SUMMARY:

• Network & Cloud Engineer with Over 10 + years of experience in testing, troubleshooting, implementing, optimizing and maintaining enterprise data network and service provider systems.
• Expertise in CCNA, CCNP, LINUX, UNIX SCRIPTING, Cisco router & switches & Firewalls configurations and troubleshooting.
• Involved in architecture for large customer environments providing high availability for cloud environments.
• Worked with Azure App Service to customize SSL certs, manage deployment slots, and diagnostic logs for customers.
• Designed and configured Azure Virtual Networks ( Confidential ), subnets, Azure network settings, DHCP address blocks, DNS settings, security polices (NSG's), UDR's (routing), load balancers and resource groups.
• Designing, implementing and maintaining infrastructure on Azure cloud.
• Implementing NSG, routing tables, NAT tables and subnets on virtual servers on Azure cloud.
• Implementing Autoscaling sets and scale rules for atomization cluster.
• Administration of Windows server 2003, Windows server 2008, Windows server 2012 Red Hat Linux, CentOS and Exchange server.
• Automating the Migration of the VMs from On - Premise to Azure Cloud
• Working on Right-Sizing the VMs in Azure, Operations on Compute Instances.
• Automating the Migration of the VMs from On-Premise to Azure Cloud
• Working on Right-Sizing the VMs in Azure, Operations on Compute Instances
• Leveraged VNET system routes and underlying route table that holds Local VNet Rules, On-premise Rules, Internet Rules and IP Forwarding as design basis.
• Terraform scripting for AWS infrastructure
• Extensive experience in Windows 2008 R2/2008/2003 Wintel Servers at single or multi domain platforms.
• Implementing and configuring services on AWS cloud using GUI console and CLI
• Experience in planning, deploying, and supporting AWS infrastructure.
• Experience in AWS EC2, Docker, Security Groups, Elastic IP's, Load balancers, Auto-scaling groups, S3, elastic beanstalk, Direct Connect, VPC, Cloud watch, IAM and several other services.
• Experience working with IAM to create new accounts, roles and groups
• Experience Designing the future state architecture of various applications which are being migrated from the on-premise data center to AWS
• Experience Monitoring resources such as EC2, EBS volumes and Amazon RDS services using Cloud Watch.
• Experience managing AWS Route53 to route traffic between different regions set alarms and notifications for EC2 instances using Cloud Watch
• Experience Develop and manage cloud VM's with AWS EC2 command line clients and management console.
• Experience Installing the application on AWS EC2 instances and configure the storage on S3 buckets.
• Experience creating various CloudWatch alarms to send an Amazon Simple Notification Service (SNS)
• Experience Developing AWS CloudFormation templates to create custom sized VPC, subnets, EC2 instances, ELB and security groups.
• Experience in configuring AWS S3 with lifecycle policies to backup files and archive files in Amazon Glacier.
• Experience setting up auto-scaling on the instances to design cost-effective, fault tolerant and highly available systems.
• Experience in planning, deploying, and supporting AWS infrastructure by using Terraform (JSON script) technology.
• Creating and deleting VPCs, subnets, routing tables, security groups, EC2 instances and load balancers etc using Terraform.
• Experience on Amazon RDS which includes automatic failover and high availability of MYSQL database workload.
• Experience Designing Stacks using Amazon CloudFormation templates to launch AWS Infrastructure and resources.
• Experience Designing, configuring and managing public and private cloud infrastructures for Amazon Web Services
• Experience in creating Amazon EC2 instances, setting up security groups and Configuring Elastic Load Balancers.
• Glacier, CloudFront, EC2, ELB, auto scaling group, VPC (subnet, IGW, routing table, NAT, VPC Peering and VPN), RDS, CloudWatch,
• Experience Manage storage in AWS using Elastic Block Storage, creating Volumes and configuring Snapshots to store in s3 bucket.
• Experience Creating virtual private cloud (VPC) with both public and private subnets and creating security groups to associate with the networks.
• Experience Enabling MFA multi-factor authentication to secure the AWS accounts.
• Experience in supporting multi-region and multi-AZ applications in AWS
• Strong experience of AWS services including Identity and Access Management (IAM), S3, Experience in AWS application migration and Database Migration using various AWS data transfer services (snowball, storage getaway, direct connect, S3 Transfer acceleration and kinesis).
• Experience in Kinesis, Elasticsearch, Elastic Beanstalk, API Gateway, Lambda, AWS Glue and Analytics.
• Experience in Big data and ETL solutions and Redshift and integrating fulfillment with Netsuit and Jitterbit for order processing
• Extensive experience in Windows 2008 R2/2008/2003 Wintel Servers at single or multi domain platforms.
• Experience on Office 365 administration like creating mailboxes, Groups, Distribution lists, litigation management, recovery of mails and management of exchange server
• Experience on web servers like APACHE, NGINX, IIS servers and Hosted websites on S3 buckets
• Cloudflare management and implementation for security
• SSL creations and renewals on Linux and Windows servers and implementing SSL on web servers and Load balancers
• Experience on AWS services, RDS databases like Aurora, PostgreSQL, MySQL and oracle
• Experience on DEVOPS like Bitbucket, GIT, GITHUB, Jenkins and Bamboo deployment tool
• Create playbooks in Ansible or Chet/Puppet.
• Configuring, implementation and troubleshooting of monitoring tools like Zabbix, PagerDuty, Solarwinds, Nodeping, AWS Cloudwatch and NewRelic
• SSL s renewals, implementing in various servers like Apache, Linux, IIS servers and in Cloudflare
• Performing PCI Compliant scans quarterly and annually
• Hands on experience on SFTP Cerberus Solution
• Experience of Infrastructure as a Service (IaaS), Paas and Data Center Architectures
• Experience in working with Cisco Confidential Switches (7K,5K and 2K) and Virtual Port Channel configuration.
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Administration, Engineering, and Support for various technologies including proficiency in LAN/WAN, routing, switching, security, application load balancing and wireless.
• Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR, 7200, 3900, 3800, 2900, 2800, and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches
• Researches, investigates and proposes technical solutions to ensure a successful network deployment.
• Ensures that every step of the project is properly documented.
• Executes the various tasks for the projects assigned to the deployment group.
• Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
• Experience in Routing protocol configurations (RIP, EIGRP, OSPF, and BGP)
• Designing and implementing F5 BIG-IP load balancer.
• Proficient in configuration of routing protocols like RIP, IGRP, EIGRP, OSPF multiple areas and BGP.
• Migration with both Palo Alto and Cisco ASA VPN
• Good knowledge and experience in Installation, Configuration and Administration of Windows, HTTP, FTP, DNS, NTP, DHCP servers under various LAN and WAN environments
• Experience in working with Cisco Confidential Switches and Virtual Port Channel configuration.
• Implemented and Configured Palo Alto Networks Firewall models and centralized management system to manage large scale firewall deployments.
• Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Adding websites to blocked list on the bluecoat proxies based upon business requirements.
• Hands on experience on configuring Policy based routing and QoS on Fortigate Firewall, ASA, Palo Alto.
• Administration, trouble shooting & new implementations on Cisco 6500 series switches, Confidential switches, Cisco Routers, Juniper devices, checkpoint & ASA firewalls.
• Administration of network devices holding more than 5000 servers of Windows, UNIX & Linux platforms (physical &virtual servers).
• Implementation & trouble shooting of complex WAN, LAN, VLAN, private VLANs, high availability solutions like HSRP, Ether channels, site to site VPN, access control lists, NAT, PAT, routing solutions
• Implementation & trouble shooting of VLANs, high availability solutions like HSRP, ether channels, SSL VPNs, access control lists, NAT, PAT, routing solutions etc

TECHNICAL SKILLS:

Cisco router platforms: 2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.

Cisco Switch platforms: 2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.

Routers: Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 72007600, ASR9K), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)

Switches: Cisco switches (3560, 3750, 4500, 4900 & 6500), Confidential (22485548 &7010)

Firewalls: Cisco ASA, Fortigate, SOPHOS, Checkpoint, Palo Alto

Routing: RIP, EIGRP, OSPF & BGP, Route Filtering, RedistributionSummarization, Static routing

WAN Technologies: FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, and leased lines.

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco

Routing Protocols: RIP, OSPF, EIGRP, and BGP.

Switching Protocols: VTP, STP, RSTP, MSTP, VLANs, PAgP, and LACP.

Network management: SNMP, Cisco Works LMS, HP Openview, Solar winds, Ethereal.

Layer 3 Switching: CEF, Multi-Layer Switching, Ether Channel.

Redundancy protocols: HSRP, VRRP, GLBP.

Software: Microsoft Office Suite, MS SQL Server 2008, HTML.

Language: Unix Bash scripting, Shell scripting, Power Shell.

Web serves: Apache, NGINX, IIS

Monitoring: Zabbix, Solarwinds, Nodeping, Newrelic, AWS cloudwatchPagerduty

DevOPS: GIT, Bitbucket and bamboo deployment tool

Microsoft : Windows Active Directory, Exchange Server, Offie365

Cloud Technologies: AWS Cloud Computing.

PROFESSIONAL EXPERIENCE:

Confidential, MD

Cloud Architect

Responsibilities:

• Implemented AWS solutions using EC2, S3, RDS, VPC, Elastic load balancer, Auto-scaling groups, Route53
• Used Terraforms to set up the AWS infrastructures such as launching the Ec2 instances, S3 buckets objects, VPC, Subnets.
• Involved in maintaining the user accounts (IAM), RDS, Dynamo DB, Route 53, VPC, SES and SNS services in AWS cloud.
• Configuring and Networking of Virtual Private Cloud (VPC).
• Configured AWS IAM and Security Group in Public and Private Subnets in VPC.
• Implemented and Configured Palo Alto Networks Firewall models and centralized management system to manage large scale firewall deployments.
• Creating and maintaining AMIs templates, EC2 instances, EBS, and S3 resources
• Implementing detailed monitoring for cloud environment and notification system using CloudWatch and Simple notification system
• Configured AWS IAM and Security Groups in Public and Private Subnets in VPC
• Worked on deployment of complex infrastructure using AWS CLI and AWS Console
• Launching Amazon EC2 Cloud Instances using Amazon Images (Linux/Windows) and Configuring launched instances with respect to specific applications.
• Experience in configuring Apache Web Server in the Linux AWS Cloud environment using Puppet automation.
• Experience in AWS Services such as Redshift Cluster, Route 53 Domain Configurations, domain migrations from route53 to Route 53, Route53 to GoDaddy.
• Configured Elastic Load Balancers with Elastic Compute Cloud Auto scaling groups.
• Used ELB and Auto scaling for load balancing and scaling EC2 instances up/down based on Network Traffic.
• Worked on cloud watch to monitor the resources such as EC2 CPU memory, Amazon to design high availability applications on AWS across availability zones.
• Knowledge on design applications on AWS taking advantage of disaster recovery.
• Configured S3 versioning and lifecycle policies to and backup files and archive files in Glacier.
• Migrated media (images and videos) to S3 and used CloudFront to distribute content with low latency and at high data transfer rates.
• Cloud formation and Jenkins to Configure and maintaining Virtual Private Clouds (VPC)
• Installed the application on AWS EC2 instances and configured the storage on S3 buckets.
• Configured AWS Identity and Access Management (IAM) Groups and Users for improved login authentication.
• Created Buckets in AWS and stored files. Enabled Versioning and security for files stored.
• Created S3 backups using versioning enable and moved objects to Amazon Glacier for archiving purpose.
• Work with internal teams to create the migration process of legacy system to the AWS Cloud
• Work with business unit managers to understand project scope, suggest possible alternative and document each step of the design
• Work with security division to design and manage IAM roles for users, Vendors and other third-party vendors
• Evaluated publishing and content management processes, DNS configurations, security requirement, web applications architecture, and provide a solution that meets customers technical and business requirement
• Worked and deployed AWS Services like S3, Lambda, IAM roles, policies, API Gateway, Elastic Beanstalk, SSM, SNS, KMS, CloudTrail, CloudWatch etc
• Deployed applications with complete security perspective in AWS using security groups, load balancers, autoscaling groups, route 53 etc
• Created the AWS VPC network for the Installed Instances and configured the Security Groups and Elastic IP's accordingly
• Configured Elastic Load Balancers (ELB) with EC2 Auto Scaling groups
• Automated cloud deployments using AWS Cloud Formation Templates
• Performed Patch management to upgrade the application's infrastructure to have latest OS and configuration
• Created Lambda functions to upload code and to check changes in S3, Dynamo DB table
• Implemented systems that are highly available, scalable, and self-healing on the AWS platform
• Created IAM policies for delegated administration within AWS and Configure IAM Users/Roles/Policies to grant fine-grained access to AWS resources to users
• Customized Amazon Machine Images (AMI) & deployed these customized images based on requirements
• Build servers using AWS: Importing volumes, launching EC2, RDS, creating/maintaining security groups, Auto-Scaling, AMI, load balancers (ELBs) in the defined VPC’s
• Creating alarms in Cloud Watch service for monitoring the server’s performance, CPU Utilization etc
• Created Cloud Watch alerts for instances and using them in Auto scaling launch configurations
• Configured alams on CloudWatch and alerts on PagerDuty to trigger
• Implemented monitoring checks on NewRelic and Zabbix
• Using AWS Direct Connect, to establish private connectivity between AWS and datacenter, office, or colocation environments.
• Use the AWS Direct Connect connection to access public resources such as objects stored in Amazon S3 using public IP address space, and private resources such as Amazon EC2 instances running within an Amazon Virtual Private Cloud (VPC)
• Using Elastic Load Balancing (ELB) service to automatically distribute incoming traffic across multiple Amazon EC2 instances.
• Using Amazon CloudWatch, a monitoring service for AWS cloud resources and the applications run on AWS.
• Using Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.
• Using AWS CloudTrail service to enable governance, compliance, operational auditing, and risk auditing of AWS account.
• Using AWS Config service to enable assess, audit, and evaluate the configurations of AWS resources.
• Using AWS Command Line Interface (CLI) tool to manage your AWS services, automating them through scripts.
• Deployment to AWS with Chef, Ansible and Terraform towards AWS or Google Compute cloud, and using Terraform for building, updating, and versioning infrastructure safely and efficiently, as well as creating custom in-house solutions with Chef or Puppet configurations.
• Knowledge in Terraform as infrastructure providers, build images using Packer.
• Designed highly available, cost effective and fault tolerant systems using multiple EC2instances, Auto-Scaling, Elastic Load Balance (ELB) and AMIs and Glacier for QA and UAT environments as well as infrastructure servers for GIT and Chef.
• Worked on monitoring tools such as Nagios, Splunk, ELK Stack (Elasticsearch, Logstash, and Kibana), and CloudWatch.
• Worked on Deployment Automation of all microservices to pull image from Private Docker registry and deploy to Kubernetes Cluster.
• Used Kubernetes to deploy scale, load balance, scale and manage Docker containers with multiple namespace versions.

Confidential, WA

Cloud & Network Architect

Responsibilities:

• Exposed Virtual machines and cloud services in the Confidential to the Internet using Azure External Load Balancer.
• Led implementation of Office 365 and Azure Active Directory for single sign on, authentication, authorization and Azure Role-based Access Control (RBAC).
• Installed, configured, administered, monitored Azure, IAAS and PAAS, Azure AD.
• Used Windows Azure portal to manage Virtual Network and Traffic Manager
• Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs), VMs and subnets.
• Setup Azure Virtual Appliances (VMs) to meet security requirements as software-based appliance functions (firewall, WAN optimization and intrusion detections).
• Leveraged VNET system routes and underlying route table that holds Local VNet Rules, On-premise Rules, Internet Rules and IP Forwarding as design basis.
• Building VPN connections and secured network between on-premise firewalls like Palo Alto and Cisco ASA and Azure and AWS clouds.
• Designed User Defined Routes with custom route tables for specific cases to force tunneling to the Internet via on premise network and control use of virtual appliances in the customer's Azure environment.
• Associated routes with Confidential via the route table per relationship constraints.
• Maintained monitoring, & alerting of production servers using cloud watch service
• Created multiple VPC's and public, private subnets as per requirements
• Performed a network assessment to decide if the system is ready for migration
• Created snapshots to take backups of the volumes and Images
• Migrated applications from internal data center to AWS
• Managing user access to AWS resources using Identity Access Management (IAM)
• Creating and maintaining AMIs templates, EC2 instances, EBS, and S3 resources
• Implementing detailed monitoring for cloud environment and notification system using CloudWatch and Simple notification system
• Implemented new EC2 instances and worked with EBS, Virtual Private Cloud (VPCs) and S
• Configured AWS IAM and Security Groups in Public and Private Subnets in VPC
• Worked on deployment of complex infrastructure using AWS CLI and AWS Console
• Worked on Kinesis, Elasticsearch, Elastic Beanstalk, API Gateway, Lambda, AWS Glue and Analytics.
• Created NAT gateways and instances to allow communication from the private instances to the internet
• Created security groups, network ACL'S, internet gateways and route tables in AWS public cloud
• Maintain monitoring and alerting of production and corporate servers using Cloud Watch service
• Create snapshots to take backups of the volumes and images
• Performed patch upgrade for JCTE flight application and also deployed new versions
• Installing new Linux servers for low level platforms by imaging and editing configurations
• Implementing network, DHCP and DNS changes on new Linux (application) servers
• Creating, implementing and maintaining DR platform
• Worked on DEVOPS like Bitbucket, GIT, GITHUB, Jenkins and Bamboo deployment tool
• Involved setting up alarms and notifications for EC2 instances using Cloud Watch.
• Involved in managing infrastructure provisioning (S3, ELB, EC2, RDS, Route 53, IAM, security groups, VCP, NAT) and deployment.
• Involved in Deployment using configuration Management tool like Puppet to provision Amazon AWS Instances to enable continuous Deployments.
• Worked at optimizing volumes and launching several EC2 instances in the VPC
• Implemented AWS solutions using EC2, S3, RDS, VPC, Elastic load balancer, Auto-scaling groups, Route53
• Involved in maintaining the user accounts (IAM), RDS, Dynamo DB, Route 53, VPC, SES and SNS services in AWS cloud.
• Configuring and Networking of Virtual Private Cloud (VPC).
• Configured AWS IAM and Security Group in Public and Private Subnets in VPC.
• Implemented and Configured Palo Alto Networks Firewall models and centralized management system to manage large scale firewall deployments.
• Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Adding websites to blocked list on the bluecoat proxies based upon business requirements.
• Hands on experience on configuring Policy based routing and QoS on Fortigate Firewall, ASA, Palo Alto

Confidential, Miami, FL

Cloud & Network Architect

Responsibilities:

• Exposed Virtual machines and cloud services in the Confidential to the Internet using AzureExternal Load Balancer.
• Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs), VMs and subnets.
• Setup Azure Virtual Appliances (VMs) to meet security requirements as software-based appliance functions (firewall, WAN optimization and intrusion detections).
• Leveraged VNET system routes and underlying route table that holds Local VNet Rules, On-premise Rules, Internet Rules and IP Forwarding as design basis.
• Implemented AWS infrastructure for multiple websites from scratch using Terraform script
• Creating websites using Apache, NGINX and IIS. Developing proxy using NGINX and Cloudflare
• Spinning and maintaining Windows, CentOS and Linux application servers
• Configuring and maintaining webservers like Apache, Nginx and IIS servers
• Configuring and Implementing monitoring tools like zabbix, Nodeping, New Relic, Pagerduty, AWS Cloudwatch and Solarwinds
• Migrated complete network from Datacenter to AWS
• Spinning new EC2 instances, migrating web servers, installing web servers from scratch, migrating database servers from datacenter to AWS Cloud
• Configuring and maintain Active Directory & Office365
• Working on User management on Active Directory, replication issues, DNS management, Group policies, Organizational Units, Distribution and security groups
• Configuring IPSec VPN tunnels between firewall to firewall, firewalls to AWS and routers to AWS
• Plan and Design Azure Hybrid Network: connectivity - On-Prem to Azure, Internet to Azure, Azure to Azure
• Architect, Deploy, Operate few PaaS (Platform as a service) Solutions.
• Prepared network diagrams, documenting on confluence about issues and solutions
• Configuring the checks for monitoring the devices like web servers, routers, modems, switches, firewalls, application servers, load balancers and other servers
• Maintain and assign IP addresses and DNS entries for high visibility projects using Solarwinds IP manager. (IPAM).
• Configured DHCP scope into Infoblox for new sites which includes subnets for wireless, voice, security and data centers.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls.
• Configuring, troubleshooting and maintaining the SOPHOS firewalls in various locations
• Configuring and working on Devops tools like Bamboo, Bitbucket, GIT, Jenkins, GITHUB and Ansible to deploy and troubleshoot
• Deployment to AWS with Chef, Ansible and Terraform towards AWS or Google Compute cloud, and using Terraform for building, updating, and versioning infrastructure safely and efficiently, as well as creating custom in-house solutions with Chef or Puppet configurations.
• Knowledge in Terraform as infrastructure providers, build images using Packer.
• Designed highly available, cost effective and fault tolerant systems using multiple EC2instances, Auto-Scaling, Elastic Load Balance (ELB) and AMIs and Glacier for QA and UAT environments as well as infrastructure servers for GIT and Chef.
• Performing quarterly and yearly PCI compliant scans
• Maintaining, and installing all of our various SSL s, including various Self Singed, or Self Issued certs from our Internal CA and sometimes are consulted or help determine when to use a Self-Issued or a Purchased or Public Cert.
• Setup and configured various MySQL instances as needed, including RDS DB
• Installing RDS on AWS and configuring the databases like MySQL, Oracle, PostgreSQL
• Serving as a DBA or help with various DB tasks, including queries and tables/data work
• Configuration, memory, or performance related work as well as troubleshooting MySQL or SQL Server issues.
• Provisions new hosts in AWS and setups and installs software when there is new Proof of Concept work to be done, or a new server is needed.
• Update or create redirects and/or new proxy rules at AWS for our redirects, API, and nginx proxy boxes as we make changes
• Whitelisting and blacklisting IP addresses as per the requirement at application level, web server’s levels, gateway level and also at AWS level
• Creating various security groups, subnets and routing table at AWS
• Automated all aspects of the AWS infrastructure provisioning for a Highly Available, durable and HIPPA compliant architecture deployed across three global regions.
• Key AWS services included: Docker/ECS/ECR, VPC, R53, Beanstalk, RDS PostgreSQL M/S+Replicas, CloudFormation, EC2, Redis ElastiCache, Redshift, VPN, Lambda, logging/CloudWatch, IAM, ELB, S3, EBS, CloudFront/WAF, SQS, SNS, SES, Bamboo CIDS.
• Experience in Kinesis, Elasticsearch, Elastic Beanstalk, API Gateway, Lambda, AWS Glue and Analytics.
• Experience in Big data and ETL solutions and Redshift and integrating fulfillment with netsuit and Jitterbit for order processing
• Evaluating existing data models for variances and discrepancies
• Develop data models adhering to established standards and guidelines
• Maintain the data models with metadata
• Perform reverse engineering of data models from existing databases and SQL Scripts
• Review new application design and provide recommendations and corrections as needed
• Worked with using ERWin data modeling tool, preferably version 9.2+
• Leading data integration, Development of ETL architecture using Linux, Informatica, Teradata, SQL, BTEQ, Hadoop Hive, Pig, Spark, Flume, Sqoop,
• Converted all CloudFormation template to Terraform for infrastructure as code.
• Extensively worked on nginx, Haproxy configuration and reverse proxy configuration.
• Heavily used Atlassian Bitbucket for source code repository.
• Extensive knowledge in Route53, ELB and ALB, Target group.
• Used Jira, Bitbucket, and Confluence for product development.
• Configuring AWS application load balancers and load balancers and attaching web servers on the same load balancers, configuring metric monitoring for the LB and servers
• Scheduling and troubleshooting jobs on crontab, Visual cron
• Troubleshooting of deployment issues and cache issues
• Cloudflare configuration and troubleshooting to whitelist and blacklist IP addresses and configuring DNS on Cloudflare
• Handling frontend issues, DNS, DHCP issues, Drupal issues and Magento tools
• Domain migrations from Godaddy to Route53.
• Configuring and troubleshooting on wordpress servers and implementing connections to DB from web servers in various ways like PHP script etc
• Configuring, implementing, troubleshooting and migrating domain controllers and exchange servers, office365
• Configuring POSTFIX for SES outbound mails and SMTP service etc
• Working on services like bluehornet and working on slack channel integrations with various applications
• Implementing pagerduty alerts and slack alerts to get the alerts from tools like zabbix, nodeping, AWS cloudwatch and NewRelic
• Slack channel creations and integrations with teams, applications and monitoring tools and also worked on Solarwind modules
• Office365 mail back recovery and litigation controlling
• Performing IOS upgrades on firewalls, routers and designing the tunnels between location for secure data transfer and configuring wireless access-points, guest network and switches in LAN
• Domain migrations from Godaddy to route53 and route53 to Godaddy
• Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Adding websites to blocked list on the bluecoat proxies based upon business requirements.

Confidential

Intelligent Network Engineer

Responsibilities:

• Worked on Cisco technology knowledge in design, administration, implementation and support.
• Experience on deploying and troubleshooting IP protocols.
• Experience on layer 3 routing and layer 2 switching.
• Dealing with escalating problems.
• Performing HSBU (Cisco Routers) related activities like RAM replacement and addition of route etc
• Troubleshooting and support while doing traffic engineering using OSPF and MPLS on core Applying traffic policies/ Define queuing technique according to Bronze, Platinum, Silver, Gold category
• Excellent experience in Network Planning, Implementing, Configuring, Troubleshooting and Testing of networking system.
• Troubleshooting of complex LAN/WAN infrastructure, including routing protocols EIGRP, OSPF & BGP.
• Lab testing & validation prior to implementation of Confidential 7K, 5K & 2K connecting to blade servers.
• Configuring routing policy for achieving inter-circle roaming traffic with Confidential Network
• Coordination with vendors like Juniper, Cisco for critical faults and following up the pending TAC cases
• Coordinating all daily activities for performance monitoring and collection of statistical data
• Performing daily health check of the IN Nodes and node monitoring during IN activities
• Developed and documented network diagrams and procedures.
• Devices used PIX 535 v7.0, ASA 5520, routers 2600, 2800 series, switches 6500, 4503, 2960, 3548 series.
• Network monitoring, troubleshooting and performance tuning (Solarwinds, QoS)
• Developing Linux scripts to automate routing tasks, identification of faults, generate reports, troubleshooting and to MOPs to resolve the day to day issues.
• Extensive experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF, BGP and TCP/IP.
• Working on Pa 5000 series Palo Alto firewalls.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, bridges, routers, hubs and Switches
• Have experience installing and troubleshooting Cisco routers and switches.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950, 3500XL, Confidential 5K, 7K series switches.
• Switching tasks include VTP, ISL/ 802.1q, IPSec, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
• Configuring juniper router and switches.
• Strong work experience with the following technologies MPLS, Q0S, VPN, WLAN and Multicast.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Configured RIP, EIGRP, OSPF.
• Gained experience working with Layer-2 and Layer-3 Switching and Security
• Gained expertise in writing test procedures and test plans with a strong understanding of design, implementation, and execution of testing methodologies.
• Good knowledge of Switched Virtual Interface.
• Strong knowledge in HSRP, VRRP redundancy Protocols. Fault Tolerance using HSRP and VRRP.
• Good knowledge of OSI Model and TCP/IP networking standards with protocols such as SNMP, FTP, ICMP and IPv6.
• Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches.
• Have extensive experience in setting up LAN and troubleshooting related issues.
• Have WAN awareness and assisted in setting up and troubleshooting various WAN related issues.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Experience in the setup of Access-Lists, and RIP, EIGRP, and tunnel installations
• Proficiency in configuration of VLAN setup on various Cisco Routers and Switches

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco routers 3640/1200/7200/3845/3600/2800 routers, Palo Alto, Cisco Confidential 7K/5K/2K, Cisco ASA 5000, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential

IT Support Engineer

Responsibilities:

• Technical Support and Fault Management for the WAN connectivity including the troubleshooting of routing protocols like OSPF, EIGRP, MPLS and BGP
• Implementation, Configuration & Troubleshooting of the Ethernet /Data Network/MPLS Cloud (LAN/WAN) comprising of large number of Cisco Layer2 Switches & Layer3 Switches across the country
• All over India technical support for resolution of Critical/ Major Faults & escalated faults from various Customers
• Fault Management as well as the maintenance of the Routers all over India
• Hands on experience on Cisco Routers for data services with the knowledge of routing protocols like OSPF and EIGRP
• IP planning by using NSN IP PLAN TOOL
• Installed and Configured routers and switches for various projects
• Network monitoring, troubleshooting and performance tuning (Solarwinds, QoS)
• Configured and managed Cisco 1900, 3825, 7206 and 7609 series Routers and Cisco Switches in the series of 2950, 2960 and 3603
• Configuring and Troubleshooting in routing protocols such as EIGRP, OSPF and BGP
• Configuring VLAN connectivity points on Cisco 2950, 2960 and 3603 switches
• Diagnose and solve routers connectivity problems
• Experience in installing and configuring DNS, DHCP server
• Coordinated scheduled time off, to assure the department was appropriately staffed at all times, and scheduled on-call hours for handling escalations from the Network Operations Center
• Oversaw the ticketing system, used company-wide to track customer and inter-departmental requests, as well as long-term projects
• Responding to outages, and working closely with other Network Operations Centers and Service providers and Customers to debug and diagnose network and circuit problems
• Upgrade Cisco Routers IOS using TFTP
• Working on HSRP protocol, GLBP protocol and VRRP protocol
• Configuration of SNMP protocol for monitoring of CISCO 6506 L3 devices
• Interacting with Internet customer for Non-service affecting fault such as Troubleshooting on Internet traffic related fault (High latency/Drops\, Forward/Reverse traffic manipulation, RADB entry of IP address on internet)
• Working on Linux nodes and monitoring
• Configuring DHCP, checking scopes and Troubleshoot DHCP problems
• Maintaining IM Master Tool
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Support all aspects of layers 2-4 including L2/3 VLAN/SVIs
• Wireless network Implementing, maintaining and troubleshooting
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Performed basic security audit of perimeter routers, identifying missing ACL's, writing and applying ACL's

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco Confidential 7K/5K, Cisco ASA 500, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, VRRP & GLBP