SUMMARY:

• 8years of professional experience with Cisco Certified Network Engineering, performing networking, configuring, troubleshooting, installing and maintaining of networking devices.
• Providing 24/7 quality assurance in network monitoring, optimization and fault management services in network operation center.
• Hands on experience in configuring and Deployment of Routers and Switches in network support.
• Experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Experience in Routing protocol configurations: OSPF, BGP, MPLS VPN, DMVPN, HSRP and EIGRP.
• Switching tasks include VTP, ISL/ 802.1q, IP sec and, VLANs, Ether Channel, Trucking, GRE Tunneling, Port Security, STP and RSTP.
• Proficiency in configuring the VLAN setup on various Cisco Switches and Routers.
• Communicating and escalating tickets with service providers for network outrage issues.
• Proposed upgrades, installed, and configured Solarwinds Log and Event Manager and Solarwinds Orion modules for network infrastructure monitoring.
• Knowledge of troubleshooting, implementation, testing and optimization of static and dynamic routing protocols such as EIGRP, OSPF, BGP, MPLS.
• Expertise in installing, troubleshooting and configuring Juniper switches EX2200, EX2500, EX3200 and EX4200 series.
• Involved in good documentation practice of different stages of validation life cycle in compliance with 21 CFR Part 11.
• Manage multiple resources from various internal teams to develop cloud solutions based on detailed workload requirements
• Proficient in Object oriented design experience, with extensive experience of Python - C/C++ binding using Boost Python and Python C types.
• Manage day-to-day operations and configuration of Check Point firewalls.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Design, configuration, and support of Cisco Nexus Platforms (Nexus7K, 5K, 2K).
• Experience in configuring VDC, VPC and FCOE, upgrading NX-OS for Nexus Family Switches.
• Hands on experience in configuring Cisco ASA 5540, 5580 firewalls.
• Work with cisco partners to help set up and troubleshoot voice network issues.
• Experience in Layer 3 Routing Protocol configurations: OSPF, EGIRP, BGP, RIP and MPLS.
• Troubleshooting for Layer 2 LAN technologies but not limited to Ethernet (Switched, FastE, GigE), STP, RSTP, VLANs, Cables, Bridges, VTP, and Trunking (802.1q), port security, routing protocols and Aruba Wireless platform.
• Ensured complaint handling tasks were completed as required by company policies and procedures, as well as compliant with applicable industry regulations (e.g. FDA 21 CFR Part 820.198, FDA 21 CFR Part 803).
• Extensively used Python requests module to call web services
• Developed and successfully integrated Python scripts to automate SSH login and data collection for network devices not supporting Telnet.
• Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Performed IOS upgrades on Catalyst 2900, 3500, 4500 and 6500 series switches.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Worked on Router series such as 2800, 2600, 2900, 3600, 3800 and 7200, switches such as Cisco 3725, 3560, 3550, 2960, 2950, 4500 & 6500.
• Worked on automating data loading, extraction and reports generation using UNIX Shell scripting.
• Password recovery, upgrading of IOS of Cisco devices.
• Hands on experience configuring the 7710, 7010, 5628, 5596T switches with feature-set like Fabric Path, OTV, VPC+, VPC and also VDC for the Border Leaf, SPN and Leaf design and configuring VDC, VPC and other nexus features.
• Performed and managed internal, supplier audits, facilitated external customer and regulatory audits by FDA.
• Knowledge in IPV4, IPV6, RIP, EIGRP, OSPF, BGP, DHCP, DNS, SNMP, RMON, NAT.
• In-depth knowledge on Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS.
• Migrated from legacy catalyst 6500 to ASR 9k.
• Deployed Cisco Wireless LAN Controller (WLC) 5520, created SSIDs for the shows, mapped VLANs to SSID's and linked AP's with WLC.
• Good knowledge of Tunneling Protocols (IPSEC/GRE).
• Understanding the requirements of the client to deploy an efficient network.
• Proficient in MS Windows, MS/Open Office, MS Project 2013.
• Dealt with monitoring tools like (Solar winds, Cisco prime), network packets capture tools like Wire-shark.
• Work closely with business in collecting all telecom requirements, which included IVR (Interactive voice response), voice mail, DID/extensions, call forwarding, call accounting etc.
• Developed Interactive Voice Response (IVR) applications for British Telecom using Avaya Periphonics Unix.
• Knowledge of Cyber Threats and mitigation strategies, network monitoring, intrusion detection, reactive measures and prevention, network assessment methodologies, security vulnerability analysis, data encryption, and IA Tools.
• Worked on OTV to extend L2 VLANs between data centers over IP on Nexus 7710 switches.
• Created scripts in Python for manipulating, parsing and converting data in excel sheets.
• Experience in managing, administration and designing of IP Backbone Network and spearheaded the strengthening IP Backbone Network Security. ensures that all State, Federal and contractual timeframes are met concerning establishing and or enforcing child Support orders in their caseload.
• QRadar collects log data from an enterprise, its network devices, host assets and operating systems, applications, vulnerabilities, and user and activities.
• Responsible for implementation of nationwide Cisco DMVPN based wide area network. I manage 46 Pathology Labs currently on MPLS migrating to DMVPN and a new data center in Las Vegas.
• Interviewed customers by telephone to identify legal issues, and obtain and process the information, worked with customers in all stages of the Child Support process.
• Possess strong network troubleshooting and communication skills.

TECHNICAL SKILLS:

Cisco Routers: 2600, 2800, 2900, 3600, 3700, 3800, 3900, 4400, 7200

Cisco Switches: 2900, 3500, 3600, 3750, 4500, 4900, 6500, ASR9k

Nexus: 2k, 5k, 7k, 9k

Juniper: M320, T640

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, interVLAN routing, VLAN, VTP, STP, RSTP, Port Fast

WAN Technologies: PPP, HDLS, MPLS, Channelized links, Frame relay, HDCL, DS3, OC192, Fiber Optic Circuits, Frame

Routing Protocols: EIGRP, OSPF, BGP, Route Filtering, Route redistribution, static Routing, Summarization

Switching: VLANs, VTP, STP, RSTP, PVST, MSTP, VDC, VPC, inter-VLAN switching, multicast, Port security, Ether-Channels, SNMPV3

VOIP Devices: Cisco IP phones, Avaya

Voice Technologies: QoS, Computer Telephony Integration (CTI), VoIP, PoE, H.323, SIP, MGCP, RTP, SCCP, TAPI, XML

VPN Technologies: GRE Tunneling, Site-to-Site VPN, SSL VPN

Network Security: Cisco ASA Firewalls, Juniper SRX Firewall, Check points R61/ R65/ R70/ R75/ R77, SSL, IDS, Access Control, Palo Alto Firewall, F5 Load Balancer.

Monitoring Tools: Solar winds, Voyence, Packet tracer Ethereal, Wireshark, Openview, Dashboard and GNS3

Redundancy Protocols: HSRP, GLBP, VRRP, RPR, NSF-SSO

Servers: Domain servers, WINS servers, FTP servers, DNS servers, Proxy servers, Application servers

Operating Systems: Windows XP/Vista/7/8/10, Nexus OS, Cisco IOS, LINUX, Red Hat, Macintosh, Activate Directory.

Hardware: Dell, Cisco. IBM, SUN, SonicWall Applications, Email Applications.

Programming languages: python, shell script, C

Virtual Technology: VMware, Citrix

Microsoft office: Excel, PowerPoint, Word, Visio

PROFESSIONAL EXPERIENCE:

Confidential, Texas

Network Engineer

Responsibilities:

• Project oriented role in Data Center infrastructure with migration, implementation, deployment and design
• Provided change control process for complex route optimization support and standards to existing and new migrations.
• Experience in converting WAN routing from EIGRP/OSPF to BGP which also involved converting from point to point circuits to MPLS circuits where OSPF is used for local routing only. Design an configuration for DMVPN/iWAN
• Maintenance and administration of the access layer devices and Data Center.
• Architect, design, support, maintain, and expand Splunk infrastructure in a highly resilient configuration.
• Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms.
• Experience with LAN protocols like STP, RSTP, VLAN, VTP, MST and Port Channel Protocols like PAGP, LACP
• Team member for the Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
• Done Bandwidth Upgrading for remote sites.
• Implemented multiple Wireless Access Points.
• Experience in Upgrading, degrading and managing the Palo Alto Firewalls using Panorama.
• Troubleshooting of protocol based policies on Palo Alto Firewalls and changing the policies as per the requirement and as per traffic flow.
• Deployment of Palo Alto firewall into the network. Configured and wrote Access-list policies on protocol based services.
• Experience with design and configuring Overlay Transport Virtualization on Cisco NX-OS devices like Nexus 7000.
• Extensive work in Configuring, Troubleshooting and Monitoring Cisco’s ASA 5500 with NAT, ACL, Multi-Contexts and Object Groups.
• Experience in enabling STP attack mitigations using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN.
• Implemented, Design and configuring of OSPF, BGP on Juniper Router (MX960) and SRX Firewalls at the web server.
• Performed system validation, testing and test automation development in Telecom/ Datacom and client/ server technologies.
• Initiate and maintain productive relationship with consortium representatives, California Department of Health Services, and California Health Care Exchange representatives.
• Perform quality assurance reviews documentation delivered by the Development Vendor for all assigned software changes in IV&V Government Consultant and Perform quality assurance reviews of system test scripts and testing artifacts.
• Performed various mathematical operations using python libraries to avoid lengthy code.
• Used C language to develop Linux display.
• Storage VDC with FCoE to Nexus 5548UP switch.
• Testing, Development and Characterization of the WLAN system hardware products.
• Tested integration of Dell X-series switches with Sonicwall TZ firewalls and WLAN with SonicWall SonicPoint.
• Authored functional specifications for new SonicWall features.
• Experience in Configuring VPC, VDC and ISSU software upgrade in Nexus 7010 Including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer link.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all the trunk ports and setting the user ports to non-trucking, deployed port security when possible for user ports.
• Design for Guest Network and Mobile Access Network for NAC Solution, comprising of an Anchor Wireless LAN Controller solution in DMZs/Internet Gateways with ForeScout CounterAct NAC Appliances for NAC.
• Involved in finalizing the design for Corporate Wireless Network Access for NAC Solution, comprising of ForeScout CounterAct NAC Appliances in all WAN Consolidation Points, and Data Centers.
• Worked extensively on Network Traffic SPANS and TAPS for monitoring Network traffic, and Virtual Firewall ACL rules and policies in CounterAct NAC Appliances for Network Access Controls.
• Worked extensively on device profiling, authentication and authorization mechanisms using AAA, RADIUS, 802.1X, Policy buildups for Posture Compliance Policies and Rules for Checking the devices coming onto Network, Remediation Process, Access and Controls, and Segmenting the Global Networks for NAC Solutions for both Cisco and ForeScout NAC Appliances.
• Working with telecom companies including Comcast and Sprint for WAN connection link between headquarters and remote sites.
• Analyzed current cloud services market dynamics and augmented existing Cloud Services, Cloud Infrastructure Planning and Design and also for Cloud Services.
• Troubleshooting and management of the Cisco Voice Solution, Installation and support of Voice circuits such as PRI, EUROPRI.
• Worked on Algosec for firewall rule analysis and firewall rules cleanup.
• Automated Cisco ASA firewall policy management and compliance using Algosec to streamline workflows, improve lead times for firewall changes.
• Voice circuits and inventory management.
• Performs all administration, management, configuration, testing, and integration tasks related to the Splunk,
• Brought up the connections between existing and new environments in both datacenters. Extended all vlans into Fabric path to facilitate connectivity into the new environment with OTV as interconnects. Tested and verified connectivity.
• Worked on connecting to database and fetch the data with Perl/Python.
• Monitoring SNMP traps for devices based on MIBs using tools such as Paessler PRTG, Wiz and Loriot .
• Deployment of Singlewire InformaCast and Administration of InformaCast IP paging system.
• Experience in working for Performing O&M and E&I work.
• Perform wireless network surveys utilizing AirMagnet Survey Pro and producing Access Point placement design documents to support deployment.
• Created manuals, Data Flow Diagrams, and ER diagrams using MS Visio.
• Design, Implementation of Cisco voice solution for world's leading provider of injectable drugs and infusion technologies.
• McAfee App Privacy Advisor: Facilitating safe and more effective app engagement.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• As part of SIEM, monitored Notable Events through Splunk ES (Using V3.0).
• Upgraded load balancers from Radware to F5 BigIPv9 which improved functionality and scalability in the enterprise.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair. configured VPC, VDC and ISSU software upgrade in Nexus 7010.
• Deploying and decommissioning the VLANs on core ASR 9K, 5K and its downstream devices.
• Used load balancers ACE and Load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Performed troubleshooting, fixed and deployed many Python bug fixes.
• Troubleshooting for Layer 2 LAN technologies but not limited to Ethernet (Switched, FastE, and GigE), Spanning-Tree, VLANs, VTP, and Trunking (802.1q) and Aruba Wireless platform. Deliver installation of wireless networking infrastructure
• Configuration and troubleshooting of Nexus 7010, 5020, 2248, 2148 devices.
• Experience using Alert Logic for SIEM audits and security incident review.
• Installed and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Integrated Informacast into Call Manager and setup VMware InformaCast server and linked altogether to the digital public-address system.
• Work closely with network engineers, field technicians, equipment vendors, and telecom carriers to troubleshoot and resolve various types of network issues and outages.
• Experience in Checkpoint IP Appliances R61, R65, R70, R75, R77 & Cisco ASA Firewalls.
• Good knowledge and hands on experience of implemented firewall policies to Cisco ASA.
• Prepared Check Point firewall configurations for migrating from Cisco ASA 8.2 version to Cisco ASA8.4 versions.
• Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks.
• Plan and integrate Microsoft Skype for Business Unified Communications hosted solution for temporary Corporate Headquarters.
• Troubleshoot Voice Over IP in Cisco Unified Communication Manager (CUCM).
• Transferring message notification from McAfee products to registered.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• McAfee Agent installs and maintenance, Host Intrusion Protection 8.0, Enterprise Virus Scan 8.x and 10.x protection suite for desktops and Responsible for 40,000 plus clients.
• Move AV Scanning Software for Vmware servers to prevent Processor Storming issues. Est. 3,200 virtual servers.
• Installations and upgrades for Cisco Unified Communication components. Well experienced in data, voice circuit ordering and hardware procurement.
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas.
• Successfully installed Palo Alto PA 3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Responsible for the security management and security operations of a large distribution center. Keep District Manager advised on all aspects of NMS Security Services operations at the site.
• Experience with F5 load balancers and Cisco load balancers for converting CSS to ACE.
• Involved in the troubleshooting aspects of complex network infrastructure using routing protocols like EIGRP, OSPF and BGP. Used MS Visio to meet these requirements
• Installation and configuration of networking devices for testing/verifying the NMS.
• Wrote python routines to log into the websites and fetch data for selected options.
• Experience in configuring and implementing Prefix-lists, Route-maps and Ether-channels.
• Optimized performance of the WAN network consisting of Cisco 3550, 3750, 4500, 6500 switches by configuring VLANs.
• Troubleshooting on network problems with Wireshark, Splunk, identify problem and fix.
• Creating day-to-day workflow utilities using Unix or Perl scripts.
• Experience in Networking, Security, Systems & Datacom, Technical support for all clients, Selling/ upselling of Datacom products.
• Perform Consultancy activities with the Professional Services for Australia and New Zealand covering the Avaya/Nortel Enterprise Voice and Data Products especially for Unified Communications (UC) portfolio.
• Experience with Class of Service/Quality of Service configuration and administration.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Performed IOS upgrades on Catalyst 2900, 3500, 4500 series switches and 2500, 2600, 3600, 7200 series routers.
• Knowledge and experience deploying, configuring, and troubleshooting Cisco Unified Communications Manager (v4.x-9.x), Unity, Unity Connection 7.x-9.x, Contact Center Express (v3.x- 9.x), Cisco Unified Presence Server CUPS (v8.x,9.x), Cisco Unified Attendant Console, Colabrio Workforce Quality Manager, Singlewire Informacast, ICM/IPCC Enterprise (7.x), routers, switches, voice gateways, Wireless APs, IP phones, Riverbed Steelhead, F5 BIG-IP LTM configurations based on corporate load balancing designs (NAT and SNAT), F5 I-Rules scripting and GTM, Tandberg and Cisco Tele-presence video conferencing, Uplinx reporting, MCS and UCS virtual servers, and CTI applications for 3rd party programs (Salesforce Helpdesk ticketing, etc.).
• Consultancy activities for Unified Communications (UC) Technologies for different vendors as well as Contact Centre Solutions.
• Created roadmap and planned the implementation of a reliable, highly available, scalable, serviceable and survivable UCaaS platform.
• Created roadmap and planned the implementation of a highly secure UCaaS platform to protect sensitive information and prevent fraud.
• Install and support applications - Jabber, InformaCast, Operator Console.
• Created and managed connectivity offers to provide flexible UCaaS service delivery.
• Authors and publishes quarterly and annual DLP update for Information Security Risk Operating Committee (ISROC).
• Granite Implementation, Build and update all Granite records for migration.
• Experience configuring in Cisco AVVID, Cisco Call Manager, Cisco IP Phones, Cisco VoIP, Cisco UC, and Cisco HCS.
• Basic understanding of Unified Contact Center Enterprise (UCCE) - Intelligent Contact Management (ICM), Customer Voice Portal (CVP) and Interactive Voice Response (IVR/VRU)
• Working out strategies for account mining to market various offerings by Datacom Payrol.
• Responsible for WLAN presentations at our Executive Breifing Center.
• Proven ability to deliver DLP policy development projects on time.
• Configured application load balancing using F5 LTM.
• Designed tests for WLAN Roaming and performance measurement testing.
• Excellently used Splunk to analyze and monitor incident management and incident resolution problems.
• Setting up of iRules to support cyber security requirements, application behavior etc.
• Implemented configuration back-ups using WinSCP, cyber fusion to automate the back-up systems with the help of public and private keys.
• Monitoring and analyzation of Intrusion Detection Systems (IDS) & Intrusion Prevention System (IPS) to identify security issues for remediation.
• Provide WLAN sales training and support to channel partners.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Research and update all equipment records in the Granite DB.
• Supporting network security devices such as firewalls and proxies with emphasis on remote access technologies such as VPN and Citrix NetScaler.

Environment: Cisco Switches 2900/3500/3550/4500/3750/6500 series and Cisco Routers 7200/3600/3800/ 2600/2800 series, Cisco Nexus 5K/7K series, Cisco Voice, Palo Alto Firewalls, Cisco ASA 5500, Perl, Python, Check Points R61/ R65/ R70/ R75/ R77, Splunk, DMVPN phase 3, IV&V Services, Algosec, F5 Load balancer ACE, VLAN, WAN, STP, RIP, OSPF, BGP, EIGRP, LAN, VPN and HSRP.

Confidential, VA

Network Engineer

Responsibilities:

• Involved in updating IOS images using TFTP and troubleshooting IP addressing issues.
• Assisted in troubleshooting LAN connectivity and hardware issues in the network as per the company requirements.
• Involved in configuring and implementing of Composite Network consists of Cisco routers and switches.
• Experience in configuring security policies includes PAT, VPN, NAT, Access-control lists and Route-maps.
• Hands on experience with Chef in AWS Cloud environment.
• Configured RIP, and OSPF on routing protocol administration.
• Provide Remote support for Linux and Windows Servers.
• Implemented UCS Server and Chassis Discovery in "headless" mode.
• Performed IOS upgrades on Catalyst 3560, 3750, 4500, 6500 series switch and 2500, 2800, 3600, 3800, 7200 series routers with HSRP.
• Certified SonicWALL Security Administrator/Trainer.
• Authored several documents approved for the SonicWALL Knowledge Base which includes DHCP over VPN and Route all traffic configuration guide, Wireless bridging configuration guides and Viewpoint configuration/troubleshooting guide.
• Coordinated with various telecom carries to troubleshoot and fix network issues and with onsite/colocations technicians to build, install and connect routers, switches and terminal servers.
• Added TLS parameters in Blueprint to handle SSL certificates.
• Troubleshooting of protocol based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
• Installations, configurations, maintenance and troubleshooting of Microsoft core devices such as Cisco 6500, ASR9k, NEXUS, Code upgrade on ASR 9K, Nexus 7010 and F5 Vipiron Load Balancers.
• Troubleshoot Splunk server and agent problems and issues.
• Experience in ASR routers ASR 5k, ASR 9k and ASR 9000 in enterprise network environment.
• Conducted mentoring session in python and setting up django environments to junior developers.
• Configured STP for loop prevention on Cisco Switches.
• Used Cloud Front to deliver content from AWS edge locations to users, allowing for further reduction of load on front-end servers.
• Knowledge of Cyber Threats and mitigation strategies, network monitoring, intrusion detection, reactive measures and prevention, network assessment methodologies, security vulnerability analysis, data encryption, and IA Tools.
• Managing voice/data circuit inventory, low voltage cabling comprising of 33 locations, including MPLS circuits, PRI, ISDN, DSL, Interactive Voice Response (IVR), Automated Call Distribution (ACD), Call Accounting Systems, and Voice Mail Systems.
• Managed UCaaS service delivery with specific focus on availability/reliability/disaster recovery, access connectivity, data retention and security.
• Datacom Operations Center and Repeater Station, responsible for maintaining and troubleshooting all the technical operations, LAN, WAN, Routers, Switches, Hubs and other network equipment.
• Security policy review and configuration in Palo Alto and Junipers Firewall in US offices and Datacenter.
• Good knowledge in federal regulations 21 CFR Part 11 (Electronic Records, Electronic Signatures, Audit Trails and Security events), 21 CFR Part 210, 211, 58 and ISO13485.
• Installed Virtual Machines for Voice Related products including SingleWire Informacast (used for Office emergency notification), Cisco Expressway, IqNet Solution Vista Point Console.
• Configured security features such as IPSEC VPN, TLS and SSL.
• Expert in Automation & Orchestration platforms centered on Cisco UCS director and VMware VRealize automation center.
• Configure and Deploy Network Hierarchy for QRadar and Create various rules and report for QRadar.
• Analyzed and monitored incident management and incident resolution problems using Splunk.
• Working as a VOIP Implementer in Migrating/Deploying new voice infrastructure in Cisco.
• Involved in domain management and SSL certificate for website.
• Leading a team for the data, voice circuit ordering. Handling vendor meetings and escalations for large procurements.
• Responsible for the monitoring and troubleshooting of all ODI Layer Devices throughout Colonials Infrastructure via Solarwinds and QRadar.
• Regular verification of the performance of the hardware on the entire infrastructure using a melee of tools such as Remstats, hostdb, Voyence, and UCMDB.
• High-level Designing and Low Level Designing of Cisco (WLAN) Wireless Networks, NAC Network Design for Global Network based in EMEA, NAR and APAC and coordination with global teams in delivering the proposed solution successfully.
• Wireless network deployment and management, including configuration of Aerohive and Cisco routers and access points.
• Responsible for ensuring the compliance of GMP/GLP and FDA regulations.
• Hands on experience on Juniper EX switches: EX2200, EX2500, EX3200 and EX4200 Series.
• Experience in working for Nexus switches 2000, 5000 and 7000 series.
• Designed WAN to prevent single point of failure in case of link failure.
• Technical Support for fault diagnosis, analysis & rectification of LAN & WAN networks.
• Creating a support document for operation team with the existing voice setup for future reference.
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Understand requirements of the client to deploy an efficient network.
• Designed & Implemented database Cloning-using Python.
• Provide level 3 for key, PBX, VoIP phone systems (Avaya IP Office 500, Nortel, Toshiba, NEC)
• In-depth knowledge and understanding of Avaya telecommunications systems, including PBX, IVR, CTI, SBC, SIP, and unified communications/voice mail.
• Configured and deployed Juniper SRX security platforms like SRX100, SRX210, SRX 1400 and SRX 3400.
• Monitoring / tracking projects with respect to budgeted cost, demand forecasts, time over-runs to ensure timely execution of projects.
• Upgraded from SNMPv2 to SNMPv3 on ASA, catalyst and Nexus switches.
• I ensure all TLS activities are conducted in a professional manner with primary emphasis on guest service
• Documentation the entire deployment notes and policy sets. Conducted workshop training for end user employees and provided helpdesk training and facilitated the handover of NAC Project to the Verizon managed services provider.
• Verifying and troubleshooting alerts triggered from Cisco Call Managers, Unity, Unity connection, Cisco routers, Switches and Voice gateways.
• Hands on experience with compilation on Recipes, Cookbooks, Curry in the Chef AWS Cloud Environment.
• Requirements review, test plan development, test procedure development, and test procedure execution, Requirements Verification Traceability Matrix (RVTM) management, Discrepancy, Problem Tracking Report (PTR), management, and final report generation for Independent Verification & Validation (IV&V) management support services.
• Highly complex network engineering work experience.
• Documented and created a run book for the data-in-transit SSL encryption with detailed steps. The run-book can be used as a guideline for setting up encryption.
• Identifying scope for planning, implementing and monitoring of technological changes to enhance operational efficiency in design guidance for infrastructure upgrade and connectivity issues.
• Involved in implementation of trucking using Dot1Q, and ISL on Cisco Catalyst Switches.
• Worked with snipping tools like Ethereal (Wireshark) to analyze the network problems.
• Performed replacements of failed hardware and upgraded software.
• Update Granite to reflect all new Equipment and Paths.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures and Led a group of 5 on a code upgrade of all AT&T mobility Nexus switches for F5 VIPIRON Hardware.
• Providing administrative support to the VSS Division for Learning events update of OCCR personnel and affiliate agencies using Training Partner software, Update of training spreadsheets and reports and Participate in day to day operations of the department.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Performed scheduled Virus Checks & Updates on all Servers & Desktops.
• Build Granite database according to Engineering requests.
• Maintains telecommunication systems, including PBX, IVR, CTI, SBC, SIP, and unified messaging/voice mail
• Produce and present cyber security status reports.
• Facilities customers' ability to make informed decision for purchases of cyber security solutions through white board presentations and round table meetings with key executive personnel.
• Monitored usage of network resources with Cisco works, and Algosec on Cisco ASA Firewalls.
• Removed huge amounts of redundant Access Control Lists from various ASA 5500 series Firewalls as part of the Firewall Rule Optimization Project using tools like Algosec as part of it
• Experience in participating in the solution design of large network infrastructure projects.
• Other responsibilities included documentation and support team members.

Environment: Cisco 3560, 3750, 4500, 6500 switches and Cisco 2500, 2800, 3600, 3800, 7200 routers, Nexus: 2000, 5000, 7000 series switches, ASR9K, ASR9000, Juniper switches: EX2200, EX2500, EX3200 and EX4200, AWS Cloud, UCS, Redundancy Protocols: LAN, WAN, HSRP, VLAN, STP, VTP, RSTP, PVST, NAT, PAT, ACL, Route-maps, Wireshark, Python, Routing Protocols: EIGRP, OSPF, BGP Cisco ASA 500, F5 BIGIP LTM, RIP, Splunk, Checkpoint firewall, Algosec, Load balancers, SSL, TLS.

Confidential, San Jose

Jr. Network Engineer

Responsibilities:

• Handling Company’s IT Security related issues, network traffic for all infrastructure devices and providing solutions.
• Configure IT LAN/WAN features.
• Web Filtering and Categorizing on Proxies and Web Gateways.
• Collecting and Maintaining logs and reports for Audit Purposes.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Experience with Cisco 3500, 6500 series equipment and configuring and deploying .
• Monitoring and maintaining compliance standards on Company’s Endpoints.
• Deploying, Configuring, Upgrading and Monitoring Security Compliance Management products and policies (Endpoint Security, Web Gateway).
• Troubleshooting WAN, LAN issues and provide speedy resolution within SLA.
• Configure new switches/routers and places into the network via Emergency and standard change controls.
• Managing and troubleshooting Security Compliances infrastructure servers on any operational concern.
• Deliver support for Remote Access VPN ad troubleshooting.
• Planned, Prepared, Designed and Implementation of Cisco NAC Appliances in the Network comprising of Access, Distribution and Core Layers (All Cisco Catalyst Switches 4500s and 6500 Series)
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) & ASR 1K & 9K Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Troubleshoot and resolved dynamic routing, Ethernet switching and host connectivity issues in a window and network environment.
• Primarily focused on Automation and failover capabilities on Security Compliance Operation.
• Handling all level of incident and change order for Security Compliance products such as Anti-Virus and Web Gateways.
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Involved in maintaining STP, RSTP and PVST+ for the catalyst switches.
• Implemented Trunking protocols like 802.1q on 3750 switches.
• Senior Security Consultant responsible for SIEM on accounts via QRadar 7.2, Tivoli Compliance Insight Manager v8.5 (TCIM), and Tivoli Security Information and Event Management 2.0 (TSIEM) in Enterprise-wide deployments for large IBM account's. IBM HIPAA and FFIEC privileged user monitoring compliance through vendor governance.
• Primary team initiatives include the continual design, architecture, implementation, and administration of QRadar auditing, security, and compliance driven from incident reporting FFIEC and HIPAA privileged user monitoring and governance controls.
• Creating RCA for any incidents related to security and compliance.
• Providing Training and Knowledge sharing session for L1 Team.
• Involved in design and deploying various network security & High availability products like Cisco ASA and other security products.
• QRadar 7.2 systems administration, inventory management, and privileged monitoring. Ongoing support of the compliance and reporting operations of multiple audited environments.
• Construct protocols for port-security to prevent any unauthorized access to the network.

Environment: Endpoint Security, Network traffic, Web Gateway, Cisco Catalyst Switches, NAC, LAN, WAN, VPN, Anti - Virus.

Confidential

Network Engineer

Responsibilities:

• Responsible for support of network devices including switches, routers wireless access points, file servers, ISP connections, acceleration applications.
• Responsible for troubleshooting complex problems related to the Internet and network interface cards.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF&BGP .
• Implemented VLANs, Trunk groups, ether channels, and Spanning tree for creating Access/ distribution and core layer switching architecture
• Managed performance, scheduling and career development for team of 15 network engineers.
• Developed a safety and fire prevention program and ensuring the work environment in compliance with all safety regulations.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and
• Applied "outside the box" procedures to recover a large volume of lost data needed for the next morning, made hard decisions to achieve goal resulting in great press for the Data Center.
• Received trouble tickets and solved tactical satellite systems related problems of at least two hundred end users.
• Implemented L2 security to protect from internal attacks
• Sound knowledge in routing protocols like Rip, EIGRP, OSPF in IPv4 & IPv6.
• Formulated a Fault Management Methodology in collaboration with Regional Operations Managers, the Operations Support Center, and external consultants to gain national support in the Broad Reach Process.
• Backup Paths for the packet prioritization and EIGRP tuning.
• Experience on designing and troubleshooting of complex BGP and OSPF routing problems
• Consistently exceeded 99% of installation deadlines and requirements for all production work orders.
• Implemented a full service helpdesk solution for tracking and managing all end-users' help requests.
• Resolved many cable failures, thefts and damages of ranging scope in number of affected customers, cable sizes, and duration to resolve. This required applying project management, inter-department coordination skills.
• Worked with IT groups to develop, evaluate and support new Network Management tools.
• Supported MACs (Move/Add/Changes) in both existing and new network.

Environment: Switches, Routers, Maintenance, L2, EGIRP, OSPF, BGP, LAN, WAN, VLANs.