PROFESSIONAL SUMMARY:

• 7 years of professional experience in Network engineering with Cisco Certified Network Engineer, performing Network analysis, design, Implementing, capacity planning with a focus on performance tuning and support of large Networks.
• Demonstrated success record in: Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
• Substantial knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Hands on experience in configuring and supporting a site - to-site and remote access Cisco IPsec, VPN client in addition to providing TACACS+, VPN solutions using ASA/PIX firewalls and RADIUS services.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience converting Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Involved in troubleshooting of DHCP, DNS, and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability, and Experience working with Nexus 7K, 5K, 2K devices. Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/Nating with the firewalls as per the design.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance. In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), HP-Open view, RSA envision, and Cisco works to support 24 x 7 Network Operation Center.
• Experience with F5 load balancers andCiscoload balancers (CSM, ACE and GSS).
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers
• Experience with Putty, Exceed, Secure CRT.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS:

LAN Protocols: VLAN, VTP, Inter-VLAN routing, STP, Workgroup, Domain, HSRP Static, Ether Channel, Trunks, DHCP

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, RouteRedistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MPBGP, HSRP, IPv6, WLAN, 802.11/e, WEP, POP3 LADP VRRP, GLBR, LACP

WAN Protocols: HDLC, PPP, ISDN, ATM, Channel & Leased Lines

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Checkpoint NG, Juniper SRX, Palo Alto, IPS/IDS

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Redundancy / management: HSRP, VRRP, GLBP, RPR, NSF/NSR, Wireshark, Solarwinds, SNMP

Sniffers: Ethereal (Wireshark).

Network Management Tools: MRTG, HP Open view, Cisco WAN manager, Cisco works 2000.

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Layer 2 technology: VLAN, HSRP, VRRP, GLBP, STP, RSTP, PVST+, MST, PVLAN, Optimizing STP (Port Fast Uplink Fast, Backbone Fast, Root Guard, BPDU Guard)Layer 3 Switching: CEF, MLS, Ether channel (PAGP & LACP, Load Balancing)

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

Operating Systems: Microsoft XP/Vista/7/8, UNIX, Linux (Red hat, Fedora, Ubuntu, Backtrack), WindowsServers 2003/2008Windows MS: Office. VMware ESX 5.1, VMware VSphere client.

PROFESSIONAL EXPERIENCE:

Confidential, Auburn Hills, MI

Sr. Network Design Engineer

Responsibilities:

• Working with Network Design and implementation teams on various projects across North America and South America.
• Experience with design and implementation of Data center migration
• Deploying and decommission of VLANs on core Nexus 7K, 5K and its downstream devices.
• Experience with manipulating various BGP attributes such as Local P, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Building the VPN tunnel and VPN encryption.
• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP Sec VPN tunnels.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Provided proactive threat defence with ASA that stops attacks before they spread through the network.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying the NX-OS operating system.
• Managing and supporting Exchange 2007 infrastructure which consists of clustered back-end servers and Front-end servers.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/ 00/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA5510, Checkpoint, windows server 2003/2008: F5 BIGIP LTM.,OSPF,EIGRP,RIP,BGP,VLAN,VPN

Confidential, Seattle, WA

Sr. Network Engineer

Responsibilities:

• Configured RIP, PPP, BGP and OSPF routing, and Involving in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies, and Creating and provisioning Juniper SRX firewall policies.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Documented new VPN enrolments in a database and create standard procedures for further improvement.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Created standard access lists to allow SNMP, NTP and logging servers.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Co-ordinated with the Data Network and Security team and came up with possible solutions.
• Work on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Provided proactive threat defence with ASA that stops attacks before they spread through the network.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Estimated Project costs and created documentation for project funding approvals.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 00/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K, 2248/3560/5020/6509 , VPN

Confidential, Fairfax- VA

Network Engineer

Responsibilities:

• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Responsible for service request tickets generated by the help desk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Upgrade, Cisco Routers, Switches and Firewall (PIX) IOS using TFTP.
• Updated the HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Involved in L2/L3 Switching Technology Administration, including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing MZ environments to support new and existing application platforms.

Environment: EIGRP,RIP,CSM,SUP720,Ether Channels, Cisco 7200/3845/3600/2800 , OSPF,BGP,VPN,MPLS routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential

Network Support Engineer

Responsibilities:

• Experience in Cisco 7200, 7600 routers, Cisco series switches: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall and for NATting.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.
• Installed and configured PIX 520, 525, 535 series firewalls, configured standard and extended access-lists and policy- based filters
• Work with Help Desk for circuit troubleshooting to give Support to the Tech persons at the site.
• Configured ASA 5510 appliance and VPN.
• Responsible for implementing Qos prioritizing voice traffic over a data.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues.

Confidential

Network Engineer

Responsibilities:

• Performed IOS upgrades on Catalyst 1900, 2900, 3500 series switches and 2500, 2600, 3600 series routers.
• Responsible for maintenance and utilization of VLANs, Spanning-tree, HSRP, VTP of the switched multi-layer backbone with catalyst switches.
• Implemented and configured routing protocols like EIGRP, OSPF and BGP.
• Connected switches using trunk links and Ether Channel
• Used Network Monitoring tool to manage, monitor and troubleshoot the network.
• Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
• Implemented redundant Load balancing technique with Internet applications for switches and routers.
• Support Network Technicians as they require & support for problem resolution including performing diagnostics, & configuring network devices