SUMMARY:

• Accomplished Network and Security engineering professional with 7+ years of real time experience in designing, deploying, migrating & supporting critical multi - site redundant Network environments.
• Design, develop, and document comprehensive test plans to setup of test scenarios, both hardware and software components.
• Experience testing Cisco & Juniper routers and switches in laboratory scenarios and then deploy them on site for production.
• Strong grasp of current and future technologies including TCP/IP, IPv4/IPv6, RIP, EIGRP, OSPF, BGP, Frame Relay, ACL, VPN, Wireless LAN and configuration of VLANS.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, ISL/ 802.1q, Ether channel, Port Security, STP, RSTP and MST.
• Extensive experience in Layer 3 routing and Layer 2 switching. Experienced dealing with router configurations like 7200, 3800, & 2800 and switches 6500, 4500, 3750, 2900 and 3500XL series.
• In depth understanding of IPV4 and implementation of Subnetting.
• Deploying, migrating and supporting critical multi-sites.
• Hands on experience of data center environment, Support, Troubleshooting and implementation of VPC, VDC and Fabric path on Nexus 9K, 7K, 6K, & 2K Switches. Experience in Configuring, upgrading and verifying the NX-OS operation system.
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Cisco Nexus 7000, 5000 series installation and configuration, implementation with Port channel and troubleshooting in a TCP/IP OSPF environment.
• Experience with F5 load balancers - LTM, GTM series like 6800 and 8900 for the corporate applications and their availability.
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Good knowledge on juniper SRX240, SRX220 and SRX550 series Firewalls.
• Implemented Positive Enforcement Model with the help of Palo A lto Networks.
• Experienced in handling and installing Palo Alto Firewalls with exposure to wild fire feature of Palo Alto Networks.
• Working knowledge with monitoring tools like Solar Winds and network packet capture tools like Wire-shark.
• Hands-on experience configuring, and troubleshooting Juniper MX, EX, QFX, and SRX platforms.
• Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies. Access control server configuration for RADIUS & TACAS+. Hands-on experience using Cisco Virtual Switching System (VSS).
• Perform Checkpoint and PIX firewall/IDS design, integration & implementation for Cyber Trap client networks.
• Knowledge & Configuration of Cisco ACL, NAT, AAA, TACACS+ & RADIUS Server on Cisco Secure ACS.
• Experience in configuring security policies including NAT/PAT, VPN and ACL's.
• Experience in Network Cabling, IP addressing and Subnetting with Variable Length Subnet Masking (VLSM), Route Summarization and Route Redistribution. Also, worked with the physical server migration to AWS data center.
• Hands on experience on configuring Cisco ASA 5540, 5580 firewalls.
• Experience in installing, configuring and troubleshooting Checkpoint Firewalls.
• Experience in network troubleshooting and analysis using Wireshark.
• Experience using Microsoft Visio to create and update network diagrams.
• Possess strong network troubleshooting, interpersonal and communication skills.

TECHNICAL SKILLS:

Cisco Platforms: Nexus 9K,7K, 5K, 2K, 1K

Cisco Routers: 800, 1700,1800,2500,2600,2800,3600,3800,3900,7200,7600

Cisco L2 & L3 Switches: 2900,3500,3560,3750,4500,4900,6500

Juniper Platforms: SRX, MX, EX, QFX Series Router and Switches

Networking Concepts: Access-lists, Routing, Switching, Sub netting, Designing, CSU/DSU, IPsec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: ASA Firewall (5505/5510), Checkpoint, Cisco ASA

Network Tools: Solar Winds, SNMP, Cisco Works, Wireshark

Load Balancers: Cisco CSM, F5 Networks (Big-IP)

Wan Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3,0C3, T1 /T3 & SONET

Lan Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPSEC, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

Documentation: MS Office, MS Visio

PROFESSIONAL EXPERIENCE:

Confidential, Pleasanton, CA

Sr. Network Engineer

Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Design Planning and Commissioning of new Wi-Fi network equipment across Hybrid Fiber Coax Networks for WAN/LAN Broadband Wi-Fi solutions
• Configured and troubleshoot cisco WAP, and cisco prime.
• Worked on different types of Network Design using IPsec, GRE Tunneling, VPN, Frame Relay and MPLS Core.
• Worked with Load balancing device like F5 Big-IP local traffic manager (LTM) 1600.
• Worked on Cisco switches (6509, 6513, and 4510) for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues.
• Experience working with Juniper Routers (MX960, MX480, M320) and Switches (EX2400, QFX Virtual Chassis Switches) with BGP, OSPF, VSTP, MST layer 2 and layer 3 Technologies
• Worked on Cisco Firewall ASA 5500(5510/5540) Series. Performed Security operations in terms of pushing new policies and deploying new rules.
• Experience on dealing with Microsoft Azure Virtual Network including configuring access lists in the Network Security Group.
• Dealt with monitoring tools like (Solar Winds, Cisco Works), network packet capture tools like Wireshark, Deployed the Nexus 7000/5000/2000 architecture.
• Implemented site to site VPN in Juniper SRX as per customer and various EX, SRX & J series Juniper devices.
• Troubleshoot issues related to connectivity, STP, VLANs, Trunking, VTP, Layer 2/3switching, Ether Channels, Inter-VLAN routing, log messages, high CPU utilization and parameters that can degrade Performance of the network .
• Implemented and troubleshot ISIS, BGP (IPv4/ IPv6/VPNv4), MPLS, OSPF, MPLS, L2/3 VPN and VRFs across the Charter core network.
• Configured VPC and VDC's on Nexus 5K, 7K, 9K.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Troubleshoot and Worked with Security issues related to Cisco ASA, and IDS/IPS firewalls. Large scale Deployment and installation of Juniper SSG5, Cisco ASA, and Fortinet firewalls.
• Responsible for NAT traffic flow in the Juniper SRX 3600 and support Juniper Space.
• Configuration and troubleshooting of EIGRP, OSPF, BGP, CSM, integration with ASA devices. Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.
• Negotiate VPN tunnels using IPsec encryption standards and configured and implemented site-to-site VPN, Remote VPN.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA 5500 Firewalls, Fortinet. Troubleshoot and hands on experience on security related issues on checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls.
• Monitoring and capturing the traffic using network management tools like solar winds and InfoBlox.
• Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA, Net screen devices for easier management and common configurations. Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.
• Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
• Advanced knowledge in Design, Installation & configuration of Palo Alto & Checkpoint Provider Environment.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Equipment supported; Juniper EX and QFX switches, SRX series firewalls, MX routers, Nortel 450/470 switches and 8600 series routers. Proxim Wireless APs and Juniper Wireless APs and controllers.
• Worked on various cloud environments like AWS, also worked on connectivity of various cloud resources like EC2, Elastic Beanstalk, RDS Database.

Confidential, Monterey Park, CA

Network Security Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
• Technical Knowledge on Cisco PIX/ASA series, Juniper Net screen/SRX firewall gateways.
• Implemented site to site VPN in Juniper SRX as per customer.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Responsible for Check Point and Juniper SRX firewall administration across our global networks.
• Upgraded load balancers from Radware to F5 BigIP v9 which improved functionality and scalability in the enterprise. Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs .
• Successfully executed change on Nexus 9K and 7Ks to support redundant platform.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configuration and troubleshooting of Cisco 800, 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Implementation, maintenance and monitoring of IDS/IPS, WAF, antivirus and Syslog Servers. Configure and maintain Cisco IDS/IPS, ASA firewalls, and Bluecoat web proxies.
• Troubleshoot and Worked with Security issues related to Cisco ASA, and IDS/IPS firewalls. Large scale Deployment and installation of Juniper SSG5, Cisco ASA, and Fortinet firewalls.
• Expertise knowledge in analyzing tools like Wireshark, Ethanalyzer technology for packet inspection.
• Configured Security policies including NAT, VPN, Route-maps and Access Control Lists.
• Implemented site to site VPN with IPSEC via. GRE ISKAMP.
• Implemented Cisco site to site VPN for partnering with different partners around the world.
• Configured IPsec VPN access for client to site remote access.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Cisco ASA, Firewalls, VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall. Successfully installed Palo Alto Next-Generation PA-3060, PA-5060 firewalls to protect Data Center with the use of IPS feature.
• Technical assistance for LAN/WAN management and complex customer issues.
• Support design and planning of Juniper MX, EX, QFX network routing products within the Customer infrastructure.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Provided support for troubleshooting and resolving Customer and user reported issues.
• Experience in installation, configuration and maintenance of Cisco ASR 9K, 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Nexus 7010, 5548, 2148 Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
• Worked with Network Engineer's in the installation and configuration of firewalls.
• Experience with configuring BGP in the data center and using BGP as a WAN protocol and manipulating BGP attributes.
• Experience in CSM& Waterfall Methodologies Expert in designing reports using SQL Server Reporting Services (SSRS) and Excel Power Pivot table based on OLAP cubes. Configuring Routing protocols like BGP, OSPF, MPLS, multicast and L2 protocols in ASA to check it is passing through via ASA in customer deployments.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-Trunking, deployed port security when possible for user ports.
• Responsible for Cisco ASA firewall administration across our global networks.
• Involved in the redistribution into OSPF on the core ASA firewall.
• Worked on Orion for analysis and monitoring purposes, also prepared documentation for various VLAN's and Voice subnetworks and worked on Visio for the same.
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.

Confidential, Paterson, NJ

Network Engineer.

Responsibilities:

• Designing and installing new branch Network systems. Resolving Network issues, running test scripts and preparing Network documentation.
• Responsible for Working in high availability Nexus Environment and provide Level 3 Network Support.
• Performed OSPF, BGP, DHCP Profile, HSRP, Bundle Ethernet implementation on ASR 9K redundant pair.
• Translating Cisco IOS Route maps to Cisco IOS XR Routing policies.
• Experience with Junos OS and Juniper EX 2200, 4200, 4300, 4500, 8200, series switches, MX-480, MX-104, M Series, Juniper QFX 5100 Fabric series switches, and Juniper SRX 210, 220, 240, 550, 3600/650 series firewalls.
• Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Migration of servers from one datacenter to another, providing switch connections to the new servers, updating Check Point Firewall rules for the new servers, A10 to F5 load balancers Migration.
• Migrated Cisco ASA firewall to next generation Palo Alto firewalls.
• Working with wireless technologies troubleshooting and configuration.
• Establishing VPN Tunnels using IPSec encryption standards and configuring and implementing site-to-site VPN, Remote VPN.
• Designed and engineering of secure customer connections over the internet via IPSEC Tunnels. Experience in Configuring Site-to-Site and Remote Site VPNs, NAT/PAT policies.
• Providing daily network support for wide area networks consisting of MPLS, VPN and point-to point site.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DCHP profiles.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Working with Juniper JUNOS on M and MX series routers.
• Creating new nodes and Pools in F5 load balancers to support newly added servers in Layer 3 environment.
• Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center and provided L3 support for routers/switches/firewalls.
• Worked on migrating the F5 LTM 5100 version 9.2 to 5100 LTM version 9.4 and F5 GTM configurations
• Working on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter Vlan Routing, LAN security.
• Working on security levels with RADIUS, TACACS+.

Confidential

Network Engineer

Responsibilities:

• Hand on experience on IP Addressing, Sub netting.
• Experience in designing, implementation and operations of enterprise data networks as network engineer.
• Enterprise Switching with VLANs, Trunks, Spanning Tree, Port Spanning etc.
• Sound knowledge in LAN/WAN setup, installation, configuration, and troubleshooting.
• Experience in Layer 3 Routing Protocol configurations: RIP, OSPF, BGP, EIGRP.
• Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks .
• Configured VLANs with 802.1Q Tagging according to the Server team’s requirements.
• Excellent leadership with good written and oral communication.
• Network Migration from RIP to OSPF.
• Responsible for level 2 support of existing network technologies /services& integration of new network technologies / services.
• Strong hands on experience in Troubleshooting for QOS, connectivity and hardware problems on Cisco Networks.
• Working on network performance, tuning issues and the fault management issues.
• Maintained network security technologies and services.
• Working on physical interfaces such as Gigabit, Fast Ethernet and Serial interfaces.
• Configuration and implementation of various Cisco Routers and L2 Switches.
• Knowledge and skill of 802.11 a/b/g/n LAN normal for wireless Technology.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Installed, and configured Cisco routers (7200, 3600, and 2800) and Cisco switches (6500, 4500, 2950 and 1900 series).
• Implemented static routing, routing protocols (OSPF, and BGP), switching (VLANS, VTP Domains, STP, and trucking).

Confidential

Network Admin

Responsibilities:

• Responsible for implementation and day to day operations of all associated hubs, routers, bridges, gateways and Network related equipment.
• Provide assistance to Network Manager and serve as Secondary Network support.
• Monitoring and troubleshooting Server, File System management and migration.
• Worked on necessary tools for Linux/Unix System, and Microsoft Power shell.
• Upgraded Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 3560, 4500 switch configurations.
• Installed and managed Cisco 3500XL, 2960 series Switches and Cisco 1800, 3900 series routers.
• Handled Tech Support as it relates to LAN & WAN systems.
• Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers, system administrators.
• Troubleshoot Frame Relay; T1, T3, IP and OSPF related router and circuit issues.
• Responsible for providing file, print services over network and IP Telephony.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Log messages using Syslog server and analyze the issues related to high CPU utilization and parameters that can degrade performance of the network .
• Troubleshoot and fix any backup and monitoring systems related issues in conjunction with Systems team and external vendors.
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Network Migration from RIP to OSPF and EIGRP, Design OSPF areas for reliable Access Distribution and for Core IP Routing.