PROFESSIONAL SUMMARY:

• Experience in IT management, strategic planning, effective budgeting cost control, networking, installing, configuring and maintaining network and server devices.
• Managed Various Operational teams, plan and organize projects, finish them before the Deadlines.
• A Strong leader and a Good Team Player with solid future insights for the team and the company and have managed various Leading IT Teams across the world to finish tasks efficiently.
• Have incorporated right Business solutions, Capital Expenditure planning, Contract Negotiations and had worked with different Vendors maintaining a professional Vendor relationship.
• Have created a Disaster Recovery plan for two Big Organizations considering the fact the enterprise's ability to withstand a disaster and the steps the enterprise will follow when disaster takes place.
• Good experience and knowledge on IPV4 and IPV6 internet Protocols.
• Expertise in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Good knowledge and hands on experience in management of DSHS Network and Monitoring.
• Proficiently implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Extensively worked on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
• Experience in Cisco Routing, Switching and Security with strong Cisco hardware/software experiences with high end Routers:Cisco 3400, 3600, 3750, 4948, 7200, 12000 Series, and Catalyst Switches: 4500, 6500, 7600, Juniper: Mx960, Mx480 & T640, Nexus 7000, 6000, 5000, 2000 Series, InfobloxTrinzic 1400. Ciera 3916, ADVA GE114, XG210, IX Networkversion 6.30 and 7.50
• Technical experience with Bluecoat packet sharper S400, SG510 series and SG proxy edition
• Conduct research convert Company business requirements into technical requirements and make recommendations on network products, services, protocols, and standards in support of network procurement and development efforts.
• Expertise in Network LAN/WAN deployment
• Successful in integrating the infrastructure technologies on Merger and Acquisitions (M&A) projects.
• Perform cost-benefit analysis, internal rate of return (IRR) and return on investment (ROI) analyses for proposed systems to aid management in making implementation decisions.
• Led initiatives in virtualization, upgrading corporate network, Exchange Server migration, AWS cloud, ACI SDN and SD-WAN Systems, network monitoring, reducing business risk and increasing efficiencies.
• Negotiated several significant networking contracts, upgrading bandwidth, improving security by adhering to regulatory compliances such as PCI, SOX and manageability of company networks.
• Manage and monitor multiple commercial-sourcing agreements such as Master Service agreement (MSA), Statement of work (SOW) and 120+ service level agreements (SLA)
• Introduced new technologies and professionalized department, including processes to track problem resolution and manage software licensing and installation; promoted training and development of staff.
• Measures and improves key performance indicators (KPI) of IT Infrastructure technologies, capacities, project completion, and problem resolution.
• Estimate costs and determine IT Budget by allocating contingency reserves, performing Earned value analysis and reserve analysis. Proficient in Risk Management methodologies by identifying risks, performing Qualitative/quantitative risk analysis to Mitigate risks.
• Prepare RFPs, bid proposals, approve Project charters, contracts, work reports, and other documentation for IT projects.
• Aligning project implementations with Business Case and Benefit management plan to achieve best results and customer satisfaction while working closely with PMO following PMI standards.
• Created Disaster Recovery plan for two Enterprise Organizations considering the fact the enterprise's ability to withstand a disaster and the steps the enterprise will follow when disaster takes place.

PROFESSIONAL EXPERIENCE:

Network architect

Confidential

Responsibilities:

• Experience in Cisco Routing, Switching and Security with strong Cisco hardware/software experiences with Cisco Routers such as 1900, 2900, 3900, Cisco ASR-1k/9k, Cisco Multilayer Switches 4500, 6500, Cisco Nexus 2k/5k/7k/9k and Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches.
• Drive the project for implementing Viptela Software Defined WAN (SD-WAN) solutions at the Fusion Global solutions headquarters giving highest redundancy and increased efficiency with 3 ISP links and 5 MPLS circuits saving $20, 000 per year cost baseline.
• Configuration and administration of AD services on server 2008r2-2016 • Configures and administers Solarwinds Orion, Splunk, Airwave, Rapid7 and Tenable
• Hands on Experience on Infoblox tools. DNS and DHCP and allocating IP ranges on infoblox.
• Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to meet network requirements in different environments.
• Worked with Cisco 5516-X, 5525-X, 5555-X, 5585-X and 4140 Firewall series re-imaged to FTD and source fire and upgraded them to the recent version.
• Good experience working with Cisco VOIP call Manager, Cisco ISE, Checkpoint.
• Worked extensively in Configuring, Monitoring and Troubleshooting Checkpoint, Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/Natting with the firewalls as per the design.
• Access Control Server configuration for RADIUS & TACACS+.
• Experience configuring Virtual Device Context in Nexus 7010
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Primary responsibility is to design and deploy various network security & High Availability products like Cisco ASA other security products
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Worked on ASR 1000 series routers.
• Responsible for Implementing Avaya Aura and Cisco Unified Communication Systems (CUCM) Call manager VOIP telephony system, IVRs, Cisco contact center (for call center operations) and achieved $50, 000 in reduced project costs through effective vendor negotiations.
• Develop network roadmap and strategy for the Apria enterprise network
• Network design and implementation of Data Center network with Cisco Nexus 7710 Campus Core
• MPLS design, implementation and support (AT&T, Century Link and Verizon)
• Cisco ACI POC deployment with Palo Alto and Checkpoint Firewalls
• Cisco, Palo Alto and Checkpoint firewall and network architecture
• Vendor selection and management
• Create innovative next generation wireless solutions
• Develop test plans and lead testing of wireless and access technologies
• Configure, test and troubleshoot hardware networking, Servers and complex network issues.
• Create and architect implementation guides for existing, new wireless technologies and network related issues
• Mentor Junior Engineers and Interns on troubleshooting network and wireless related issues
• Hands on experience with MU-MIMO, Beamforming, WiMAX, 802.11ac, 802.11ax
• Good understanding of millimeter wave technology, 5G
• Analyzes performance metrics of out-of-home wireless networks to recommend network improvements
• Good understanding and use of lab test equipment signal generators, spectrum analyzers, Ixia testing tools
• Participate in on call support to maintain network infrastructure
• Investigate, analyze and resolve all networking or security related technical problems
• Team recruiting, management and development
• Project management and resource management of team projects and resources
• Visio network diagrams and technical documentation creation
• Cloud connectivity and support
• Determined appropriate levels of security configuration, controls and monitoring.
• Developed program quality metrics as both program performance indicators and enterprise risk indicators

Sr. Network Engineer

Confidential, Irving, TX

Responsibilities:

• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Configured and deployed LTM for application such as Exchange, 2010, 2013, SharePoint, VM view using iApp and manually.
• Managed Interoperable IPSec Tunnels between different Vendors like checkpoint and Cisco.
• Migrated Checkpoint Open Server Cluster to Checkpoint 5400 Appliances.
• Configured Palo Alto Firewall models PA-2k, PA-3k, PA-5k as well as a centralized management system (Panorama) to manage large-scale Firewall deployments
• Firewall policy administration and support on Checkpoint. Configured Firewall and updated rules.
• Under supervision of the team lead, configure, administer, and document firewall infrastructure including but not limited to Checkpoint and Cisco ASA.
• Installation and configuration of Orion NPM/ Solarwinds on servers from scratch, using configuration wizard
• Managing, maintaining Checkpoint Firewalls.
• Used MDS (Multi Domain Server) to manage all the firewalls.
• Upgrading Checkpoint GAIA from R7 .10.
• Migrated 6000+ users from Microsoft VPN to Checkpoint VPN.
• Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's, ARS(9k,901,903)
• Installed and Configured F5 BIG-IP to provide load balancing for servers across multiple Data-centers.
• Experience in writing shell scripts to automate the administrative tasks and management using cron.
• Troubleshooting of LAN, WAN, WLAN & VoIP networking issues using Wireshark, TCP dump, NetFlow, Syslog and other advanced tools and methodologies
• Serve as part of a team of network engineers responsible for base wide network upgrade from Cisco Layer 3 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches and Worked on Juniper MX 480, MX960
• Configuring & managing around 500+ Network & Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat proxies and Riverbed WAN Optimizers.
• Use Web console as well as CLI on Orion Solarwinds, manage Node database - adding/removing/update nodes
• Work on Checkpoint Platform including Provider Smart Domain Manager and worked on configuring, managing and supporting Checkpoint Gateways
• MDF to IDF or IDF to IDF connection through Fiber and Copper connection
• Configured Routing protocols such as OSPF, BGP, static routing and policy-based routing.
• Design, implement and administer IPv4/IPv6 enterprise network infrastructure utilizing Juniper routers.
• Successfully installed Palo Alto PA 3060 Firewalls to protect Data Centre and provided L3 support for routers/switches/Firewalls.
• Setup Orion NTA solarwinds - pre-requisites, database performance considerations and configuring NetFlow Sources
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Worked on FTP, HTTP, DNS, servers in window windows server-client environment with resource allocation to desired virtual LANs of network.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Design, implement and administer IPv4/IPv6 enterprise network infrastructure utilizing Juniper routers.
• Worked on Orion solarwinds configuration Wizard
• Experience in VOIP technologies including servers, networking, TCP/IP, routing protocols, PSTN provisioning and SIP integration.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls.
• Worked with IOS upgrade of Juniper devices. Data center migration was involved in Access, Distribution and Core layers.
• Migration of FortiGate firewalls to Palo Alto Networks.
• Cisco Catalyst switches 2900XL, 3505, 3800, 4500, 6509, Cisco routers 2600, 2500, 2800, 3900 and 7200, OSPF, EIRGP, GRE, IPSec, F5 BIG-IP LTM 3500.
• Configuring and resolving various OSPF issues in an OSPF multi area environment.
• Hands on experience in configuring and supporting site-to-site and remote access server, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF.
• Creating site to site and remote access VPN setups for different customer deployments.
• Filing defects for the customer issues and Working closely with development team on customer issues to resolve it.
• Implementing Routing and Switching using the following protocols; IS-ISOSPG, BGP on Juniper M series routers.
• Manage Monitored applications, Ip addresses and groups, data retention in Orion Solarwinds
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Coordinating with offshore and onsite team for any issues.
• Manage network- create/delete/update networks, manage users and jobs and assigning policies using Orion NCM - Solarwinds.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall and JuniperSSG series.
• Designing lab network for various customers in lab, configuring firewall and crating IDS, IPS rules.
• In-depth understanding with network management and support tools (i.e. Solar Winds, NetScout, Cisco Works, what’s up gold, NetFlow Analyzers, SNMP Management, Sniffers, Wireshark).
• Configuring Routing protocols like OSPF, MPLS, multicast and L2 protocols in ASA to check it is passing through via ASA in customer deployments.
• Implemented a Software Defined Network (SDN) topology on Oracle VMware using Mininet (a virtual network emulator which creates hosts, switches and controller)

Network Engineer

Confidential, New York, NY

Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the company network.
• Switching related tasks included implementing VLANS, STP, RSTP, MST and configuring ISL trunk on Fast-Ethernet channel between switches
• Experience in set up, configuration and management of Cisco PIX, ASA 5510, Juniper SA 2500, 4500, and 6500.
• Firewall policy administration and support on Checkpoint as well as Cisco ASA Firewalls
• Day-to-day work involves changes on the Checkpoint Firewall using the Smart Dashboard NGX R70
• Designed and configured of OSPF, BGP on Juniper Routers and SRX Firewalls Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network
• Identifying technical problems and debugged hardware and software related to LANs/ WANs.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Configuring/Troubleshoot issues with the following types of routers to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with team LAN /MAN router/firewalls.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup.
• Worked on installation, maintenance, and troubleshooting of LAN/WAN (NAT, DHCP, TCP/IP).
• Configured organizational units with different permissions using active directory in windows environment and configured the entire network Infrastructure devices including network printers.
• Support of firewall technologies included Cisco, Fortinet & checkpoint firewalls.
• Analyzed and implemented complex firewall rules on Cisco, Checkpoint firewalls and FortiGate. Demonstrated ability to analyze network traffic flows to reverse-engineer the required firewall ports and rules to allow secure access of applications.
• Managed and configured DHCP, DNS, Antivirus, and backups, Provided escalated IT support, hardware troubleshooting, backup and recovery, email communication and application support.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Hands On experience with configuration and support of Cisco 1900, 2800, 7200 series Routers and Cisco 3750, 2960 Switches.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco ASA Firewalls, NAT and Juniper SRX firewall.
• Experience in Ethernet Layer 2 devices (switches) and Layer 3 devices (routers).
• Installing and configuring Cisco Security Manager in the server and adding firewall modules to the manager.
• Maintenance of switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Creating object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet Environment.
• Deployed Cisco routers and switches, and administered network monitoring services
• Configured and troubleshoot issues with VLAN, Inter-VLAN routing, NAT/PAT, Access-List, and IOS Firewall.
• Involved in network monitoring, alarm notification and acknowledgement.
• Preparing feasibility report for various upgrades and installations.
• Configuring all the required devices and equipment for remote vendors at various sites and plants.
• Installing and maintaining Windows NT Workstations and Windows NT Server.

Jr. Network Engineer

Confidential, West Chester, PA

Responsibilities:

• Designed, installed, configured & commissioned Palo Alto, Cisco Network
• VBScripts and PowerShell & batch creation for reporting, changing ACLs, mapping drives, directories and printers.
• Developed a backup tool for AWS EC2 to perform backup of given directories into Amazon Block
• Working to configured AWS RDS and Windows Azure SQL Databases for cloud application database.
• Configured Brocade core switches for redundancy and performed troubleshooting of Inter-VLAN, routing, static VLANs, and port channels.
• Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF, VRFS, Tunnels, L2TP, and VPLS, QoS and other LAN/WAN technologies.
• Support ongoing efforts in defining best practice policies for Juniper product applications used by Customer
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Experience with using F5 Load balancer in providing worldwide data and file sharing, continuous internet connectivity, optimized web performance.
• Consults with technical project managers, business owners and IT procurement to identify risk reduction approaches. Confers with business teams during the selection of vendors ensuring they meet 3rd party service information security requirements.
• Extranet changes to Cisco 6513, 6509 and 7204 series devices including FWSM firewall changes, routing switching changes and Juniper Netscreen based SSL VPN and ISG.
• Implementation & trouble shooting of complex WAN, LAN, VLANS, private VLANS, high availability solutions like HSRP, VRRP, GLBP, either channels, site- to- site VPN, access control lists, NAT, PAT, routing solutions etc.
• Deploying the network infrastructure to meet the requirements.
• Implement, configure and troubleshoot VPN's and Secure Remote related issues.
• Implementation, support and trouble-shooting of VLANs including operational knowledge of Spanning Tree Protocol (STP), VLAN trunking, inter-VLAN routing and ISL/802.1Q.
• Configured, tested, troubleshoot and maintained network connectivity in a LAN/WAN environment and IT services running routing protocols on Cisco devices.
• Managed and configured and involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Hands on experience in SNMP network management. Experience with sniffing tools like Ethereal and scanning.
• Produce Private VLAN and avert attacks like VLAN hopping, spoofing by mitigating it with IP and snooping source guard.
• Discuss with team members regarding optimization of network and BGP related issues.
• Experience in physical and virtual networks for functioning on VMware NSX additional layer.