We provide IT Staff Augmentation Services!

Sr. Network Engineer Resume

Bentonville, AR

SUMMARY

  • Over All 8+ years of professional experience in Network engineering, Network security, Designing, Deployment, Implementing, Configuring and Troubleshooting of networking system on both Cisco and Juniper Networks.
  • In - depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
  • Good knowledge of IP Addressing, Subnetting, VLSM, ARP, OSI and TCP/IP models.
  • Experienced in trouble-shooting both, connectivity issues and hardware problems on Cisco based networks.
  • Strong knowledge on Wireless Standards and Technologies, i.e. Ethernet, WAN, LAN, IEEE 802.11a, b, g, n (Wi-Fi). Cisco Wireless Management system, PCI standards. Very good knowledge on IEEE 802.15.1 (Bluetooth), Mesh networks, etc.
  • Having good experience in layer-3 Routing and layer-2 Switching, And Nexus models like 9K,7K,5K, 2K series.
  • Good Knowledge in Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
  • Moderate knowledge in configuring and troubleshooting Cisco Wireless networks; LWAPP, WLC, WCS, stand-alone apps, roaming, wireless security basis, IEEE 802.11a/b/g, RF spectrum characteristics.
  • Configuring IP, RIP, EIGRP, OSPF and BGP in routers
  • Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup
  • Redistribution of OSPF and EIGRP into BGP with the correct tagging parameters from the old legacy network to route and to utilize the correct MPLS VRF VPN's provided from the bearers.
  • Implemented, Configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
  • Supporting EIGRP and BGP based PwC network by resolving level 2 and 3 problems of internal teams and external customers of all locations.
  • Estimated project cost and created documentation for project funding approvals.
  • Created and delivered internal training on BGP.
  • Working on Migrating CSS to Citrix Netscaler Load balancers.
  • Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Routers and Cisco Catalyst 2900, 2 960, 3750, 3500, 4500, 5500, 6500 series switches.
  • Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP).
  • Installing, Configuring, Monitoring and Troubleshooting of Fortigate Firewalls.
  • Expertise in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
  • Proficiently implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
  • Hands-on Experience with CISCO Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
  • Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches (5548, 7010), including CISCO NEXUS Fabric Extender (223, 2248).
  • Good experience working on Citrix NetScaler 1000v. Implemented it along with F5 load balancers, Configured and troubleshooter for issues
  • Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
  • Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
  • Configured Applications using Service-Now tool used in ITIL Management. Strong understanding of ITIL V3. Deep functional and technical knowledge of the Service Now platform as well as
  • In-depth knowledge of the technical implementation of Change Management, Incident Management, Problem Management, Service Catalog, Configuration Management, Reporting, Discovery and Integrations.
  • Configuration, administration and maintenance of Wireless Access Points (Meraki and Fortinet devices).
  • Design WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities.
  • Conduct online product demonstrations using the Cisco Meraki Cloud Controller web interface via WebEx, answer technical questions, contribute to proposals, analyze clients' needs, and develop technical solutions
  • Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
  • Expertise in IP sub-netting and worked on designing and allocating various classes of IP address to the domain.
  • Good experience of OSI model, TCP/IP networking standards and with protocols like SNMP, IPv6.
  • Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
  • Extensive knowledge and troubleshooting experience in different networking protocols including DHCP, DNS, FTP, TFTP, SNMP, Quality of Service (QOS), PAP, CHAP, HTTPS, SSH, Telnet and ICMP .
  • Implemented IPv4 migration to IPv6 (NAT-PT, Tunnelling, etc.)
  • Expert in performing deep packet analysis to troubleshoot network and application issues using Wireshark .
  • Experience with design and implementation of Data center migration and ACI.
  • Proficient experience in managing security policies with CSM, integrated with ASA 5500 devices
  • Implemented VDC, VPC, VRF and OTV on the Nexus 5505 and 7009 switches.
  • Hands on experience in managing CISCO ASR, ISR, CSR Routers, switches. Fortigate Firewalls and SonicWALL Firewalls.
  • Configuring network devices, developing test standards and QoS Testing using Spirent Test Centre
  • Automated Spirent Test Center Automation framework for SDN Open Flow Controller / Switch
  • Have hands on experience with CISCO unified wireless testing network CISCO WCS, and on CISCO PRIME
  • Implemented wireless software’s TRUVIEW AND WLC GUI
  • Had experience on wireless protocols such as 802.11 a, b, g, n, AC WAVE2,
  • Wireless Performance testing experience for wireless infrastructure for directional, attenuation Across different bands.
  • Expert in configuration of Cisco 5520,5580,4400 and 2504 Wireless LAN Controllers. Configure 3700, 3600 & 3500 AP's.
  • Simulation Plan and design a/b/g/n/ac wireless networks without out any physical Access Points (AP) and Collect real-world data by performing unique true end-user experience (wireless LAN throughput, data rates, losses) measurements using AirMagnet software.
  • Experience in installing and configuring DNS, DHCP and Bluecoat Proxy servers.
  • Administration of production Windows Servers infrastructure that includes Domain Controllers, IIS Web Servers, FTP/SFTP and Blue Coat Proxy servers.
  • Troubleshoot the network issues onsite and remotely depending on the severity of the issues Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
  • Experience working with Checkpoint firewall ver R80.20, R77.30, R77.20 and R75.47.
  • Experience with Firewall Administration, IDS/IPS, Rule Analysis, Rule Modification.
  • Experience configuring and troubleshooting on Citrix NetScalar Load Balancer.
  • Configure and manage Infoblox network appliances running the Infoblox NIOS operating system.
  • Developed Merge jobs in Python in order to extract and load data into MySQL database and used Test driven approach for developing applications.
  • Used DHCP to automatically assign reusable IP addresses to DHCP clients via Infoblox IPAM Hands-on experience in using network monitoring tool; Solar winds Orion.
  • Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCPdump and Linux operating system servers.
  • Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7 Network Operation Center.
  • Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS

Routers: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600, ASR 1K, ASR9K, Juniper MX 480, MX 960.

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, MPLS PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches: Nexus 2K/5K/7K/9K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960, Juniper JunOS

Switching Protocols: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging

Multicast Protocols: IGMP, IGMP version 2 and 3, CGMP, PIM-Sparse and Dense Mode.

F5 Networks (Big-IP) LTM 8900 and 6400, Citrix NetScaler: IOS, NX-OS, IOS-XR, IOS-XE, JUNOS

Network security: Cisco ASA 5585,5550,5540, ACL, IPSEC, F5 Load Balancer, Checkpoint, Palo Alto, IDS/IPS, DMZ, IPSec VPN, GRE VPN, FortiGate 3000, 5000, 3815, 900, 800, 600 series, Imperva, Bluecoat, DNS, DHCP scopes Scripting, Ansible playbooks, Python.

Network Management: Solar Winds, Proteus, Xilinx 9.21, HP Open-view, Wire shark, Spirent, SNMP, CA spectrum, Infoblox, Service now.

Operating systems: Windows XP/ 7/ 8, Windows Server 2003/ 2008, Mac OS X and Linux

Various Features & Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP

Applications: MS (Office, Word, Outlook, Excel, PowerPoint, Visio), VMware, Adobe Photoshop and Illustrator

Wi-Fi testing software tools and Protocols: Cisco prime, Cisco WCS, True View, WLC GUI, 802.11a, b, g, n, 802.11AC wave2

PROFESSIONAL EXPERIENCE

Confidential, Bentonville, AR

Sr. Network Engineer

Responsibilities:

  • Involved in configuring and implementing of composite Network models consists of Cisco ASR 1K, 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
  • Designing and implementing LAN/WAN solutions across locations
  • Data centers consolidation, design, management and supporting network activities.
  • Managing the LAN/WAN devices across locations for day-to-day operations.
  • Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.
  • Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and policy routing over Cisco routers.
  • Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP
  • Experience with configuring BGP in the data center and using BGP as a WAN protocol and manipulating BGP attributes
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
  • Configuring & managing around 500+ Network & Security Devices that includes Juniper (NetScreen) Firewalls, F5 BigIP Load balancers, Citrix NetScaler and 3DNS, Blue Coat Proxies and Plug Proxies.
  • Coordinating with network team, DNS team, firewall team and application owners to migrate applications from NetScaler load balancer to F5 BIG-IP LTM.
  • Configuring Pools, Virtual Server, iRules, Profiles and updating and checking health monitors on F5 LTM and NetScaler.
  • Licensing and provisioning of F5 modules LTM, GTM, VCMP.
  • Extensive knowledge and experience regarding F5BIG-IP LTM VIP configuration with health check .
  • Extensive knowledge and experience with SSL certificates on F5 platforms.
  • Involved in the redistribution into OSPF on the core ASA firewall.
  • Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
  • Involved in the modification and removal of BGP from the MPLS router
  • Maintain and manage hundreds Nexus 9K /7k/2k and hundreds of routers CRS, ASR9K/1K, Juno MX960, EX4500/3200 and load balances, F5
  • Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port-based authentication
  • Design, implementation, and proficiency in configuring various Fortinet firewalls Fortigate-620C,60B, 60D, Forti WI-FI 60D.
  • Manage over large network devices; including over 20 Fortinet Fortigate firewalls from 200b to 3040b's, Cisco ASA and FWSM's, Nokia Checkpoints, Cisco 3560-6500 switches, Nexus 5k's and 7k's, 9K’s Cisco ASR 1000's, multiple Cisco UCS's and Fabric Interconnects, and SSL VPN's.
  • Provided technical support to VOIP network to troubleshoot voice related issues based on firewall and network related.
  • Experience in assigning the VLANs to support voice, video and unified communications upon requests.
  • Troubleshoot and resolved LAN/WAN connectivity issues.
  • Supported Cisco routers, switches and LAN to internal and external customers.
  • Worked with various vendors to plan and deploy the voice and data cabling drops, server room, phone room, DHCP scopes and DNS configurations for new servers as a part of migrating infrastructure.
  • Continuous monitoring of FortiGate firewalls installed in more than 2000 franchise stores in various location across the globe using a monitoring tool called IP-monitor.
  • Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.
  • Cisco APIC-EM (IWAN) deployment using CSR1000v Switch and VMware.
  • Maintain, upgrade and implement improvements to the VMWare ESXi infrastructure.
  • Performing backups, troubleshooting and problem resolution for servers associated with a VMWare virtual infrastructure.
  • Analyze and execute VMware performance tuning strategies.
  • Experience with network monitoring and management.
  • Analyzing firewall logs on daily basis for threat prevention and adding rules to firewalls.
  • Worked on Bluecoat proxy server, Tipping point Intrusion Protection System management.
  • Utilized McAfee SIEM, McAfee Antivirus Fore scout and Zscaler.
  • Experience on Web Filtering solutions from Bluecoat.
  • Experience in performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
  • Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
  • Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
  • Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus 9K devices.
  • Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
  • Deployed Intelligent WAN (IWAN) in both Hybrid and Dual-ISP branches to provide an increase in bandwidth capacity, security and reliability.
  • Managing location specific Cisco ASA Firewalls and data center internet gateway firewalls.
  • Hands-on experience in implementing layer3 security through IPSEC tunneling, ACL’s, NAT, PAT and preventing layer2 attacks.
  • Configured SITE-SITE VPN TUNNELS and DMVPN’s.
  • Configured tunnels to AWS and worked on troubleshooting issues with it.
  • Experience deploying and supporting storage area network technologies (SAN).
  • Been a part of designing and deploying different applications using AWS stack(EC2, Route53,SNS, IAM) focusing on high-availability, auto-scaling and fault tolerance.
  • Hands-on experience with EC2, ECS, ELB, EBS, S3, IAM, storage gateway and auto-scaling.
  • Setup and manage servers on Amazon using EC2, EBS, ELB, IAM, RDS).
  • Setup databases on Amazon RDS or EC2 instances per requirement
  • Providing network Support in the design and implementation of P2P over T1s Frame Relay, IP over Frame Relay, MPLS over Frame Relay and DSL over ATM, Gigabit Ethernet and VRF.
  • Assigned and configured IP VRF (Cisco) forwarding for customer usage of the MPLS network.
  • Managing and Working with IPSEC tunnels, LAN to LAN VPN implementations.
  • Planning, Designing & Implementing VPN connections using site-to-site VPN's and Remote access VPN.
  • Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances.
  • Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall and
  • Troubleshoot and worked with security issues related to Cisco ASA, Checkpoint, IDS/IPS and Palo Alto firewalls.
  • Analyze logs and make necessary network report using smart reporter console application.
  • Experience with Checkpoint firewall in adding, modifying rules, NAT, ports, services on firewall gateways.
  • Experience in Deploying production and non-production firewalls.
  • Experience in analyzing packets using Wireshark and troubleshooting network connectivity issues.
  • Configuring rules and maintaining Palo Alto firewalls and analysis of firewall logs.
  • Worked on Multi-vendor platform with Checkp oint, Fortinet and Cisco firewalls requesting net flow for security compliance, coding, and pushing firewall rules after approval and troubleshoot incidents.
  • Implemented the DMZ and policy rules for different clients on Checkpoint firewall.
  • Involved in migrating the Checkpoint R77.30 to R80.20 gateways.
  • Deploying non-production firewalls and production firewalls at maintenance windows.
  • Implemented firewall rules in respective gateways using Ansible.
  • Have hands on experience with CISCO unified wireless testing network CISCO WCS, and on CISCO PRIME
  • Have experience on wireless software’s TRUVIEW AND WLC GUI
  • Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series.
  • Strong working knowledge of Cisco 5520,5580,4400 wireless controllers (WLCs), Cisco 1140, 1250, 1260, 2600, 3600, 3602, 3702 Access Points.
  • Design and deployment of WLAN using Cisco 5520 and 3700 Access Points with Hyper Location Module.
  • Complex routing, multicast routing, QoS, Internet breakout at the hub and spoke sites, and interoperability between IWAN sites and legacy non-IWAN sites during migration to IWAN.
  • Upgrading and deployment of Nexus 7k, 5k and 2k
  • Configured VPC, FEX and VDC’s on Nexus 5K, 7K, 9K.
  • Created ACI EPGs (End Point Groups) contract policies, VRFs and bridge domains for tenants
  • Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers.
  • Configuration and maintain DNS, DHCP and Domain Controllers.

Confidential, Schenectady, NY

Sr. Network Engineer

Responsibilities:

  • Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
  • Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like EIGRP, OSPF & BGP.
  • Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
  • Management of SolarWinds Orion Suite - Network Performance Monitor, Network Configuration Manager.
  • Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout
  • Incorporate Cisco Nexus 9000 NXOS to ACI fabric to work in concert with existing Nexus 7000s and ASRs for Multi-Protocol Label Switching (MPLS).
  • Testing JUNOS images on Juniper MX & T series router platforms covering various protocols and technologies like OSPF, BGP, LDP, MPLS, Layer3 VPNs, and VPLS.
  • Upgrade testbed Hardware to add and support new RLIs. Created 2 new test beds which has maximum coverage of MX series router.
  • Perform WLAN and RF site surveys to Cisco's enterprise accounts in addition to planning, design, implementation and optimization services for Wireless Mesh and 802.11 WLAN networks comprised of the following technologies: Cisco Wireless LAN Controllers, wireless APs, wireless NMS and IP networking and switching protocols. Devices include Cisco 1100, 1200, 3600, 3700, 3800, 1500 series access points. Cisco Controllers 5508 - 5520,5580 Wireless Controllers.
  • Configuring the 3700 Access point and 5508 Wireless LAN Controller and Monitoring them by adding to the Cisco Prime Infrastructure.
  • Worked on Call Flow diagrams for Legacy voice and UC auto attendants, implementation of Dial-plan for Inbound & Outbound calls in Cisco Unified Communications Manager (CUCM).
  • Worked on maintaining and upgrading CUCM (10.X, 11.X), Unity, upgrade CUCM to 11.x, CIMC, UCCX. Provide support to 135 sites across USA, CANADA, Mexico.
  • Supported in u pgrading UCCX from 10.5 to 11.5, backup and restored also involved in management, and troubleshooting of UCCX issues.
  • Worked on various Cisco 88XX, Polycom VVX model and conference phones, Skype for Business 2016.
  • Troubleshoot & resolve Cisco, Skype calling, Unity, Skype Conference calls issues.
  • Configured various end user phones, voicemails and calling capabilities based on their roles.
  • Troubleshooting Citrix NetScaler content switching configurations.
  • Installed SolarWinds Network Performance Monitor with emphasis on traffic analysis, application and virtualization management.
  • Maintain and support customer's wireless networks with FortiGate controllers and AP's and monitor these appliances with SNMP traps to proactively contain and remedy any link failure or outages.
  • Added, Removed and Updated custom properties within SolarWinds Orion in line with applicable Configuration Management processes & procedures.
  • Designing the wireless network using AirMagnet survey in the planner mode by conducting a Predictive survey.
  • Design, install and configuration. Involved in large-scale wireless integrations into existing networks. Technologies included Cisco Wireless, Meraki,
  • Design WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities.
  • Conduct online product demonstrations using the Cisco Meraki Cloud Controller web interface via WebEx, answer technical questions, contribute to proposals, analyze clients' needs, and develop technical solutions
  • Aruba, Air Magnet, and multi-vendor RADIUS solutions.
  • Involved in configuring and implementing of composite Network models consists of Cisco ASR 1K, 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
  • Designing and implementing LAN/WAN solutions across locations
  • Data centers consolidation, design, management and supporting network activities.
  • Managing the LAN/WAN devices across locations for day-to-day operations.
  • Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.
  • Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and policy routing over Cisco routers.
  • Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP
  • Experience with configuring BGP in the data center and using BGP as a WAN protocol and manipulating BGP attributes
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
  • Configuring & managing around 500+ Network & Security Devices that includes Juniper (NetScreen) Firewalls, F5 BigIP Load balancers, Citrix NetScaler and 3DNS, Blue Coat Proxies and Plug Proxies.
  • Involved in the redistribution into OSPF on the core ASA firewall.
  • Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
  • Involved in the modification and removal of BGP from the MPLS router
  • Maintain and manage hundreds Nexus 9K /7k/2k and hundreds of routers CRS, ASR9K/1K, Juno MX960, EX4500/3200 and load balances, F5
  • Updating licenses and software upgrades for Infoblox switch port manager onboarding and certifying new F5 device to replace End of Support, End of Life legacy appliances.
  • Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port-based authentication
  • Design, implementation, and proficiency in configuring various Fortinet firewalls Fortigate-620C,60B, 60D, Forti WI-FI 60D.
  • Manage over large network devices; including over 20 Fortinet Fortigate firewalls from 200b to 3040b's, Cisco ASA and FWSM's, Nokia Checkpoints, Cisco 3560-6500 switches, Nexus 5k's and 7k's, 9K’s Cisco ASR 1000's, multiple Cisco UCS's and Fabric Interconnects, and SSL VPN's.
  • Continuous monitoring of FortiGate firewalls installed in more than 2000 franchise stores in various location across the globe using a monitoring tool called IP-monitor.
  • Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.
  • Cisco APIC-EM (IWAN) deployment using CSR1000v Switch and VMware.
  • Utilized McAfee SIEM, McAfee Antivirus Fore scout and Zscaler.
  • Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
  • Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
  • Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus 9K devices.
  • Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
  • Deployed Intelligent WAN (IWAN) in both Hybrid and Dual-ISP branches to provide an increase in bandwidth capacity, security and reliability.
  • Managing location specific Cisco ASA Firewalls and data center internet gateway firewalls.
  • Installation, deployment, and management of Citrix including User Migration Tool administration and daily escalation support.
  • Ensuring faster accessibility and high uptime of websites using BIG IP F5, Citrix NetScaler
  • Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances.
  • Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewalls.
  • Configure, Manage and Monitor Palo Alto firewall models(PA-5050 and PA-5260).
  • Implemented advanced Palo Alto features like URL filtering, User-ID, App-ID, Content-ID on both Inbound and outbound traffic.
  • Configured USER-ID agent to collect host information using Palo Alto Global protect.
  • Configured APP-ID in Palo Alto to reduce attack surface, regain visibility and control over traffic.
  • Manage multiple Palo Alto firewalls centrally through the Palo Alto Panorama M-500 centralized management appliance.
  • Enforce policy checks in data center traffic through Panorama M-500. Escalated technical support in troubleshooting firewall and network connectivity issues.
  • Worked on Multi-vendor platform with Check Point, Fortinet and Cisco firewalls requesting net flow for security compliance, coding, and pushing firewall rules after approval and troubleshoot incidents.
  • Configured, maintained and troubleshooted firewall policies on Cisco and Palo Alto firewalls including security, NAT, policy definitions, user based policies, application filtering, URL filtering, regional based rules, log analysis.
  • Have hands on experience with CISCO unified wireless testing network CISCO WCS, and on CISCO PRIME
  • Have experience on wireless software’s TRUVIEW AND WLC GUI
  • Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series.
  • Strong working knowledge of Cisco 5520,5580,4400 wireless controllers (WLCs), Cisco 1140, 1250, 1260, 2600, 3600, 3602, 3702 Access Points.
  • Design and deployment of WLAN using Cisco 5520 and 3700 Access Points with Hyper Location Module.
  • Complex routing, multicast routing, QoS, Internet breakout at the hub and spoke sites, and interoperability between IWAN sites and legacy non-IWAN sites during migration to IWAN.
  • Upgrading and deployment of Nexus 7k, 5k and 2k
  • Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers.
  • Decommissioned VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices.
  • Coordinating with service providers like AT&T, Verizon etc. for all network outages /restoration/new implementations.
  • Assist and troubleshoot Cisco Meraki solutions remotely including 802.11a/b/g/n/ac Wireless networks
  • Supported a nation-wide WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities
  • Implementation of Site to Site VPN s and Remote access VPNs with direct vendors and customers.
  • Implemented Data Centers and large remote sites globally on Nexus (7k, 6k, 5k, 2k).
  • Created reports, workflows, and data imports for Incident, Problem, Service Request and Change Service Now modules.
  • In-depth knowledge of the technical implementation of Change Management, Incident Management, Problem Management, Service Catalog, Configuration Management, Reporting, Discovery and Integrations.
  • Implemented and configured Fortinet Firewall FortiGate 600, 800 series.
  • Installed and configure Cisco Identity Service Engine (ISE) 2.0 and implement 802.1x and wireless guest sponsor portal.
  • Worked with team Managing and configuring Aruba Wireless controller devices (7210, 7240) and Cisco Access Points.
  • Experience in performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
  • Experience of Administer Infoblox DNS/DHCP/IPAM environment
  • Configuration and maintain DNS, DHCP and Domain Controllers.

Environment: Cisco 6506/4948/4510 switches, Cisco 3660/3845/7609 Routers, Cisco ASA, Palo Alto, Panorama, Global Protect, F5 Load Balancers, Infoblox, OSPF, BGP, MPLS, HSRP, Juniper MX 960, Nexus 2K, 5K, 7K, Python.

Confidential, Basking ridge, NJ

Sr. Network Engineer

Responsibilities:

  • Experience configuring and implementing of composite Network models consists of Cisco ASR 1K, 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
  • Designing and implementing LAN/WAN solutions across locations
  • Experience in Data centers consolidation, design, management and supporting network activities.
  • Configuring the LAN/WAN devices across locations for day-to-day operations.
  • Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.
  • Good Experirnce in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and policy routing over Cisco routers.
  • Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP
  • Experience with configuring BGP in the data center and using BGP as a WAN protocol and manipulating BGP attributes
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
  • Worked with Voice teams by involving in designing Avaya solutions for PBX moves and call centers. Deployed projects engaging with other teams.
  • Configuring & managing around 500+ Network & Security Devices that includes Juniper (NetScreen) Firewalls, F5 BigIP Load balancers, Citrix NetScaler and 3DNS, Blue Coat Proxies and Plug Proxies.
  • Involved in the redistribution into OSPF on the core ASA firewall.
  • Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
  • Involved in the modification and removal of BGP from the MPLS router
  • Maintain and manage hundreds Nexus 9K /7k/2k and hundreds of routers CRS, ASR9K/1K, Juno MX960, EX4500/3200 and load balances, F5
  • Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port-based authentication
  • Design, implementation, and proficiency in configuring various Fortinet firewalls Fortigate-620C,60B, 60D, Forti WI-FI 60D.
  • Manage over large network devices; including over 20 Fortinet Fortigate firewalls from 200b to 3040b's, Cisco ASA and FWSM's, Nokia Checkpoints, Cisco 3560-6500 switches, Nexus 5k's and 7k's, 9K’s Cisco ASR 1000's, multiple Cisco UCS's and Fabric Interconnects, and SSL VPN's.
  • Continuous monitoring of FortiGate firewalls installed in more than 2000 franchise stores in various location across the globe using a monitoring tool called IP-monitor.
  • Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.
  • Cisco APIC-EM (IWAN) deployment using CSR1000v Switch and VMware.
  • Utilized McAfee SIEM, McAfee Antivirus Fore scout and Zscaler.
  • Provide second/third level technical support for ACI (Application Centric Infrastructure) technologies.
  • Migrated the entire testing environment to Virtual MX supported testing.
  • Administering and evaluating firewall access control requests to ensure that these requests are compliant with client's security standards and policies.
  • Configuration and support of Juniper NetScreen firewalls and Palo Alto firewalls.
  • Maintaining Checkpoint security policies including NAT, VPN and Secure Remote access, Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
  • Interact with various ISP's and vendors like Cisco, FortiGate, F5, Level 3 to consider physical circuit and hardware related problems in MSIT network infrastructure.
  • Remotely upgrading the FortiGate devices by adding patch ups from V3.1.18, V4.0 to the latest released versions V5.0.11 using upgrade paths.
  • Configuring Juniper Net Screen Firewall Policies between secure zones using Network Security Manager (NSM).
  • Used Fire Eye to detect attacks through common attack vectors such as emails and webs.
  • Gained experience on working with migration to Check Point and Palo Alto next generation firewalls
  • Experience on Checkpoint Firewalls NG, NGX R65, R70, R75, R77, NSX (VMware Network).
  • Integrated VMware virtual machines to the test lab environment.
  • Experience in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server.
  • Automating operational tasks using Ansible, BladeLogic Provided technical support on Nexus 2000/5000 switches and operating system (NX-OS)
  • Assisted with installing, upgrading, and configuring BladeLogic agents. Use BladeLogic Client to create and Deploy maintenance jobs.
  • Managed successful delivery of massive security response portfolio including Splunk and Cisco ISE.
  • Worked on Blue Coat proxy SG (900, 810 and SG9000 series) and Proxy AV (510,810 and 1400series) in Datacenter environment with hands on experience on inspection, data loss prevention, content caching and bandwidth management using Blue Coat proxy.
  • Designed, Configured and maintained Blue Coat reporter 10. Also, configured policies on the Blue Coat VPM, local database and PAC files to filter the traffic flow by creating custom rules, URL categories and routing policies.
  • Implemented and administered Websense Web Security Gateway for web content filtering and DLP.

Environment: Juniper EX-2200, EX-4200, EX-4500, MX-480, M Series, Juniper SRX5400, SRX5600 and SRX5800, Bluecoat Proxies, Juniper IPD, checkpoint, Infoblox, Juniper NSM, Panorama, Python, F5 LTM, GTM 6600, 6800, Splunk, Cisco ISE, Cisco ACI, Web sense, Solar Winds NPM.

Hire Now