Senior Network Engineer. Resume
New York, Ny
PROFESSIONAL SUMMARY:
- 10+ Years of experience as a Network Engineer.
- Thorough understanding of networking concepts pertaining to LAN, WAN protocols, Networking devices administration and maintenance.
- Hands on experience in migrating the network infrastructure to Amazon,Google,Azure cloud technologies and adding firewall rules in the cloud architechure.
- Hands on experience on Cisco 7200vxr, 7300, 4000, 3800, 2800, 2600 series routers and Cat 6500, 5000, 4000, 3750, 3560, 3500xl, 2950 series switches.
- Expert in routing protocols RIP V1,V2, EIGRP, OSPF (Single Area and Multi Area) and BGP.
- Experience in implementation, support and trouble shooting of VLAN’s including operational knowledge of spanning tree protocol STP, RSTP+, VLAN trunking, VTP, inter VLAN routing and ISL/802.1q.
- Experience in providing Gateway redundancy by using High Availability protocols such as HSRP, VRRP and GLBP and by providing redundant paths in an architectural view of entire topology.
- Hands on experience in planning and designing of IP addressing structure, sub - netting, VLSM.
- Configuring and Troubleshooting NetScreenJuniper firewalls 5GT, 208, SSG 5, 140, 550, 550M, SRX 240,650,3600 and high end firewalls like ISG 1000, NS 5200 using NSM and Fortinet FG/FWF 60D,60C ;FG 200D firewalls via Fortimanager.
- Configuring and troubleshooting Cisco,Juniper,PaloAlto,Fortinet Firewalls including UTM features like anti-virus, deep inspection (IDP), URL filtering and screening.
- Configuring and trouble shootingCitrix Netscaler load balancers MPX 8000,14000,17550andAruba 3200,7220wireless Controllers
- Working knowledge on different ticketing system tools (Remedy, Wiki,Servicenow,JIRA).
- Strong interpersonal, organizational communication, customer service & presentation skills.
- Excellent analytical skills, with the critical ability to identify security issues and quickly apply effective resolutions.
- An effective communicator with exceptional interpersonal skills and experienced in training and mentoring technical team personnel during various phases of project and customer relationship management skills.
TECHNICAL SKILLS:
Protocols: RIP, RIP V2, EIGRP, OSPF, IS-IS, BGP, IGRP, HSRP, VRRP, GLBP, LACPPAGP, DNS, SMTP, SNMP, FTP, WLAN, 802.11/802.11 e, WEPPOP3, LADP, Juniper radius
Cloud technology: Amazon,Google,Azure.
LAN technologies: VLAN, Trunking, VTP, STP, MST, RSTP,PortMirroring,Etherchannel (PAGP & LACP, load balancing), Optimizing STP (Portfast, Uplink fast, Backbone fast, Root Guard, BPDU Guard), 802.1Q-in-Q, Tunneling, WiFi (802.11a/b/g/n)
WAN Technologies: Frame Relay, ISDN, PPP, HDLC, ATM, MPLS, Leased Lines, Cable modem,SONET, DWDM, DS1, DS3, T1, T3, OC3, OC12, OC48, OC 192.
Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800, 2851,3600, 3800, 7200. CISCO Switches 1900, 2950, 2950, 2960G. CISCO Campus Switches 550XL, 4948 Core Catalyst 4503, 4507 RE, Catalyst, 6500/6503/6507, Cisco PIX 500 series, Cisco ASA 5500/5520 series, Juniper Routers, MX240,QFXseries Juniper EX 4200,4300,4500,4550 seriesCitrix Netscaler Load balancers MPX 8000,14000,17550,Aruba wireless Controllers -3200,7220.
Network Management Tools: Whatsupgold, MRTG, HP Openview, Cisco WAN Manager, Cisco works 2000, solar winds
Monitoring Tools: Wireshark, NETBrain, OP5,SolarWinds,HP’sNNM,Net MRI
Authentication: RADIUS,TACACS+,Digital Certificates
Firewalls: Juniper (Netscreen&junos),Fortinet,Cisco ASA/PIX,Palo Alto.
Servers: Domain Servers, DNS Servers, WINS Servers, Mail Servers, Proxy servers, Print Servers, Application Servers, FTP Servers
Remote Access: IP Sec VPN, VPN, Remote/Secure client, Site to site VPN, tunneling
Anti-Virus Management: McAfee ePO server centralized management.
PROFESSIONAL EXPERIENCE:
Confidential, New York, NY.
Senior Network Engineer.
Responsibilities:
- Built the new office in NY using Juniper switches EX 4300,EX 4500 and Juniper routers MX240,Aruba wireless controllers,Fortinet firewalls, Citrix Netscaler loadbalancers.
- Designed and implemented an IP addressing scheme with subnets for the new office in NY by implementing Subnetting/VLSM.
- Built tunnels between various NYT sites using the Amazon,Google,Azure cloud technologies along with building various instances in the cloud inorder to migrate the network infrastructure to cloud technology.
- Managed/lead the team and migrated/integrated the existing datacenter networks to cloud by building data centers and IPsec tunnels between them using the Amazon’s VPC, EC2, RDS AWS products, Google and Microsoft Azure cloud.
- Added network ACL rules on Amazon VPC and configured VPC peering.
- Configured/managed and added rules on Fortinet FG/FWF 60D,60C,90D,100D,500D ;FG 200D firewalls using CLI and via Fortimanager
- VM64 and Juniper 650,3600 firewallsalong with upgrading the downgrading the code.
- Built/managed Aruba 3200,7220wireless Controllers along with Aruba Airwave server.
- Managed Citrix Netscaler load balancers MPX 8000,14000,17550.
- Worked on an oncall 24/7 weekly rotation shift as a primary engineer for escalation for all network related issues, by acknowledging all the pages received on PagerDuty application.
- Familiar with designing, configuration/installation/troubleshooting of Juniper MX240,QFX series routers and 4200,4300,4500,4550 switches.
- Proficient in working with Juniper’s VGW and VMWare’s NSX firewalls.
- Managed the network performance and traffic flow using Riverbed.
- Configuration and troubleshooting of OSPF, BGP routing protocols.
- Configured aggregated ether channels using LACP, trunks, VLans, VRRP in a LAN environment.
- Proactively manage/upgrade/trouble shoot Juniperrouters,switches firewalls, Cisco,Fortinet Firewalls, Aruba wireless controllers via CLI,GUI and Citrix Netscaler load balancers .
- Respond to inbound requests via phone, via JIRA ticketing tool for technical assistance with managed services in a timely manner within documented SLA.
- Monitoring the firewalls/routers/switches by building the Solarwindstool and its Modules like Network Mapper/IPAM/NPM/NCM/Syslog
- Managing ip address allocation via Infoblox and SolarWinds IPAM, DNS, DHCP.
- Assist the internal IT group in maintaining, supporting, building and troubleshooting the managed services network and security environment. Working knowledge on Phyton/PERL scripting and on Forescout.
- Working with change management team on change controls for network maintenance/repair activities during network impacting events and keeping executive management team abreast of progress and customer impact.
- Manage outage bridges and repair activities during service impacting events and network outages.
- Participated in network team building process by interviewing network resources and selecting an ideal candidate for the team.
Environment: Firewalls: Juniper SSG,SRX 3600 series and Cisco ASA 5500 series Fortinet FG/FWF 60D,60C ;FG 200D firewalls Juniper 650,3600 firewalls Routers: Juniper MX 240,QFX series and Switches: Juniper 4200,4300,4500,4550Load Balancers: Citrix Netscaler MPX 8000,14000,17550Cloud:Amazon,Google,Azure.
Confidential, Englewood Cliff, NJ.
Senior Network Engineer.
Responsibilities:
- Worked as part of a team for Cisco Product Support. Troubleshooting by providing relevant knowledge base articles and other information. Installation and Configuration of LAN (Ethernet)/ WAN set up for Clients.
- Designing, configuration/installation/troubleshooting of Cisco 3600,Nexus 7K, ASR 1K,9K routers and catalyst switches 6500, 3700.
- Designed and implemented an IP addressing scheme with subnets for different departments.
- Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
- Planning and Implementation of Subnetting, VLSM to conserve IP addresses.
- Configured STP for loop prevention and VTP for Inter-VLAN Routing.
- Configuration and troubleshooting of EIGRP, OSPF, BGP routing protocols.
- Configured static/dynamic NAT .
- Supported various LAN environments consisting of Cisco 6500 series switches.
- Configured ether channels, trunks, VLans, HSRP,VRRP/GLBP in a LAN environment.
- Proactively manage/upgrade/trouble shoot customer’s Cisco routers,switches, Juniper, Palo Alto Firewalls via CLI,GUI .
- Use strong TCP/IP networking skills to perform network troubleshooting to isolate and diagnose common network problems.
- Respond to inbound requests via phone, via HP’s PPMC & Service now ticketing tool for technical assistance with managed services in a timely manner (within documented SLA) to support, threat and other cases
- Respond to needs and questions of customers concerning their access to network resources through their managed device including the VPN issues.
- Monitoring the firewalls/routers/switches usingOpen View, Net MRI, Network authority, Net QOS, Site scope, Concord health and HP’s Network Node manager.
- Adhere to policies, procedures, and security practices.
- Managing ip address allocation via infoblox, DNS, DHCP.
- Upgrading and downgrading various switches,routers,firewalls.
- Interface with onsite clients to understand the quality aspects and expectations, as needed.
- Collaborate effectively with local team members and offshore staff to create best practice processes.
- Resolve problems independently and understand escalation procedure.
- Oversee continuous process improvement: documenting that the processes are effective.
- Take the lead on communicating process improvements to the management team.
- Configuring site-to-site VPN tunnels using Cisco/Juniper firewalls.
- Maintained the network using Net Brain tool.
- Assist the internal IT group in maintaining, supporting, building and troubleshooting the managed services network and security environment.
Environment: Firewalls: Juniper SSG,SRX 3600 series and Cisco ASA 5500 series and PIX 515E,525 series and Palo Alto 7000,5000, 3000 series Routers: 3600,Nexus 7K, ASR 1K,9K and Switches: 6500, and 3700.
Confidential, ForthWorth, Tx
Network Security Engineer.
Responsibilities:
- Proactively manage customer Firewall’s (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS) and other security threat data sources .
- Configuring, managing, and upgrading FW, IDS, IVS, IPS, NAC, Encryption and a wide variety of other security products/appliances .
- Using strong TCP/IP networking skills to perform network troubleshooting to isolate and diagnose common network problems .
- Responding to inbound requests via phone and other electronic means for technical assistance with managed services in a timely manner (within documented SLA) to support, threat and other cases Respond to needs and questions of customers concerning their access to network resources through their managed device.
- Adhere to policies, procedures, and security practices.
- Resolving problems independently and understand escalation procedure.
- Collaborate effectively with local team members and offshore staff to create best practice processes .
- Overseeing continuous process improvement: documenting that the processes are effective.
- Taking the lead on communicating process improvements to the management team .
- Assisting the internal IT group in maintaining, supporting, building and troubleshooting the managed services network and security environment.
- Adding Policies to the SRX 3600, 240, ISG firewalls and monitoring the logs.
- Implementation, configuration of Juniper VPN tunnel between the two locations.
- Changing the Pre-shared key authentication to Digital Certificate authentication on the SRX 240 firewalls.
- Configuring and troubleshooting Juniper Firewalls including UTM features like anti-virus, deep inspection (IDP), URL filtering and screening.
- Aware of network analyzing tools like tcpdump, WireShark, Ethereal, 3CDaemon, SecureCRT, Nmap, for monitoring STRM( Security threat Response Manager), NSM (Network Security Manager) for Juniper firewalls
- Implementation, administration: Designing / Configuration changes, Defining events/signatures policies and its actions, Logging and Log analysis.
Environment: Juniper firewallsSRX 240,3600 and high end firewalls like ISG 1000, NS 5200, UTM features, network analyzing tools liketcpdump, wireshark, Nmap, secureCRT, SSL.
Confidential, Sunnyvale, California
Network Engineer
Responsibilities:
- Tested various EBGP attributes such as Local preference, AS-PATH and extended communities.
- Product testing and support for Access layer switches such as Cisco 4510, 4948, 4507, distribution layer switches such as 6513, 6509, 6504 and a routed core.
- Implemented L3 Switching: CEF, MLS, Ether channel in the network.
- Configuring and troubleshooting BGP, EIGRP, OSPF and RIP routing protocols for enterprise network on Cisco 6513, 4507 routers.
- Tested and upgraded various IOS releases for various Cisco routers.
- Implementation of the LAN IP infrastructure using L2 / L3 switching, VLAN, VTP, Inter VLAN Routing, Spanning tree, Switch ports (access and trunks) Gigabit Ethernet and truncking .
- Worked on issues related to customer access-lists.
- Configured TACACS and AAA for various routers and switches.
- Replicating customer specific scenarios in lab for troubleshooting purpose and reproducing the problems in the lab
- Active monitoring and LAN/WAN support
- Established interactive communication with the end users to understand their day-to-day problems and subsequently provide satisfactory solution in time.
- Provide a daily / weekly / monthly quality score to each agent to improvise the performance.
Environment: Routers: Cisco 6513, 4507 and Switches: Cisco 4510, 4948, 4507, 6513 and 6509.
Confidential, Chicago,IL
Network Engineer
Responsibilities:
- Configuring and managing Cisco 7204, 3825, 3945 routers and 3750 data and power stack switches in a 10/100/1000 multi VLAN distributed network.
- Configuring VLAN's, defining ACL’s and assuring WAN availability and optimal throughput via the use of BGP, OSPF, and HSRP on6500, 3750, Nexus 5000, Nexus 7000 switches.
- Utilizing Network Instruments Observer, Observer Infrastructure Enterprise, tcpdump, WireShark network monitoring tools.
- Network systems planning and diagramming Visio for documentation.
- Using a protocol analyzer to identify and resolve network issues, communication port identification, and network usage trends.
- Experience with LAN hardware including patch panels, Fiber Optic, Cat5e and Cat 6 wiring.
- Supporting and maintaining SSL VPN, VPN tunnel, and Cisco client remote access.
- Interacting with telecom provider to report, troubleshoot, and install service upgrades.
- Administrating F5Load Balancers like creating new pools and VIPS,adding/deleting/modifying load balancing rules.
- Administration of firewalls like creating/modifying object groups, adding/deleting/modifying appropriate rules and Access Lists.
- IP/DNS administration like adding/modifying/deleting IP and DNS assignments using Infoblox tool.
- Documenting environment/configuration of the environment (e.g. topology) and specific devices - ensure inventory systems.
Environment: Routers: 7204, 3825, 3945,7200Switches:6500, 3750, Nexus 5000, Nexus 7000,Firewall and VPN:(PIX/ASA) (firewall and VPN) Load Balancer:(F5) IP/DNS:Infoblox.
Confidential, Newark,Delaware
Network Engineer
Responsibilities:
- Configuration and Installation of Cisco routers 3600and catalyst switches 6500, 3700.
- Designed and implemented an IP addressing scheme with subnets for different departments.
- Maintaining and troubleshooting of connectivity problems using Ping, Trace route.
- Planning and implementation of Subnetting, VLSM to conserve IP addresses.
- Configured STP for loop prevention and VTP for Inter-VLAN Routing.
- Configuration and troubleshooting of EIGRP, OSPF, BGPon Cisco1700, 2600, 3600, 7200 routers.
- Configuration of Standard and Extended ACLs for Security.
- Implementation of NAT with a pool of 2 public IP addresses.
- Troubleshooting issues and outages on Trunks and Router interfaces extensively.
- Configured VPN for the remote and site-to-site access.
- Configured Access control list and also configured Cisco ACS for AAA services using Tacacs and Tacacs+.
- Experience in network monitoring tools like Netflow and Cisco IPS event viewer.
- Defined and maintained security policies on all Internet-facing edge routers used for delivery of streaming media content.
- Implemented TCP/IP and related services like DHCP/DNS/WINS.
- Documentation of entire site layout, updating and managing the asset registers and network or server documentations.
Environment: Routers: 1700,2600,3600, 7200 and Switches: 2900,3550,6500, and 3700.
Confidential
NOC Network Engineer
ROLES/RESPONSIBILITIES:
- Part of a on call support group, provided basic troubleshooting help for internal customer issues
- Configuration and maintenance of Cisco 1700, 2600 series routers with EIGRP routing protocol.
- Provisioned and validated DNS record for customer domains.
- Gained strong knowledge with hand-on experience of IP-subnetting for class A, B, and C networks.
- Thorough understanding of network and security knowledge (TCP/IP, DNS/WINS, firewalls, routers & VPNs).
- Responsible for implementation and day to day operations of all associated hubs, routers, switches & windows machines
- Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers & system administrators.
Environment: Routers:Cisco Routers:1700, 2600 series and Cisco Switches:2900, 3550 series.