PROFESSIONAL SUMMARY:

• Cisco certified network engineer with over 8 years of experience in IP network design, Network integration, Routing, Switching, Data center, Firewall technologies, Deployment and troubleshooting of complex network systems.
• Experience in Configuring and maintain security policies on multi - vendor firewalls and manage through algosec fire emblem flow.
• Configured ACLs on multi-vendor firewalls for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT Control using Object NAT.
• Have worked on ASR 1002 series Routers, Cisco Catalyst series 6500, 4500, 3750, 2950 and 3500 switches.
• Experience in Configuring all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Good Understanding of Multiple Contexts in ASA firewalls and implemented different failover mechanisms among ASA firewalls.
• Worked with multiple models of cisco ASA including 5520, 5515-X, 5580 in single context and multiple context mode and configured them in Routed and Transparent mode.
• Worked on Cisco 7200, 3800, 3600, 2900, 2800, 2600, 1800 series Router and Cisco 2900, 3500, 4500, 5500, 6500 series switch.
• Worked with Juniper high performance edge routers M320, T640, MX960 and Switches EX2200 and EX4300.
• Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches.
• Worked on multi-vendor load balancers including F5 Big IP LTM, Cisco ACE and VMware NSX between multiple centers.
• Troubleshoot and Worked with Security issues related to Cisco ASR 9K, Checkpoint, IDS/IPS and Juniper ASA firewalls.
• Worked on Checkpoint Firewalls, create the policies and push the policies on checkpoint and as well as other firewalls like Cisco ASA and Fortinet firewalls.
• Configuring ACL on ISE for making policies.
• Monitor the network traffic through Orion Solar Winds and Spectrum syslog server.
• Implemented multiple VDC's and VPC's along the 9k, 7K and 5K, utilizing VRF's to segregate routing and configuring the FEX modules with the parent switch.
• Enhanced level of experience with OSPF, BGP, and TCP/IP.
• Configuring and implementing Remote Access vpn Solution: IPsec VPN, any connect VPN, SSL VPN.
• Experience with the implementation of multicast/MPLS/l2vpn.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7 Network Operation Center.
• Experience in physical cabling, IP addressing and Sub-netting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Access control server configuration for RADIUS & TACAS+.
• Expertise with 802.11x wireless technology.
• IP addressing and IP address scalability by configuring NAT/PAT.
• Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Lab & Production Environments.
• Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches includes (5548, 7010) including CISCO NEXUS Fabric Extender (2232, 2248).
• Sound knowledge of virtual firewalls like checkpoint VSX, IDS, IPS as well as encryption techniques.
• Worked on webserver in DMZ network configuring the firewalls units, added virtual IPs, creating security policy.
• Advanced knowledge, design, installation, configuration, maintenance, migration and administration of Checkpoint Firewall R55 up to R77, all ASA models and Palo-alto firewalls including PA-5060 and PA-5050.
• Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
• Expertise on cisco IOS, Cisco IOS-XR, Cisco Cartos, Cisco NX-OS, JUNOS.
• Finely tuned analytical/critical thinking and debugging skills with excellent verbal and written communication skills.
• Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills.

TECHNICAL SKILLS:

Cisco Routers: Cisco ASR9k, GSR 12000, 7600, 7500, 7200 VXR, 3800, 3700, 2800, 2600

Cisco Catalyst Switches: Catalyst 6500, 4000, 3550, 2900

Nexus Switches: Nexus5548, 5596, 6000, 7009, 7018; Cisco Catalyst: 6506, 6509, 4928, 4948, 4507,4510, 3750,3560, and 2960

IP Routing Protocols: BGP, OSPF, EIGRP, IGRP, RIP v1 & v2, IS-IS

MPLS: LDP, MPLS L3 and L2 VPN

Load Balancing: Cisco ACE 4700 series, F5 LTM, F5 GTM

Firewalls: Palo-Alto, Cisco ASA 5500, Cisco PIX 500, CheckPoint r60, checkpoint r65, Bluecoat

LAN technology: Ethernet, Fast Ethernet, Gigabit Ethernet, 10Gigabit, Ethernet, Port Channel, VLANS, VTP, STP, RSTP, 802.1.Q.

WAN/core technology: ATM, Frame-Relay, ISDN, PPP, HDLC, Channelized links T1/T3

VoIP Devices: Cisco IP phones, Cisco 5500, 6500 series controller, Avaya 3000, 6000, 7200 series Controllers

Wireless Technology: Cisco AP, LWAP, Access Points, WLC

Ticketing software: Connect Wise, Remedy system, service-now.

Networking monitoring tools: Solar winds, SNMP, Wireshark

IPSEC/VPN Configuration: PIX to Router, Router to Router, PIX to VPN wildcard client, Router to VPN wildcard client, PIX to PIX, fully meshed configurations

Operating Systems: Windows Server/8/7/Vista/XP, Nexus OS, Cisco IOS-XR, Linux, Unix (Mac OS)

Microsoft Office: Visio, Excel, PowerPoint, Word

Languages: Unix, Python, Basic in Perl and shell scripting

PROFESSIONAL EXPERIENCE:

Confidential, Wilmington, DE

Sr. Network Engineer

Responsibilities:

• Installing, configuring Cisco Catalyst switches 6500,3750&3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Designing and deploying EIGRP, OSPF, BGP, MPLS-VPN protocols and routing technologies for connecting data center to remote locations.
• LAN Refresh activity of 3850, 6504 E, 6506 E, 6509 E switches.
• Deployed Cisco Catalyst 6500, 4500, 4000, 3750, 3850, 3560 (Layer 2 through 7) and Cisco ASR 1000, 7000, 9000 series routers.
• Providing support for decommission of the 3750 switches with 3850 switches.
• Worked on usage of different types of Network modules, SFP’s such as LRM and X2 10 Gig.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
• Experience in configuring, upgrading and verifying the NX-OS operation system.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s stage.
• Hands on experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Creating, Customizing iRules, Virtual servers, and nodes in F5 load balancer.
• Implementation of Access Lists for allowing/blocking desired traffic.
• Administer Palo Alto Firewalls to allow and deny specific traffic and to monitor user usage for malicious activity and future QoS.
• Network redesign and configuration WAN and LAN infrastructure utilizing redundant Cisco ASA firewalls, Cisco switches and routers over MPLS and VPN connectivity.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.).
• Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Hands on experience on IPsec VPN, Remote access VPN, create a secure tunnel over public network and worked on various VPN protocol like PPTP, L2TP, L2F.
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Expertise in maintenance of layer 2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Involved in Switching Technology Administration including creating and managing VLANs, Port security, Trunk-Ing Protocol, STP, Inter-VLAN routing and LAN security.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• Configuring VLANs/routing/NATING with the firewalls as per the network design.
• Performing network monitoring, providing analysis using various tools like Wire-Shark, Solar-winds etc.

Environment: Cisco 3750X, 3850, 6509E, 6506E, 6504E switches, Cisco 3660/3845/7609 Routers, VLAN, OSPF, BGP, MPLS, HSRP, VRRP, GLBP, ASA 5580, Nexus 5K.

Confidential, Redmond, WA

Sr. Network Engineer

Responsibilities:

• Worked on Cisco Layer 2 switches (spanning tree, VLAN).
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• WAN Infrastructure running OSPF & BGP as core routing protocol. 
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Troubleshooting IOS related bugs based on past history and appropriate release notes.
• Worked on different connection medium like Fiber and Copper Connectivity. 
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Performed and technically documented various test results on the lab tests conducted.
• Planning and configuring the entire IP addressing plan for the clients' network. 
• Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
• Supported networks, which are comprised of 2000+ Cisco devices.
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
• Deployed the switches in high availability configuration with HSRP.
• Configured port-fast, uplink fast and other spanning tree features.
• Support various Series of Cisco Routers like 7200/7600 series.
• Support Complex 6500 /5500 Series Switches.
• Network Monitoring using tools like Cisco Works 2000 and Net-flow Analyzer.
• Troubleshoot network problems using Packet Analysis tools like Ethereal.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Creating policy and push them on Security gateway in Checkpoint Firewall.
• Upgrade GAIA when required on Checkpoint FW.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K.

Confidential, Providence, RI

Sr. Network Engineer

Responsibilities:

• Responsible for implementing, supporting, and maintaining 24x7 network services.
• Troubleshooting of Cisco 2900, 3900, 6500, 7500, 7200 Series routers.
• Coordinated efforts with Engineers to ensure all network devices conformed to defined network standards.
• Configured various Routing protocols such as RIP, OSPF, EIGRP and static routing.
• Provided configuration of STP and Port Security on Catalyst 6500 switches.
• Troubleshooting of Cisco 2800, 2900, 3900, 7200, 7600, ASR9k, CRS, and GSR 12k Series routers.
• Configured Cisco IOS XR security features in both owner SDR and non-owner SDRs.
• Configured legacy route map using the new Cisco IOS XR Routing Protocol Language (RPL).
• Worked on Fiber channel over Ethernet (FCOE) for connecting 10gigabit Ethernet networks.
• Maintaining Core Switches, creating VLANs and configuring VTP.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configuring Palo Alto’s for inline use and Adding signature attacks on prevention lists.
• Experience with all F5 BIGIP Platforms running LTM and GTM from planning greenfield installations to conducting platform upgrades to an existing install base of the F5s.
• Experienced working with Tomcat and Apache servers in troubleshooting network issues for our internal server teams.
• Designed on - premise IVRs for integrating with the ACD and CRM systems to ensure maximum efficiency in call handling.
• Configured with F5 Load balancers in Failover for Load balancing and SSL handling.
• Performed redistribution with OSPF, EIGRP, RIP version 1 and 2 to enable communication with backbone.
• Auto Tuning Palo Alto Signatures and syncing between the data centers, working on PCI’s and managing it during peak if needed.
• Configured OSPF for Stub area, Totally Stubby Area and NSSA.
• Regular meetings with project Manager and security team to discuss Palo Alto Weekly Status and updates on changes made on the firewalls.
• Used Cisco ISE for Security Policy Attributes.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Configured static NAT, dynamic NAT, dynamic NAT overloading.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Configure and Install F5 New Virtual Servers, Profiles, IRules, Pools, Nodes, Generate CSR Certificate, SSL Certificates Etc.,
• Route configuration and point code checks for System Technician and Network Technician.
• Knowledge and experience of 802.11 a/b/g/n Ethernet standard for wireless Technology.
• Worked with other team members in testing of the network architecture.
• Participated in quality system implementation project.
• Configure wireless routers on enterprise network.

Environment: Cisco 3550/4500/6500 switches, RIP, OSPF, EIGRP, Cisco 2800/2900/3900/7200/7600 , ASR9k.

Confidential

Network Engineer

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure.
• Configured Firewall logging, DMZs & related security policies & monitoring.
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fa
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+).
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations.
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls.
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Used various scanning and sniffing tools like Wire-shark.
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN.
• Documenting and Log analyzing the Cisco PIX series firewall.
• Configured BGP for CE to PE route advertisement inside the lab environment.
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues. 

Environment: Cisco routers 7200, 3700 and Cisco switches 4900, 2900, LAN/WAN infrastructure, Cisco VPN, BGP.

Confidential

Network Engineer

Responsibilities:

• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
• Configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN / WAN, router/firewalls.
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuring VLANS, VTP’s, enabling trunks between switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.

Environment: Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800 routers, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, and Sniffer.