SUMMARY:

• Over 8 years of experience in Designing, Implementing and Troubleshooting Service Provider Networks and Enterprise Networks and Network administration, implementation, design and troubleshooting Seeking a challenging and interesting opportunity in computer/network engineering which enables me to maximize my technical and managerial skills.
• Working knowledge of installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series)
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)
• Hands on experience of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Upgrading/Downgrading the Images on the ASR, CRS and NCS routers
• Protocols working experience/Awareness: OSPF, EIGRP, RIP, BGP, HSRP, ACL, VTP, NAT/PAT, CDP, SSH, HTTP, HTTPS, NTP, SNMP, ARP, STP (802.1D), SNMP, DNS & DHCP.
• Work experience on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Designed & configured Citrix NetScaler MPX 5550 Primary and secondary node, upgraded v9.3 to v10.0, Configured MIP/VIP/SNIP/NSIP configurations on the NetScaler, Certificates deployment of NetScaler Licensing for NetScaler Logo editing for External CAG site through NetScaler.
• Built Perl scripts and supported efforts to individually migrate over five thousand virtual servers from over seventy F5 LTM version 9 device pairs to F5 LTM version 10 device pairs .
• Provided service and 3rd level escalation support for DNS, Internet Email, global server load balancing (F5 3DNS and GTM), local network load balancing F5 LTM, web and ftp proxies, VPN, and other network related solutions.
• Designed, Configured and maintained Bluecoat reporter 10.
• Implemented the unit tests using Python and integration test cases.
• Knowledge of advanced level Programming in C /C++ and Java including thread synchronization multithreading, multi - processing, concurrency and TCP/IP Socket Programming.
• Excellent in deploying, configuring and managing Open stack projects like Keystone, Nova, Swift, Cinder, Neutron, Ceilometer, etc.
• Knowledge on HP Hellion and Red Hat OpenStack .
• Extensive Knowledge on IP Multicast, IGMP, IGMP version 2 and 3, CGMP, IGMP Snooping.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Extensive experience in testing and test automation development and also experience in Telecom/ Datacom and client/ server technologies.
• Experience with Palo Alto networks Firewall, Checkpoint Firewall and Cisco ASA.
• Designed and implement security strategies with Cisco and Palo Alto firewalls.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series firewalls.
• Secured and accelerating Load balancer in Citrix Net Scalar MPX 8200.
• Good Understanding of ASR and CRS routers and the configuration of MPLS, VRF's and BGP.
• Working knowledge and experience supporting CRS, ASR9k, 7600, and 6500.
• Hands on experience working with Cisco Nexus 7K, 5K & 2K Switches.
• Rectified issues by instituting best practices in system log analysis, backups, security, user account/permissions management and systems/software aid
• Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
• Strong understanding on Software Development Life Cycle (SDLC), OSS/BSS Fundamentals, Datacom Fundamentals & IP Routing, QTP tool, TCL/TK, UNIX, Perl and Shell scripting and Software Testing methodologies and concepts.
• Some experience with Python, C, C ++shell scripting .
• In-depth knowledge of implementing, configuring and troubleshooting Routing Protocols Static Routing, EIGRP, OSPF, BGP.
• Virtualization Implementation and KVM configuration.
• Developed program in C++ and used concepts of inheritance, factory method pattern and implemented hash tables for data search/retrieval
• Provisioning servers via Cobbler and Ensile .
• Writing Nagios custom checks (Python/Bash) and deploying them via Ensile .
• Working experience with Interpretation and packet capturing using TCPDUMP and Wireshark.
• Strong hands on experience on PIX Firewalls, ASA Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
• Extensive experience in Designing, Implementing and Troubleshooting Service Provider Networks and Enterprise Networks.
• Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs.
• Expertise in SAN, NAS and storage based on customer performance requirement.
• Extensive knowledge of deploying and troubleshooting L2/L3, TCP/IP, Multilayer Switches
• Hands on expertise in implementation and troubleshooting of protocols such as STP, RSTP, PVST, HSRP and VRRP.
• Strong understanding of IPTV Technologies and Network Environments.
• Experience with designing an IPTV network with MPEG/IP/encoders, switches, routers, middleware server & IP set top boxes.
• Good Knowledge/experience in configuration of Voice over IP (VOIP).
• Network management using Syslog, Packet Sniffers, SNMP etc.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall. NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, R77 UTM
• Extensive working knowledge in developing test plans, procedures, and testing Various LAN/WAN Products and Protocols.
• Good knowledge in configuring wireless device through prime 2.1 and 2.2V
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Translation from IPv4 to IPv6, Multilayer Switching, UDP, Ethernet, Voice & Data Integration techniques.
• Created and design network layout and documented network system design with detail information using Visio software. Vendor co-ordination for hardware issues and assessment management.
• Specialize in VoIP traffic analysis and designing VoIP networks for small MSPs.
• Well experienced in troubleshooting and optimizing performance in CISCO based routers and switches. Have worked in NOC environment for more than 5 years.
• Excellent problem solving and debugging skills with good verbal/written communication and presentation skills

TECHNICAL SKILLS:

Routers: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600, ASR 9K, ASR 12K, CRS

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, MPLS PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches: Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960

Switching Protocols: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging

Multicast Protocols: IGMP, IGMP version 2 and 3, CGMP, PIM-Sparse and Dense Mode. DHCP, FTP, TFTP

LAN technologies: Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STP, RSTP, 802.1W, Cisco Prime

WAN technologies: Leased lines 128k - 155Mb (PPP / HDLC), Channelized links (T1/DS3/OC3/OC12), Fiber Optic Circuits, Frame Relay, ISDN and ATM

Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400, Citrix net Scaler, F5 APM

Network security: Cisco PIX 505/515E/525 & ASA 5500, 5540 series, ACL, IPSEC, Checkpoint, IPSec VPN, GRE VPN, Palo alto, juniper, Check Point Nokia Firewalls IP350, IP550 & IP750, Juniper Net screen, Firewalls ISG 1000/2000, NGX, NG R55, NGX 60, NGX R65, R70, R75, UTM.

Network Management: Solar winds, Proteus, Xilinx 9.21, HP Open-view, Wireshark, Spirent, SNMP

Operating systems: Windows XP/ 7/ 8, Windows Server 2003/ 2008, Mac OS X and Linux

Language skills: C, C++, Python, Shell, Bash, XML, SQL

Various Features & Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP,KVM, ANSIBLE.

Applications: Windows Server, Linux, Ubuntu, Virtualization, VMware, desktop antivirus, Expos / Metasploit/ Qualys, Mobile Applications, Web Applications, OWASP Enterprise Security API, HP Fortify, Tuffin, Panaram, AWS cloud watch, OS Hardening, Aruba Wireless

PROFESSIONAL EXPERIENCE:

Confidential, Cupertino, CA

Sr. Network engineer

• Participatedinmeetingswithbusines sunitsandsolutionarchitecttogath erinformationfor new projects.
• Work done c ommissionin g of catalyst 2900,4500, 6500series switches, Nexus 5K/7K/9Kalong with FEX. U pgraded IOS/NXOS from default version to c ompany standard s.
• Worked with Site Op s team to get the servers and sw itches racked/sta cked and cabled.
• Involved in configur ing ACS for TACA CS+ authentication for n ewly added n etwork devi ces.
• Configured L2 sw itching techno logy including n ew VLAN s, VTP, STP, inter VL AN routing, HSRP/VRRP.
• Involvedinconfigurationofvarious7200seriesrouters with WAN team to include newly added networks in ex isting routing policy.
• ConfiguredACE/ CSS/F5loadbalancersforserverloadbalancing,healthcheck,andSSL offloading.
• Commissioned Checkpoin t Firewalls: Virtual a s well as SPLAT firewa lls.
• Designedandimplement edvariousRuleBasePol icies,NAT,andAntispoof ingforCheckpoint and Net screen Firewalls.
• Experience with F5 load balancers and reverse proxy design and setup.
• Utilized working knowledge of Smart View Monitor, Smart View Tracker, Smart Dashboard and Audit tools of Che ckpoint Firewalls.
• Utilized expertise of reading Firewall logs along with tools such as TCPDUMP and FW monitor on command line to monitor active traffic on firewalls in order to troubleshoot many connectivity issues.
• Actively worked w ith LAN/WA N engineering as a t eam to resolve ID CN connectiv ity issues.
• Helped new team members to understand existing infrastructure as well as process to bring them up to speed.
• Prepared/updated Visio run book diagram for support as well as helped different groups to update BU specific run books.
• ActivelyParticip atedinChangeControlmeetingstopresenthighimpactchangestobecarried out.
• Exhibited strong Project Management skills, Conducted network ba selines and made necessary recommendation s.
• Provided 24X7 pr oduction supports during handover of proj ects to SBU and provided 2nd level on-call support on routinely basis.

Environment: CiscoCatalyst6500,4900,2900seriesSwitches,Nexus5500,Checkpoint/ JuniperFirewalls,Cisco.ACE(ACE20), CSSandF5LoadBalancers, GIGAMON/GTAP, Cisco ACS for authentic ation, Routing Protocol(BGP), DNS Info blox, IPAM,HPN A, Cisco Works.

Confidential,Santa Clara, CA

Sr. Network Engineer

Responsibilities:

• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
• Experience in configuring vdc, fex pinning, fex port-channel, port-channel, peer keep alive, peer link.
• Implementing and Maintaining Network Management tools (OPAS, Solar Winds, Cisco Works)
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Experience with migrating the Partner IPSEC VPN tunnels from one data center to another data center.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Experience with deploying the Layer 3 MPLS VPN in all the Branches and Campus locations.
• Replace Campus Cisco 6509 End of Life hardware with new 4507/4510 devices.
• IOS upgrade in Nexus 7010 through ISSU (In service software upgrade)
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tuning AS-path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Working with Checkpoint Support for resolving escalated issues.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• The Citibank North America (CBNA) Network Redesign for 2000 branches & 100 Campus Locations. This includes changes to both the voice and data environment.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Subject matter expertise supporting and maintaining F5 Big-IP load balancers
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment
• Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX
• Security appliance, Failover, DMZ zoning, & Configuring VLANs/routing/NATing with the firewalls as per the design.
• Decommission serial T3 circuits and replace with MPLS circuits. MPLS clouds were provided by carriers ATT, Verizon or Level 3.
• WAN Pilot project to convert branch from dual T1 circuits to I WAN only broadband circuit. To Enable Internet WAN connectivity for the Lab in Hauppauge. Test and turn-up IWAN link and disable the 2 existing T1 circuits, running branch on IWAN only. After testing was completed site will be placed back on either dual TDM circuits or TDM with IWAN backup circuit.
• Experience Branch Relocation: Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect the circuits. Work with Carrier to test and turn-up circuits.
• Experience in design and implementation of new branch/New Campus test and turn up.
• Experience on troubleshooting of complex BGP and OSPF routing problems,

Environment: Router 2800, 3800; Cisco Catalyst Switch 3550, 2960. T1 Controllers, DS3 Lines (T3 Lines), Fiber and Ethernet cabling.

Confidential,Folsom, NJ

Sr. Network Engineer

Responsibilities:

• Experience in configuring routing protocols like EIGRP,RIPv2, OSPF & BGP and Cisco ACS protocols like
• RADIUS and TACACS
• Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS And IOS on CAT6500 in a complex data centre environment
• Coordinated with senior engineers with BGP/OSPF routing policies and designs, worked on implementation
• Strategies for the expansion of the MPLSVPN networks
• Working knowledge of Firewall service module FWSM UPGRADE, FWSM RULESET conversion
• Converting access-lists to Firewall rule sets on FWSM module with 6509-E Catalyst switches
• Involved in setting up Voice VLANs on distribution switches, and configuring access switches ports for AVAYA IP PHONES
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst switches
• Configuring PAGP and LACP protocol along with BFD link detection protocol
• Experience with hybrid Cat OS to Native Cisco IOS code migration involving Catalyst 6503 to Catalyst 6504 switches
• Upgrading IOS on 2960 and using 2960 switch as a PAGP between VSS
• Working knowledge of PPP Protocol with Enhanced Flex WAN module on 6500 catalyst switch
• Involved configuring ppp multilink group, dialer group, PPP authentication protocols like PAP, CHAP
• Working knowledge of Terminal server and the configurations
• Installation of L3 Switching Engine policy Feature Card & Distributed Forwarding Card DFC3C
• Experience with design and implementation of Data center migration at NBC Universal
• Data center migration was involved in Access, Distribution and Core layers.
• Working knowledge with 10 gigabit Supervisor Engine 720 on 6500 catalyst switches
• Implementing 3750 Rack/Stack switches using Cisco Stack Wise technology
• Experience with migration Hybrid based Cisco Cat OS and Native Cisco IOS on 6500 catalyst switches.
• Involved in migration of WLAN segment on the LAN Core. Also, involved in configuring wireless VLANS
• Working knowledge of configuring VOICE VLANS on core, Distribution layer switches
• Configured Access ports with Voice VLANS and Service Policy for VOIP Phones
• Experience in working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a flexible Access Solution for a data center access architecture.
• Hands on experience installing Sup720 for Cisco 6509-E series and its Gigabit Ethernet port deployment in the core network

Environment: 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, 7206, 2611, 6748, 6708, 2960, T1 Controllers, DS3 Lines (T3 Lines), Fiber and Ethernet cabling

Confidential, Newark, NJ

Network Engineer

Responsibilities:

• Hands on experience with Cisco 3500, 3750, 4500, 6500 series equipment and configuring and deploying and fixing them with various modules like Gig card, VPN SPA card, WIC card.
• Applying crypto maps and security keys for the branches, ISAKMP (Internet security association key management protocol) for establishing Security associations (SA) cryptographic keys.
• Experience in configuring routing protocols like EIGRP, RIP v2, OSPF & BGP and Cisco ACS protocols like RADIUS and TACACS
• Experienced in WAN environments, installing and troubleshooting data circuit problems (MPLS, T1)
• Involved in designing and applying QOS and policy map to 2800 series routers for all the branches
• Involved in designing GRE tunnels for encryption of data flow from source to destination
• Experience in migration of Frame-relay based branches to MPLS based technology using multi layer stackable switch like 6500 series and 2800 series router
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Implementing & Troubleshooting of T1, MUXES, CSU /DSU and data circuits.
• Experience on designing and troubleshooting of complex BGP and OSPF routing problems,
• Involved in configuring IP Quality of service (QoS)
• Have experience with Cisco Works LAN Management Solution
• Implementing VoIP solutions using SIP & H.323, also have sound knowledge of Avaya VoIP products
• Experience with Project documentation tools & implementing and maintaining network monitoring systems (Cisco works & Net info, Info man Virtual Change) and experience with developing network design documentation and presentations using VISIO
• Understanding & Implementation of IPSEC & GRE tunnels in VPN technology

Environment: Branch office environment with Cisco1900,2900 series switches, C isco 2500,2600,2800 series routers, Juniper and Cisco ASA Firewalls, CSS/ACE load balancers.

Confidential,Round Rock,TX

Network Engineer

Responsibilities:

• Involved in redesign of traffic anomaly system to increase the detection method and algorithm efficiency.
• Capturing data in the kernel stack and analyze the packets in various locations on the network stack
• Hands on experience with firewalls, firewall rules & Tool Net Cool
• Distributed denial-of-service (DDoS) attacks on public servers have recently become more serious. A detection and defense mechanism against SYN flood Attacks has been proposed in previous work.
• Experienced in WAN environments, installing and troubleshooting data circuits (OC, T1, E1, T3, MUXES)
• Experience with SONET Multiplexing protocols and DWDM technologies.
• Understanding current vulnerabilities attacks and counter measures, assessing the impact of traffic on customer networks, conducting research on emerging security threats.
• Mentoring and training security analysts, creating and maintaining documentation for Traffic anomaly Sys.
• Experience testing of a prototype Traffic Anomaly system that monitors TCP/IP network traffic. Each network packet is characterized by the (source host, Source port, destination host, Destination port, Flag). The system monitors the network for the occurrence of mismatch, which represent unusual traffic patterns within the network.
• Experience installing & configuring of Cisco PIX, ASA &FWSM(Firewall service module)
• Evaluate, Analyze & Implement firewall policies to meet business requirements
• Experience in creating and maintaining firewall configurations, updating documentation and log analysis.
• Responsible for the implementation and maintenance of firewall based security zones (DMZ*s).
• Provide support to internal project teams by adding firewalls, switches and routers to managed DMZs.
• Assist internal project teams by determining rules that need to be added to the firewalls and identifying the proper routing and addressing for new devices in managed DMZ*s.
• Experience in troubleshooting of complex BGP and OSPF routing problems
• Experienced in SYSLOG analysis & Proxy servers
• Experience with network based F5 Load balancers with software module GTM & Checkpoint
• Experience with connectivity of Cisco Networking Equipment with F5 Load Balancer
• Experience with GTM F5 component to provide high availability with providing services across data centers
• Experience with Using LTM F5 component to provide 24“7 access to applications
• Experience with using F5 Load balancer in providing worldwide data and file sharing, continuous internet connectivity, optimized web performance

Environment: Corporate office architecture with highly reliable & secured network including Router

Series(2800, 3600,7204), Catalyst Switch Series(2900, 4500,6500), ASA Firewal l(5505), Juniper Net screen and Checkpoint firewalls, CiscoACEModules,Cisco ACSServerforAuthentication,WebApplication andDatabaseservers, WLC (4402), AP ’s (1142, 1252) and Mon itoring Tool Ci sco Works.

Confidential,Rochester,MN

JR Network Engineer

Responsibilities:

• Provide high level technical support, including identifying and resolving problems on Cisco supported products for e-Commerce infrastructure. This included external routing and internal/intranet routing for DMZ servers.
• Implemented cable multi-service operator (MSO) to capture traditional Telco subscribers with IP telephony and provide relevant QOS.
• Configured EIGRP, BGP, and MPLS.
• Configure Firewall, QOS by SDM and provide security by Prefix list, Access- List and By Distribution List.
• Moved Core switches and several non-Cisco devices under strict deadlines to maintain network functionality
• Implemented new ultra-secure networks in multiple data centers that included Cisco, Juniper security devices.
• Designed VLAN’s and set up both L2 and L3 logical to have it communicate to the Enterprise network.
• Scheduled preventive maintenance for fire-protection systems, including new protocols. Utilize MS Windows, Word, and Excel for reporting/documenting process.
• Satisfactorily Resolved Problems in timely manner with focus on providing a high level of support for all customers.

Environment: Assists the IT Manager to plan, direct, and control the technology infrastructure to include systems and services of the network infrastructure, Internet, security, desktops, Web server, and other network services provided to internal users, and the telephone systems.