OBJECTIVE:

• Continuous progress on both professional and personal fronts through all round skills with emphasis on assigned targets. Hard work and team spirit thereby anticipating and meeting the challenging arising in the contemporary competitive business environment integrity and given to sustained hard work. And if provide with an opportunity I shall try my level best in satisfying my superiors in rightful discharge of my duties.

PROFESSIONAL SUMMARY:

• Cisco Certified Network Associate (CCNA) Engineer with 6+ years of experience in Network and Security engineering and Network Infrastructure, routing, switching, firewall technologies, system design, implementation, troubleshooting of complex network systems, enterprise network security, wireless design, and data network design, capacity management and network growth.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches
• Experience in L2/L3 protocols like VLANS, STP, VTP, MPLS and Trucking protocols.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Configured RIP, EIGRP, OSPF, BGP and WAN technologies like Frame Relay, VPN, DMVPN.
• Experience in installing and configuring DNS, DHCP server.
• Good knowledge in WAN Technologies like ACL, NAT and PAT, IPsec and VPNs.
• Knowledge of IP addressing and Subnetting (IPv4/6).
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Managing a TACACS server for VPN user authentication and network devices authentication
• LAN hardware/software administration, installation and configuration
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
• Extensive knowledge in implementing and configuring F5 Big - IP LTM-3900, and 6900 Load balancer.
• Performed security operations on ASA firewalls.
• Hands on support experience with Cisco UCS, or VCE vBlock Cloud product lines.
• Configuration and management of Cisco IDS, Checkpoint firewall, Snort.
• Performed deep packet analysis to troubleshoot application issues using tools like Wire-shark.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.
• Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.
• Advanced knowledge, design, installation, configuration, maintenance, migration and administration of Checkpoint R77.
• Expertise in implementing, maintaining and troubleshooting STP, RSTP, PVST+, Ether channel using LACP and PAgP, Inter-VLAN routing.

TECHNICAL SKILLS:

Networking: LAN, WAN, Wi-Fi, DNS, WINS, DHCP, TCP/IP, ISCSI, Fiber, Firewalls/IPS/IDS, Cisco prime and wireless

Hardware: Dell, HP, CISCO, IBM, SUN, Check Point, SonicWALL, Barracuda Appliances, SOPHOS email appliances

Application Servers: DNS, DHCP, Windows Active Directory Services, FTP, SFTP, Microsoft Exchange, Microsoft SharePoint

Firewalls: ASA Palo, Alto, Check Point

Networking Conversant: in LAN, WAN, WI-FI, DNS, DHCP, TCP/IP

Routers: Planning, Designing, Installing, Configuring of Cisco Routers 1700, 2500, 2600, 3600, 3700, 3800

Switches: Cisco 2900, 3560, 3750, 4500, 6500

Protocols: RIP (v1 andv2), IGRP, EIGRP, OSPF, BGP NAT, TCP/IP, UDP, HTTP, HTTPS, FTP, DNS

Firewall: ASA Series, Checkpoint (R77 GAIA)

OS: Windows ServerUnix, Linux

Others: C/C++, MATLAB, PYTHON, JAVA

Routing/Routers: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing, Cisco Routers ASR / 2600

Switching: VLAN, VTP, STP, Inter VLAN routing & Multi-Layer Switching, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging

Protocols: TCP/IP, L2TP, PPTP, IPSEC, IKE, SSL, SSH, UDP, DHCP, DNS,VPN ASA 5520

Environment: Windows, NT, MS-DOS, Linux, Microsoft Windows 2008, NOS family, Microsoft Active directory, Cisco ISO

PROFESSIONAL EXPERIENCE:

Confidential, Irving- Texas

Sr. Network Engineer

Responsibilities:

• Maintained, configured, and installed Cisco routers and switches: 7500/catalyst 6500/RV320/2960/catalyst 3550/12410, 12816, 1204 series, Nexus 7k and 5k, WLC, and ASA 5540
• Provide networking assistance by configuring switches for standalone networks and SNMP V2, and V3.
• Implementation of SNMP engine using Java to poll network traffic on Cisco, Juniper
• ManagedCheckpointFirewalls using Multi Smart Domain Manager, Juniper with Network Security Manager, Cisco with Cisco ASDM, Palo Alto with Panorama.
• Involved in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Implemented various EX, SRX & J series Juniper devices
• Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco PIX/ASA firewalls. Completed a project to update the patch HFA50 across all the firewall to overcome the bugs in the existing version of R65.
• Responsible for 6500, 3500, Nexus switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
• Configured IP, EIGRP and OSPF in routers. Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers.
• Used various scanning and sniffing tools like Wire-shark.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital s, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
• Configured CIDR, IP, RIP, PPP, BGP and OSPF routing
• Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, from scratch to match design.
• Manage global oversight and monitoring of data loss for clients, developing and implementing loss prevention strategies to bring information security risks under explicit management control
• Provided comprehensive data security solution using Symantec Data Loss Prevention (DLP) and RSA endpoint.
• Manage DLP application, including but not limited to monitor and block emails and web traffic containing Electronic Protected Health Information ; discover and report ePHI found in file systems, present the findings and recommend remediation methods to data custodians and owners
• DLP incident response. Respond and investigate incidents related to possible ePHI leakage or loss, educate end users and present investigation reports to management
• Worked with the Trouble Tickets on F5 Load balancers on LTM module
• Proficiency in using F5 GTM, AFM, APM and other F5 components to protect against advanced DDoS attacks.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Installed packages on Windows, Linux and Mac clients and upgraded them in a silent install with maintenance window
• Implemented and used SDM to configure Cisco IOS security features and network connection.
• Network Segmentation-application migrations for enterprise Private Data Firewall and data behind ASA 5585-Xs
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
• Configured Object Grouping, Protocol Handling and Code up gradation on ASA Firewalls.
• Code upgrades of Dual Wireless LAN Controllers 5508’s with 100+ AP’s
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel. Worked with different vendors and implement Site-to-Site VPNs over the Internet.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
• Security policy review and configuration in Palo Alto and JuniperSRX Firewall in US offices and Datacenter.
• Experience implementing automation of storage activities via scripting (PowerShell, Perl)
• Worked with Juniper T-Series, M-Series, MX-Series, J-Series Routers.
• Configured and monitored Firewall logging, DMZ's and related security policies.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.
• Provide custom template for VPN to allow access to different network segment.
• Provide solution for wireless access by custom template base user account.
• Complete Active Directory AD health check with MS Engineer to fix more than 100 issues in companywide forest, modify Active Directory topology to enhance replication and authentication operations.
• Configured Frame-Relay, ISDN, ATM, load balancing switches and also configured IPX/SPX, HDLC, PPP, BGP, EIGRP, OSPF and VRRP on various sites
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
• Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS.
• Responsible for creating a environment that sets the standard for all employees and produces representatives skilled to deliver key performance indicators. Assured that our programs are best in class and our trainers are developed to the highest standard; not only in delivery, but also as brand ambassadors. Responsible for hands on development and measuring effectiveness of the staff assigned to me

Environment: Cisco Routers, Cisco Switches, Nexus, Routing protocols, Palo Alto, F5, Load Balancer HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA firewall, Load balancer, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, SIP, RTP, RADIUS, TACACS+, Juniper SRX, Juniper M, MX, ASR 9000, Catalyst 6500, CRS, Cisco ASR, UNIX, Firewall FWS

Confidential, San Antonio, Texas

Network Engineer

Responsibilities:

• Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 7k/5k/2k.
• Working knowledge of frame relay, MPLS services, IPSecVPN's, OSPF, BGP and EIGRP routing protocols, NAT'ing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP,SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & • Multicasting protocols. Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Implemented Wireless Access Points (WAP) across remote locations and secured the traffic using existing external firewall devices and policies.
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
• Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
• Developed a tool using PowerShell and Excel to automate a lot of the manual task required during an Office 365 migration
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers. mplementedF5 Local Traffic managers (LTM), Global traffic manager (GTM), APM and ASM of series 8900, 6400, 6800, 3400, 5100, 3600.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Configuring various BGP attributes such as Local P, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATTing with the firewalls as per the design.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to Facilitate 2/3/4G Network.
• Implementation of third party tools across the Datacenter like Symantec Backup Exec 10 and applications related to Windows security, mail servers, Monitoring, troubleshooting and ticketing tools.
• Security - ASA, ISE, Content Security products like ESA & WSA and CWS
• IoT & Wireless -Wireless LAN Controllers, Network connectivity i.e. Cisco's Ruggedized Industrial router and switches configuration and functionality
• Understanding of mobile backhaul network on IP, Ethernet, ATM, PW & TDM.
• Worked on project and coordinated with cabling vendors
• Evaluate problems with network connectivity to include copper and optical fiber cabling.
• Configuration and installation of LAN switches and wireless network infrastructure equipment and cabling all uplink and user network connections.
• Performed second level network support for top global pharmaceutical client requiring worldwide 24/7 support with very aggressive service level agreements.
• Diagnosed issues with network devices such as Cisco firewalls, switches and wireless access points (WAP)
• Have completed two Business integrations with a very strict time line and gained some very good knowledge in understanding the road blocks in Network integration and feasible methods to fix it.

Environment: Cisco Routers, Cisco Switches, Cisco Nexus 7k/5k/2k, IPSEC, MPLS, VLANS VTP, RSTP, ACL, NAT, IDS/IPS, firewalls, Nokia, HP, Nexus Switches, Palo Alto, F5 BigIP Load balancers, Cisco ACE load balancers, Blue Coat Proxies, Riverbed WAN Optimizers, Data center, Spanning Tree, Checkpoint Juniper Routers, Juniper SRX, Network2/3/4G

Confidential

Jr. Network Engineer

Responsibilities:

• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Strong familiarity with TCP and UDP protocols, analyzing packet traces.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks (VLSM).
• Maintaining Checkpoint security policies including NAT, VPN and Secure Remote access, Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Involved in configuring Site-to-site and remote access VPN solutions.
• Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
• Monitoring/Data Center Technologies/APPS - Wireshark, Remedy, Cacti, Nagios, SolarWinds, Orion
• Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
• Responsible for DHCP/ IP registration of campus computers, servers, network switches, wireless access points and other networked devices
• Troubleshoot network WAN/LAN outages, gateway servers, switches, routers, wireless access points, and modems remotely
• Experience in administration of HP 3PAR STORSERV Series, and HP-MSA storage arrays.
• Good Experience and hands on with HP 3PAR Adaptive optimization, Dynamic optimization, Peer Motion, Snapshots/ clone and Replication Technologies
• Worked with protocols such as Frame Relay, IEEE 802.11 and VLAN, OSPF and BGP, DNS, DHCP, FTP, NTP,SNMP, SMTP, and TELNET.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Created data migration strategies to help with completion of migration of data center from one point to another.
• Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
• Proficient in usingNetworkManagement Application layer software's likeSNMP, Solar winds, NTP and Syslog
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• DES and SHA for encryption and authentication, access-lists to define VPN traffic, transform set using
• Advanced knowledge in security risk analysis, attack mitigation and penetration tests based on LPT methodology.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Hands on Experience testing iRules using Browser(IE), HTTP watch, curl, Scripts(shell/batch file/Perl) and host filesDesign and implement Catalyst/ASA Firewall Service Module for various LAN's.
• Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP.
• Involved in designing of LAN (Ethernet) and WAN infrastructure for the new Data Centre Using MS Visio.
• Troubleshoots in Cisco Aironet 2700 and 600 series.
• Configured Client VPN and RSA Token ID technologies including Cisco's VPN client via IPSEC.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Working knowledge of frame relay, MPLS services, IPSecVPN's, OSPF, BGP and EIGRP routing protocols, NAT'ing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP,SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & • Multicasting protocols. Participated in on call support in troubleshooting the configuration and installation issues.
• Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
• Also, installation ofroutersand access points with enabling wireless network configuration.
• Communicated with management to improve the quality and performance of the DLP system
• Defines network communications and designs. Also implement solutions within the existing network.
• Manages load configuration of central data communication processor and makes recommendations for upgrade of data networks.
• Evaluate and report on new analog and digital communications technologies to enhance the capabilities of the data network. Provide problem resolution for all hardware and software elements of the data communication network and ensures the availability of the data network.
• Provided technical support in terms of upgrading, improving and expanding the network.
• Providing technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.

Environment: Cisco 3750/3550/3500/2960, switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, F5 Load Balancer Cisco Nexus7K/5K, Checkpoint,Cisco ASA.