We provide IT Staff Augmentation Services!

Sr. Network Engineer Resume

Manhattan, NyC

PROFESSIONAL SUMMARY:

  • 7+ years of experience in Routing - Switching technologies, System design, Configuration and Troubleshooting of complex network system-Security Devices, Documentation of LAN/WAN networking system
  • Experience with network hardware and technologies including firewalls, routers, switches, Gateway technologies, Ethernet, Fast Ethernet, Gigabit Ethernet, Wireless technologies
  • Expertise in Routing protocol such as EIGRP, OSPF, BGP, MPLS, LDP
  • Working experience with installing, implementing, maintaining and troubleshooting Cisco Switches, Cisco Routers, Juniper EX Switches, Juniper Routers and Cisco Nexus Switches
  • Profound knowledge of implementing and maintaining Checkpoint R75/76 and Cisco ASA Firewall/PIX
  • In-depth knowledge of TACACS+, RADIUS implementation in Access Control Network
  • Strong hands-on experience on Cisco Catalyst (series 3850, 3560, 4500, 6500), Cisco Nexus (series 2K, 5K, 7K), Cisco Routers (series 7300, 4000, 3800, ASR 9000), Firepower (4100), Load Balancers (citrix NetScaler, Cisco ACE, F5 BIG-IP LTM/GTM ADC), IDS/IPS (HIDS, NIDS, NIPS, HIPS), Fire eye, Palo Alto Networks Firewalls (PA-820, series PA-3K, 5K)
  • Hands on knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs.
  • Proficient and high-level expertise using the F5 based profiles, monitors, VIP’s, pools, SNAT, SSL offload, iRules, virtual Servers, iAPPs. Migration experience from ACE to F5/ old F5 to New F5. Expert in TMSH.
  • Implemented VDC, VPC, VRF and OTV on the Nexus 5505 and 7009 switches, Netgear switches
  • Implementation and maintained Sourcefire intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data
  • Profound knowledge of TCP/IP, OSI, Spanning-tree protocol
  • Strong understanding in WAN technologies including HDLC, E1, E3, T1, T3, ISDN, MPLS
  • Working on IP Addressing schemes, Subnetting, VLSM, LAN/WAN protocol and provide IP services to fulfill network requirement in different environment
  • Experience in layer 2 and 3 Routing and Switching
  • Experienced with implementation, configuration and troubleshooting of compound layer 2 technologies such as VLAN, VLAN trunk and 802.1q, VTP, VTP pruning, Ether-channel, STP, RSTP, MSTP
  • Experience in installing and configuring DNS, DHCP server and install DNS through Infoblox for highly scalability
  • In-depth knowledge of implementing redundancy with HSRP, VRRP, default gateway and Ether-channel technologies
  • In-Depth Knowledge and experience of various wireless 802.11 standards, controllers, Access Points, Wi-Fi analytics from various vendors (Cisco Meraki, HPE /Aruba, D-Link and Netgear), SD-WAN (MX 65, MX100, MX400)
  • Proficient knowledge and hands-on experience of wireless 802.11, Cisco Meraki, Aruba, Wireless LAN Controller
  • Experience in troubleshooting, maintaining and integrating on F5 Big-IP LTM load balancing, GTM and APM
  • Deployed, Managed, monitored and supported Bluecoat Proxy for content filtering, internet access between sites and VPN client users, forward proxy scenario and reverse proxy scenario for security and also worked on adding URL’s in Bluecoat Proxy SG’s for URL filtering
  • Experience with Putty, Exceed, Secure CRT, GNS 3 and Cisco Packet Tracer
  • Configured security policies including NAT, PAT and VPN, IPSec, Route-maps, Prefix lists and Access Control Lists on different router
  • Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN
  • Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVERBED and Wireshark

TECHNICAL SKILLS:

Router and VoIP Platforms: Cisco Routers series 7300, 4000, 3800, 2000, 1900; F; OnSIP, Avaya products, cisco IP phones

Routing Fundamentals and Protocols: Routed and Routing protocols RIP, EIGRP, IS-IS, OSPF, BGP, IPX; MPLS, IPv4 and IPv6 addressing, subnetting, VLSM, Static routing, ICMP, ARP, HSRP, VRRP, Route Filtering, Multicast, 802.11, Policy Based Routing, Redistribution, Port forwarding, Arista.

Switch Platforms: Cisco Catalyst series 2960, series 3560, 3850, 4500, 6500, 7000; Nexus series 2K, Netgear switches,5K, 7K; Nortel/Avaya 5510, 5520; Juniper EX3300, EX4600, EX4300, EX3400

Switching Fundamentals and Protocols: Ethernet technologies, LAN networks, MAC, VLAN and VTP, STP, PVST+, MulticastRSTP, Multi-Layer Switching, 802.1Q, EtherChannel, PAgP, LACP, CDP, HDLC, RARP

Firewall Platforms: Juniper Netscreen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, CheckPoint (NGX R65, 3100, 5100, 5900), Cisco Firewalls (ASA 5505, 5506-X, 5585), Netgear Firewall, Palo Alto Networks (PA series 2K, 3K and 5K), WAF,ACI.

Security Protocols: Standard and Extended ACLs, IPsec, VPN, Port-security, SSH, SSL, IKE, AAA, Prefix-lists, Zone-Based Firewalls, NAT/PAT, HIPAA standards, Ingress & Egress Firewall Design, Content Filtering, Load Balancing, IDS/IPS, Blue Coat URL Filtering, L2F, IDS, TCP Intercept, Router Security, SNMP trap

Network Management and Monitoring: Wireshark, Infoblox, HP OpenView, Cisco Prime, Security Device Manager (SDM), CiscoWorks; TCP Dump and Sniffer; SolarWinds Netflow Traffic Analyzer, Network Performance Monitor (NPM), Network Configuration Manager (NCM), Sevone, Sitescope.

Load Balancers: F5 (BIG-IP) LTM 2000, 3900, 6400, 6800, AV 510, ASM, citrix NetScaler, APM

WAN technologies: Frame: Relay, ISDN, ATM, MPLS, PPP, DS1, DS3, OC3, T1 /T3 lines, SONET OC3-OC192, SDH, POS, PDH

Cloud Computing and Automation: AWS, Microsoft Azure, Cisco Meraki, C/C++, Python scripting, Shell, Cloud Migration

Other Networking Protocols and Fundamentals: DHCP and DNS server, Shell, Active Directory Management, NTP, NDP, TCP, UDP, FCP, Network Implementation, Troubleshooting techniques, NHRP, NetBIOS, NFS, FTP, TFTP, HTTP, PAP, PPTP, SIP Trunking, SNMP logging, BitTorrent, SMTP, RADIUS and TACAS+, PBX servers, SDN, SAN

Operating Systems: Windows 10/7/XP, MAC OS, Windows Server, Nexus OS, Cisco IOS-XR,Linux, UNIX

Wireless Technologies: Canopy Wireless Devices, DLink Point: to-point Wireless, D-Link APs, CISCO 1200 series APs, Aruba wireless and APs, Cisco Meraki, Linksys Wireless/Wi-Fi Routers

Microsoft Office: Visio, Excel, PowerPoint, Word

Change Management: ServiceNow

PROFESSIONAL EXPERIENCE:

Confidential, Manhattan, NYC

Sr. Network Engineer

Responsibilities:

  • Maintained communication networks, monitored network performance, and resolved technical issues
  • Collaborated with colleagues on the improvement of network infrastructure in order to increase quality, reliability, effectivity, and reduce expenses
  • Installed and configured network devices, including routers, modems, hubs, switches, wireless AP's, and WLAN controllers
  • Performed backups of all servers and provided support and assistance to users
  • Completed troubleshooting, tested networks, and performed other duties as required
  • Design, Implementation and Support of a Disaster recovery facility for fail-over purpose, Enterprise management for back-end connectivity, access, distribution and core layer switches as well as the backbone routers, VPN and DMZ networks
  • Hands on experience with Cisco ASA’s, Cisco Firepower FWs, FortiGate FW’s
  • Worked on high end cisco devices like ASR 4451-x, Cisco 2900, 3900, 4300 series and Juniper Routers.
  • Strong hands on experience on Cisco (5525/5510) Firewalls, Cisco Firepower FMC and FTD 2100 series, Palo Alto Firewalls
  • Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
  • Upgraded Palo alto Panorama and Palo Alto stand-alone device from 8.0.9 to the latest version 8.1.8
  • Knowledge on Data center design and operations, Cisco Nexus switches, Load balancing technologies, configuring & troubleshooting of MPLS, BGP, OSPF& EIGRP, ASIC design of a device and line cards Modules, network elements of the telecom space & understanding of service delivery platforms
  • Having good understanding of ACI (Cisco Application Centric Infrastructure)
  • Simplified automation by an application-driven policy model through ACI
  • Centralized visibility with real-time, application health monitoring with ACI
  • Helped develop and implement a ClearPass configuration necessary to support a secure wireless network that uses WPA2-Enterprise with IEEE 802.1X authentication for Corp Owned Devices
  • Hands-On experience working with firewall models such as Palo Alto's PA-3K and the PA-5K Series Firewalls
  • Expert-level experience with Cisco IOS Routing and Switching. configuration & troubleshooting of routing protocols: BGP, OSPF, EIGRP
  • Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, ISL/ 802.1q, Ether channel, Port Security, STP, RSTP and MST
  • Experience with f5 load balancers - LTM, GTM series like 6400, 6800.Worked with load balancers to manage corporate applications and their availability
  • Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
  • Configuring and managing F5 ASM (Application security manager). Developed security policies.
  • Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers
  • Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineer’s instructions and troubleshooting any related issues
  • Experience working with Datacenter switches such as the Cisco Nexus and Cisco Catalyst
  • Implemented Quality of Service QOS for critical applications, also prioritized traffic for voice using classification techniques like DSCP
  • Helping Customers with Architecture and deployment of Palo Alto firewalls and other products like centralized management server Panorama and Log Collector

Confidential, Cambridge, MA

Sr. Network Engineer

Responsibilities:

  • Providing layer 2 security by setting up different protocol such as BPDUguard, Root/loopguard, Orphan ports on collapse/core network architecture
  • Upgrading Nexus 7009 with ISSU in data center
  • Redesigning data center architecture by adding Cisco catalyst 9500 at distribution level by separating collapse/core architecture
  • Responsible for Data Center migration and its operation including change from cisco 6500 switches to nexus series switches, configured VPC/VDC on nexus 5k/7k
  • Upgraded Cisco 6500, 3560, 2960s, Nexus 5000, Nexus 2000 and Nexus 7000 switch software
  • Experience working with Nexus 7010, 5548, 2148 devices.
  • Migrated the Internet Edge Firewall Juniper SRX FW to Cisco Firepower2130 in the Datacenter
  • Installed, Configured Cisco Firepower boxes in HA mode. Also installed FMC, upgraded FMC and FTD2130 devices as well
  • Experience working with OTV & FCOE on the Nexus between the datacenters
  • Deployed Nexus switches 2248, 5548, 7010 and implemented features like FEX Links, VPC, VRF, VDC, and OTV, Fabric Path
  • Working knowledge of Firewall, LDAP, AAA, TACACS/RADIUS, and IPSEC
  • Working on migration of Cisco ACS to Cisco ISE
  • Configured/Deployed Enterprise level Cisco ISE for wired/wireless devices by installing certificates, building multiple ISE clusters and ISE nodes
  • Creating ISE policies to correspond with various devices on the network
  • Expertise in Cisco Firepower FTD managing with FMC.
  • Experience with security zones, security policies, NAT in Firepower and Juniper Firewalls.
  • Experience in the setup of access-list, EIGRP-BGP and tunneling installation
  • Experienced in VPN implementation, IPsec VPN and SSL VPN with server to server and client to server
  • Working on authentication protocol PAP, CHAP, 802.1x, Port security and configuring security policies including NAT, PAT, VPN, Route Map and Access-list
  • Hands on experience on F5 load balancer, its method implementation and troubleshooting on LTM and GTMs
  • Deals with creating VIP pools, nodes and created custom iRules for virtual servers
  • Worked on F5 VIPRION4800 series BIG IP devices, configured VIP's with HTTP/SSL profiles
  • To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
  • Responsible for managing Cisco routers, switches, HP switches, F5 load-balancers using SNMP MIBs for fault detection and for fault isolation.
  • Built site to site IPsec base VPN tunnel between various client and business partner sites
  • Worked on cisco ASA 5510 firewalls configuration and implementation for the network security
  • Experience in designing, configuration and troubleshooting, security policies, Modular Policy Framework, Zone based Firewall and Implementing different failover mechanism on cisco ASA in order to upgrade Palo-Alto.
  • Experience with advance rule base design, rule base optimization on cisco ASA
  • Intermediate experience in Layer 3 technologies, gateway load balancing protocols VRRP/HSRP and dynamic routing protocols (OSFP/BGP) Remote access VPN IPsec, GRE, 3DES or AES VPN Tunnels
  • Implementation of HSRP (using IP SLA) and GLBP
  • Configuring VLANs, VTP, Ether channels
  • Configuring inter-VLAN routing on Layer-3 switches, Securing switch access
  • Experienced in Configuring/Troubleshooting CiscoRoutersASR1000/4300, 2900/3900
  • Experienced in Configuring/Troubleshooting Routing protocols EIGRP/OSPF/BGP/RIP/IS-IS

Confidential, Piscataway, NJ

Sr. Network Engineer/Firewall Engineer

Responsibilities:

  • Upgraded Cisco 6500, 3560, 2960s, Nexus 5000, Nexus 2000 and Nexus 7000 switch software
  • Configure & troubleshoot routing protocols like MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, and MPLS
  • Configuring and maintaining ASR 9K( ), Nexus 7000, 5000, 2000, Cisco 6500 series IOS multilayer switches, Cisco 2960s series switches and Cisco 3560 switches.
  • Created pre-filter rules, access-control polices, Intrusion policies, Malware polices on Firepower (IPS, IDS, Malware Detection)
  • Built IP-Sec VPN tunnels from Cisco Firepower to SRX-220’s in remote sites using IKE pre-shared keys, AES-128, SHA and DH5.
  • Configured and maintained Site to Site IPSEC and SSL VPN's on PAN 5K series firewalls
  • Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
  • Upgrading Palo Alto PAN-OS to the latest version with panorama in the production environment
  • Palo Alto, 3060,5060, and 7050
  • Configuration and Administration of Palo Alto Firewalls to manage large scale firewall deployments
  • Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
  • Implement and monitor firewalls (Palo Alto, Checkpoint and Cisco) security policies
  • Created site-site tunnel using GRE over IPSEC on ASR 1K series routers.
  • Experience with adding devices to be monitored in SolarWinds using network discovery
  • Configured flow monitor on routers for the SolarWinds
  • Working on Cisco 6509 and 4507 series switches for LAN requirements
  • Configured trunk and switchport on access. L3 and nexus switches
  • Experience with adding Fabric extenders to Nexus 9K switches using switchport fabric mode
  • Configured port channel on Nexus 9K and 2960 access switches
  • Installed and configure F5 LTM and GTM 5000 series in Data center DMZ environment
  • Working on upgradation of F5 Big IP software version from 9.x to 11.4.1 and hotfixes on LTM pairs
  • Worked on IOS XR, NXOS and routing protocols EIGRP, BGP and MPLS.
  • Configured WLAN on WLC 5520 with anchoring
  • Moved access points from one WLC to another
  • Proficient in monitoring and managing networks using SolarWinds Netflow Traffic Analyzer, Network Performance Monitor (NPM), Network Configuration Manager (NCM); Cisco Prime
  • Worked on Blue Coat Proxy SG to safeguard web applications (Blacklisting and Whitelisting of web URL) in extremely untrusted environments such as guest Wi-Fi zones
  • Resolved 8 to 10 tickets in a day from ServiceNow
  • Experienced in working with Session Initiation Protocol (SIP) trunking for voice over IP (VoIP) to facilitate the connection of a Private Branch Exchange (PBX) to the Internet

Confidential, Charlotte, NC

Sr.Network Engineer/Firewall Engineer

Responsibilities:

  • Experience with racking, configuring, and connecting devices
  • Experience with creating zone runner and zones on F5 GTM
  • Configure nodes pools and virtual server for F5 LTM
  • Configured Client VPN and RSA Token ID technologies including Cisco's VPN client via IPSEC
  • Configure and troubleshoot Site to Site as well as Remote Access VPN on Cisco ASA firewalls 5540, 5585
  • Routed the traffic based on URL path, header values to different backend servers
  • Maintained wireless IPS infrastructure and coordinated with management, customers and peers regarding wireless network innovations
  • Managed complex wireless network strategies and imparted support to operational wireless computer networks
  • Helped installed F5 VIPRION load balancers for one of our new data centers
  • Server load-balancing utilizing F5 LTM-Big-IP, including APM and ASM modules
  • Experience in troubleshooting complex load balancing and traffic handling techniques in F5 load balancer
  • Experience with configuring IGP and EGP on ISR routers.
  • Completed Firewall migration from Juniper netscreen to new R77.20 checkpoint firewall.
  • Configured default static route on ISR routers.
  • Configured site to site tunnel using ISR routers on both end
  • Experience with using Microsoft Visio to create network diagram.
  • Used Infoblox for IPAM administration.
  • Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls
  • Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches and Cisco IOS, and Cisco ASA Firewalls
  • Implemented CISCO ISE on Layer 2 Access Switches
  • Configured Profiles, postures and added network device group for Cisco ISE
  • Hands-on experience with configuring VLAN, VTP, PVST, Port security, Port fast and BPDUguard
  • Implementation of various protocols like OSPF, BGP and STP.
  • Administration of Checkpoint, Palo Alto and Juniper Firewalls at multiple properties.
  • Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways
  • Configured various routing protocols such as EIGRP, OSPF and BGP Cisco ASR 9910 and 1001, ISR and Juniper MX routers
  • Configured redundant protocols like HSRP, VRRP and GLBP on ISR routers

Confidential

Network Engineer

Responsibilities:

  • Configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP
  • Configured IP access filter policies
  • Maintained and provided Level 2 and Level 3 technical supports for all network related issues
  • Experience in Cisco 7200, 7600 routers, Cisco series switches: Physical cabling, IP addressing, WAN
  • Worked with the Help Desk for circuit troubleshooting to give Support to the Tech persons at the site.
  • Configuring routers and sending it to Technical Consultants for new site activations
  • Giving online support at the time of activation
  • Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access
  • Configured and troubleshoot Juniper Ex 4500 and series switches and Juniper ACX series routers.
  • Responsibilities included Creating Lab demonstrations for recent technology deployments with loaner equipment from various vendors and presented the findings to upper management
  • Other responsibilities included monitoring and managing servers, desktop computers, printers, routers, switches, phones, and security updates
  • Configuring HSRP between VLANs, Configuring Ether-Channels and Port Channel on Cisco6500 catalyst switches
  • Good understanding on Cisco ASA 10/5540) Series
  • Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation, ACL

Hire Now