SUMMARY:

• 8+ years of professional experience in Network Engineering with Cisco Certified Network Engineer, performing Network analysis, design, Implementing, planning with a focus on performance tuning and support of large Networks.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Experience working on Cisco Catalyst Series3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000 and 7000 series switches.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Experience in layer - 3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Configuring VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 Switches.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Experience with design and implementation of Virtual Switching System (VSS) for both User segment and server segment using 6509-V-E catalyst switches.
• Experience with design and implementation of Data center migration
• Worked on Load balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Migration of firewall rules from Cisco ASA, Checkpoint to Palo Alto firewalls using migration tool from PAN.
• Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
• Worked extensively on Data Center Palo Alto firewalls and F5 BIG-IP LTM.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Experience in configuring and installing Brocade routers and switches.
• Experienced in Troubleshooting layer 2 and 3 issues on Brocade Campus routers and switches
• Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP.
• Expertise in installing, configuring and troubleshooting Juniper Routers ( E,J,M and T-series).
• Implementing security policies using Cryptography, ACL, SDM, PIX Firewall, IPSec, VPN and AAA Security on different series of routers.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series). includes the configuration of port channel between core switches and server farm block switches N9K-C9372TX-B18Q
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), Confidential -Open view, RSA envision and Cisco works to support 24 x 7 Network Operation Center.
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Knowledge of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), Confidential -Open view, RSA envision and CiscoWorksto support 24 x 7 Network Operation Center.

SKILL:

CISCO Platforms: Cisco routers (7600, 7200, 3900, 3600, 2800, 2600,2500, 1800 series) & Cisco Catalyst, N9kswitches (6500, 4900, 3750, 3500, 4500, 2900 series),Cisco VSS, Nexus 9K, 7K, 5K, 2K & 1K.

JUNIPER Platforms: SRX, MX, EX Series Routers and Switches.

Networking Concepts: Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi.

Firewall: ASA Firewall (5505/5510), Checkpoint, Palo Alto, Cisco ASA.

Network Tools: Wireshark,Solar Winds, SNMP, Cisco Works.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1,DS3, OC3, T1 / T3 & SONET.

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port-channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: SSL-VPN, IPSEC, Cisco ACI

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA.

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, UNIX

PROFESSIONAL EXPERIENCE:

Confidential, Avenel, NJ

Senior Network Engineer

Responsibilities:

• Worked as part of a team to manage Enterprise Network Infrastructure as a Tier 2 Support Engineer.
• Build and configure Active/Standby Failover on Cisco ASA with stateful replication.
• Responsible for creating Low level design and HighLevel Design for Meraki SDWAN deployment
• Designed and configured the Meraki SDWAN Full stack and upgraded the cisco end of life support devices to Meraki platform
• Configured Aruba WAP and Wireless controller 66xx/57xx on Cisco Prime, VMWare NSX for proper access of Boingo wireless interne
• Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies network appliances, VoIP phone systems, WiFi appliances, and desktop / laptop computers
• Directed, network engineers andtechnicians for remote and onsite provisioning of: Motorola WiNG WiFi, Cisco routers and switches, and Meraki installations utilizing fiber optic and Cisco backbone technology at over 25 properties nationwide
• Installation Management Services, NetScaler, Branch Repeater and Access Gateway CAG with Advanced Access Control, Application Profiling, Streaming, Certification and Management
• Expert knowledge of all facets of Citrix NetScaler and NetScaler Gateway ADC
• Primarily responsible for production NetScaler 9.X, upgrading production NetScaler from 9.x to 10.x, NetScaler
• Knowledge and experience with Citrix NetScaler Access Gateway configurations.
• Designed and implemented testing protocols for the WAN and LAN technologies.
• Experience in testing, trouble shooting and configuring ISDN Modems BRI/PRI: T1 E1 with X.25 PAD.
• Moderate knowledge in configuring and troubleshooting Wireless Network: Net gear, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics as well as WAN testing
• Configure and tweak the inspection policies on Firewall to allow legacy application traffic.
• Developed deployment solutions for network technologies including Optical VoIP VPN SAN switching and routing
• Collaborate with network engineers or administrators to ensure that VoIP traffic does not interfere with or hinder network data traffic
• Create, modify, and troubleshoot firewall Juniper ScreenOS AND JunOS platforms and load balancer F5, A10 configurations.
• Proven experience and deep knowledge of the networking technologies and vendors such as Cisco, F5, Riverbed, Force10, Vyatta/Brocade, A10 Networks, Arista, Infoblox, Check Point, Palo Alto Networks
• Specific experience with Cisco IOS, CatOS and NexOS, RSA SecureID systems, A10 hardware load balancers and Riverbed Steelhead devices
• Understanding of or experience with various network (including firewall and load balancers) and security technologies (e.g., Cisco, Palo Alto, A10, etc.)
• Configure and administer Cisco ASA Firewalls (5585, 5550 and 5540) and use command line CLI, Cisco CSM, ASDM for day-to-day administration.
• Definition of the UC strategy as it pertains to IP Telephony Avaya,Communications manager, System/Session manager, Session Border Controllers Acme and SIP interfaces to telecom's carriers
• Maintained Avaya G3 PBX environment with s8720 communication manager servers, Cisco CM 7.0
• Maintain, monitor Avaya S8800/S8700/S8500/DL360 class media servers and gateways.
• Extract the logs, Perform real time log analysis using SIEM technologies and Forensics Analysis of logs as per the request
• Aggregate, correlate, and analyze log data from network devices, security devices and other key assets using SIEM technologies.
• Security Incident handling, SIEM ESEM using RSA Envision/Arcsight products
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Replace branch hardware with new 3900 routers and 2960 switches.
• Configuring firewall switch module on Cisco 6506 distribution layer switches, configuring VTP’s, trunking, inter-VLAN routing, port fast, uplink fast, backbone fast on access layer switches.
• Enable STP attack mitigation (BPDU Guard, Root Guard), Using MD5 authentication for VTP
• Planned and installed Frame Relay WAN links to the branch offices.
• Maintained and setup wireless access points at various locations in the company.
• Great understanding of WLAN including 802.11 standards, Lightweight and Autonomous systems, WPA, PEAP. monitoring, alerting, preventive action framework for Brocade SAN switches.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Worked Palo Alto and Checkpoint Next Generation firewall
• Worked on Network Traffic sizing of cloud to network through security firewalls.
• Implement the firewall rules using Net Screen manager (NSM).
• Monitoring the network traffic with the help of QRadar and Cisco IPS event viewer.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Helped in troubleshooting in DDoS.
• Configuring and troubleshooting OSPF routing protocol on the corporate network.
• Tested and implemented various BGP attributes such as Local Preference, MED, AS-PATH, Community, Extended community using route-maps.
• Worked on migration of Frame Relay based branches to MPLS based VPN for customer’s WAN infrastructure.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0, also configured on BIG IP (F5) Load balancers and monitored the Packet Flow in the load balancers.
• Implemented VLAN, LAGs, and Port-channels on Brocade switches.
• Implemented BNA (Brocade Network Advisor) on the migrated network for monitoring and management of the network devices.
• Have good working experience with the Trouble Tickets on F5 Load Balancers.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
• Scaling of BGP and IGP in the core, dealt with implementation of deployment related to Cisco devices and applying security policies on it.
• Maintain effective communications with vendors, peers and clients in resolution of trouble-tickets, equipment RMAs, and support requests.
• Managed data back-ups, scheduled data back-up, and preparation for disaster recovery files.
• Planning for upgrade of IOS on devices and performing the upgrade.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IP Networking.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco ASA5510, Brocade, Checkpoint, F5 Load Balancer, Cisco ACI, CiscoNexus7K/5K, Checkpoint, Cisco ASA.

Confidential, Westmont, IL

Network Engineer

Responsibilities:

• Configured Site-to-site and remote access VPN solutions.
• Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
• Configured network using routing protocols such as RIP, OSPF and BGP and troubleshooting L2/L3 issues.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels.
• Responsible for installation of Meraki MX security appliance and MS switches in the client environment to support SDWAN
• Created data migration strategies to help with completion of migration of data center from one point to another.
• Configuration of Cisco 6500 (SUP 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, converted PIX rules over to the Cisco ASA solution.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
• Deployed and maintained routing protocols such as OSPF, EIGRP, BGP, GRE, MPLS/VPN, HSRP and static routes on Cisco routers and switches and Juniper routers
• Wifi/Local Area Network (LAN)
• Responsible for SIP based Voice over IP service delivery to Cisco, Adtran, and Mediatrix VOIP Gateway endpoints
• Responsible for the analysis/troubleshooting of large scale enterprise VoIP networks
• Configured and maintained over 1500 VoIP phones throughout several sites
• Experience with Wireless technologies including WIFI and WIMAX
• Design and Deployment of LAN/WAN, Wifi, Remote Access and Security solutions.
• Worked with customers to define, plan and execute technology solutions that are specific to their needs. Deployment and configuration of F5 BIG IP load balancer (LTM, GTM, ASM, and APM Modules).
• Built site-to-site IPsec VPNs over Frame-relay & MPLS circuits on various model’s tor Cisco routers to facilitate adding new business partners to new and existing infrastructure.
• Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing to build resilient network.
• Design and implement Catalyst/ASA Firewall Service Module for various LAN’s.
• Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Troubleshoots in Cisco Aironet 2700 and 600 series.
• Citrix NetScaler load balance scripting for web interface system and other mission critical web system
• Experience in Citrix NetScaler application delivery controller.
• Citrix NetScaler 11 configuration and maintaining
• Configured Client VPN and RSA Token ID technologies including Cisco’s VPN client via IPSEC.
• Configuring ACL to allow only authorized users to access the servers.
• Participated in on call support in troubleshooting the configuration and installation issues.
• Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
• LAN/WAN Tech: Ehternet,Leased line, Fiberoptic,ISDN,Wireless,Dial-up
• Knowledge in new technologies like SDN, Openflow protocol and NOX controller Python based
• Provided technical support in terms of upgrading, improving and expanding the network.
• Providing technical security proposals, detailed RFP responses and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, F5 Load Balancer Cisco Nexus7K/5K, ACI, Checkpoint, Cisco ASA, Palo Alto.

Confidential, Austin, TX

Senior Network Engineer

Responsibilities:

• Responsible for configuration, maintenance, and troubleshooting of dynamic routing protocols: BGP, OSPF & EIGRP (route redistribution, distribute lists, route-maps, offset-lists, prefix lists, route summarization, route-feedback, BGP attributes) on Cisco Routers 7613, 7201 and 3945E.
• Actively involved in Optimization of WiFi, LTE, VoLTE, VoIP & CDMA Networks
• Survey and Maintenance of WiFi Installations
• Good understanding of NAT & Firewall on Aruba Controllers
• Configured Aruba WAP and Wireless controller 66xx/57xx on Cisco Prime, VMWare NSX for proper access of Boingo wireless interne
• Setting up Throughput testing, No Drop Rate for different topologies and routing features
• Worked with other team members in testing of the network architecture
• Over four years in router, switch feature development testing and integration testing
• Interoperability testing of Catalyst 6500 switches and other Switches
• Working experience on tools and devices like Source Fire, Fire eye, Aruba, Cisco ASA, Cisco ISE
• Managed, provided troubleshooting, and activated large scale WiFi deployment
• WIFI configuration with D-link access point series DI-724GU Wireless 108G QoS Gigabit
• Integrated and evaluated Cisco ACI, VMware NSX, and Arista CVX SDN solutions
• Responsible for developing traffic engineering in Meraki SDWAN to support intelligent traffic flow across the network
• Integrated Palo Alto next-gen firewalls with overlay VMware NSX SDN network
• Involved in deployment of Meraki SDWAN solution across the Corporate offices
• Deploying of VLANs, port and IP allocations and planning on ASR Mk, Nexus '7k, 5k, Mk and its downstream devices.
• Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Working experience with A10 and F5 Load Balancer.
• Worked extensively on Cisco Switches, Routers, ACE and F5 and A10 load balancers, and NetScreen/Pix/ASA/Junos/FWSM/Sonic/Checkpoint firewalls. use of F5 load balancers, A10 Thunder, BIG-IP, 3-DNS, optimize and control network traffic. Also for cisco ACE load balancers too.
• Configured, maintained and troubleshot F5 LTM and A10 Thunder load balancer for load balancing, redirect purposes
• Configured reverse proxy access via NetScaler per customer requirements
• Implemented ICA Proxy (NG) based on release version 11.1.x & respective policies on NetScaler device
• Integrated Palo Alto next-gen firewalls with overlay VMware NSX SDN network his position is the primary SME voice subject matter expert for the Avaya Aura platform and key technical liaison to all other cross-functional team's network, server security and help desk
• This position is responsible for the planning, design, implementation, maintenance, monitoring, and support of all aspects of the Avaya Aura 6.3.9 VoIP, SIP communications, end-point environment located across multiple locations
• Created and Designed Cisco ISE policy for iPad, tablet and mobile phone. Making sure the business and guest devices where working within Company’s wireless network.
• Responsible for the analysis/troubleshooting of large scale enterprise VoIP networks.
• Involved in Security Incident handling, SIEM ESEM using RSA Envision/Arcsight products
• Manage the day-to-day log collection activities of source devices that send log data to ESEM SIEM RSA Envision
• Integrating Panorama with Palo Alto fireballs, managing multiple Palo Alto fireballs using Panorama.
• Implementing and configuring F5 LTM's for VIP's and Virtual sewers as per application and business requirements. F5 configuration, installation, and monitoring with F5 APM.
• Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's, ASR(9k, 901,903).
• Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, GSR, ASR routers with Cisco IOS, Cisco VSS and IOS-XR.
• Upgraded the data center network environment with Cisco ASA 5520.Configured ACL’s on Cisco Switches as well as configured routers as terminal servers.
• Monitoring the traffic through Cisco catalyst switches for Detection of Intrusion using IDSM2 and its Prevention IPS
• Implementing 3750 Stackable switches using Cisco Stack Wise technology.
• Worked over convert Checkpoint VPN rules over to the Cisco ASA solution and worked on RSA secure IDs to providing VPN Token to Company USERS, Migration with Cisco ASA VPN.
• Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches.
• Perform various scheduled maintenance tasks across numerous platforms and datacenters such as building VLANs and configuring switch ports on Cisco, Brocade.
• Branch Relocation, Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect the circuits. Work with Carrier to test and turn-up circuits.
• Performed IP address planning, designing, installation, configuration, testing, maintenance and troubleshooting in complete LAN, WAN development.
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
• Installed wireless access points (WAP) at various locations in the company.
• Installed & Troubleshooted layer 2 and 3 issues on Brocade routers and switches.
• Actively involved in switching technology Administration including creating and managing VLANS, Port security - 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Created dedicated VLAN for Voice & Data with QOS for prioritizing VOICE over DATA.
• Worked on DWDM, SONET.
• Configured Voice ports and Dial peers on the call manager for the VOIP call to reach remote destination.
• Responsible for SIP based Voice over IP service delivery to Cisco, Adtran, and Mediatrix VOIP Gateway endpoints
• Create and deploy IP configurations for Cisco routers, Adtran routers and Mediatrix VoIP Gateways for installation on Confidential’s public and MPLS (Multiprotocol Label Switching) networks
• Configured WIFI APS connected in LAN to reduce cable costing by creating AP, worked on Cisco SP Wi-Fi, troubleshoot in Cisco Aironet 3700, 1700 and 600 series.
• Worked on configuration and commissioning of the MPLS circuits for various branch offices.
• Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point Next-Generation Firewalls R65, R70 & GAIA R77.30, NetScreenFirewall,Palo Alto Next-Generation firewalls, Bluecoat proxies and Cisco ASA.
• Providing Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Performed Network Security Assessment and implemented security improvements such as network filtering, SSH, AAA,SMTP, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Configured of ACL’s in Cisco 5520 ASA firewall for internet access requests for servers, Protocol Handling, Object Grouping and NAT.
• Managing and providing support to various project teams with regards to the addition of new equipment such as routersswitches and firewalls to the DMZs.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server as well as configuration of F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Documenting workflow process, managing and implementing standard policy and procedures.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switchesandCisco 3640/12000/7200/3845/3600/2800 routers,Brocade,CiscoACI,VSS, Nexus 7K/5K/2K, Cisco ASA5510, Checkpoint, windows server 2003/2008: F5 BIGIP, LTM, OSPF, EIGRP, RIP, BGP, VLAN, VPN, Checkpoint, Juniper SRX.