SUMMARY

• Cisco Certified Network Engineer with 8 years of professional experience in Network engineering, performing Network analysis, design, Implementing, capacity planning with focus on performance tuning and support of large Networks and 6 years of Desktop support / Lab Administration
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Configuration and troubleshooting of CSM, integration with ASA devices.
• Experience in managing security policies with CSM, integrated with ASA 5500 devices.
• Experience in set up, configuration and management of PIX firewall and ASA 5500 appliances.
• Strong Knowledge in WAN technologies including T1,T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
• Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
• Access Control Server configuration for RADIUS and TACACS+.
• Have knowledge on various advanced technologies like VOIP, H.323, SIP, QOS, IPv6, Multicasting, and MPLS.
• Experience in Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Designing and implementing F5 BIG - IP load balancer.
• Strong knowledge and experience in implementing, configuring VPN technologies like IPSEC, MPLS.
• Strong problem-analysis talent, driven by global view/attention-to-detail approach. “Hands on” technical knowledge.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), HP-Open view, RSA envision, and Cisco works to support 24 x 7 Network Operation Center.
• Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO
• Experience in monitoring and analyzing the load balancing of network traffic using KIWI Solar winds.
• Experience with network emulation hardware/software tool SHUNRA.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Strong general management, negotiation, inter-personal, communication and team building skills.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience working with Nexus 7K, 5K, 2K devices.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Designing and implementing F5 BIG-IP load balancer.
• Strong knowledge and experience in implementing, configuring VPN technologies like IPSEC, MPLS.

TECHNICAL SKILLS

Operating Systems: DOS, Windows 95/98, Windows NT/2000/XP/Vista/7/8

IP Routing: RIPv1, RIPv2, BGP, OSPF, IGRP, EIGRP

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, RARP, PPP, HDLC and ISDN

Topologies: Frame Relay, ATM, T1, T3, OC3, OC12, OC48, Ethernet, Cable Modem, xDSL and Wireless

Network Peripherals: Hubs, Cisco switches (2900, 2924, 2950, 3550, 3560, 4000, 5500, 6500, 6509, 6513,), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206), Cisco PIX500 series, Cisco ASA 5500 series, Cisco 1200 Aironet Access Points, CSU/DSUs, network cards and Modems

Network Management Tools: Whatsup, MRTG, HP Open view, Cisco WAN manager, Cisco works 2000

Sniffers: Ethereal (Wireshark)

Software: Microsoft Office 97/2000, MS Visio

Firewall Security: Cisco ASA, Juniper SRX, Checkpoint

PROFESSIONAL EXPERIENCE

Confidential, Weston, FL

Sr. Network Engineer

Responsibilities:

• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Experience in migration of VLANS.
• Implementation of Access Lists for allowing/blocking desired traffic.
• Configuring VLANs/routing/NATing with the firewalls as per the network design.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Hands on experience with the Shunra network emulation device and Performance suite tools.
• Good knowledge on HP Performance center/ load controller /load generator.
• Performing software upgrades on HP load controllers and generators.
• Experience in establishing NIC bonding/ teaming, IP aliasing.
• Good knowledge in systems integration, software hardware emulation experience.
• Worked on change management documentation of Network infrastructure design using Microsoft Visio.
• Perform setup of test scenarios, both hardware and software components, and perform troubleshooting.
• Experience working in DataCentre environment, configuration changes as per the needs of company.
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Experience in configuring, upgrading and verifying the NX-OS operation system.
• Experience working with Nexus 7010, 5020, 2148, 2248 switches.
• Experience configuring Virtual Device Context in Nexus 7k series switch.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
• Designed, configured, implemented site-site VPN on cisco ASA 5500 firewall.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Worked in projects converting P2P circuits into MPLS circuits, commissioning and decommissioning of the MPLS circuits for branch offices.
• Configuring and resolving various OSPF issues in an OSPF multi area environment,
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds etc.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Building the VPN tunnel and VPN encryption.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/1200/7200/3845/3600/2800 routers, Cisco Nexus 7K/5K/2K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, West Des Moines, IA

Sr. Data Network Engineer

Responsibilities:

• Managing and configuring Cisco Switches and Routers independently.
• Managing and configuring Aruba Wireless devices and Cisco Access Points.
• Hands on experience with trouble shooting and configuring terminal servers.
• Providing Technical Support and solutions for Network Problems.
• Creating and managing user accounts to all team members in partner environment.
• Experience in Cisco switches and routers: IP addressing, WAN configurations.
• LAN cabling in compliance with CAT6 standards; Installing new hardware and swap out hardware physically.
• Hands on using crimp tools, punch down tools to punch cables to the 110 data/voice blocks.
• Communicating and escalating tickets with service providers for network outage issues.
• Managing the DNS entries using Infoblox.
• Monitoring Network infrastructure using SNMP tools HP NNM, Solar-winds and Opnet.
• Escalation of procedures and customer notifications.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Worked on Physical site; latency and slowness issues in transmitting results within internal quest network.
• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices.
• Experience updating IOS on devices.
• Configuring and implementing F5 BIG-IP Load balancer.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring ASA Firewall and accept/reject rules for network traffic.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds etc.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM,RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP

Confidential, Menlo Park, CA

Network Engineer

Responsibilities:

• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO.
• Experienced working with security issue like applying ACL’s, configuring NAT and VPN
• Responsible for implementation and day to day operations of all associated hubs, routers, bridges, gateways and related equipment
• Troubleshoot wireless backhaul network providing MPLS, PNNI, VPLS, Layer3 VPN, Layer2 VPN and ATM services to product carrying 160 GB traffic.
• Multi service routers that perform Layer 2 and Layer3 functionality.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team.
• The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Perform service assured upgrades on Multi Service router caring 160 GB traffic capacity. Troubleshoot and recover traffic outages within average recovery timeframe.
• Collect crash info files from routers and execute system engineer command to analyze logs for root cause analysis (RCA), traffic affecting outages and trouble causing nodes.
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Build customer wireless network backhaul for root cause analysis of network using knowledge management solution.
• Involved in documentation for WAN technologies T1/T3.
• Test production and database in lab by rebuilding production network scenario to determine bug from router system.
• Used Wire-shark as scanning and sniffing tools.
• Delivered hand in Creating load balancing policies using BGP attributes like Local Preference, AS-Path, MED, Community etc.
• Experience with Infoblox technologies.
• Maintained LAN and gave support on Layer 1 and Layer 2.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.

Environment: Cisco 2960/3550/3750 switches and Cisco 1200/7200/3845/2800 routers, LAN, WAN, Infoblox, VPN

Confidential

Network Support Engineer

Responsibilities:

• Assigned a project to set up LAN. Worked on the entire project from cabling to IP addressing assignment.
• Supporting wide range of products from Cisco Systems, Troubleshooting of Routers and Switches.
• Configuration and installation of Cisco Routers and Switches.
• Configuring and working with Cisco Routers and Switches using protocols like RIP, EIGRP, and OSPF.
• Manage the Routing protocol and Encapsulation Protocol.
• Trouble shooting of WAN connectivity problems.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Configuration of Standard and Extended access-lists.
• Coordinating with Filed Engineers in trouble shooting of WAN connectivity problems.
• Coordinating with tasks assigned to Field engineers.
• Configured VPN for the remote and site-to-site access.
• Part of troubleshooting team for checkpoint firewall.
• Worked on Access Control List (ACL), NAT/PAT rules.

Environment: Cisco Routers, Switches, WAN, LAN, Trouble Shooting, Checkpoint Firewall

Confidential

Network Administrator

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fast
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.

Environment: Netrep, Solar winds, Windows XP