We provide IT Staff Augmentation Services!

Network Security Engineer Resume Profile

TX

Professional Summary:

  • Experienced Network Security Consultant with 6 years of IT experience.
  • Strong knowledge based in the planning, design, and implementation of Information Systems and Network Technologies.
  • Skilled technically proficient with multiple firewall solutions, network security, and information security practices.
  • Experienced Checkpoint Firewall, Security and Network Administrator.
  • Advanced knowledge in design, installation and configuration of Juniper NetScreen Firewall ISG 1000/2000, SSG series and NSM Administration.
  • Experienced in design, installation, configuration, administration and troubleshooting of LAN/WAN infrastructure and security using Cisco routers/Switches/firewalls.
  • Experienced in handling and installing Palo Alto Firewalls.
  • Configure all Palo Alto Networks Firewall models PA-2k, PA-3k, PA-5k etc. as well as a centralized management system Panorama to manage large scale firewall deployments.
  • Proficient in design, implementation, management and troubleshooting of Check Point firewalls, Cisco PIX, NetScreen Firewalls, Check Point Provider-1 / VSX, Nokia VPN, Palo Alto IDS, Foundry / F5 Load Balancers, and Blue Coat Packet Shaper systems.
  • Experienced in implementing / maintaining compliance with security and IT standards such as BS7799, BS15000, and SAS70.
  • Designed and Implemented Cisco Nexus Platform, Cisco UCS HP Virtual Connect Flex10.
  • Advanced knowledge in Cisco ASA 5000 series and PIX installation, configuration and maintenance.
  • Experience in Network Intrusion detection/Intrusion Prevention System and Firewalls.
  • Advanced knowledge in Cisco Switches and Routers Configurations.
  • Advanced knowledge in TCP/IP suite and routing protocols, such as OSPF, BGP, and
  • EIGRP.
  • Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.

Skill Set Matrix:

  • Hardware
  • Cisco GSR 12416, 12418, 7200vxr,3640,3600
  • Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500
  • Cisco Routers, Ethernet Switches, F5 LTM, GTM
  • SSL Security Technologies
  • OSI, TCP/IP, DHCP, UDP3, RIP v1, RIP
  • Protocols
  • OSI,TCP/IP,DHCP, UDP, RIP v1, RIP v2, IGRP, EIGRP, TACACS , RADIUS, OSPF, BGP, SSH, TFTP, FTP, SMTP, NTP, LDAP, Kerberos, L2F, L2TP, PPP, Frame Relay, ATM, Sonnet, Fast/Gig Ethernet, HSRP, Token Ring, ISDN, AAA, DES, 3DES, AES, and MD5, VPN IPsec and SSL ,VRRP, HSRP, DNS BIND, DJBDNS, Infoblox , CARP, SNMP
  • Switching
  • STP, VTP, HSRP, GLBP, ARP, PAgP, LACP VLAN
  • Infrastructure
  • DHCP, SNMP, HTTP, HTTPS DNS
  • Operating Systems
  • Windows XP/Vista/7, UNIX Free BSD Linux Operating systems RedHat, OpenSuse, Fedora
  • Firewalls
  • Checkpoint, Cisco ASA, Palo Alto Fortigate, Sonicwall, juniper
  • F5 Products
  • F5 Local Traffic Manager LTM , Global Traffic Manager GTM
  • Checkpoint
  • Checkpoint SecurePlatform Nokia IPSO R65, R71, R75, R75.40, R76, VSX
  • IPS
  • Site Protector 8.1, SNORT Sourcefire
  • Juniper
  • Netscreen, SRX
  • Proxies
  • Websense, Squid, Mcafee
  • Infrastructure Tool
  • InfoBlox, Backbox, Rancid, Solarwinds
  • VAPT
  • Nexpose, Nessus, Metasploit Kali Linux
  • Packet Sniffer
  • Wireshark, tcpdump, fw monitor Snoop
  • SIEM
  • Qradar, Splunk

Confidential

Network Security Engineer

Responsibilities:

  • Primary responsibility for the Core Security of the Network. Managing the entire Network Security Products deployed in the network such as Checkpoint GAIA R75.40/77.20 , Cisco ASA 5510/5520/5550
  • Bluecoat SG810 Administration - Blocking/Unblocking URL's
  • Complete rename of all firewall objects and rules
  • Review and optimize firewall rules using SecureTrack TuFin tool and run firewall audit reports.
  • Worked on the migration to new Checkpoint R7x firewalls from Juniper firewalls.
  • Provide security engineering for implementation in the Motorola enterprise network.
  • Daily responsibilities included design, implementation, support and administration of multiple security products running CheckPoint Provider-1 and VSX, SourceFire, and ISS Realsecure.
  • Provide best practice security consulting for multiple compliance initiatives, with a focus on highly resilient solutions.
  • Creating technical implementation plans, project plans, and worked closely with internal and external customers to supply solutions that fulfill their needs.
  • Regularly performed firewall audits around CheckPoint Firewall-1 solutions for customers
  • Troubleshoot and hands on experience on security related issues on Cisco ASA/PIX, Checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls
  • Provided tier 3 support for CheckPoint Firewall-1 software to support customers
  • Work on JUNOS platform including Juniper SRX240 Firewalls, Network Security Manager NSM , Juniper Space and, STRM, Juniper UAC, Juniper Pulse
  • Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
  • Strong knowledge and understanding with IPsec, Juniper SA Remote Access VPN, and SourceFire intrusion prevention systems
  • Work on configuration and troubleshooting Juniper MAG4500, Juniper MAG4610, Juniper MAG6611 in a dual-factor integration environment.

Confidential

Network Security Engineer

Responsibilities

  • Troubleshooting complex CheckPoint issues, Site-to-Site VPN related.
  • Performed upgrades for all IP series firewalls from R65-R75.
  • Support for all migrations, upgrades, PCI and SOX audit requirements, and vulnerability assessments.
  • Support for all firewalls and related environments.
  • Administered firewalls consisting of 75, 100, and 200, firewalls.
  • Checkpoint firewall upgrade from R55 to R65 on Nokia 390 appliances for headquarters and remote sites.
  • Detailed knowledge of SNMPv3, Syslog, Netflow management protocols
  • Documented network problems and resolutions for future reference.
  • Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using WireShark protocol analyzer and recommended solution for better performance.
  • Risk assessments where done using Nessus, and Internet scanner, on a monthly basis to help ensure that risks to the network are mitigated in a timely manner.
  • Managed Smart Center Checkpoint management server SmartView Tracker
  • Managed Checkpoint Firewalls from the command line cpconfig and Sysconfig .
  • Installing and setting up Firewall Analyzer product to facilitate consulting on an IDS deployment project, using my Cisco Nexus 7k/5k experience to place IDS devices globally.
  • Administration and management of all firewall environments.
  • Management of each firewall is done remotely and onsite at client sites.
  • Black listing and White listing of web URL on Blue Coat Proxy servers
  • Working and commenting on global firewall polices.
  • Providing input on day-to-day security architecture policies and procedures.
  • Developing systems and process to protect, various user groups while accessing public Internet content from malicious hack attacks.
  • Perform troubleshooting through command line interface.
  • Manage LAN WAN and BlueCoat proxy servers.
  • Provides technical expertise in configuration and troubleshooting of various IP routing protocols including OSPF, EIGRP, and BGP
  • Maintained, upgraded, configured, and installed Cisco routers, Cisco Catalyst Switches
  • Network migration from OSPF to EIGRP.

Confidential

Network Engineer

Responsibilities:

  • Monitoring all the MPLS online branches at Data center Disaster recovery using whatsup gold PRTG Network monitoring tool.
  • Preparing reports of the daily activities within the datacenter.
  • Coordinating with Service providers Clients on various implementations.
  • Managing various activities in setting up Data Centers Disaster recovery centers.
  • Configuring PORT MIRRORING, VLAN, STP, RSTP, SNMP, and ROUTING POLICIES on EX8200, EX4200 EX3200 switch.
  • Maintaining all the network devices routers, firewall, switches.
  • Configuring VRRP, Static route, BGP, Routing policies, ACL on Juniper J6350 router and SSG20.
  • Configuring NAT and Route-map on J6350 Router and Cisco router 1941 and 2810.
  • Configuring NAT and ACL on SSG20 Router.
  • Configuring juniperSSG20 router on multiple bank branches.
  • Knowledge in OSPF, EIGRP and RIP.
  • Knowledge in Dynamic routing protocols.
  • Up-gradation of JunOS and IOS Cisco.
  • Configuring multiple NATs in Juniper SSG20 Routers.
  • Configuring Export and Import policies in JunOS.
  • Co-ordinates with JUNIPER-TAC for higher end issues in Router and Switch Failure.
  • Preparation of all Branches Link up time / down time report to maintain SLA with Customer.

Confidential

Network Engineer

Job Responsibilities: -

  • Configuring Routers as of client requirement which includes routing protocols such as RIPv2, EIGRP, OSPF
  • Technical support for field engineers during installation.
  • Implement Security using access-list, route maps NAT depending upon the network requirement.
  • Responsible for implementation and troubleshooting of network connectivity at all the locations.
  • Responsible to provide network connectivity as and when new location comes in to the network.
  • Troubleshooting hardware and network related problems.
  • Configured and managing site-to-site VPN tunnel in Cisco ASA Firewall.
  • Configured and managing Remote Access VPN on Cisco ASA Firewall.
  • Configured Remote Access VPN on server side and Cisco VPN Client on client side.
  • Configured Failover between Cisco ASA Firewalls.
  • Responsible for implementing and troubleshooting various Networking Devices such as Routers, Cisco Switch, Cisco Firewall.
  • Configured and administered Windows server 2008 R2 Active Directory.
  • Responsible for the setup of user accounts, organizational units, and security groups. Setup group policy for users OS Windows XP, 7, and 8.

Hire Now