SUMMARY:

• 8.5 years of experience in Cisco/Juniper Networking, Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Extensive experience working on Cisco and Juniper routers/switches in complex environments with multiple ISPs.
• Experience working on Cisco Catalyst Series 3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000, 7000 and 9000 series switches.
• Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Routers and Cisco 2900, 3500, 4500, 5500, 6500 and Sound knowledge of Routing and Switching concepts and MPLS design.
• Expert in dealing with Cisco IOS configuration, networking Protocols and Standards such as TCP/IP, OSI, UDP, Layer 2 (VLANs, STP, VTP), Routing Protocols (RIP, EIGRP, OSPF, BGP), WAN technologies (Frame relay, IPSec, VPNs, MPLS), QoS.
• Performed switching technology administration including Vlans, inter - Vlan routing, trunking, port aggregation and link negotiation.
• Conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new WAN links.
• Experience in troubleshooting NAT configurations, Access-Lists (ACL), and DNS/DHCP related issues within the LAN network.
• Responsible for Configuration and administration of firewalls, which includes Checkpoint, Cisco ASA and Palo Alto firewalls.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP servers.
• Experience in installing and configuring DNS, DHCP server.
• Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Experience working on Cloud Computing Virtualization using VM ware ESXi 4.0 and Windows Hyper-V.
• Installed and implemented & troubleshoot the Network Virtualization through VM Ware and NSX.
• Troubleshoot end-to-end call flow issues in enterprise market involving various VoIP elements.
• Intensive applications of Network automation tools and testing for network automation and configuration management using Ansible, Python scripting.
• Working Experience on web content filter and gateways like Blue Coat, Websense.

  Extensive working experience in AAA protocols such as RADIUS, TACACS+ and Cisco ACS.

• Experience on Monitoring and Management tools such as HP Open view, Cisco Works, IXIA, Splunk, TCP dump, Solar Winds and Wireshark, Cisco Prime, NetFlow, Riverbed.
• Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.
• Working experience performing Incident, change management using ticketing tools such as ServiceNow, Remedy. Utilize Remedy ticket system to update network status.
• Installed and configured Cisco Unified Communications Manager (UCM).
• Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.
• Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Designed security policies on Palo Alto network firewall for controlling what traffic needs to be allowed or blocked based on customer requirements.
• Established VPN tunnels between Cisco routers and Cisco Firewalls and Palo Alto Firewalls.
• Familiar with products such as Cisco ISE, Cisco ASA 5500 series firewalls and Cisco ACE 4710 Load balancers.
• Performed IOS Software upgrades on switches 6509, 4510, 3750 and Cisco ASR for compatibility with Cisco ISE.
• Used Cisco ACI Fabric which is based on Cisco Nexus 9000 series switches and Cisco Application Virtual Switch (AVS).
• Cisco ASA and FWSM, Fortinet FortiGate, F5 AFM, A10 WAF, IDS/IPS systems and general knowledge of security features and protocols.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Excellent in documentation and updating client’s network documentation using VISIO. Mapped, Network Diagrams and physical identification in MS VISIO.
• Provide hands on management of Data Center services, including rack and cable management.
• Implemented Cisco ISE 1.2 for Wireless 802.1x Authentication and Authorization with Flex Connect.
• Configuring Cisco WAAS.
• Configuring the Network Admission Control (NAC).
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS:

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP

Networking Hardware: Cisco Switches, Cisco Routers, ASA/Pix firewalls, VMware, Ironport

Routing Protocols: RIPv1, RIPv2, OSPF, IGRP, EIGRP, MPLS, IS-IS, BGP, Multicasting

Security: Cisco ASA, Check point, Juniper SRX, Palo Alto

Network Monitoring: Cisco Works 2000, Wire Shark, HRPing, tcpdump, VM Ware

Operating Systems: Windows, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR

Routers: CISCO 2600, 2800,3600,3800,7200, Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Load Balancers: Cisco CSM, F5 Networks (BIG-IP)

Capacity & performance: IXIA, Spirent, Cisco works, IPerf, IXChariot

Switches: Cisco Catalyst 2960, 3500, 3750, 3850, 4500, 4900, 6500, Nexus2K,5K,7Kand 9K series

Programming Languages: C, C++, Perl, VB Script, Power Shell, Python, SQL

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modelar, Cadence

Firewalls: Cisco ASA, Checkpoint, Palo Alto

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR s, HLD and LLD documents, Dell equal logics

PROFESSIONAL EXPERIENCE:

Confidential, Miami, FL

Network and security Engineer

Responsibilities:

• Configuring Nexus 2000 Fabric Extender ( FEX ) which acts as a remote line card (module) for the Nexus 7000. Configuring VDC & VPC in Nexus 9k, 7k, 5k and 2k.
• Daily support of Cisco platform devices including Nexus 9K, 7K, 5K and 2K, Catalyst 3750,3850,4500 and 6500 series, 1800, 2800 and 3800 series routers, ASA 5500 series, 3500 and 2900 series
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel on CISCO Catalyst Switches 3500, 3650, 7600.
• Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NAT with the firewalls as per the design.
• Troubleshot complex routing and switching issues in a HSRP and GLBP environment.
• Performed Troubleshooting and monitored routing protocols such RIP, OSPF, EIGRP & BGP.
• Established IPSEC-VPN tunnels with ASA 5500 series Firewall between some branch offices & headquarters.
• Successfully Design and installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/ switches/ firewalls.
• Configuring rules and maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Worked with the installation of Palo Alto firewall, migrated with a team from predominantly ASA environment to Palo Alto global solution.
• Worked with Palo Alto firewalls PA3020, PA5020 using Panorama servers, performing changes to monitor / block / allow the traffic on the firewall.
• Used Panorama for centralized control of next-generation firewalls at internet edge, in data center, and in private and public cloud deployments.
• Migration from Cisco firewalls to Palo Alto firewalls platforms PA 4000 and PA 500 and PA- 200 firewalls network technologies including Optical VoIP VPN SAN switching and routing.
• Experience working with HP Aruba wireless controllers and access point configuration, deployment and management.
• Worked with Design team and installed Aruba Wifi network to supply wireless connectivity to both employees and guests using segregated VLANs.
• Performed site refreshes on Cisco switching and Aruba wireless infrastructure.
• Worked with the level 3 internet service providers (network outage) and the external vendors (Cisco, juniper, genesis, Aruba) for the hardware circuit issues.
• Hands on experience in configuring the Cisco, HPE (POE+ mode), Aruba and Arista Switches.
• Modified and reconfigured two factor authentication BIG-IP APM authentication.
• Created Access policies on APM module using AD and LDAP authentication for external clients.
• Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
• Hands on Experience configuring and testing F5 I Rules using Browser (IE), HTTP watch.
• Worked on F5 LTM series like 1600, 6400 and Viprions for the corporate applications and their availability.
• Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
• Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
• Designed & Deployed Cisco ISE and Provided comprehensive guest access management for Cisco ISE administrators.
• Configured Cisco ISE for Domain Integration and Active Directory Integration.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Implemented Cisco ISE 1.2 for Wireless 802.1x Authentication and Authorization with Flex Connect.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 2504, 4404, 5508 for Wireless Network Access Control integration with Cisco ISE.
• Upgrading Cisco ISE Appliances Company wide. Recently rolled out OpenDNS including onsite VM appliances.
• Experienced on Cisco ISE and advanced technologies like QOS, Multicasting, MPLS and MPLS-VPN and Bluecoat proxy server SG.
• Involved in iRule management like loading rules, writing iRule syntax using TCL language.
• Worked with Blue coat and handled the Trouble Tickets on F5 Load Balancers.
• Configuring Virtual servers (standard and performance layer 4), pools and nodes on Viprions.
• Dealt with implementation of Cisco ASA 5585 devices and Juniper SRX 550 devices to apply security policies on it.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Design and provide support of Routers, Switches, Security Solutions, VPNs, L4-7 Load Balancers, SD-WAN/SDI and Network Management Solutions across LAN/WAN.
• Field experienced with 2 major networking vendors: Cisco & Juniper. Experienced with cloud delivered WAN solutions, specifically with Velocloud NSX SD-WAN.
• Perform technical problem resolution including analysis, trouble isolation, and repair on SDWAN devices.
• Customer Advocate in a 24x7x365 Operation Center, supporting SD WAN customers and all related services.
• Implemented Cisco Application Centric Infrastructure (Cisco ACI) as a solution for data centers using a Spine and Leaf architecture
• Configuration and Monitoring of Citrix NetScaler (Both MPX and VPX).
• Worked on VM Ware migration from physical servers to virtual servers.
• Coordinate with multiple vendors (Cisco, Juniper, etc.) to troubleshoot network outages and issues
• Configuration and troubleshooting of CSM, integration with ASA devices.
• Configured inside ACL, outside ACL, inside, outside interfaces.
• Configuring Static, BGP and OSPF Routing Protocols on Cisco Routers

Environment: Cisco 3850/3750/3500/3650/6500/7600 switches, SÁ 5500 firewall, Palo Alto PA-3060 firewall, ASR router 1002/1006, juniper SRX 5800 Fire wall, F5 LTM 1600/6400, OSPF, BGP, EIGRP, VLANS, LAN, WAN

Confidential, Dallas, TX

Sr. Network Engineer

Responsibilities:

• Performed network engineering, design, planning (WAN & LAN) & implementation. Studied single point failures & designed WAN structure in such a way that there are no failures in network in case of any device or link failure.
• Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.
• Installing, Maintaining and Troubleshooting of Cisco ASR 1K, 7200, 7750, 7950, 3925E and 2951E Routers and Cisco 6500, 4510, 4500-X, 4948, 3560X, 3750X and 2960S Switches for deployment on production.
• Responsibilities include software upgrade, license activation, configuring/installing new GSR router 7000,12000, Nexus switch 9000, 5000,3000, 9504, 9300, 3200, 2308, F5-5050 and maintaining network documentation.
• Troubleshooting Layer 2 issues, Spanning Tree protocol, RSTP, MST, VTP, VLAN on Cisco - 6500 series switches.
• Configure and installation Cisco prime infrastructure to deploy IWAN.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between Switches.
• Worked in the Datacenters and performed tasks such as Racking, stacking, device testing, faulty management various network devices.
• Experience installing and administering firewall and IDS/IPS systems in enterprise networks including in Datacenter.
• Design and Implement Catalyst/ASA Firewall Service Module for various LAN’s.
• Cisco ASA 5585 Firepower hardware module installation and configuration.
• Setup high availability Cisco ASA pair with Firepower.
• Configuring, Monitoring and Troubleshooting Cisco ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NAT with the firewalls as per the design.
• Experience in Adding Rules and Monitoring Checkpoint Firewall traffic through smart dashboard and smart view Tracker applications.
• Checkpoint Firewall Deployment, Upgrade and Administration.
• Experienced on working with Checkpoint firewalls R75/R77 such as installing/deleting and troubleshooting the networks.
• Designed security policies on Palo Alto network firewall for controlling what traffic needs to be allowed or blocked based on customer requirements.
• Extensive Packet level debugging and troubleshooting on Palo Alto Firewalls to resolve numerous network issues.
• Troubleshooting of protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Network-wide implementation of F5 Traffic steering nodes with TCP acceleration,
• Created Virtual Servers on F5 Load balancer.
• Writing i-Rules and i-Apps on the F5 load Balancer and Renewing the Certificates.
• Implementation of F5 includes configuration/creation of Network Element, Pool, pool members and virtual servers.
• Creation of ASM policies (Application security) on F5 Virtual servers.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Deployment of enterprise firewalls (Palo Alto Networks, Cisco ASA, Check Point) in production environments.
• Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPSec, VPN etc.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS AAA (TACACS+ & RADIUS).
• Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions.
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN.
• Managed Cisco PIX firewall for ACL and VPN. Also worked with the physical server migration to AWS data center.
• Involved in designing and implementation of AWS network and connectivity b/w physical and AWS DC.
• Developed and implemented a web crawler program in Python that gathers data from social networking site.
• Network Address Translation (NAT) and Smart Dashboard Configurations.
• Blocking Websites with Content Filtering and Layer 7 Firewall Rules.
• Improve scalability and ease of deployments of the Open stack underlay network by migrating from Standalone Nexus to Cisco ACI platform.
• Focused on working with Cisco Channel partners to build practices around Cisco ACI.
• Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
• Experience on dealing with Cisco ISE Secure Network Server 3515 and other network security products.
• Worked on upgrading Cisco ISE 3300 Appliances and 1.0.4 Cisco ISE software on VMware.
• Manage Cisco VOIP Networks using Cisco Unified Call Manager (Version 11.x, 10.x, 9.x, 8.x), Cisco Telepresence, Voice Gateways, and UCCX.
• Troubleshoot and resolved many VOIP related issues.
• Experience with Virtualization technologies like installing, configuring, VMware vSphere. Creation, management, administration and maintenance of virtual servers and clients.
• Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment.
• LAN Cabling in compliance of CAT6 standards infrastructure like Racking and Stacking.
• Experienced with configuration, upgrading and monitoring of Cisco Wifi.
• Worked with Host Master for shared web hosting and managed Web Application firewall (WAF), DNS and DHCP management using Infoblox and Analyzed networks using Wireshark.
• Vulnerability assessment and penetration testing by using various tools like HP Web inspect and Confidential Appsca.
• Configured network services equipment Riverbed accelerators in compliance with security policy.
• Experience in white listing webpages and blocking webpages with Blue Coat Proxy SG and Blue Coat reporter.
• Infoblox to provide DNS, DHCP, IPAM, administration services.

Confidential, Alpharetta, GA

Network Engineer

Responsibilities:

• Configure / Troubleshoot CISCO 12000, 7500, 3800 series routers and 3560 series switch for LAN/WAN connectivity.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• F5 Big-IP load balancer configuration, layer 7 load balancing using I-Rules (TCL)
• Windows Server Administration (Windows 2000, 2003 & 2008).
• Performed installation and upgrades of office 365 Business as per the changes recommended by the network architect.
• Performed Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Conducted F5 Big-IP load balancer configuration, layer 7 load balancing using I-Rules (TCL)
• Extensive experience with F5 load balancers- LTM, GTM series like 6400, 6800, 5000 and 2000 for the corporate applications and their availability
• Worked on Palo Alto firewall migration tool.
• Troubleshooting the Juniper SRX100 and a hundred and ten series, Juniper NetScreen routers with Site-Site VPN, and firewalls for Supervalu Retail sites.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Creating and provisioning Juniper SRX firewall policies.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Documented new VPN enrollments in a database and create standard procedures for further improvement.
• Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Co-ordinate with the Data Network and Security team and came up with possible solutions.
• Experience on dealing with Infoblox traffic control products to simplify DNS load balancing operations
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Monitoring and troubleshooting network issues between client site and 85 remote sites with legacy switches and routers.
• Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required
• Configuration and maintenance of EIGRP and BGP network on routers 7200 and 6500 MLS.
• Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane.
• Configuration and management of NEXUS network in the existing network infrastructure.
• Created LAB setup with 7k and 5K NEXUS switches and Arista 7K for application testing.

Confidential, San Jose, CA

Network Engineer

Responsibilities:

• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Designing and deploying dynamically scalable, highly available, fault tolerant and reliable applications on AWS
• Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF and other LAN/WAN technologies. Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
• Automated network implementations and tasks and designed monitoring tools using python scripting
• Worked with MPLS Designs from the PE to CE. Worked on design and deployment of MPLS QOS, MPLS Multicasting per company standards.
• Proactively involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9Kredundant pair.
• Worked on Cisco ASA 5580, Cisco PIX 535, Juniper NS5400, Juniper SRX550. Implemented cluster and configuration of SRX-100 Juniper firewall. Also implemented Palo Alto firewalls in HA.
• Configured Routing protocols such as OSPF, static routing and policy based routing.
• Configured7609, 7606 with OSPF and 6505, 4500, 3550 switches with various VLAN.
• Provided technical Support of Cisco Nexus witch and Cisco router using different Troubleshooting protocol. Manage Cisco routers and switches, including performing installations, upgrades, configurations and management.
• Implemented and configured F5 LTMs for VIPs and Virtual servers as per business needs.
• Did some Troubleshooting for LAN/WAN virtualization using different routing protocols like IGRP, EIGRP, BGP, OSPF, ISIS, MPLS, VLAN, and port security.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Worked extensively on Checkpoint firewalls for analyzing firewall change requests and implementing changes into existing firewall policies, maintaining security standards.

Confidential

Jr. Network Engineer

Responsibilities:

• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Proficient in OSPF, EIGRP, MP-BGP.
• Providing technical assistance and support to Cisco customers on 7200, 3925, 3800 routers.
• Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches
• Worked on Cisco Layer 2 switches (spanning tree, VLAN, QoS).
• WAN Infrastructure running OSPF & BGP as core routing protocol.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, ATM, Frame-Relay.
• Experience in configuring CSU/DSU devices and also helped troubleshooting various CSU/DSU devices
• Tested authentication in OSPF and BGP.
• Provided technical support for intra-domain and inter-domain multicast and routing issues, IOS bugs and fault tolerance issues.
• Configured and troubleshoot OSPF, BGP and EIGRP.
• Tested BGP features such as override, Local preference, EBGP load balancing.
• Work on different connection medium like Fiber and Copper Connectivity.
• Configured and supported Multicast customers.
• Planning and configuring the entire IP addressing plan for the client’s network.
• Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
• Configured WAN Infrastructure running OSPF as a core routing protocol.
• Streamlined OSPF costs in the network to account for network delay.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Follow process & procedures for change & configuration management.
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network
• Configured port-fast, uplink fast and other spanning tree features.