SUMMARY

• Over 5 years experience in routing, switching, firewall technologies, implementation and troubleshooting of complex network systems
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 3800, 3600, 2800, 2600, and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Installed Various Nexus Switches such as 7000, 5000 and 2000
• Experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF and BGP
• In depth understanding of IPv4 and implementing of Subnetting, IP Addressing, and good knowledge of OSI and TCP/IP models
• Successful completion of network migration from Frame Relay to MPLS
• Extensive experience in upgrade, backup, password recovery of Cisco IOS
• Experience in implementing Network Security Policy and adding Firewall Rules
• Switching tasks include VTP, ISL/ 802.1q, IPsec Tunneling, VLAN, Ether Channel, STP and RSTP
• Experienced in configuring Cisco ASA in different modes and implementing dynamic routing protocols
• Experience in Network security including NAT/PAT, ACL, and ASA/PIX Firewalls
• Experienced in configuring policies and NAT for DMZ on ASA 5540
• Experienced in configuring Cisco ASA firewall (5505, 5510, 5520)
• Develop complex global network architecture to meet changing business requirements as they occur
• Designing and developing cost effective network solutions for enterprise customers based on the business requirements
• Troubleshooting connectivity issues and application problems.
• Ability to Install, Operate, & Manage Large Networks & Security for the Co - located Servers, Production, Development, Staging & Lab Environments.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.
• Experience in installing and configuring DHCP server.
• Experience in configuring Site-to-site and remote access VPN solutions.
• Experience testing Cisco routers and switches in laboratory scenarios and deploy on site for production.
• Highly motivated with the ability to work independently or as an integral part of a team and Committed to highest levels of professional.

TECHNICAL SKILLS

Networking Concepts: OSI Model, TCP/IP, IP addressing, Static Routes, Access lists

Protocols: ARP, FTP, ICMP, DNS, ICMP, DHCP, TCP, IP, UDP, TELNET

Cabling: CAT 5, CAT 5e, CAT 6, CAT 6a

Routers: CISCO 2500, 2600, 2800, 4500, 3550, 6500, 7500, 7200, GSR 12000 series, NEXUS Series, AVAYA

Catalyst Switches: 7600, 6500, 4500, 3550, 2900

IP Routing Protocols: BGP, IBGP, EBGP, MPBGP, OSPF, EIGRP, RIPv1, RIPv2

LAN Switching: Fast and Gigabit Ethernet, VLAN, STP, PVST, VTP, ISL, HSRP

Checkpoint & Firewalls: Cisco ASA/Routers, Bluecoat SG, McAfee/IBM IPS, McAfee ATD, Vulnerability Scanners, Citrix Netscalers, OSPF/BGP and VPN, PIX, IOS Firewall, web application firewall(WAF), CISCO ASA 5500-X Series/ 5585-X Series firewall, CISCO FirePOWER Services

Network Security: NAT/PAT, Ingress & Egress Firewall Design, SSL VPN, VPN Configuration, Internet Content Filtering, Bluecoat, Load Balancers

Layer 3 Switching: CEF, MLS, Ether Channel

WAN /Core: ATM, Frame Relay, PPP, HDLC,VoIP

Operating Systems: DOS, MacOS, Windows Server 2008, Windows Vista/XP/NT/2K/98/7/8/10,iOS

Other: HP Openview, CiscoWorks, Cisco Security Manager, Wireshark, NetStumbler, Symantec Backup, Microsoft Visio, Microsoft Project, MS Office

PROFESSIONAL EXPERIENCE

Confidential, VA

NETWORK SECURITY ENGINEER

RESPONSIBILITIES:

• Responsibilities included taking care of the IP Addressing in the organization which included designing new subnets based on the requirements
• Designed installation and commissioning scenarios for Flexi Multi-Radio BTS
• Involved in implementing & Designing the switched network. Configured STP, VTP and DOT1Q in switching network
• Created VLAN & Inter-VLAN Routing with Multilayer Switching
• LAN Cabling in compliance of CAT5 standards infrastructure like Racking and Stacking
• Assisted in Troubleshooting LAN connectivity and hardware issues
• Maintained Redundancy on Cisco 2600, 2800 and 3600 routers with HSRP
• Performed RIP, OSPF, EIGRP routing protocol administration
• Involved in monitoring the performance of the network, thereby identifying the bottlenecks in the network, troubleshooting the connectivity problems using Ping, Trace route, and Telnet
• Responsibilities for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
• Analyze syslog generated by IDS, IPS, Firewalls, Routers, and Switch devices.
• Manage third party connections using Cisco ASA Firewalls
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, BGP and OSPF
• Configuration, Testing, Planning, Design of Cisco routers, Cisco Catalyst 2900,3570 and 6500 switches and Cisco AirNet and wireless appliances
• Implementation and Configuration of F5 BIG-IP LTM-6400 Load Balancers
• Migration for Frame-Relay/ATM network to MPLS based VPN for customer’s WAN infrastructure
• Troubleshooting latency and throughput issues onMPLS and dedicated internet access circuits
• Configured Cisco 7204 routers which were also connected to Cisco ASA security appliances providing perimeter based firewall security
• Upgrade Cisco Routers, Switches and Firewall (ASA) IOS using TFTP
• Migrated and upgraded Cisco ASA 5500 Series to Cisco Next Gen Firewall to Cisco ASA with FirePOWER Services (Cisco Nextgen Firewall)
• Resource management through deployment of network based monitoring applications to keep bandwidth & activity alongside each other.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC
• Convert Checkpoint VPN rules over to the Cisco ASA solution, Migration with both Checkpoint and Cisco ASA VPN
• Configured Firewall logging, DMZs and related security policies and monitoring
• Installed and Configured a Cisco secure ACS server for AAA authentication (RADIUS)
• Manage a very large DNS environment and manual management of DNS for DMZ/External Servers
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Cisco ASA other security products
• Process creation of VPN requests for remote users. Also VPN Tunneling
• Performed switching technology administration including VLAN, Inter-VLAN routing, Trucking, Port aggregation and Link negotiation

ENVIRONMENT: Cisco 3750/3550/3500/2960 switches and Cisco 7200/3700/3600/2800/2600/2691 routers, IGRP, RIP, OSPF, BGP, VPN, VLAN, CISCO ASA 5500-X Series/ 5585-X Series firewall, CISCO FirePOWER Services

Confidential, MORRISTOWN, NJ

NETWORK ENGINEER

RESPONSIBILITIES:

• Designed secure data architectures for remote monitoring health sensor network
• Engineered innovative framework that willsecure data in process, in motion, and at rest
• Designed algorithms, cryptographic models, and requirements for a secure sensor network
• Researched mobile systems/pervasive computing on the data passage for sensor networks
• Gathered security requirements forefficient cloud data storage
• Designed test plans on various routing, switching, IP networks, and MPLS
• Responsible for reviewing all new and existing applications, servers, projects and databases in need of system upgrades, service packs, security releases etc
• Primary point of contact for all Security IAPP (Internal Assessment Processes and Procedure) evaluation form reviews and security assessments
• Tested intrusion prevented capabilities of fortinet firewall,web filtering, and VPN
• Responsible for running Virtual Servers for Custom Financial Applications on all Mobile Platforms including iPhone, iPad, Android Tablets and Android Phones
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP, black box and identifying the root cause of the issues.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q etc.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing (Pilot).
• Performed support by identifying the root cause of the hardware issues with switches, routers.
• Worked on Aruba Wireless LAN Implementation for 11n Infrastructure Across the Corporate Network.
• Implementation of network, which includes configuration of routing protocols, Leased lines, ISDN lines, vlans, IOS installations.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues
• Familiar with various MSIT Tools to check Networking Connectivity, Testing, Configuration and Adding or Removal of IP address blocks
• Deploying and decommissioning the VLANs on core ASR9K, Nexus 7K, 5K and its downstream devices
• Designed and implemented secure data architectures for remote monitoring health sensor network
• Engineered innovative framework that will secure data in process in motion and at rest
• Research on using mobilesystems as the data passage for sensor networks
• Gathered security requirements for efficient cloud data storage
• Proposed an effective in memory data management solutions
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Performing the ACL requests changes for various clients by collecting source and destination information from them.
• Experience in creating MOPS (Method of procedures) and get approved from peers for performing configuration changes.
• Created Visio Documentation to give complete picture of network design for each building.

ENVIRONMENT: Cisco Routers, Cisco Switches, Routing protocols, HSRP, VRRP, IPSEC VPN, VPN, QOS,ASA firewall, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, Monitoring tools (Cisco works, HP Openview), RADIUS, TACACS+, Adtran, Fortigate, ASR 9k

Confidential, BOSTON, MA

NETWORK ENGINEER

RESPONSIBILITIES:

• Provided support for global network including T1/T3, ATM connections using HDLC and Frame Relayon 2600, 4000 series Routers
• Responsible for SNMP Monitoring and Performance Tuning software
• Designed WAN structure to prevent single point of failure in case of link failure
• Experience in Maintenance and Troubleshooting of connectivity problems using PING, Traceroute
• Planning and Implementation of Subnetting, VLSM to conserve IP addresses
• Experience in configuring STP for loop prevention and VTP for Inter-VLAN Routing
• Performing the Configuration and troubleshooting of EIGRP, OSPF, and BGP
• Dealt with the configuration of Standard and Extended ACLs for Security
• Been involved in providing technical assistance for LAN/WAN management and complex customer issues
• Provided support for troubleshooting and resolving Customer reported issues
• Worked on dealing with 6509/6513 Chassis problems and troubleshooting of Err-disabled ports and re-setting to normal port status.
• Worked on PIX firewalls for building the ACL rules for thee xtranet connectivity and implementation of the rules on the corporate firewalls and monitored logs for the issues
• Responsible for managing the TFTP logs for the VPN and firewall services and troubleshoot the VPN tunnel issues like SA, RSA, ISAKMP encryption and cleared/refresh VPN tunnel issues
• Performed IOS upgrades on Catalyst 3550, 2950, 1900 switches, and 3600, 2600 and 2500 routers.
• Implemented and configured routing protocols like EIGRP, OSPF, BGP
• Experience in Troubleshooting the issues related to routing protocols
• Managing, troubleshooting and monitoring the network using Network Monitoring tool
• Implementing Network Security with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol
• Designed and Implemented Networking Systems for the Instrumentation and Control Systems on the Next Generation Air Craft Carrier and Submarine
• Install, Configure, Deploy, Monitor and Troubleshoot Cisco ASA, PIX and Checkpoint Firewalls
• Upgrading, rebuilding the company’s Cisco firewall environment for an onsite hosting center and design/implementation of disaster recovery site
• Manage and support a variety of different security products including Check Point firewalls, Cisco ASA, PIX Firewalls
• Developed and Implemented Cyber Security Policies, Procedures, Countermeasures and Security Mitigation Techniques for Shipboard Network System
• Design of Networking Systems for the Next Generation Nuclear Power Plant currently under development for the TVA. Evaluated Cisco NEXUS 7000 Technology in support of this project
• Developed and Implemented Information Assurance Policy and Procedures for C4ISRT Systems
• Worked with DIACAP, DCID 6/3, DOD 8570 and STIGs and Vulnerability Assessment Tools
• Involved in installing and configuring PIX 515E firewall
• Dealt withDNS, DHCPtrouble shooting and other IP conflict problems
• Implementation of name resolution using WINS & DNS in TCP/IP environment

ENVIRONMENT: Cisco routers 3700, 3800, 7200, 7604, Cisco catalyst series Switches 2960, 3750, 3560, 6500, MPLS, Frame Relay, VRF, DSLAM, RIPv2, OSPF, BGP, IPSEC, VLAN, STP, VTP, HSRP.

Confidential, HERNDON, VA

NETWORK ENGINEER

RESPONSIBILITIES:

• Configured routing protocols OSPF,EIGRP,RIP,MPBGP,LDP and BGPV4
• Configured HSRP between VLANs,configurin gEther-Channels,PortChannel on 6500catalyst
• Performed data centermigration in Access,Distribution and Corelayers
• Configured VLANs and VTP senablingtrunks betweens witches
• Installation, configuration, and maintenance of production servers, routers, switches, firewalls, and hubs, LANWAN engineering and administration - internet security (PIX, FW-1), Network security, intrusion detection systems, and server monitoring
• Disaster Recovery and Business Continuity Planning for enterprise operations
• Configured Routing protocols such as RIP,OSPF,EIGRP,MPLS,staticrouting and policy baserouting
• Configuredand trouble shotlinkstater outing protocols like OSPF insinglearea and multipleareas
• Configured VLANs with 802.1qtagging.Configured Trunkgroups,etherchannels,and Spanning tree forcreating Access/distribution and corelayers witching architecture
• Configured BPDU Guard,port-fast,uplink fastand others panningtree features
• Provided Technical Support and solutions for network problems
• Implemented NAT solutions on WAN applications
• Upgraded IOS,troubleshot network outages
• Performed configuration and troubleshot EIGRP and BGP
• Installed and configured DHCP server
• Involved introuble shooting of DHCP and other IP conflict problems
• Performeds witching technology administration including VLANs,interVLANrouting,Trunking,STP,RSTP,portaggregation & linknegotiation
• Deployment of network security systems including dial-up, VLANS and level-2 switches within the infrastructure
• Configured ACLs(Standard,Extended and Named)to all owusersalloverth ecompany to access different applications and blockingothers
• Participated inoncall support to troubleshoot the configuration and installationissues
• ConfiguredVLANs with 802.1qtagging.Configured trunk groups,etherchannels,and Spanningtree for creating Access/distribution and corelayers witching architecture
• Showed excellent troubleshooting skills and customercentric approach

ENVIRONMENT: Cisco 3750/3550/3500/2960 Switches and Cisco 3640/12000/ 7200/3845/3600/2800 routers, Cisco Nexus7K/5K, 2248/3560/5020/6509 , Cisco ASA5510, Checkpoint, Controllers 6000, 3600, 3400, 650, Juniper SRX, Microsoft Lync, MPLS, VOIP,SIP,RTP, Cisco Unified Video Conferencing, Unix commands, IPV6, Cisco IP phones,Cisco 5500, 6500 series controller, Avaya 3000, 6000, 7200 series Controllers, Cisco CLI, Multicasting.

Confidential

NETWORK ENGINEER

RESPONSIBILITIES:

• Conducted multiplexing of E1 lines according to site requirements
• Created optimization project plans and helped implementation engineers with follow through and completion of optimization plans
• Performed back Haul service to Radio base stations (RBS) Cross-Connects
• Performed testing and troubleshooting of DS0, DS1, and DS3 lines connected on the telecom network.
• Coordinated engineering team to implement the provisioning work orders
• Performed installation of various E-1 & E-3 equipment, run the various cables & rack installation. Microwave link troubleshooting
• Worked on different protocols like TCP/IP, UDP, SNMP, ICMP, RIP, POP3, BGP, EIGRP,OSPF
• Worked on Cisco Switches 2950, 7604 and Routers. VLAN switching, VPN Tunnels
• Configured Voice over IP gateway 2600XM, 3600 Series and V7001series routers, PIX firewalls, Switches 2950, Cisco Aeronet wireless Access point
• Planned different network elements in the existing network to maintain the service level
• Performed Provisional Acceptance Testing of newly commissioned cell sites
• Responsible for day to day execution of site activities like copper cable / OFC laying / Jointing - Termination - AT Testing
• Site Development including installation and commissioning of DLC/ RSU

Confidential

NETWORK ENGINEER

RESPONSIBILITIES:

• Responsibilities included taking care of the IP Addressing in the organization which included designing new subnets based on the requirements
• Designed installation and commissioning scenarios for Flexi Multi-Radio BTS
• Involved in implementing & Designing the switched network. Configured STP, VTP and DOT1Q in switching network
• Created VLAN & Inter-VLAN Routing with Multilayer Switching
• LAN Cabling in compliance of CAT5 standards infrastructure like Racking and Stacking
• Assisted in Troubleshooting LAN connectivity and hardware issues
• Maintained Redundancy on Cisco 2600, 2800 and 3600 routers with HSRP
• Performed RIP, OSPF, EIGRP routing protocol administration
• Involved in monitoring the performance of the network, thereby identifying the bottlenecks in the network, troubleshooting the connectivity problems using Ping, Trace route, and Telnet

Confidential

NETWORK ENGINEER

RESPONSIBILITIES:

• Configured,managed and designed IProuting using acombination of staticrouting and dynamicrouting protocols like BGP,OSPF,EIGRP,etc.
• Configured STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Worked on issues related to IP protocols like static, RIP, EIGRP (Variance and unequal cost load balancing) and OSPF.
• Configured VLANs with 802.1q tagging. Configured Trunkgroups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Worked on issues related to VLAN, VLAN Trunking, HSRP failovers, related issues
• Configured GSR routers,7609,7606 with OSPF and catalyst6513,4500switcheswithvariousVLAN.
• Configured VLANs,PrivateVLANs,VTP,dot1.QTrunkingon6500 and 4500 seriess witches

ENVIRONMENT: Cisco 6509/ 3750/3550/3500/2950 switches, Cisco 7200/3845/3600/2800 routers, Checkpoint firewalls(SPLAT), Cisco CLI, Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Pearl, Python.