Sr. Network Engineer Resume
Akron, OH
SUMMARY:
- Network Engineer with experience in the Telecomm industry, which includes expertise in the areas of Wireless, Routing, Switching & Security.
- Expert level Knowledge on working with Wireless LAN Controller’s, Cisco NCS, Cisco AP’s, LWAPS, Standalone AP’s and Mesh AP’s.
- Experienced in wireless/RF communications with knowledge and experience in technology integration of Wireless Broadband/Convergence (IEEE 802.11, WiMAX, BYOD, etc).
- Solid experience in networking planning/architecture and support, strong organizational and leadership skills with experience integrating systems in multi - user, multi-platform and multitasking.
- Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
- Proficient hands on experience in configuring Cisco Catalyst 2800, 2901, 2960, 3560, 4500, 6500, 4900, 3750 series and Nexus 5010,5596 and Nexus 7010,7018 switches.
- Strong working experience with 2600, 2900, 3600, 3900, 4500, 7200, 7600 series Cisco Routers and Nexus 7k, 5k, 2k routers.
- Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.
- Familiar with Checkpoint, ASA, Fortigate firewalls, VPN and IPS/IDS.
- Familiar with cisco UCS and VMware technologies.
- Switching tasks include VTP, ISL/ 802.1Q, VLAN, Inter-VLAN routing, Ether Channel, STP and RSTP, PVST+.
- Expert Level Knowledge about TCP/IP and OSI models.
- Knowledge in OTV, Virtual Device context, Virtual Port channel and VSS cluster
- Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
- Hands on experience in deployment of GRE tunneling, SSL and Site-Site IPSEC VPN.
- Hands on experience on vendor platforms such as Cisco, Juniper routers and switches, F5 load balancers, Check point Firewall, Cisco ASA and Cisco PIX firewalls.
- Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)
- Experience in Cisco ASA Firewall OS, NOS on 7k and 5k upgrades.
- Hands on experience on Catalyst 3850 IOS upgrades
- Expert in configuration of routing protocols and deployment of RIP v1/2,OSPF, EIGRP, DVMRP & BGP over Cisco Routers in Production environment
- Network connectivity troubleshooting, ping, trace route, telnet.
- Expert in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer
- Responsible for CheckPoint and Cisco ASA firewall administration, Mcafee Web gateway across global networks
- Worked on Load Balancers CSME and F5 LTM like 3900, 6900 for corporate applications.
- Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter VLAN routing and VLAN trunking using 802.1q.
- Network security including Telnet, SDM, NAT/PAT, ACLs, AAA, ASA.
- Worked on T1/E1/T3 technologies and different LAN & WAN technologies
TECHNICAL SKILLS:
Protocols: RIP, RIP V2, EIGRP, OSPF, IS-IS, IGRP, HSRP, VRRP, GLBP, LACP,PAGP, DNS, SMTP, SNMP, FTP, TFTP, LPD/TDP, WLAN, 802.11/802.11 e, WEP, POP3 LADP, GRE, IPSEC, VPN.
LAN Technologies: Workgroup, Domain, HSRP, DHCP, Static, VLAN, STP (Spanning TreeProtocol), VTP, Ether Channel, Trunks.
WAN Technologies: Leased Line, Frame Relay, ISDN, PPP, HDLC, ATM, SONET, MetroEthernet.
Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800, 2811. CISCO High EndRouter 3600, 3800, 7200, 12010. CISCO Switches 1900, 2950, 2960. CISCO Campus switches 3550XL, 4984 Core Catalyst 4503, 4507 RE, Catalyst 6500/6503/6507, f5 load balancer, Nexus 7K, 5K, 2K & 1K
Wireless Technologies: NCS Prime, Cisco Wcs, Ekahau, Air Magnet, Visio & WLC s (4100, 5508, 5706), Cisco Wireless Flex 7500, Cisco AP s (1552, 1260, 2600, 3600, 3700), ISE, MSE, Aruba 225, Aruba 3000 controller & Ai r w a v e, Cisco Tidal Enterprise Scheduler.
Languages: C, C++, .Net, Java, J2EE, XML, SQL
Scripting Language: HTML, Java Script, CSS, Shell
PROFESSIONAL EXPERIENCE:
Confidential, Akron, OH
Sr. Network Engineer
Responsibilities:
- Design, Survey, configure and Certify Company’s Wireless Architecture.
- Consolidate input from customer(s) and identified 3rd party solution providers to create a comprehensive access network system design covering the full required network infrastructure to fulfill customer objectives.
- Expert level knowledge on configuring Aruba Mobility controller, Airwave, Aruba Clearpass, Cisco Prime Infrastructure, WCS/NCS, ISE & MSE. Worked extensively configuring Security over Wireless and Voice over Wireless.
- Based on network requirements defined a detail capability requirements for access equipment, Wireless LAN Controllers, Access Points and services management platforms.
- Provided guidance and solutions development and implementation for (SME) in 802.11.
- Expert knowledge of all 802.11 (a,b,g,n,ac) wireless networking. 802.1x, 802.11i, EAP, TTLS, TKIP, Radius and radio frequency communication principals.
- Support and provide knowledge transfer to clients.
- Performs consulting work for customers.
- Worked Extensively with building a data center mainly consisting of nexus 7010 (core),
- 6504-E (distribution), Cisco 3825(Edge) and Fortigate firewall & Bluecoat Proxy SG for security and Cisco Tidal Enterprise Scheduler for daily business operations.
- Configuration and management of NEXUS network in the existing network infrastructure.
- Experience with administering, troubleshooting and configuring / implementation (Cisco and Checkpoint) firewalls.
- Administrated Local VLANs based on department function, and configure ports with static VLAN assignment, static 802.1Q trunks, and dynamic ISL trucking using Pap for layer 2 forwarding. Utilize VLAN Spanning-Tree in conjunction with PVST+ for compatibility between Cisco and Juniper switches.
- Upgraded the data center network environment with Cisco ASA 5520. Configured ACL’s on Cisco Switches as well as configured routers as terminal servers.
- Involved in Switching technology Administration including creating and managing VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, LAN security etc.
- Worked on Disaster Recovery (DR) test plan and build an IPSEC tunnel site to site.
- Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment.
- Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network
- Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
- Set up VSS cluster, ether channel, VLAN trunking, VTP and inter-VLAN routing on 6506.
- Setup and maintained CheckPoint security policies including NAT, VPN and Secure Remote access.
- Worked with Routing Protocols of OSPF, and BGP.
- Worked on F5 BIG-IP LTM 6900, configured profiles, and provided and ensured high availability
- Worked on F5 LTM, GTM and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance
Sr. Network Engineer
Responsibilities:
- Configure trunk ports and implement granular control of VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that can extend further across the network infrastructure than previous generation of switches.
- Implemented Cisco Wireless access points using LEAP and Cisco Radius for authentication, greatly increasing Wireless security.
- Upgrade of 230 autonomous access points to LWAPP and CAPWAP for major buildings.
- Upgrade software and configurations on Nomadix devices to reflect changes in the network.
- Installed wireless access points (WAP) at various locations in the company.
- Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment
- Implemented site to site VPN in Juniper SRX as per customer.
- Implemented various EX, SRX & J series Juniper devices.
- Configure secure privileged administrative access to the Cisco IOS system. Enable the encryption of system passwords to prevent unauthorized users access to passwords in the system configuration.
- Configuring and implementing F5 BIG-IP,LTM,GTM load balancers to maintain global and local traffic
- Configure secure access to the console and VTY ports, and set the interval that the EXEC command interpreter waits until user input is detected on the Console and VTY ports. Also, configure the console and VTY ports log messaging to not interfere with active device configuration.
- Configuring Virtual Device Context in Nexus 7010.
- Experience installing, upgrading and supporting Check Point.
- Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
- Configured and administrated VLAN Trucking Protocol to reduce administrative overhead. Enable secure sharing of VLAN information to prevent the introduction of rogue devices from affecting the VLAN database. Shutdown unused switches ports following Layer 2 security best practices.
- Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
- Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
- Administrated Local VLANs based on department function, and configure ports with static VLAN assignment, static 802.1Q trunks, and dynamic ISL trucking using Pap for layer 2 forwarding. Utilize VLAN Spanning-Tree in conjunction with PVST+ for compatibility between Cisco and Juniper switches. Configure edge ports for fast-transitioning into the forwarding state to fix workstation startup connectivity delays. Modify spanning-tree parameters for manual root bridge assignment. Implement ether-channels between each switch using Pap for negotiation. Modify ether-channel load balancing method.
- Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
- Integrated WAN links between sites using frame-relay point-to-point and multipoint connections to establish connectivity between each of the four sites as required. Establish two frame-relay point-to-point connections between a central site and two remote sites. Configured multipoint connections between three of the sites forming a full-mesh.
- Configured EIGRP MD5 Message Authentication between sites to prevent unauthorized insertion of routes into the domain. Integrate manual EIGRP route summarization to reduce routing protocol demand on CPU resources, memory, and bandwidth used to maintain the routing table.
- Configure and administrated OSPF routing with multiple areas for networks between sites. Implement OSPF MD5 Authentication between each OSPF enabled subnet to prevent unauthorized insertion of routes into the domain.
- Integrated static NAT/PAT to provide access to services located on a server in the private network to the public network. Implement standard and extended access-lists to filter network traffic.
- Worked on multiple projects related to Branch networks, Campus networks, extranet clients and Data Center Environments involving in data center migrations from one data center to another.
- Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
- Created data migration strategies to help with completion of migration of data center from one point to another.
- Configured and administrated an IPsec Site-to-Site VPN between the Cisco ASA5505 at small office location and Cisco 1841 ISR with a security IOS image at the main office. Implementation of the VPN includes the following configurations: Internet Key Exchange Policy using DES and SHA for encryption and authentication, access-lists to define VPN traffic, transform set using esp.-des esp-sha-hmac to define how the traffic is protected, crypto-map to associate the previously configured elements to a peer, and application of the crypto map to appropriate interface or VPN endpoint.
- Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
- Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
- Configured and administrated Zone-Based Policy Firewall on the Cisco 1841 ISR with the following components: three zones, class-maps specifying traffic that must have policy applied as it crosses a zone-pair, policy maps to apply action to the class-maps’ traffic, zone-pairs, and application of policy to zone pairs.
Network Engineer
Responsibilities:
- Design, install, and support of over 700 (1100, 1230, and 1240 series) Cisco access points using Cisco controllers and WCS.
- Conduct site surveys for different departments with varying requirements using Air magnet.
- Worked extensively configuring Security over Wireless and Voice over Wireless.
- Replace branch hardware with new 3900 routers and 2960 switches.
- Installing and configuring new cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company.
- Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
- Experience working with Nexus 7010, 5020, 2148, 2248 devices
- Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
- Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010
- Configuring firewall switch module on Cisco 6506 distribution layer switches, configuring VTPs, trunking, inter-vlan routing, port fast, uplink fast, backbone fast on access layer switches.
- Enable STP attack mitigation (BPDU Guard, Root Guard), Using MD% authentication for VTP
- Planned and installed Frame Relay WAN links to the branch offices.
- Maintained and setup wireless access points at various locations in the company.
- Great understanding of WLAN including 802.11 standards, Lightweight and Autonomous systems, WPA, PEAP.
- Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
- Knowledgeable in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic.
- Configuring and troubleshooting OSPF routing protocol on the corporate network.
- Tested and implemented various BGP attributes such as Local Preference, MED, AS-PATH, Community, Extended community using route-maps.
- Worked on migration of Frame Relay based branches to MPLS based VPN for customer’s WAN infrastructure.
- Experience with design and implementation of Data center migration.
- Data center migration was involved in Access, Distribution and Core layers
- Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0, also configured on BIG IP (F5) Load balancers and also monitored the Packet Flow in the load balancers.
- Have good experience working with the Trouble Tickets on F5 Load Balancers.
- Switch experience includes Cisco Catalyst switches: Cisco 3750, 4500, 6500 series switches.
- Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
- Scaling of BGP and IGP in the core, dealt with implementation of deployment related to Cisco devices and applying security policies on it.
- Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
- Configuration of NAT.
- Maintain effective communications with vendors, peers and clients in resolution of trouble-tickets, equipment RMAs, and support requests.
- Planning for upgrade of IOS on devices and performing the upgrade.
- Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IP Networking.
Network Engineer
Responsibilities:
- Experience in configuring Site-to-site and remote access VPN solutions.
- Worked extensively configuring Security over Wireless and Voice over Wireless.
- Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
- Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
- Worked on multiple projects related to Branch networks, Campus networks, extranet clients and Data Center Environments involving in data center migrations from one data center to another.
- Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
- Created data migration strategies to help with completion of migration of data center from one point to another.
- Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
- Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
- Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
- Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
- Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HRSRP, EIGRP in unequal cost load balancing to build resilient network.
- Design and implement Catalyst/ASA Firewall Service Module for various LAN’s.
- Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP.
- Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
- Configuring ACL to allow only authorized users to access the servers.
- Participated in on call support in troubleshooting the configuration and installation issues.
- Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
- Provided technical support in terms of upgrading, improving and expanding the network.
- Providing technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.
Network Engineer
Responsibilities:
- Configuring and troubleshooting multi-customer ISP network environment.
- Involved in network monitoring, alarm notification and acknowledgement.
- Implementing new/changing existing data networks for various projects as per the requirement.
- Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with MPLS, BGP, EIGRP, OSPF and RIP protocols) technical issues.
- Used Wireshark for network packet capture.
- Providing support to networks containing more than 2000 Cisco devices.
- Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
- Carrying out documentation for tracking network issue symptoms and large scale technical escalations.
- Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
- Commissioning and Decommissioning of the MPLS circuits for various field offices.
- Preparing feasibility report for various upgrades and installations.
- Installation and maintenance of new network connections for the customers.
- Configuring all the required devices and equipment for remote vendors at various sites and plants.
- Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
- Installing and maintaining local as well as network printers.
- Validating existing infrastructure and suggesting new network designs.
- Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path and Community, MED.
- Installing and maintaining Windows NT Workstations and Windows NT Server.
- Providing technical support to LAN & WAN systems.
- Monitoring Memory/CPU on various low end routers in a network.