Network Engineer Resume
MD
PROFESSIONAL SUMMARY:
- 8+ years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN communication systems.
- Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, and Ether-channel.
- Experience in Configuring & implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
- Strong understanding of: DNS, NFS, SMTP, HTTP/HTTPS, TCP/IP, UDP, and ARP
- IOS upgrade and configurations for 2900, 3900, 7200 routers and 6500, 2900 and 3600 series switches
- Switching tasks include VTP, ISL/802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
- Provide SOC support for monitoring, initial analysis (triage), and initiation of necessary action to address anomalies to normal, or baseline, operation of systems under SOC observation.
- Implementation of Layer2 VPLS/VPWS/L2CC circuits on Juniper MX480/960
- Manage monitoring tools (Solar winds) preferable.
- Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, NOKIA Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall, Cisco ASA Firewalls
- Experience securing and managing remote access using various VPN technologies like IPSec, SSL, and GRE.
- Experienced in handling and installing Palo Alto Firewalls.
- Experience with programing languages: C, C++, JAVA, PHP and script automation i.e Linux BASH Shell and Junos SLAX .
- Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
- Practical knowledge about TCP/IP, DHCP, DNS, SMTP, POP3, RIPV1, RIPV2, OSPF, IGRP. EIGRP, BGP Routing protocol Static, default and dynamic.
- Configuration and troubleshooting L3 switches with VLAN, STP, SPAN, ETHERCHANNEL, HSRP, VRRP and GLBP.
- Analyzed network traffic using Wireshark to troubleshoot network communications protocols, filter and inspect captured packets.
- Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
- Technologies & Platforms: Microsoft Servers, Microsoft Exchange, DNS, DHCP, IP, Cisco Routers & Switches, Juniper SRX & EX series, Sonic Wall, Metaswitch, Motorola CMTS, Motorola Wireless, Cisco 15454 MSTP, SONET, DWDM, VoIP & PBX/Key Systems
- Experience in network migration project to new network management team. Which includes inventory (e.g. routers, switches, firewalls, Palo Alto, checkpoints, load balancer, etc..) capture, Inventory validation and intersection, management readiness checking/testing (connectivity remediation), Develop migration configurations, and perform device migration
- Experience in Cisco Routing, Switching and Security with strong Cisco hardware/software experiences with Cisco Routers such as 1900, 2900, 3900, Cisco ASR-1k/9k, Cisco Multilayer Switches 4500, 6500, Cisco Nexus 2k/5k/7k/9k and Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches.
- Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
- Monitoring Traffic and Connections in Checkpoint and ASA Firewall.
- Working experience with A10 and F5 Load Balancer.
- Programmer in the language of Perl and Shell Scripting/Unix.
- Practical experience in Active directory, OU, DNS, DHCP, Group policy, Replication, Active directory domain trust relationship.
- Lead engineer for Cisco UC (Tandberg) and Cisco WLC5508/Aironet 1200 setup in new corporate office, along with WebSense and Ironport Web Proxy setups
- Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
- Configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms.
- Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
- Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
- Using SmartUpdate, User Management and Authentication in Checkpoint Firewall.
- Worked on Wireless packet sniffer and Wireless Analyzer tool Wireshark &network monitoring tools like Netflow, RSA envision and Cisco IPS event viewer.
- Thorough understanding of VPN technologies like IPSec, GRE tunneling, MPLS for remote access security.
- Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
- Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
TECHNICAL SKILLS:
Routers: Cisco 7609, 2600, 2800, 3800, 3640, Cisco 3745, 7200 Series.
Switches: Cisco 3500, 5000, 6500 Catalyst Series Cisco 7000, 2000 Nexus Series
Firewalls: Palo Alto PA-500, PA-2k, PA-3k, PA-5k & PA-7050, Checkpoint R65/R70/R75/R76/R77, Juniper SRX,Palo Alto
Load Balancer: F5-Big-Ip, LTM, Ax10.
Routing Protocols: BGP, OSPF, EIGRP, VRRP, HSRP, GLBP, and RIP.
Switching Protocols: STP, RSTP, PVSTP, VTP, ARP, and VLAN.
IP Services: DHCP, NAT, VLAN, DNS, FTP, TFTP, LAN/WAN.
WAN Technologies: ATM, ISDN, PPP, MPLS, ATT, 802.11, 802.11a, 802.11b, APLUS.
Network Technologies: IPsec, GRE, NAT/PAT, ACL, IPv4, IPv6.
Operating System: Windows XP, Vista, Windows 7, UNIX, SPLAT (Secure Platform), Linu
Aruba: Aruba S2500 switches, Aruba 7200/3400/3200 Controllers, AP 105/95/65, Airwave Servers, Aruba Clearpass Servers,Vmware.
Network Devices: Cisco ASR 9010 and CRS-16/S routers, Cisco ASR 9000v, Juniper MX960/MX2020, Juniper EX4200 Switch, Cisco IOS XR 4.2.3/IOS 12.4, JUNOS 11.4, Cisco Nexus 3000/7000 Switch, Arista 7504/7280 Switch, Silver-Peak WAN Accelerator NX-11700
PROFESSIONAL EXPERIENCE:
Confidential, MD
Network Engineer
Responsibilities:
- Experienced with Juniper: EX-2200, EX-4200, EX-4500, MX-480, and M Series, SRX210, SRX240.
- Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
- Used Windows Powershell to build scripts and leverage proven rules, roles, workflow and attestation features in Active Directory
- Provided network security engineering, deployment and administration of network firewalls.
- Daily management and troubleshooting of multi-site WAN covering multiple locations globally with, BlueCoat Proxy.
- Generation Firewalls such as Palo Alto, VMware NSX, Juniper, Cisco ASA, SonicWALL, Fortinet, and Amazon Web Services.
- Provide guidance and recommendations for continual improvement in SOC operations, policies, procedures, and utilization of SOC systems and tools.
- Selected and installed a new Lucent G3SI PBX and Audix Voice Mail System for the new 63,000 square foot building.
- EIGRP, knowledge in scripting with Python and shell, designing and troubleshooting routing protocols (OSPF, EIGRP, BGP) for enterprise networks, knowledge of TCP internals and other Layer 4-7 protocols such as HTTP, SSL, DNS, etc., firewalls, IPS / IDS, familiarity with network monitoring and troubleshooting tools such as WUG, MRTG, Solarwinds, Icinga, Cacti, Nagios.
- A graphical user interface written in JavaFX and a server component written in Python to build and launch virtual network topologies in a VM.
- Worked extensively in Designing, Implementing & Managing LAN, WLAN & WAN solutions for different client setups. In-depth knowledge and experience in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM, BlueCoat Proxy & Frame Relay.
- Design, install, maintain and troubleshoot datacenter network infrastructure including A10 load balancers, Cisco Nexus/Arista switches and Cisco ASR9K/Juniper MX routers.
- Hand-on experience with Arista(7304, 7150S, 7050S, 7048T), Cisco IOS, Application-ID firewall, Load-Balance(F5 and A10), and critical network services such as DNS & DHCP(Infoblox), AD, Radius, TACACS, SMTP.
- Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
- Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
- Worked with removing and adding Servers into a Citrix NetScaler load balancer in a server farm configuration with multiple sites. Use of TIC Cisco ASR 9000.
- Part of the Security Operation Center team SOC using HP ARCsight SIEM Integration
- Experience in Multicast Routing Protocols such as PIM-SM, PIM-SSM, MSDP, PIM-BSR etc
- Hands-on with VoIP and telecom equipment, standards and technologies.
- Part of the SOC team using Splunk SIEM.
- Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
- Install, manage VoIP/PBX systems (AVAYA 87XX, NORTEL, CISCO) including equipment sourced from Avaya, Nortel, Cisco, Panasonic, Siemens, etc, protocols configuration (OSPF, BGP, RIP, OLST, IS-IS, EIGRP, Spanning Tree, etc) WAN/VLAN/LAN
- Planning, designing and deploying new LAN/WAN network infrastructure and connectivity for managed services environment.
- Supporting the team for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers,Citrix netScaler.
- Experience designing, implementing and supporting network segmentation in a data center environment using Cisco ASA firewall solutions
- Configure and install various network devices and services.Perform network maintenance and system upgrades including service packs, patches, hot fixes and security configurations
- L3 knowledge in Network Data & Security, Understand Network & Security architecture of Customer.
- Configuring web-security through UTM box in fortinet firewall.
- Ensure continuing functionality of Cisco WAN/LAN. Using Protocols like OSPF and BGP on Cisco Routers 3900, 2800 and Cisco switches 3800 and 3650s.
- A graphical user interface written in JavaFX and a server component written in Python to build and launch virtual network topologies in a VM.
- Participating in planned network migration project to new network management team. Which includes inventory (e.g. routers, switches, firewalls, Palo Alto, Firewalls checkpoints, load balancer, etc..) capture, Inventory validation and intersection, management readiness checking/testing (connectivity remediation), Develop migration configurations, and perform device migration.
- Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
- Configured OSPF and BGP on Juniper M and MX series Routers, BlueCoat Proxy and Riverbed Steelhead appliances.
- Implemented Positive Enforcement Model with the help of Palo Alto Networks.
- Build various network technologies from the ground up specifically Bluecoat Web proxies and zscaler.
- Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
- Experience with VOIP, Network Monitoring (Solar Winds) and wireless Networking (WCS)
- Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
- Monitoring Firewalls, threats, doing Security risk assessment & Internal Audits. Reporting to management on security findings.
- Provide LAN / WAN Support remote locations. Protocols SMTP, DNSFTP, SSH, OSPF, BGP, IGP, LDP
- Supported enterprise environment including: Aruba controllers,Airwave and APs/Cisco wireless controllers and APs worldwide, remote Cisco router/switch, Cisco/Palo Alto security appliances
- Developed VoIP Support (Call Manager/Unity 8.6.2, 79xx Series telephones VG224 Voice Gateways. etc.) Moves/Adds/Changes
- Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
- Configured and deployed VMware SRM for Disaster Recovery/ Business Continuity
- Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
- Experience in DNS, DHCP, SMTP, FTP, HTTPS and web security architecture.
- Experience in configuring and supporting VPN and VPC on Cisco VPN concentrators and 2811 routers
- Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
- Exposure to wild fire feature of Palo Alto.
- Analyzed network traffic using Wireshark to troubleshoot network communications protocols, filter and inspect captured packets.
- Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others
- Configured NATs, ACL and routing on Cisco routers, firewalls, and layer 2 & layer 3 switches.
- Experience in working in Network Access Control (NAC) / Cyber Security projects and implementation and/or support & maintenance
- Enforcement Firewall (PEF) module for ArubaOS provides identity-based controls to enforce application-layer security, prioritization, traffic . Policy Enforcement Firewall (PEF) module for ArubaOS provides identity-based controls to enforce application-layer security, prioritization, traffic forwarding, and network performance
- Designed and implemented IT security policies and networked backup systems.
- Created a wireless network within the production plant, utilizing an Aruba wireless controller and wireless access points.
- Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network.
- Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
- Daily responsibilities included design, implementation, support and administration of multiple security products running CheckPoint Provider-1 and VSX, SourceFire, and ISS Realsecure.
- Regularly performed firewall audits around CheckPoint Firewall-1 solutions for customers.
- Gather and document system functional requirement with respect to Solarwind.
- Provided tier 3 support for CheckPoint Firewall-1 software to support customers.
- Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
- Involved in configuring Juniper SSG-140 and Check point firewall.
- Technologies handled by team include but not limited to Firewalls (Cisco ASA 5500), Nexus Switches (5k) with fex, Catalyst Switches (6500), VPN, WLAN (Aruba, Cisco
- Working on the project of F5 LTM and GTM code upgrade.
- Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
- Create Key Progress Indicators KPI to demonstrate the value of the SOC
- Tuned BGP internal and external peers with manipulation of attributes such as weight, local preference.
- Daily monitoring of network traffic using sniffers (Wireshark) and access logs to troubleshoot and identify network issues.
- Managing Vendors Globally, Proactive planning of any Outages, Doing RCA on any network related issues.
- Worked with vendors and Engineering team to test new hardware and procedures
- Worked with Cisco Nexus, Catalyst and Aruba wireless devices.
- Consulted with engineering team to resolve tickets and troubleshoot L3/L2 problems.
- Monitored LAN/WAN network activity utilizing CA/Spectrum monitoring tools.
Confidential, AL
Network Engineer
Responsibilities:
- Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
- Lead the installation and configuration of corporate wide rollout of the Cisco Catalyst 3550, 3750, 4500, and 6509 switches.
- Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
- Experience in migration of VLANS.
- Implemented, maintain and manage 4 VMware ESX and ESXi servers (approximately 30 VMs) with a mix of SANS EMC Direct Attached Storage.
- Experience with TCP/IP, basic routing, and common protocols such as SSH, FTP, HTTP, LDAP etc.
- CCNA or equivalent experience in voice process
- Migration of servers from one datacenter to another, providing switch connections to the new servers, updating Check point Firewall rules for the new servers, Palo Alto Firewalls, F5 to A10 load balancers Migration
- Daily monitoring of utilization of Networks connected to DC and taking corrective
- Create monitoring template using custom MIBs in Solarwind.
- Primary responsibility is to design and deploy various network security & High Availability products like Juniper other security products
- Implemented VoIP network to support 1000+ users using Cisco Catalyst 6509s running QoS and POE VLANS to Cisco IP phones.
- Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
- IT security activities include monitoring and investigating network traffic for appropriateness, monitoring computers and servers for up-to-date security status, conducting vulnerability assessments on the IT infrastructure, investigating new security technologies to propose for implementation, improving the IT security status of the enterprise, coordinating IT Department response to SSAE SOC 2 (formerly SAS 70) and other audits.
- Supported enterprise environment including: Aruba controllers,Airwave and APs/Cisco wireless controllers and APs worldwide, remote Cisco router/switch, Cisco/Palo Alto security appliances
- Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design
- Experience working with JUNOS OS on Juniper Routers and Switches and Juniper firewalls
- Experience working Juniper SRX, J-Series Routers
- Expertise in implementing L2 technologies including VLAN's, VTP, STP, RSTP and Trunking.
- Configuring and Troubleshooting Route Redistribution between static, RIP, EIGRP OSPF & BGP protocols.
- Configured Security policies including NAT, PAT, VPN's and Access Control Lists.
- Configuring IPSec VPN on Cisco Firewall.
- Maintained, upgraded, configured, and installed Cisco ASA 5510, 5520, & 5505 Firewalls from the CLI and ASDM.
- Worked on Wireless packet sniffer and Wireless Analyzer tool Wireshark &network monitoring tools like Netflow, RSA envision and Cisco IPS event viewer.
- Configured STP for switching loop prevention, and VLANs for data and voice along with configuring port security for users connecting to the switches
- VMware; networked built with Cisco, Vyatta and next generation firewalls Co-ordinate with the Data Network and Security team and come up with possible solutions
- Configuring and managing Blue Coat Proxy Servers .
- Managed network IP access via Dynamic Host Configuration Protocol (DHCP).
- Managed network security processes using ASA firewalls.
- Prepared technical documentation of configurations, processes, procedures, systems and locations.
- Redistribution of routing protocols and Frame-Relay configuration.
- Experience with convert juniper SRX VPN rules over to the Checkpoint 12000 Boxes, Migration Experienced with SPLAT and Junos.
- Researched and implemented upgrade process to support Cisco VPN solution.
- Researched, designed, tested and implemented Cisco's VPN solution for remote clients.
- Responsible for designing and implementation for customer network infrastructure.
- Upgrade Cisco Routers and Switches IOS using TFTP.
Confidential - Concord, CA
Network Engineer
Responsibilities:
- Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
- F5 & CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
- Installation, configuration and maintenance of Cisco 7206/3660/3640/2600/2500 series routers.
- Designed and Installed Cisco PIX Firewall and Cisco Router on a DMZ.
- Installed and Configured F5 BIG-IP LTM load balancer for Weblogic farm for SSL & SLB.
- Chiefly responsible for Designing and Deploying Cisco LAN/WAN.
- Implemented Windows NT domain, domain name services E-mail, Web, and FTP services.
- Performed various projects while successfully migrating data to new systems and remote locations.
- Configured VPN tunnels on Cisco IOS, PIX Firewall & Cisco VPN Concentrator in establishing Extranet Connectivity to clients.
- Working with Juniper JUNOS on M and MX series routers.
- Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
- Configuring HSRP for network redundancy and High availability.
Confidential
Network Admin
Responsibilities:
- Configured the Cisco router as IP Firewall and for NATting.
- Maintenance of ERP and troubleshooting of ERP.
- Managed and installed Firewall (Sonic wall).
- Installed & configured PIX 520, 525, 535 series firewalls, configured standard & extended access-lists & policy- based filters.
- Configured ASA 5510 appliance and VPN.
- Responsible for implementing Qos prioritizing voice traffic over a data.
- Managed and maintained Antivirus Server (MacAfee, Quick heal, scan).
- Installed and configured network printer installation (HP) 3500 series.
- Configuring, supporting, and maintaining routers, switches, network appliances, firewalls, concentrators, and other communication devices.
- Providing support for advanced level and on-call support for large variety of networks, systems, and infrastructures.
- Troubleshooting network systems and performance, and remediating issues professionally and concisely.
- Evaluating project fit and design, utilizing best practices and vendor comparison techniques to provide customer with best business solution.