SUMMARY

• 13 years Experience in managing, monitoring, troubleshooting, analysis and optimization of WAN/LAN - Cisco routers and switches.
• Planning & implementation of information security guidelines as per the security standards.
• Designing & Implementing different connectivity solutions to various Customers across the Globe.
• Responsible for designing and implementation of customers’ network infrastructure.
• Designing & Implementing VPN connectivity for new sites.
• Proposal & Deployment of security & Network connectivity details for Offshore Development Centers (ODC’s).
• Configured the entire LAN/WAN network for TCP/IP.
• Configuring Network Address Translation (NAT) according to the connectivity requirements.
• (DRP) Disaster Recovery Planning, implementing Remote Access Services (RAS). .
• Planning, designing, Installing and Configuring of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800, and 7200) using RIP, EIGRP, HSRP, BGP and OSPF in MPLS network.
• Involved in migrating ISDN lines to MPLS, determining the routers, BGP structure and autonomous systems.
• Extremely knowledgeable dealing with Software and system Configurations for Cisco wireless Network controllers and Access Points, SSID and WEP encryptions settings, TCP\IP settings.
• Creating IPSEC, GRE tunnels, Frame-relay in Cisco routers.
• Redistribution of routing protocols, Route-maps (Policy Based Routing), ACL, NAT, CAR.
• Troubleshooting of Enterprise application response problems & connectivity issues.
• Installing and configuring of Cisco L2 & L3 Switches (2900, 3560, 4500 & 6500).
• Designing of LAN Network as per Cisco 3-tier Architecture (Core, Distribution, and Access).
• Configuring STP, VLAN, VTP, SPAN port and Port binding.
• Installing & Configuring of DHCP /WINS servers.

TECHNICAL SKILLS

Cisco Products: Routers (1700, 1800, 2500, 2600, 3200, 3500, 3600, 3700, 3800, and 7200), Cisco L2 & L3 Switches (2900, 3560, 4500 & 6500), ASA, PIX

Operating Systems: Windows 2003/XP/2000/NT, Red Hat Linux

Network Management Tools: Snort (IDS), Net Scout, Net flow Analyzer, What sup Gold, Smoke ping, and NTOP

Protocols/Services: Routing Protocols (RIP, EIGRP, OSPF), QOS, TCP/IP, IPSEC, MPLS

Windows Products /Services: Microsoft Win Server 2000,2003,DNS, DHCP, WINS.ISA, IIS, Winproxy2.0

Wireless Technology: Cisco AP’s, (AP 3600, 2600, 600), wireless land controllers (Cisco 2500, 5500)

PROFESSIONAL EXPERIENCE

Confidential, Springfield VA

Network/Security Engineer

Responsibilities:

• Conduct operating system, application, and database vulnerability assessments (to include system configuration checks) on various Information Systems using Nessus scanning tools.
• Analyze vulnerability assessment results, and provide subsequent reports.
• Work alongside Information Systems Security Officers (ISSOs) and system administrators to validate and remediate identified vulnerabilities.
• Design and implement of wireless network using Cisco AP’s, (AP 3600, 2600, 600), wireless land controllers (Cisco 2500, 5500).
• Conduct vulnerability Scan using Tenable Security Center scanner - Nessuss
• Conduct regular research on current vulnerabilities and exploits using publicly available, trusted resources.
• Configuring VLAN’s, trunking and routing part for Cisco Catalyst 6500E,6506, 6509, 3750, 2980
• Configured and installed VSS CORE technology
• Worked on EIGRP routing protocol on the VSS core
• Setting up Cisco wireless router and setting up access points.
• Check the IP address, default gateway and subnet mask are all correct.
• Performed configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet documentation of all the documents necessary for the upgrade
• Placing cable and equipment’s orders.
• Communicating with the site manager in the different state brewery for upgrading the particular area.
• Author information security notifications based on vulnerabilities applicable to the environment and track compliance for notifications requiring corrective action.
• Brief management on current vulnerabilities and provide countermeasure recommendations.
• Calculate and assess risk based on threats, vulnerabilities, and mitigating factors

Confidential, Washington DC

Network/Security Engineer

Responsibilities:

• Provide risk management assessments, security practices and procedures and solutions
• Implement solutions addressing vulnerabilities and developed plan to mitigate risks associated with the systems’ vulnerabilities.
• Enforce strong security controls to safeguard the integrity and confidentiality of the organization's data
• Responsible for monitoring Cisco Wireless LAN controller
• Perform risk assessment surveys to identify security requirements
• Conduct system vulnerability scan using Retina Tools
• Conduct baseline scan using CIS-CAT Tools
• Installed Cisco Wireless NIC’s (network interface cards) for Desktop PC’s and installation of Cisco WAP (wireless access point) and Cisco Routers.
• Assess System Technical controls as defined by NIST
• Perform System Security Self Assessment, Contingency Pan, and Security Test and Evaluation
• Perform Business Impact Assessment in support of System Certification and Accreditation
• Designed, Installed and configured wireless networks
• Plan, implement and optimize network operations monitoring and management tools such as
• Layer 2 switch configurations VTP, Spanning Tree, 802.1Q trunk, VTP, UDLD, Uplink Fast, and Backbone fast, BPDU guard, etc.
• Configured Cisco routers 2600, 3600, and 7200 series, switches 3750, 4500 and 6500 series.
• Configuring work from home solutions using Cisco Easy VPN server.
• Configuring the router in accordance with the router present at the customer location such as upgrading or degrading the IOS.
• Supported various routing protocols OSPF, EIGRP and BGP.
• Building the VPN tunnel and VPN encryption.
• Adding routes whenever there is a new requirement of accessing the client servers.
• Used Remedy for creating trouble tickets.
• Configured Intrusion detection, logging and reporting of all suspicious activity.
• Documented new VPN enrollments in a database and create standard procedures for further improvement.
• Installed and Monitored Network management tools like Wire shark and Solar winds.
• Provide documentation support for developing and updating system documentation for C&A efforts.
• Document Plan of Action and Milestone (POAM)
• Monitor and test Security Controls to ensure that the security design is implemented correctly.
• Prepare weekly vulnerability report for the client
• Define system security requirements.

Confidential, Cincinnati, Ohio

Lead Information Security Analyst /Sox Compliance Advisor

Responsibilities:

• Documented procedures, best practices, and proposals .Developed and updated Process Control Manuals.
• Participated in the review of internal controls for PCI DSS
• Monitored security events in Oracle database, Teradata, LT Auditor, Books and eTrust
• Followed up on security event infractions escalations to resolution in a timely manner.
• Proactively disclose and remedy actual or potential breaches and risks to the confidentiality, integrity and availability of Corporate Data and Systems
• Monitored security events within eTrust Access Controls.
• Experience in security events Monitoring tool - Arc Sight
• Performed risk assessment surveys to identify security requirements.
• Monitored systems and conducted reviews of logs, reports, system settings and/or user permissions to ensure compliance with security policies and standards platforms.
• Configuring the router in accordance with the router present at the customer location such as upgrading or degrading the IOS.
• Supported various routing protocols OSPF, EIGRP and BGP.
• Building the VPN tunnel and VPN encryption.
• Adding routes whenever there is a new requirement of accessing the client servers.
• Used Remedy for creating trouble tickets.
• Configured Intrusion detection, logging and reporting of all suspicious activity.
• Documented new VPN enrollments in a database and create standard procedures for further improvement.
• Installed and Monitored Network management tools like Wire shark and Solar winds.

Confidential, Columbus Ohio

Security Network Engineer

Responsibilities:

• Trouble-shooting end-user reported problems, thoroughly and accurately documenting problem in trouble management tool.
• Escalating customer problems to management and support groups utilizing standard escalation model.
• Troubleshooting IOS related bugs based on past history and appropriate release notes. Planning and configuring the entire IP addressing plan for the clients' network.
• Configuring DNS /NIC card issues and wall jack issues while troubleshooting IP addressing problems.
• Responsible for creating, modifying, removing VLAN configuring as per the need.
• Configuring, maintaining and troubleshooting routing protocols such as RIP, OSPF, EIGRP and BGP.
• Management tools, SNMP, Syslog, Sniffer, and Wireshark
• Engaged in office moves, helped in identifying network requirements of new building, installed new Networking hardware, and coordinated with vendors for cabling/wiring
• Reviewed system internal controls, its documentation and operations, to ensure that appropriate level of control exists for regulatory compliance (e.g. SOX) using COBIT and COSO frameworks.
• Prepared detailed audit reports and made meaningful recommendations to all levels of management.
• Analyzed needs, submit recommendations, and implement cost-effective programs encompassing public relations, and target relationship marketing.
• Proactively identified and responded to security events in accordance with set policies and practices
• Prepared written audit reports and presented them to management
• Conducted vulnerability assessment and intrusion detection, and supported security policy development
• Drafted clear and concise audit report.
• Analyzed security controls for Windows Systems to ensure that they meet set standards
• Participated in closing conferences, effectively communicated with internal clients, audit teams and external auditors.
• Collaborated with external audit firms in monitoring and conducting audits.
• Performed follow-up on reported findings and documented results.
• Demonstrated thoroughness, and ability to work independently.
• Performed post-audit reviews to determine compliance with audit recommendation.
• Performed work in accordance with IIA Professional Standards and Audit Department guidelines
• Identified user access levels to ensure need-to-know and segregation of duties are met.

Confidential, Columbus, OH

Helpdesk Coordinator/Technology Analyst/ Network Systems Support Analyst

Responsibilities:

• Responsible for troubleshooting and fault finding computers and network connectivity problems and providing resolutions
• Conducted Network vulnerability scan using Nessus and Nmap tools.
• Ran in-house connectivity for LAN/WAN Provision T1 end-to-end dedicated lines to clients.
• Configure WAN connections. Design and implementation of ATM, QOS, Frame Relay, ISDN, CSU/DSU configuration T1, T3, OC3.
• Install and manage Cisco VPN Concentrator- Experience with VPN technology, including remote user access, branch office connectivity, monitoring, and fault isolation.
• Monitored communication lines, Network devices and servers using HP Openview, and Net view.
• Created and maintained user connectivity and created users account based on Active Directory.
• Participated in Disaster Recovery tests and operations
• Provided direction and participated in identification, diagnosis, documentation, communication, and resolution of problems with computer equipment, software, and peripherals.
• Coordinated network problem resolution activities in a multi-platform environment.
• Administered and managed network server hardware and software.
• Controlled all hardware/software functions in a multi-system batch and online environment, ensuring that all devices, components, and subsystems are functioning normally
• Troubleshot and debugged connections to peers, customers, vendors, and internal network connections.
• Administered Windows NT/2000 and Citrix servers
• Monitored and analyzed computer performance by means of the systems console and software performance tools.
• Communicated outage notification for major system outages to customers and management
• Controlled daily batch jobs consisting of multiple interfacing applications in a batch/online environment to successfully meet pre-defined Service Level Agreement (SLA) for data center user.
• Maintained constant review of critical scheduling requirements to avoid or minimize lost time and dollars.
• Responded to the technical needs and questions of customers concerning their applications, equipment and access.
• Administered Windows security with logon rights and NTFS access control list, and managed domains, add user/group accounts for sharing of resources in Active Directory.
• Configuring, Installing and Monitoring Cisco IDS, and IPS
• Setup, configured, and gave support on the use of local area networks.
• Provided in-depth front line technical support to diagnose, analyze, research and resolve computer problems for internal and external Enterprise customers,
• Provided responsive on-site computing support, including desktop, server, network and telecommunications to diagnose, analyze, research and resolve problems for Internal Enterprise customers
• Created targeted orders as necessary to deliver a complete product.
• Followed -up on targeted orders. Contact suppliers directly to identify targeted orders, assess status, and resolve issues.
• Scheduled midday communications and recommended appropriate solutions to any systems that failed midday communications.
• Troubleshooting agents’ servers and workstations. and provided solutions for Wintel server environments including DNS, DHCP, and Active Directory .
• Installed, and loaded software over the network to the agents’ systems
• Responsible for providing support to users on network.
• Performed necessary tests and diagnostics to isolate and correct network and members problems.
• Escalated network problems to appropriate personnel in accordance to departmental and corporate procedure.
• Monitored systems infrastructure through available network monitoring tools and monitored incoming issues through trouble tickets to assist in the identification, escalation, and resolution of problems.

Confidential, Oakton VA

Security Supervisor

Responsibilities:

• Investigated complaints concerning safety and security.
• Maintained a daily activity log, and wrote incident report.
• Responsible for detecting emergencies and dispatching security resources to investigate and report.
• Supervised and trained security officers in control room operation and site procedures.
• Implemented job performance improvement programs.
• Operated personal computer to access programs developed for security.
• Work on all Teleport Data Center Infrastructures.
• Define project requirements and develop detailed timelines to evaluate project deliverables.
• Interface directly with the client in business units to determine project objective, cost estimates and insure customer satisfaction and timely delivery of services ordered.
• Coordinating the implementation of switched networking infrastructure for server and client building blocks.
• Provide LAN connectivity for all floors of Financial Center, the Primary Data Center and Campus locations.
• Management of cell site and enterprise with change management and infrastructure.
• Direct interaction between network architects, engineers and cable management services.
• Worked on wide array of different projects, ranging from server installs / probes to configuring Layer 2 and Layer 3 devices, for implementation into new and existing switching blocks.
• Configure Cisco 6500 Layer 2 and Layer 3 and supervise equipment installation and cabling work.
• Supervise moves, add and changes in LAN environment, and update DHI database.
• Using Visio Software, update client network diagrams.
• Worked with Network Operations with trouble tickets.