SUMMARY

• 8 years of experience in the area of Networking, Security, Administration and Network support.
• Extensive work experience on Cisco Routers, Cisco Switches, Load Balancers & Cisco Firewalls
• Expertise in deployment and configuration of routing protocols such as OSPF, EIGRP and BGP.
• Experience in Layer 3 Routing Protocol configurations: OSPF, BGP, EIGRP and MPLS.
• Experience in Layer 2 routing Protocol Configurations: ARP, ATM/FRAME RELAY.
• Knowledge on Amazon AWS Virtual private cloud services.
• Worked on Amazon AWS and Microsoft Azure cloud network services.
• Configure a Site - To-Site IPsec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices.
• Knowledge & Experience on Fortinet Firewall Appliances.
• Experience in Networking Area especially TCP/IP, Routing, Switching.
• In depth knowledge with network mplsing and performance tools such as Solar Winds, Wireshark, Nagios.
• Strong hands on experience implementing and troubleshooting Switch technologies such as STP, RSTP, MSTP and VTP along with troubleshooting of inter-VLAN routing.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology.
• Hands on Experience configuring and testing F5 iRules using Browser(IE), HTTP watch.
• Knowledge in working with F5 Load Balancers and their implementation in various networks.
• Knowledge of network security protocols such as IPSEC tunnels, GRE tunnels, NAT/ PAT, ACLs and VPN - MP-BGP.
• Experience with configuring Spanning Tree Protocol, BPDU Guard, Port-Fast, Up-Link Fast, Trunking (dot1q and ISL) and Ether channel on Campus Network Design Architecture.
• Experience in working with Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers.
• Strong hands on experience on configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and Nexus 7000, 5000 and2000 switches.
• Administrate and maintain Fortinet Fortigate Firewalls, Forti Analyzer and Forti Manager.
• Managed the network devices (Routers, Switches, Cisco ACS, Cisco ISE, Cisco Access Points, Wireless Controllers) and maintained the inventory of the devices in the network using Cisco Prime.
• Migrated from a Cisco/Nortel switching environment to a Cisco/Meraki environment with full Meraki wireless.
• Working knowledge of routing protocols for voice: VoIP, IPSEC, Multicast, MPLS, DSCP/QoS, Cisco IOS and Wireless security protocols (I.E. 802.1x, EAP, WPA2).
• Configuration, managing and implementation the Linux/Unix and Sun Solaris Server in Network.
• Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
• Migrated and implemented new solution with Cisco ASA firewall series 5505, 5510, 5540.
• Experience in configuration of AAA with ACS protocols TACACS+, RADIUS and LDAP.
• Worked on Enterprise security implementation and support using Cisco Pix/ASA Firewalls ( & 5510, 5520), Fortinet Firewalls 3950B/ 3810A/Enterprise 5000 series, Checkpoint R80.20/R80.10/R70.30 and PaloAlto Firewall. Skillful on Radius and TACAS protocols (AAA), security vulnerability & sniffing tools like: Nmap, Tcp dump, Ethereal.
• Experience in configuration of Checkpoint 6000, 1100, 4800, 12000, 15000, 23000 appliances.
• Migration of Palo Alto firewalls from ASA.
• Experience in configuration of Palo alto firewalls like PA2020, PA3050, PA5050.
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering.
• Implement duo security two factor authentication for remote access VPN on Cisco ASA.
• Worked on various blades like IDS/IPS, URL filtering on Cisco ASA.
• Experience with Solar Winds Orion monitoring.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
• Hands on experience on Up-gradation of Cisco IOS & Firmware of different Cisco devices & modules.
• Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
• Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
• Experience in installation, configuration and Administration of windows server 2003/2008, Active Directory, Linux, Unix OS under various LAN and WAN environment.
• Hands on experience in installing and configuring DNS and DHCP server.
• Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks.
• Strong problem solving skills, extremely organized, detailed and deadline oriented.
• Adapt in preparing Technical Documentation and presentations using Microsoft VISIO/Office.

TECHNICAL SKILLS

Routers: Cisco 1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600, Juniper M7i, J230, M320

Switches: Cisco Catalyst 3550, 3750, 4500, 4900, 6500, Nexus 2248, 5548 and 7010, Dell S4810, S60, S55

Firewalls & Load Balancers: Cisco ASA 5540 series, Checkpoint 6k, 7k, 15k, 23k, Palo alto PA2020, PA3050, PA5050, IPSEC and SSL VPN, IPS/IDS, IOS Firewall features, DMZ set up, F-5 LTM

Routing: OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing

Switching: VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security

LAN/WAN Technologies: Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3, OC Standard, DSL, ISDN

Protocols: IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH

Network Monitoring and Management Tools: Solar winds, Indeni, Nagios XI, Wire Shark, SNMP, Elastic Search, Logstash and Kibana and WhatsUp Gold

Operating Systems: Windows Server 2008 R2/ 2003, Windows XP Professional, Red hat Linux, UnixSun Solaris 9/8

AAA Architecture: TACACS+, RADIUS, Cisco ACS

PROFESSIONAL EXPERIENCE

Confidential, OFallon MO

Sr Network Engineer

Responsibilities:

• Installation, configuration and troubleshooting of Checkpoint (23k, 15400, 4400, 2200 series with GAIA OS R80.20/R80.10/R70.30) Palo Alto Firewalls and Fortinet.
• Responsible for Configuring Cisco and Dell Routers and Switches.
• Configuring, deploying &upgrading the Cisco,Nexus5672 SeriesSwitch fabric links.
• Configuration& troubleshooting of Cisco and Dell switches, routers and Firewall.
• Troubleshooting layers 1, 2 and 3 of all network devices including T1/T3/NNI/Backbone circuits.
• Deployed & Implemented rules and created various zones in Palo alto firewalls like PA2020, PA5020, PA5050.
• Installation, configuration and troubleshooting of Cisco ASA, Checkpoint (2300, 15400, 4400, 2200, 1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600 series with GAIA OS R87.30, R80.10, R80.20) and Palo Alto Firewalls.
• Adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
• Experience on Panorama firewall management tool whichprovides centralized monitoring and management of multiplePalo Alto devices from single window.
• Migrating Cisco ASA Firewalls to Palo alto firewall.
• Worked with IDS/IPS to identify threats in the network for rapid containment and remediation.
• Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
• Automated firewall rules using tufin, worked on Network Security policy management and Firewall management using tufin secure track and secure change.
• Ability to analyze, configure and troubleshoot networks, Performing Maintenance activities in Switches, Routers and firewall.
• Working with Agile and Kanban for Daily Standup meetings(SCRUM), providing status reports, coordinating with customers getting features created and working on stories.
• Oversaw daily operations, including administration of local area networks (LAN), wide area network (WAN), and wireless network infrastructure along with configuration management and implementation of all routing and switching devices, access points (AP), wireless controller, and network security devices
• Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Firewall policy optimization and rule base cleanup on checkpoint device using tufin secure track.
• Created Zones/USP in tufin for prod and test networks.
• Used Infoblox/Efficient IP for DNS,DHCP and IP Address management.
• Worked on PCI Compliance, Smart Optimize and removed all the unwanted rules and unused objects.
• Configure a Site-To-Site IPsec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured and troubleshooted F5 LTM, GTM series like 6600, 6800for different applications and monitoring the availability.
• Implemented the numerous firewalls rules on the Palo alto, Checkpoint and Fortinet with both Hide Nat and Static NAT.
• DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
• Providing Technical Support and solutions forNetwork Problems.
• Upgrading IOS, troubleshootingnetworkoutages, Provided expensive network troubleshooting, wireless hard wired and multicast
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.

Environment: Cisco routers, switches, Checkpoint Firewalls, Palo alto Firewalls, Fortinet Firewalls OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.

Confidential, Warren MI

Sr. Network Engineer

Responsibilities:

• Responsible for Configuring Cisco and Juniper Routers and Switches.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
• Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Configured HSRP and VLAN trunking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Led the installation of switches and servers for Consumer project usingnetwork diagram, patch plan.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4. Configured IP access filter policies.
• Configuring, deploying &upgrading the Cisco,Nexus 5000 and Nexus7000SeriesSwitch fabric links.
• Configuring OSPF and Static routing on JuniperM and MX series Routers.
• Deployed & Implemented rules and created various zones in Palo alto firewalls like PA2020, PA2050.
• Maintain, and troubleshoot Cisco IOS SIP gateways and TDM trunks, plus VoIP UC servers, infrastructure, and applications.
• Worked on Infoblox for DNS and IP management.
• Defined policies within Cisco Prime to meet the network requirements.
• Configured Wireless Access Points, Controllers using Cisco Prime.
• Cisco Wireless WiFi implementation/configuration for Aironet 1240 AG Series Access Points, Aironet 1500 Series Mesh Access Points, Cisco IP Transfer Point, 4400 Series Wireless LAN Controllers and Wireless Location Appliance.
• Responsible for entire LAN and WAN maintenance and troubleshooting of the company network.
• Involved in the Team of Data Center Operations to perform duties like administration and deployment of Cisco Routers and Switches according to the organization requirements
• Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
• Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
• Ability to analyze, configure and troubleshoot networks.
• Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
• Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing and deploying emergency hot fixes within a global network.
• Configuration and Installation of Cisco firewalls Pix and ASA(PIX 510, 515E, 525 and ASA 5520, 5540).
• Migrating PIX Firewalls to ASA Firewalls
• Involved in a tram for implementing MPLS VPN for the Branch locations.
• Experience on adding Aruba controllers 7200, 7210 and AP’s105, 225, 325, also adding these devices in Airwave for monitoring, Site Survey, Air Magnet.
• Using solar winds Orion platform to monitor networking and systems management products.
• Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.
• Handled deployment and management Checkpoint GAIA, R75, R71, R65 and Cisco ASA 5500 series
• Implemented the numerous firewalls rules on the Checkpoint with both Hide Nat and Static NAT.
• Configured the Checkpoint Anti-Spoofing on the right interfaces to enable the traffic.
• DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
• Providing Technical Support and solutions forNetwork Problems.
• Upgrading IOS, troubleshootingnetworkoutages.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.

Environment: Cisco routers, switches, ASA Firewalls, Cisco Prime, Meraki, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, Palo alto, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.

Confidential, Albany NY

Sr Network Engineer

Responsibilities:

• Configuring, deploying & upgrading the NX-OS operation system in the data center
• Replacing the 3750X switch with a stack of 4507 switches and creating Vlans for Production and Wireless whose traffic was segregated by access-lists to restrict traffic flow between them.
• Experience working with using EIGRP/OSPF as a internal Company routing protocol and Using BGP as a WAN protocol towards Service Provider.
• Support a corporate voice infrastructure using all of the following Cisco technologies: Call Manager, Unity, Voice Gateway, LAN routing & switching, wireless, and QoS
• Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Experience with configuring Virtual Server and Configuring Load balancing methods in F5 LTM
• Implementing & troubleshooting of Juniper switches, routers and Firewall.
• Involved in configuring Juniper SSG-140, Cisco PIX and ASA firewall.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Experience configuring Virtual Device Context in Nexus 7010
• Configured 6500 to support a lot more functions with special feature blades, like firewall, content load balancing, Flex WAN
• Configured, monitored and troubleshoot Cisco's ASA 5500/PIX 515 security appliances,
• Migrating PIX Firewalls to ASA Firewalls
• Defined and rolled out rules firewall policies.
• Involved in iRule management like loading rules, writing iRule syntax using TCL language
• Identify, design and implement flexible, responsive, and secure technology services
• Troubleshooting the issue using Wireshark if an individual is not able to connect to the installed Aironet Access points.
• Responsible for the configuration, implementation and operation of Cisco 3745 routers, Cisco 6509 and 3560 L2/L3 switches
• Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
• Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
• Configured ether channels using PAgP and LACP.
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
• Escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP and GLBP for first hop redundancy and load balancing.
• Prepare, update, and maintain technical and logistical network documentation
• Experience with Fortinet Firewall Administration, Rule Analysis, Rule Modification.

Environment: Cisco routers, switches, ASA Firewalls, Fortinet Firewalls, OSPF, EIGRP, BGP protocols, VLANS, wire shark, IP, TCP, UDP, NAT, DHCP, HTTP, SSH.