SUMMARY

• Over 8 years of professional experience in Network engineering with Cisco Certified Network Engineer, performing Network analysis, design, Implementing, capacity planning with a focus on performance tuning and support of large Networks. Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Experience working on Cisco Catalyst Series3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000 and 7000 series switches.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Experience in layer - 3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Juniper and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Active participant in corporate PCI compliance initiatives and assessments.
• Configuring and troubleshooting different Cisco ASR’s like 1002, 1013, 3750, 3850, 4510 and 9K routers.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)
• In-depth knowledge on Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Working knowledge of firewall technologies Palo Alto.
• Experienced in facing the Bluecoat and Palo Alto product lines, up to pre sales type of function
• Windows Active Directory administration.
• Performed security operations on ASA firewalls such as IPsec VPN’S, NAT, configuring Active/Standby Stateful failover, and any connect Web VPN
• Operating Systems: Windows 7, Vista, XP, 2000, CentOSLINUX, Puppet, Cisco IOS, solaris, IOS XR
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series
• Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP
• Expertise in installing, configuring and troubleshooting Juniper Routers ( E,J,M and T-series)
• Implementing security policies using Cryptography, ACL, ASDM, IPSec, VPN, and AAA Security on different series of routers.
• Knowledge on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark
• Capacity & performance IXIA, Spirent, Cisco works, IPerf, IXChariot
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Vast knowledge on structured cabling, data & voice networks, wireless networks and desktop environment.
• Proficient in checking the network’s security protocols, system features and good hands on experience in the manual testing of l2, l3 protocols.
• Deep knowledge of AWS cloud computing platform such as VPC (Virtual private cloud), EC2 and load balancing with ELB using ECB.
• Implementation of Spine leaf architecture, Equal cost multipathing.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), HP-Open view, RSA envision, and Cisco works to support 24 x 7 Network Operation Center.
• Experience with F5 load balancers and Cisco load balancers (ACE and GSS).
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers
• Networking protocols such as L2 protocols (STP, RSRP, IEEE802, 1Q, VTP, ARP) and L3 protocols (RIP, OSPF, IP, ICMP, BGP)
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
• Knowledge of Microsoft Exchange 2013, 2010, 2007, 2003 administration, Microsoft Visio.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.

TECHNICAL SKILLS

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP. Wireless networks such as microwave point-point, point- multipoint and wireless mesh network RF (Radio Frequencies) technologies, CISCO ACI

Networking Hardware: Cisco Switches (9k, 7k, 5k), Cisco Routers, ASA/Pix firewalls, Checkpoint firewalls, VMware, Big ip F5 Load Balancers, IronPort

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting

Security Technologies: PAP, CHAP, Cisco PIX, Checkpoint, ASA, BlueCoat proxy

Virtualization: Geni, Vmware

Network Monitoring: Cisco Works 2000, Wire Shark, Network sniffer & packet analyzer, HRPing, Infoblox, Solar Winds

Routers: CISCO 2600, 2800, 3600, 3800, 7200, ASR-1k,9k Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Switches: CISCO 2900, 3500,4500,5000,6500, 6509, 7509, Nexus 7k, 5k, 2k

Load Balancers: Bigip F5 LTM-1600,3600,3900,6900, cisco ACE-4710, ACE gss 4400,CSS

Programming Languages: C, C++, SQL, and Python

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modeler, Cadence

Firewalls: Juniper net screen (500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), MX(240,480,960,2010,2020),Checkpoint(R65, R70, NGX), McAfee Web Gateway

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR’s, HLD and LLD documents, Dell equal logics, Microsoft Visio diagramming

PROFESSIONAL EXPERIENCE

Confidential, Bellevue, WA

Sr. Network Engineer

Responsibilities:

• Configuring & managing around 500+ Network &Security Devices that includes Juniper SRX Firewalls, F5 BigIP Load balancers and Nexus Devices.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Cisco ASA firewall administration across the network.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.).
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter Vlan routing, LAN security etc.
• Setup simplified and traditional VPN communities, and Cisco Any connect
• Support customer with the configuration and maintenance of ASA firewall systems
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• 24x7 on-call escalation support as part of the security operations team.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Managing and providing support to various project teams with regards to the addition of new equipment such as routers switches and firewalls to the DMZs.
• Working with local IT personnel on troubleshooting, problem determination, diagnosis of performance issues, bandwidth issues, throughput traffic prioritization to improve overall application response time across WAN
• Adding and removing checkpoint firewall policies based on the requirements of various project requirements.
• Implementing IPSec and GRE tunnels in VPN technology.
• Implementing and troubleshooting (on-call) IPSec VPNs for various business lines and making sure everything is in place.
• Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
• Installation and management of overall administration of LAN, WAN, systems involving design of network layouts, configuration and maintenance, Commissioning Routers & Switches, firewalls, IPS and ensuring maximum uptime during site deployment to VoIP.
• Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
• Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018
• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment.
• Monitoring the network traffic with the help of Qradar and Cisco IPS event viewer.
• Managing and implementation of PORs (port open requests) based on the requirements of various departments and business lines.
• Experience with configuring FCOE using Cisco nexus 5548
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 to connect servers and storage devices.
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Implemented with Cisco Layer 3 switches 3750, 4500, 6500 in multi VLAN environment with the use of inter-VLAN routing, HSRP, ISL trunk, ether channel.
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Supporting project test teams in analyzing the bandwidth utilization.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.

Confidential, Malvern, PA

Sr. Network Engineer

Responsibilities:

• Involved in configuring and implementing of composite Network models consists of Cisco 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Managed VPN, IPSec, Endpoint-Security, status policy, Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning, DLP using Checkpoint Firewalls
• Worked with Juno OS and Juniper M&T series switches.
• Worked with Cisco ACE GSS 4400 Series global site selector Appliances.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links.
• Strong networking capability and knowledge of different firewall platforms to help in random identification and isolation of issues during outages and incidents.
• Participated in the installation, configuration, post installation daily operational tasks and configuration and deployment of Cisco Nexus equipment.
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
• Managed rules on Cisco checkpoint NGX firewall.
• Good working knowledge of common end user operating systems and internal/external DMARC identification.
• Experience with email security standard implementation policies such as SPF, DMIK and DMARC.
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding and also Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Worked with Nagios for monitoring of network services (SMTP, POP3, HTTP, NNTP, ICMP, SNMP, FTP, SSH).
• Configured and troubleshooting HSRP, BGP, OSPF, EIGRP, MPLS WAN, QoS and Route Maps
• Primary responsibility is to design and deploy various network security & High Availability products like Cisco ASA other security products.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs in the network.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution.
• Installed, configured and set security policies on cisco and checkpoint firewalls, VPN.
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
• Implemented traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Worked with Host Master for shared web hosting.
• Supported a user base of more than 30000+ active accounts across multiple domains.
• Administered Windows server 2003 active directory and like creation and deletion of user accounts, managing access controls and domain structure configurations.
• Worked with Processes like RFI, RFE and RFP.
• Experience in working with Network automation tools and testing for network change and configuration management.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs
• Worked with HP Network Automation software that automates the complete operational lifecycle of network devices from provisioning to policy-based change management, compliance, and security administration.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Experience working with Exchange 2010 SP3 for planning and deployment.
• Worked with Management tools like CSM and Cisco ACS.
• Worked with Cisco IOS, NX-IOS, IOS-XR.
• Worked with MPLS to improve quality of service (QoS) by defining LSPs that can meet specific service level agreements (SLAs) on traffic latency, jitter, packet loss and downtime.
• Worked with Load balancing device like F5 Big-IP local traffic manager (LTM) 1600.
• Hands on experience in F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs
• Experienced in working with BIG-IP Edge Portal and BIG-IP Edge Client.
• Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers
• Worked with Windows Power shell and power shell plus.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local preference.

Confidential, West Des Moines, IA

Sr. Network Engineer

Responsibilities:

• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.
• Configured various Routing protocols such as RIP, OSPF, EIGRP, static routing.
• Maintaining Core Switches, creating VLANs and configuring VTP.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Performed redistribution with OSPF, EIGRP, RIP version 1 and 2 to enable communication with backbone.
• Troubleshooting of Cisco 2900, 3900, 6500, 7500, 7200 Series routers.
• Configured static NAT, dynamic NAT, dynamic NAT overloading.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Responsible for designing, implementing and troubleshooting temporary infrastructures for Live Webcasting Events
• Involved in F5 BIG IP LTM administration, familiar with enterprise level traffic managers like 6800, 3600, 1600,3400 series
• Involved in updating the VIP’s for pools and pool members, updating iRules for the URL created in the new DNS entry
• Upgrade Cisco Routers and Switches IOS using TFTP
• Installed and configured Cisco IP Phone 794x, 796x, 7937’s and IP Communicator
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA
• Installation and management of overall administration of LAN, WAN, systems involving design of network layouts, configuration and maintenance, Commissioning Routers & Switches, firewalls, IPS and ensuring maximum uptime during site deployment to VoIP.
• Configuring and adding, moving, removing of various IP phones like (7941, 7961, and 7971)
• Knowledge on VOIP protocols like H.323, RTP, SIP and good understanding about VOIP devices.
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Responsible for Cisco ASA firewall administration across our global networks

Confidential, Watsonville, CA

Sr. Network Engineer

Responsibilities:

• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF)
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path
• Hand on experience the configuration and implementation of various Cisco Routers and L2 Switches.
• Designed and implemented VLAN using Cisco switch catalyst 1900, 2900, 5000 & 6000 series.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope.
• Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits. Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and trouble shooting.
• Assisted in troubleshooting LAN connectivity and hardware issues in the network of 500 hosts.
• Troubleshooting the Network Routing protocols (BGP, EIGRP and OSPF) during the Migrations and new client connections.
• Manage operational monitoring of equipment capacity/utilization and evaluate the need for upgrades; develop methods for gathering data needed to monitor hardware, software, and communications network performance.
• Worked towards the key areas of the project to meet SLA’s and to ensure business continuity. Involved in meetings with engineering teams to prepare the configurations according to the requirement.
• Creating change tickets according to the scheduled network changes and implementing the changes.
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Created a backup and recovery policy for software application and verified peripherals are working properly.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP & OSPF routing protocol administration.
• Interacted with support services to reduce the downtime on leased lines.
• Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issue Other responsibilities included documentation and support other teams
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Responsible for implementing QOS parameter on switching configuration.
• Involved in Design and Implementation of complex networks related to extranet clients

Confidential

Network Engineer

Responsibilities:

• Worked with the Help Desk for circuit troubleshooting to give Support to the Tech persons at the site.
• Configuring routers and sending it to Technical Consultants for new site activations and giving online support at the time of activation.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Experience in Cisco 7200, 7600 routers, Cisco series switches: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall and for NATting.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Installed and configured PIX 520, 525, 535 series firewalls, configured standard and extended access-lists and policy- based filters.
• Configured ASA 5510 appliance and VPN.
• Responsible for implementing Qos prioritizing voice traffic over a data.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues