SUMMARY

• Innovative professional with progressive hands - on experience as a Security Engineer demonstrating expertise with conducting threat investigations, vulnerability assessments and overall system security to ensure strong business continuity through administration of firewalls, incident response and malicious attack prevention procedures.
• Advanced Knowledge in quickly identifying and resolving varieties of risks to ensure the integrity data on the Network. Exceptional Ability to analyze and translate technical information to diverse audience.

TECHNICAL SKILLS

• PAN OS 6.0, 7.0, 8.0 Firewall Administration
• Cisco ASA Firewall Administration
• Access Lists, Network Address Translation
• Panorama Administration
• PAN NGFW APP ID, CONTENT ID, USER ID
• PAN NGFW IPS and IDS
• PAN NGFW VPN Deployment and troubleshooting
• PAN NGFW High Availability (HA) Deployment and troubleshooting
• PAN NGFW NAT Configuration and Troubleshooting
• Zone Protection, Denial Of Service (DOS) Protection
• PAN NGFW Traffic Monitoring
• SSL Decryption / Certification Management
• Windows, Linux OS
• PAN NGFW Routing and Switching
• OSI Model and Application
• Protocol knowledge of IPSEC, ICMP,TCP/IP, UDP, HTTP(S), DNS, SNMP, TELNET, SSH, RIP, OSPF, DHCP, LAN/WAN, LDAP, NAT/PAT, SSL, VPN,

PROFESSIONAL EXPERIENCE

NETWORK SECURITY ENGINEER

Confidential

Responsibilities:

• Migrated Cisco ASA, Fortigate Firewall to Palo Alto
• Upgraded ASA 3320 to ASA 3345
• Configure ASA with Access Lists to Allow or Deny Traffics per business requirement
• Configure Source NAT, Destination NAT, Port Address to direct traffic between Our different servers on ASA and Palo
• Configure and troubleshoot Site to Site VPN tunnels on ASA and Palo Alto Between Confidential Business offices and Partners, Customers
• Strong knowledge of high level architecture and technical in-depth knowledge of Palo Alto Networks NGFW and PAN Products
• Develop Integration of Palo Alto Into the network for IPS

Confidential

NETWORK SECURITY ENGINEER

Responsibilities:

• Subject Matter Expert in architectural and security design review
• Strong knowledge of high level architecture and technical in-depth knowledge of Palo Alto Networks NGFW and PAN Products
• Participated in the deployment, configuration and maintenance of a multiple data center infrastructure consisting of over 50 Confidential firewall clusters and 10 Panorama device along with supporting routers and switches.
• Participate in an established on-call rotation to respond to service tickets every 2 weeks
• Configure and Troubleshoot High Availability for all firewalls in the network, preventing single point of failure
• Configure and Troubleshoot Site to Site IPSec VPN between HQ and branches, partnering offices.
• Consults with customers to identify data and network security requirements
• Configured Security profiles to Mitigate Attacks on the network.
• Configured Best Practice Firewall Security Policies in accordance to the company's objectives, goals and regulations
• Configured and Troubleshoot Source NAT for Internet Bound Traffics specifying Required Oversubscription rate as needed
• Configured Destination NAT for all Servers located in the DMZ Zone
• Configured and Troubleshoot Zone Protection and Denial of Service to prevent DOS, DDOS and resource exhaustion on the DMZ Zone
• Configuration and Deployment of the WF-500 wildfire appliance to Monitor, Identify and contain new network security threats so as to consistently update the firewalls with the latest threat updates.
• Perform PAN OS Upgrade to 8.1 for Firewalls during the Operation Upgrade all FWs with the team.
• Configure Firewalls to Performed Dynamic Updates by schedule
• Troubleshoot firewall/access issues and resolve or escalate to proper operational teams
• Monitor network flows for network anomalies and access failure
• Creation of technically detailed reports on firewall block lists, device status, change management, hardware/software upgrades, and other areas
• Demonstrated ability to document processes and procedures
• Ensures standards are maintained for firewalls and other network edge device version updates & patches
• Participates in project and activity tracking processes
• Participates in the change control process
• Continuously updates and improves skills and networking knowledge through training and self-study
• Serves as an escalation point for network and security issues within IT

JNR NETWORK ENGINEER

Confidential

Responsibilities:

• Deployment, Installation, Configuration of Windows 2003 at branch Offices and administration of user accounts, configured active directory and designed hierarchical structure using organizational units.
• Created and maintained network topology documentation as new branch offices were created.
• Deployment, Installation, Configuration and administration of, Switching at branch Offices and Routing to Data Centers, Other Branches, Head Office using Cisco Appliances/Hardware
• Provided router configuration and troubleshooting, Correcting networking connectivity issues in routing and switching using a layered model approach as needed working on new site integrations manually updated and installed services packs, drivers and applications to improve computer efficiency and performance.
• Worked as a team member with other technical Staffs to ensure connectivity and compatibility between systems
• Documented network problems and resolutions for future reference