SUMMARY:

• A dynamic professional with 8 years of rich experience in network engineering, designing, capacity planning with focus on performance tuning and support of large networks, deployment, implementation and management of different security solution with due diligence.
• CCNP R&S, CCNP Security, CCDP, CCNA R&S, CCNA Security, CCDA, CCIE Written, PCNSE7 Certified
• Cisco certified network engineer with experience in Network Planning, Implementing and troubleshooting of complex Multi - protocol IP networks, extensively worked on L2/L3 switches, Load balancers, firewalls and VPN’s .
• Configuring and Troubleshooting, Fortinet, Meraki, Sonicwall, ASA firewalls
• Focused and dynamic Security Professional with demonstrated expertise in all phases of network security domain.
• Proficient in management, configuration, maintenance and migration of security devices.
• Excellent analytical skills, with the critical ability to identify security issues and quickly apply effective resolutions.
• An effective communicator with exceptional interpersonal skills and customer relationship management skills.
• Experience with Load Balancing using F5 Network Load Balancers.
• Experience in configuring and managing F5 BIG-IP LTM
• Supported, implemented, and managed protocols like ( OSPF, EIGRP, BGP, IGRP,IS-IS, and Static Routing ).
• Coordinated changes with the Network Operations Center, and other departments.
• Provided daily network support for VLAN management throughout the whole network
• Troubleshooting Network outages, T1, T3 circuits, BGP, OSPF, static routes, Access Control Lists, and Network Address Translation . Work with Carriers regarding T1, T3 circuits, BGP Peering and PPP Links failures.
• Deployed router configuration remotely to financial centers on a daily basis. Enabling/Disabling BGP peering, internal routing during network outages and deployment.
• Configuring and troubleshooting site-to-site VPN Tunne l
• Providing routine maintenance such as, IOS upgrades, shutdown circuits, clearing serial, controller counters and setup controller loopbacks for testing.
• Implementing, migrating, and monitoring MPLS Customer Edge Router (CE) routers with the LSR over Label Distribution Protocol (LDP).
• Creating, resolving tickets, monitoring e-mail queue, and answering incoming phone calls.
• Worked with Cisco routers series 2500, 2600, 2800, 7200, Cisco switches series 3550, 2950, and 6509 switches
• Configured, managed Palo Alto Firewalls, Checkpoint firewalls and Sonicwall firewalls
• Experience with SSL Decryption, network segmentation, PKI, Intrusion Prevention System, BYOD, threat hunting, etc.
• Extensive technical experience working with VPN technologies (IPSEC, SSL VPN, WebVPN, AnyConnect, DMVPN etc.).

TECHNICAL SKILLS:

Protocols & LAN technologies: HSRP, VRRP, GLBP, GRE, EIGRP, OSPF, OSPFv2, BGP, RIP IPv4 And IPv6 Addressing, Lan Switching, Network Topologies, Static and Dynamic Routing Troubleshooting, 802.1x, AAA, Advanced IP Addressing And Routing, Cisco IOS, Cisco StackWise, DNS,DHCP, Dynamic Multipoint VPN, Infrastructure Security And Services, LAN/WAN, Layer 2, Layer 3, Network Management, VSS (Virtual Switch Services)Trunking, VTP, STP, MST, RSTP,Port Mirroring, EtherChannel (PAGP & LACP, load balancing), Optimizing STP (Portfast, Uplink fast, Backbone fast, Root Guard, BPDU Guard), 802.1Q, Technical Support, Wireless, SAN, NAS, System Administration, Hyper-V, Windows Server, System Server, Network Security, VMWare Infrastructure, Network Configuration.

Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800, 36003800, 7200. CISCO Switches 1900, 2950, 2950, 2960G, 9300, 9400. CISCO Campus Switches 550XL, 4948 Core Catalyst 4503, 4507 RE, Catalyst 6500/6503/6507 , Cisco PIX 500 series, Cisco ASA 5500 series, Cisco 1200 Aironet Access Points, CSU/DSUs, network cards and Modems, Hubs, Juniper, F5 BIG-IP LTM, Juniper, Cisco Technologies

Network Management Tools: Zenoss, Solar Winds

Authentication: RADIUS, TACACS+, digital s.

Monitoring Tools: Wireshark

Operating Systems: Windows Server 2003, 2008,2012, 2016. Windows XP/7

Remote Access: IP Sec VPN, VPN, Remote/Secure client, Site to site VPN

EXPERIENCE:

Confidential, Waltham, MA

Sr. Network Engineer

Responsibilities:

• Implemented and deployed of various Cisco and Meraki devices
• Configured VLAN’s , Trunk groups, Etherchannels, and Spanning tree for creating Access/Distribution and core layer switching architecture .
• Configured and troubleshot Cisco ASR 1002, ASR 9000, 2500, 2600, 6500, 7500, 7200 Series routers.
• Worked with giant vendors like Cisco, Arista, Juniper, Fortinet and Sonicwall
• In-depth knowledge and hands-on experience on IP Addressing, Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Extensive Knowledge on implementation of Cisco ASA firewalls and Palo Alto firewalls.
• Implemented and troubleshot complex layer 2 technologies such as VLAN Trunks, VTP Etherchannel, STP, RSTP and MST.
• Provided IP ranges, subnetting for the client environment.
• Redesign of Internet connectivity infrastructure for meeting the bandwidth requirements.
• Configured BPDU Guard, port-fast, STP, RSTP and other spanning tree features.
• Provided technical support and solutions for the Network Problems.
• Performed number of Internal DNS and External DNS configurations .
• Cisco ASA troubleshooting and policy change requests for new IP segments that either come online or that may have been altered during various planned network changes on the network.
• Responsible for Cisco ASA firewall administration across global networks .
• Reconfigured Cisco Routers and Switches Catalyst 6807/3750v2/3945, ISR4451 Nexus 5K/2K (5548/56128/5672 )
• Supported different protocols including MPLS, VRF, HSRP, VRRP, OSPF, EIGRP, BGP, IS-IS, GLBP, GRE, MSTP, RSTP, DMVPN, VLAN
• Creating and supporting VPNs tunnels and profiles.
• Identify, diagnose and resolve problems affecting network performance
• Assist with network and system performance analysis and tuning optimizations
• Performed up checks on the various applications to ensure connectivity
• Monitored network to ensure its availability to users
• Processed and prioritized network impacting issues
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series firewalls, Palo Alto firewalls.
• Provided all the IP ranges for the environment.
• Configured HSRP and VLAN Trunking 802.1Q, VLAN Routing on Catalyst 6500,9400 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Providing Technical Support and solutions for complex Network issues
• Implementing NAT solution's on wan applications.
• Planned, tested and evaluated various equipment’s, systems, IOS and procedures for use within the Network / security infrastructure.
• Upgrading IOS and troubleshooting network outages.
• Continually monitor, assess and improve network security, test and implement new security technologies.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, NAT, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital s, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM .
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long-term planning, implementation, project management and operational support as required.
• Worked on Cisco Routers, Active /Passive Switches, Firewalls, VPN Concentrators TCP/IP, NAT

Confidential, Waltham, MA

Sr. Network Engineer

Responsibilities:

• Reconfigured Cisco Routers and Switches Catalyst 6807/3750v2/3945, ISR4451 Nexus 5K/2K (5548/56128/5672 )
• Supported different protocols including MPLS, VRF, HSRP, VRRP, OSPF, EIGRP, IS-IS, BGP, GLBP, GRE, MSTP, RSTP, DMVPN, VLAN
• Creating and supporting VPNs tunnels and profiles.
• Identify, diagnose and resolve problems affecting network performance
• Assist with network and system performance analysis and tuning optimizations
• Perform up checks on the various applications to ensure connectivity
• Monitor network to ensure its availability to users
• Process and prioritize network impacting issues
• Configuring, troubleshooting various LAN/WAN Protocols such as Ethernet, PPP (PAP, CHAP), HDLC and Routing Protocols (BGP, OSPF, EIGRP, IGRP, RIP, STATIC).
• Experience in Cisco switches (L2/L3) configuration VLAN, Inter-VLAN routing, Port Security, VTP, STP, 802.1Q.
• Experience in configuring ACLs, NAT, Subnetting, VLSM
• Configured and managed Cisco Routers (2800, 2900, 3600, 3800,7200) with Routing protocols such as OSPF, Static and Inter-VLAN Routing.
• Configured and managed Cisco Switches (2950, 2960, 3700) with STP, VTP, VLAN.

Confidential, Waltham, MA

Sr. Network Operations Engineer

Responsibilities:

• Troubleshooting MPLS, VRF, BGP and Dynamic multipoint VPN ( DMVPN ) technologies for our customers
• Monitor and maintain thousands of servers and networking devices in a 24/7 fast paced environment
• Troubleshooting and maintenance of Cisco firewalls, routers, switches, wireless, and Unified Communications
• Troubleshooting and maintenance of Microsoft based servers (Server )
• Troubleshooting and maintenance of VMware vSphere infrastructure
• Provide outstanding customer support to dozens of clients
• Respond to alerts coming from monitoring tools like Zenoss
• Worked as part of a team for Cisco Product Support. Troubleshooting by providing relevant knowledge base articles and other information.
• Configuration of LAN (Ethernet)/ WAN set up for Clients. Design, configuration and Installation of Cisco routers and catalyst switches.
• Created various BGP based policies by using Communities, Route-maps, prefix lists and other BGP attributes such as MED.
• Routing related tasks included providing Cisco router configuration, providing technical support for Cisco Router configurations. Configuring routing protocols like RIP, EIGRP, BGP and OSPF
• Configuring IPS, IDS, VLAN, STP, Port security, SPAN, Etherchannel in Cisco Composite Networks.

Confidential, Cleveland, OH

Sr. Network Engineer

Responsibilities:

• Configuring and troubleshooting firewalls from different vendors
• IPSEC VPN (site-to-site), client to site VPN’s on Cisco VPN client.
• Basic networking concepts such as TCP/IP (IP, TCP, UDP, SNMP, DNS, DHCP, FTP, HTTP, HTTPS, ICMP, SMTP, POP3, IMAP, ARP, IPSEC, NAT, Subnetting).
• Managing Radius on Windows servers
• Handling of virus protection servers (McAfee) and deployment of virus scan and desktop firewall across organization to meet 100% compliance of latest DAT files.
• Aware of network analyzing tools like tcpdump, Wireshark, Ethereal, 3CDaemon, SecureCRT, Nmap, for monitoring STRM (Security threat Response Manager), NSM (Network Security Manager)
• Implementation, administration: Design / Configuration changes, Defining events/signatures policies and its actions, Logging and Log analysis.
• Maintaining and updating VPN Gateways for ensuring force of latest Security policy to deny all input requests from all non-compliant devices.
• Managing Daily & Weekly Backup & restoration of Critical Data.
• Troubleshot every case (including backlogs) assigned and drove towards positive resolution to achieve customer satisfaction
• Documented all communication with the clients
• To provide remote Technical support on implementation of technology using various Cisco Network & Security products and applications and resolve product related issues through research and troubleshooting.
• Configured Access control list and also configured Cisco ACS for AAA services using Tacacs and Tacacs+.

Confidential, White Plains, NY

Sr. Network Engineer

Responsibilities:

• Proactively managed and maintained Cisco and Arista devices
• Dailey hands on experience with cutting edge networking technologies (MST, MPLS, VRF, BGP, IS-IS, OSPF, PVST, VRRP, and HSRP).
• Performed configuration management for network and circuits. Documented and updated network physical and logical layout
• Extensive day to day work with Spanning tree Protocol and multiple Vlans
• Responsible for multiple Cisco models 3500 series, 7500 series, 6500 series
• Performed configuration management for network and circuits. Documented and updated network physical and logical layout
• Provided device configurations, detailed network diagrams and engineering for migration of infrastructure
• Deployed Cisco ACS using TACACS+ for Authentication, Authorization and Accounting of access to network devices
• Optimized OSPF network reducing network multicast traffic and routing table size by 50%
• Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds
• Identified and corrected multiple Cisco IOS vulnerabilities helping to secure
• Built network lab for the testing and staging of network equipment reducing network outage time during migration
• Provided and created on 802.1q, STP, OSPF, AAA and TACACS+
• Setup VPN infrastructure using Cisco ASA 5500 firewalls

Confidential

Network Engineer

Responsibilities:

• Configured and managed Cisco Routers (7200, 3800, 3700, 2800, 1800) with different routing protocols such RIP, OSPF, EIGRP, STATIC, BGP.
• Configured and managed Cisco Switches (3700, 2960, 2950) with VLANs, VTP Server, STP, Inter-VLAN Routing.
• Installed and Upgraded different versions of IOS on Cisco Routers, Switches.
• Responsible for configuring, administering and troubleshooting different VLANS, NAT, ACLs using Cisco Switches and Routers.
• Configured and managed Cisco Routers (2800, 2900, 3600, 3800,7200) with Routing protocols such as OSPF, Static and Inter-VLAN Routing.
• Configured and managed Cisco Switches (2950, 2960, 3700) with STP, VTP, VLAN.
• Responsible for configuring, administering and troubleshooting LAN technologies (Ethernet), WAN technologies (HDLC, PPP), Inter-Vlan Routing, ACLs (Standard, Extended, Named)
• Troubleshoot Network outages, T1, T3 circuits, BGP, OSPF, static routes, Access Control Lists, and Network Address Translation. Work with Carriers regarding T1, T3 circuits, BGP Peering and PPP Links failures.
• Deployed router configuration remotely to financial centers on a daily basis. Enable/disable BGP peering, internal routing during network outages and deployment.
• Configured and troubleshoot site-to-site VPN Tunnel
• Provided routine maintenance such as, IOS upgrades, shutdown circuits, clearing serial, controller counters and setup controller loopbacks for testing.
• Performed routine Network maintenance without causing outages to the Network and maintaining redundancies.
• Engaged management about critical and potential Network issues which allowed them to make better system decisions.
• Collaborated with vendors and generated cost saving methods for applying to hardware modules by implementing faster turnaround time for well-known software, hardware bugs and defective products.

Confidential

Network Engineer

Responsibilities:

• Configured and managed Cisco Routers (7200, 3800, 3700, 2800, 1800) with different routing protocols such RIP, OSPF, EIGRP, STATIC, BGP.
• Configured and managed Cisco Switches (3700, 2960, 2950) with VLANs, VTP, STP, Inter-VLAN Routing.
• Installed and Upgraded different versions of IOS on Cisco Routers, Switches.
• Responsible for configuring, administering and troubleshooting different VLANS, NAT, ACLs using Cisco Switches and Routers.
• Configured and troubleshot site-to-site VPN
• Involved in Implementation of Storage Area Networks (SAN), Fiber Channel solutions.
• To provide remote Technical support on implementation of technology using various Cisco Network & Security products and applications and resolve product related issues through research and troubleshooting.
• Configured Access control list and also configured Cisco ACS for AAA services using Tacacs and Tacacs+.
• Routing related tasks included providing Cisco router configuration, providing technical support for Cisco Router configurations and installation for Customer. Configuring routing protocols like RIP, EIGRP, BGP and OSPF
• Configured IPS, IDS, VLAN, STP, Port security, SPAN, Etherchannel in Cisco Composite Networks.