SUMMARY:

• To attain a challenging position in Information & Network security field by learning effectively on the cutting edge technologies, thereby contributing my skills in the most efficient manner for continuous growth of the organization.
• Over 10+ Years of experience in IT Network infrastructure Operation and administration, maintaining local resources including end - user support and documentation with experience in maintaining medium and large size enterprise networks.
• Comprehensive knowledge of multi-vendor security protocols and products viz. Firewalls, Load balancers and IPS/IDS technologies.
• Hands on experience in Cisco Next Gen Firewalls, Cisco FWSM, Fortinet WAF, Fortinet Firewalls
• Strong understanding and experience in managing Cisco’s Application Control Engine Modules and F5’s BIGIP LTM Load balancers.
• Knowledge on implementing a connection establishment between onprem and Azure DC.
• Involved in high-end troubleshooting network security issues in complex customer environments
• Skilled in designing, planning and implementing LAN/WAN and Security solutions.
• Proficient in technical and non-technical communication, both in oral and written
• Good leadership skills and has the ability to guide and provide technical direction and supervision
• Excellent communication and relationship skills with customer and colleagues
• Experience in directly working with the customer and managing customer expectations, project deliverables in co-ordination with offshore team

TECHNICAL SKILLS:

Firewalls: Cisco ASA 5516-X, 5525-X, PIX, FortiGate 500E, FortiManager, FortiAnalyser, Palo Alto IDS/IPS SourceFire

Proxy Server: Forcepoint, Load Balancer F5 LTM, Cisco ACE, Riverbed Routers Cisco, Wireless Cisco WLC, Aruba, Aerohive

Switches: Cisco 6509, Nexus 7K, HP Procurve, Nortel switches Operating Systems Windows, Linux

Network Monitoring Solution: Solarwinds, NetQoS, MRTG, Netview, Netflow Analyser Incident Tool HPSM, Service Catalogue, BMC Remedy, Vantive Cisco TACACS, HP Clearpass

PROFESSIONAL EXPERIENCE:

Confidential

Associate Lead - Network Security

Responsibilities:

• Managing Network Infrastructure of an energy company engaged in oil and natural gas production.
• Configure new firewalls and implement in environment.
• Implementing new rules and policies on Cisco ASA, Fortigate firewalls. Updating the ACLS and maintenance of firewalls. Creating, adding, removing and updating firewall rules, resolving port assignments.
• Implement, configure and troubleshoot site-to-site and remote access vpn (anyconnect)
• Working on tools implementing rules which includes Cisco Firepower; many more tools for analysis of traffic and preventing suspicious activity in network before it impacts the business
• Deployment of Clearpass for network switches, troubleshooting issues on HP Clearpass.
• Configuration and troubleshooting of DMVPN issues
• Perform updates, such as modifying configurations, signature definitions or implementing new policies on various security tools, as directed.
• Worked on adding network devices to TACAS, ACS servers and DNS
• Knowledge on Incident, Change & problem Management and share process knowledge with team.
• Monitoring security appliance health using Solarwinds (Firewalls, routers and switches)
• Strong hands-on experience on managing Cisco Network Hardware like Cisco Nexus switches, Classic switches, Cisco Routers, Cisco ASA 5525-X and Fortinet firewalls, Cisco Firepower, Cisco Wireless LAN Controllers, FortiManager, FortiAnalyser, FortiSIEM, Solarwinds, Clearpass Policy Manager supporting role based access and NAC.

Confidential, Miami

Network Security engineer

Responsibilities:

• Monitor, review and analyze logs through Cisco Firepower Management Center and PRTG
• Replaced older firewalls with Next Gen Cisco 5525-X Firewalls for greater intrusion detection/prevention
• Configuring, Troubleshooting and Maintenance, software upgrade of the below: Cisco ASA 5516/5525-X, Cisco Firepower, Cisco 4507/3850/2960 switches
• Provide remote day to day firewall/VPN/Network support, which spans across multiple firewall and security platforms including Cisco ASA, Cisco FWSM, FortiWAF, Forcepoint URL filtering
• Experience working with virtualization platforms such as VMWare ESXi
• Implement 3850 stack wise switches in the access layer and perform IOS-XE upgrades.
• Responsible for Firewall Administration, Rule Analysis, Rule Modification on ASA 5525, Fortinet firewall.
• Security Analysis and Monitoring, Incident handling and response
• Conduct technical security reviews and perform risk assessments
• Documentation like SOPs, SLAs, Diagrams, configuration manuals.
• Coordinating weekly / bi-weekly account management meetings

Confidential

Associate Lead

Responsibilities:

• Part of Global Network Operations and implementation team, supporting LAN, WAN and Network Services across the globe on 24x7 support model, providing technical assistance to enterprise clients.
• Managing and troubleshooting Site to Site and Remote access VPN terminated on Cisco ASA.
• Configuring static NAT, PAT and security levels for Cisco ASA Firewall interfaces.
• Making changes on F5 profiles Pools & nodes as per requirements by applications.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Configure VRRP & HSRP and VLAN Trucking 802.1Q & ISL, STP, Port Security on Catalyst 6509 switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Upgrade Cisco Routers, Switches and Firewall (ASA) IOS.
• Addition of new user id’s and devices for AAA purpose and login through TACACS
• Coordinate with vendors to install firewalls and configure VPN tunnels
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configuration and troubleshooting of Cisco catalyst 6509 with supervisor cards.
• Created MOPS to get approval from peers to perform configuration add/ remove changes following change management process

Confidential

Network Engineer

Responsibilities:

• Work on RFS (Request for Service) as per customer requirement which includes commission of new sites, expansion of existing sites and also provide design solutions and implement them.
• Analyzing & Troubleshooting high WAN & LAN utilization issues in customer network.
• Implementing Aruba AP’s and designed floor plan across various customer site.
• Troubleshooting Wireless LAN connectivity issue.
• Preparing RCA for network related issues.
• IOS Upgradation of Cisco switches and Cisco routers
• Engage 3rd party vendor for any circuit issues
• Monitor user’s internet usage and bandwidth utilization of the network.

Confidential

Network Engineer

Responsibilities:

• Providing technical assistance to enterprise clients worldwide on Nortel Ethernet Routing Switches by remotely logging in their Enterprise Networks or reproducing the network in lab & resolving the problem
• Using debugging tools and lab simulations to analyze problems and identify solutions
• Working directly on customer’s equipment by taking a remote access to devices through SSH or WEBEX
• Raising RMA for faulty devices and following up with customer