Confidential

Role

NETWORK SECURITY ENGINEER/CONSULTANT

• Responsible for handling security devices deployed globally NA, APAC, EMEA regions - Firewalls, VPN, ACS, WSA/CWS, IPS, Application Firewall, ISE, Microsoft TMG.
• 24/7/365 technical support calls- L2 and L3.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls 160 firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Knowledge of PAN-OS 5.0 to 6.0
• Configuration, Troubleshooting and Maintenance of Checkpoint Firewalls 20 firewalls - IP395 and IP560.
• Knowledge on Checkpoint- management and logging server R75, R77 Gaia OS.
• Experience on Checkpoint firewalls with R65, R70, R75, and R76 version IPSO 6.2 OS.
• Hands-on experience on Cisco ASA Firewalls - ASA 5550.
• Troubleshooting the VPN tunnels by analyzing the debug logs and syslogs.
• Serve as lead on configuration and troubleshooting VPN's on all vendor firewall devices.
• Hands-on experience on Cisco WSA/CWS with Cloud connector mode -S170, S370 and S670.
• Knowledge of ASYNC-OS 7.5.0 to 8.0.5
• Knowledge of modifying and maintaining the Proxy Pac file.
• Worked on Cisco ISE 3300 series -wireless access and sponsor portal.
• Knowledge of ISE version 1.2.0.
• Maintenance of Cisco ACS server - Authenticating, Authorization and Accounting for several Network Devices in the environment. Versions 4.2 to 5.2
• Worked of Radware DefensePro IPS devices-inline mode
• Configuring and Troubleshooting of Radware Application Firewall AppWall .
• Experience on Radware ApSolute Vision management server for IPS devices monitoring, maintenance and troubleshooting purpose.
• Responsible for maintenance and troubleshooting of Microsoft TMG-threat management gateway 2010 for LYNC, OWA and Active-Sync servers.
• Responsible for Security Devices configuration backup and software updates/bug fixes.
• Knowledge of writing System Maintenance and Technical Document SMTD .
• Ticket management on Service-Now and Change request process.
• On-Site primary point of contact for Security Operations team.

Confidential

Role

NETWORK SECURITY ENGINEER/CONSULTANT

• Provide 24/7 technical support calls L1, L2, L3 Support calls for managed security services, security engineering, infrastructure, management. Manage and monitor client security devices worldwide.
• Knowledge and experience of TCP/IP architecture, TCP/IP protocol suites and dynamic routing protocols including RIP, IGRP/EIGRP, OSPF, and BGP eBGP / iBGP
• Hands-on experience on Checkpoint Firewall R75 and Cisco ASA 5520 firewalls.
• Responsibility to provide hands on technical support for the remote user base.
• Switching / Routing Protocols, VLANs, STP, LLDP, TACACS, SNMP, IGMP, DHCP, BGP, OSPF, RIP, PIM, VRRP, and IPv6.
• Responsible for installation, troubleshooting of firewalls Cisco firewalls, Checkpoint firewalls and Juniper firewalls and related software, and LAN/WAN protocols.
• Troubleshooting the VPN tunnels by analyzing the debug logs and packet captures
• Configuring failover for redundancy purposes for the security devices. Implemented the stateful serial failover for PIX/ASA firewalls, Checkpoint Clustering and load balancing features.
• Planning, designing and implementing a secure ODC Network setup for upcoming projects.
• Knowledge of implementing Bluecoat WebFilter.
• Perform firewall migration projects between different technologies.
• Serve as lead on configuration and troubleshooting VPN's on all vendor firewall devices.
• Perform QA testing on new network security technologies and appliances.
• Configured redundant interfaces, dhcp server, dhcp relay, ntp settings, and sub interfaces on firewalls.
• Develop business processes and improvement procedures for the Managed Device Team.
• Developed a technical training curriculum and serving as the technical trainer/mentor for new and existing hires.
• Provide advanced training seminars for the Managed Device team on managed security platforms.
• Uphold positions in providing 24/7 on-call support rotation for our managed customer base.

Confidential

Role

INFORMATION/ INFRASTRUCTURE SECURITY ENGINEER

• Network security monitoring: analysis identification of incident activities system log files.
• Review Firewall release for any possible non-compliance or vulnerability.
• Assist with development of security policies, standards and procedures.
• Configuration and maintenance of Checkpoint NGX R65.
• Configuration and maintenance of Juniper Net Screen SSG -550.
• Implementing and Troubleshooting of VLAN.
• Implementing Administration of Zoning Architecture project Imp of various zone like Server, Intra Internet Zone
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
• Generating RCA Root Cause Analysis for critical issues of layer1/layer2/layer3 problems.
• Worked on Cisco ACS 5.2.0.26.5 for creating new VPN accounts.
• Troubleshoot and hands on experience on security related issues on Cisco ASA/PIX, Checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls.
• Experience on Check Point Firewalls NG, NGX, NGX R65, R70, R75.
• Experience in creating multiple policies and pushing them in to Checkpoint Firewall Gateways and hands on experience in managing the Checkpoint Management Server with SPLAT operating system.

Confidential

Role

NETWORK SECURITY ENGINEER

• Deployed and managed the Symantec Security Information Manager administered industry best practices in flagship security operations center SOC . Direct organizational projects to timely completion spearhead network security audits/modifications for clients.
• Configuration and maintenance of Checkpoint R61 and Cisco ASA firewall.
• Implemented and integrated new security solutions into existing customer network infrastructures and coordinate network security audits and changes with clients.
• Configured site-to-site and client VPNs and identify and resolve firewall and VPN connectivity issues.
• Monitored and troubleshoot production and corporate network issues. Network environment includes Cisco 7200, 2500 routers, 5500, 4000, 2900 switches and NT nodes.
• Implemented extended access list, NAT, EIGRP and HSRP on Cisco routers
• Implemented VLAN, VTP domain, trunking and EtherChannel on Cisco 5500 switches
• Initial configuration, installation and management of ArrowPoint load balancing devices.
• Provided training and prepared documents for new employees in operations department.
• Troubleshoot network connectivity issues such as DNS, WINS and DHCP
• Defined/tracked standard baselines and configuration sets for all SOC managed and monitored security devices, as well as technical expertise and operational knowledge standards for organization.
• Served on Technical Team that oversees every phase of highly complex global operations projects. Architect network security solutions utilizing a variety of cutting Edge technologies.
• Ensured alignment of client requirements with operational capabilities. Deploy improved SOC operational procedures and advise customers on IT security best practices.
• Developed technical documentation content for the internal technical knowledge base.
• Mentored new security engineers for the Managed Security Services group.

Confidential

Role

NETWORK SECURITY ANALYST

• Managed a team of ten security analysts who provide a security event analysis roll, level-one network security engineering support, and a switchboard function for the SOC
• Managed user accounts, groups, print queues and controlling access rights using Active Directory.
• Responsible for managing Citrix Server 4.0 and configuring Citrix clients.
• Installed, configured, performed troubleshooting and deployed SP1 for Windows 2003 Servers.
• Performed day-to-day administration functions, backup restoration, file server maintenance.
• Supported all remote offices and home-based users using NetMeeting, VNC and Cisco VPN.
• Created images for various divisions for all desktops and laptops using Ghost.
• Solely responsible for all IT decision making, support and administration at a site of more than 200 'demanding users' in a fast paced architectural and engineering environment.
• Implemented a new in-house printing solution that includes Xerox multi-functional copier, printers, scanners and wide format printer.
• Empowered the team to be capable in providing level-one support for the Network Security Engineering team by providing formal hands-on training and by implementing step-by-step procedures
• Ensured the team has quarterly/annual objectives and goals
• Ensured the team performs quality analysis of security events via routine audits/coaching
• Provided customers accurate and insightful analysis of security events in a timely manner
• Ensured all team members providing top notch customer service via routine audits/coaching
• Ensured all work within team is being recorded in a work order, copiously notated, and ensuring the requests are addressed in timely fashion
• Provided technical support for hardware/software configurations and applications.
• Administered and supported local/LAN printers, LAN IDs in Novell.
• Administered/provided troubleshooting for Lotus Notes and MS Outlook.
• Utilized Remedy for call logging.
• Created and instructed intensive internal technical/procedural training program s in place to continue raising the bar for technical/procedural knowledge within the team
• Ensuring sufficient coverage is in place for all three shifts 24/7.

Confidential

Role

NETWORK SECURITY ENGINEER

• Set up and administered servers for development and production environments.
• Monitored and maintained aspects of information technology infrastructure and systems.
• Maintained Local Area Network connectivity including switches, routers, wiring closets, and drops to the desktops.
• Responded to emergency outages, disaster recovery, and the corporate firewall.
• Analyzed and developed improved security procedures to increase productivity and profitability. Performed security audits and patch development on production servers.
• Provided support for internal network and system related trouble tickets.
• Managed corporate Checkpoint Firewall implementing security rules and mitigating network attacks.
• Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1
• Migrated previous corporate Checkpoint 4.0 Firewall-1/VPN-1 on Windows NT to Nokia IPSO appliance for increased performance and stability.
• Designed and constructed 32 remote data centers, at plant facility locations
• Assisted in the WAN service provider swap from MCI to ATT
• Provided hardware and software support to corporate users and IT staff
• Provided technical support on hardware and software to remote production sites
• Assisted in the process of departmental projects from inception, implementation and turnover
• Used NT utility to analyze performance issues on disk I/O, network, CPU and memory usage
• Troubleshoot TCP/IP and WINS related problems