PROFESSIONAL SUMMARY:

• CCNP certified professional with more than 7 years of extensive experience in network design, implementation, troubleshooting, engineering, managing and providing security which includes designing, deployment and providing network support
• Hands on experience of Cisco IOS/IOS-XR/NX-OS, Juniper JUNOS for configuration troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
• In-depth expertise with F5 GTM/LTM 8950 and VIPRION configuration/installation/support
• Design and configuring of OSPF, BGP on Juniper routers MX960, MX480 and SRX firewalls SRX240, SRX550
• Experience on PIX firewalls, ASA 5540/5550 firewalls. Implemented security policies using ACL, firewall, IPSEC, SSL, VPN, IPS/IDS, AAA TACACS RADIUS
• Experience on load balancers by implementing all required policies and to convert the changes depending on day to day usage.
• Hands on experience in providing support toCisco WSA and Blue coat proxies and their implementations
• Experience working on F5 load balancer in order to reduce the burden on the network
• In-depth knowledge and hands-on experience in Tier II ISP routing policies, network architecture, IP subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits
• Experience in Juniper product line for configuring and troubleshooting EX-2200, EX-4200, EX-4500 switches, SSG 550M, ISG 2000, SRX-210, SRX-240, SRX-650, SRX-1400, SRX-5800 series Firewalls
• Experience in setting up Juniper Q-Fabric lab including QFX3100-Director Device, QFX-3600 and QFX-3008-Interconnect Devices
• Experience in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems
• Experience in implementing and troubleshooting routing protocols RIP, RIPv2, EIGRP, OSPF, ISIS and BGP to avoid delays and congestion in network
• In-depth experience in areas related to L2 technologies which includeVLAN's, VTP, STP, RSTP
• Experience working with high performance data center switch like Nexus 7010,7018, 7009, 5020, 2148, 2248 devices
• Experience in layer-3 routing and layer-2 switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
• Extensive use of Remedy Ticketing System to deal with escalation problems for routing, switching and WAN connectivity issues
• Working with Cisco, Juniper, F5, for opening TAC case and resolving issues to meet project deadlines
• Working knowledge with monitoring tools like Solar Winds and network packet capture tools like Wire-shark
• An efficient and adoptable person who follows an organized and well planned approach for troubleshooting engineering issues
• A good team player and compatible to the system of company, who is ready to take up any responsibility given at any time

TECHNICAL SKILLS:

NETWORKING PROTOCOLS: HTTP, FTP, DHCP, DNS, TCP, UDP, ARP, SNMP, ICMP

ROUTING PROTOCOLS: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP

REDUNDANCY AND MANAGEMENT: HSRP, RPR, NSF/NSR

NETWORK MONITORING:Wireshark, solar winds, TCP dumps

LAN TEHCNOLOGIES: Ethernet, Fast -Ethernet, Giga -Ethernet, VLANS

WAN TECHNOLOGIES:Frame Relay, ISDN, ATM, MPLS, leased lines exposure to PPP, DS1, DS3, OC3, T1 /T3 SONET

NETWORK SECURITY: NAT/PAT, Cisco ASA Firewalls 5580-20, Cisco ASA Firewalls 5580-20, IPS/IDS, DMZ Setup, CBAC, Cisco NAC, ACL, IOS Firewall features, IOS Setup and Security features.

CISCO EQUIPMENTS: Cisco routers 7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series Cisco Catalyst switches 6500, 4900, 3750, 3500, 4500, 2900 series ,PIX Firewall 506/515/525/535 , Cisco ASA Firewall 5505/5510 , Cisco ACE load balancers

OPERATING SYSTEM: Microsoft XP/Vista/7, UNIX, Linux Redhat, Ubuntu, Fedora

PROFESSIONAL EXPERIENCE:

Confidential

Network security Engineer

• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls, installing and configuring new juniper SRX series firewalls to meet day to day work
• Adding and removing checkpoint firewall policies based on the requirements of various project requirements
• Monitoring the network traffic with the help of QRadar and Cisco IPS event viewer
• Managing and implementation of PORs port open requests based on the requirements of various departments and business lines
• Implementing IPsec and GRE tunnels in VPN technology
• Implementing and troubleshooting on-call IPsec VPNs for various business lines and making sure everything is in place
• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment
• Installing and configuring new cisco equipment including Cisco 2900, 3900 series routers,Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company
• Adding and modifying the servers and infrastructure to the existing DMZ environments based on the requirements of various application platforms
• Managing and providing support to various project teams with regards to the addition of new equipment such as routers, switches and firewalls to the DMZs
• Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment
• 24x7 on-call escalation support as part of the security operations team
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers

Confidential

Sr.NetworkEngineer

• Experience with Firewall administration, Rule analysis, Rule modification
• Experience on F5 load balancer in order to maintain balance in the network systemwith application specific usage
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Installing and configuring juniper M series router along with juniper switches QFX series
• Configured and resolved various OSPF issues in an OSPF multi area environment
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team
• Hands-on experience with WAN ATM/Frame Relay , routers, switches, TCP/IP, routing Protocols BGP/OSPF , and IP addressing
• Configured CIDR IP RIP, PPP, BGP and OSPF routing
• Involved in the configuration troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms
• Deployed 7613 as PE and CE router and configured and troubleshoot the edge routers
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12
• Configured egress and ingress queues for ISP facing routers using CBWFQ
• Generating RCA Root Cause Analysis for critical issues of layer1/layer2/layer3 problems
• Experience with implementing and maintaining network monitoring systems Cisco works and HP open view and experience with developing complex network design documentation and presentations using VISIO
• Estimated project costs and created documentation for project funding approvals

Confidential

Sr.Network Engineer

• Worked on Cisco Layer 2 switches spanning tree, VLAN
• WAN Infrastructure running OSPF BGP as core routing protocol
• Support various routers like 2600/3600/7200 series routers
• Planning and configuring the routing protocols such as OSPF, RIP, and static routing on the routers
• Tested authentication in OSPF and BGP
• Configured and troubleshoot of OSPF and EIGRP
• Troubleshooting IOS related bugs based on past history and appropriate release notes
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems
• Planning and configuring the entire IP addressing plan for the clients network
• Assist the certification team and perform configuration of LAN WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems
• WAN Infrastructure running OSPF as a core routing protocol
• Follow process procedures for change configuration management
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513
• Deployed the switches in high availability configuration with HSRP
• Configured UDLD, port-fast, uplink fast and other spanning tree features
• Support various series of Cisco routers like 7200/7600 series
• Support complex 6500 /5500 series switches
• Network monitoring using tools like Cisco Works 2000
• Created lab demonstrations for new technology deployments with loaner equipment from various vendors and presented the findings to upper management.

Confidential

Network Engineer

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured firewall logging, DMZs, related security policies and monitoring
• Creating private VLANs preventing VLAN hopping attacksand mitigating spoofing with snooping IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall
• Enabled STP enhancements to speed up the network convergence that include Port-fast, Uplink-fast and backbone-fast
• Configured network access servers and routers for AAA security RADIUS/ TACACS
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE-TO-SITE VPN on Cisco routers between headquarters and branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core failover firewalls
• Installation configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Hands on experience working with security issue like applying ACL's, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment

Confidential

AssociateNetworkEngineer

• Configuring and troubleshooting multi-customer ISP network environment
• Involved in network monitoring, alarm notification and acknowledgement
• Implementing new/changing existing data networks for various projects as per the requirement
• Troubleshooting complex networks layer 1, 2 frame relay, ATM, Point to Point, ISDN to layer 3 routing with MPLS, BGP, EIGRP, OSPF and RIP protocols technical issues
• Providing support to networks containing more than 2000 Cisco devices
• Performing troubleshooting for IOS related bugs by analyzing past history and related notes
• Carrying out documentation for tracking network issue symptoms and large scale technical escalations
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support
• Commissioning and Decommissioning of the MPLS circuits for various field offices