TCP/IP

Confidential

Network Engineer

Responsibilities:

• Giving Support for Managed enterprise network of multiple customers spread over multiple countries.
• Troubleshooting connectivity issue between PE-To- CE Devices.
• Hands on experience in Maintaining and troubleshooting of Cisco Devices (Router, Switch & ASA)
• Coordinating and Escalating of issues to Different Service Providers for the WAN outages to resolve the issue well within the SLA.
• Coordinating with Data Centre Engineers for replacement, reseating, break fix of faulty devices and changing of the cabling related issue.
• Engaging with the service provider in performing the tests on the live network to isolate the issue.
• Remote support & co-ordination with Field engineers to resolve faults.
• Technician support management and back-up, Network infrastructure wiring, workstation systems integrity and reliability
• Doing on multiple projects and provides periodic after-hour support
• Troubleshoot issues and take corrective action, including installing software, facilitating hardware repair or replacing equipment.
• Configure and implement new workstations with proper wiring and computer requirements.

Environment: BMC Remedy, Device Access Tools, Telnet Relay and Putty and Cisco ASDM, OSPF, BGP, EIGRP