SUMMARY:

• CCNA, CCNP certified professional with over 9 years of experience in network design, implementation, and support. Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Extensive knowledge with VLAN Trunking, RSTP, SNMP, Ether Channels, HSRP, Port Security, ACL’s, QoS, Traffic Policing, Shaping, EIGRP, OSPF, NAT, PAT, VPN’s, DHCP, WireShark.
• Expertise in configuring and troubleshooting of Palo Alto, Juniper NetScreen & SRX Firewalls and their implementation
• Working Knowledge of Cisco ACI, Nexus (7K, 5K&2K).
• Switching tasks include VTP, ISL/ 802.1q, VLAN, Ether Channel, STP and RSTP.
• Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Expertise on complex Checkpoint, Cisco ASA & Palo Alto firewalls Environment.
• Hands on experience with working on cloud AWS cloud EC2, S3, RDS, Load Balancer, Auto Scaling with AWS command line interface.
• Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Designed, configured, and implemented LAN/WAN/Wireless networks in remote offices domestic and globally consisting of Cisco 4510R - E and 3850X Core switches, Cisco 2921 WAN router, Aruba Mobility controller, and Palo Alto firewalls.
• Implemented NAC solution using Cisco Meraki to improve security and cloud-based applications
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server and Python hands-on scripting.
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) as well as IXR Router.
• Experienced in Administrating and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• In-depth knowledge and hands-on experience in ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Experience in site-to-site and remote access VPN solutions.
• Multicast routing/switching, Rosen draft, IPTV solutions.
• Experience working with Nexus 9k,7K, 5K and 2K.
• Hands on Knowledge/experience on F5 load balancers/AVI load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
• Provided services IT Infrastructure. Specializing in LAN, WAN, SDWAN, WLAN, and Data Center networks
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS.
• Worked with team to implement NAC solution on Aruba wireless/Cisco Meraki and LAN.
• Troubleshooting & implementation of VLAN, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professional.
• Experience with Change management process and Project documentation tools like Excel and VISIO.

TECHNICAL SKILLS:

Protocols & Standards: LAN, WAN, WLAN,VRF, VDC, TCP/IP, NAT, PAT, MPLS, GETVPN, GDOI, DMVPN, IPv4, IPv6, VPN,L2TP, IPSec / ISAKMP, IKE, VoIP, VSS, OSPF, OSPFv3, EIGRP, BGPv4, VLANs, ACLs, Layer 3, Switching, HSRP, GLBP, VRRP, QoS, TACACS+, RADIUS, 802.1X, PKI, LDAP, POE

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series),ACI, DNA-SDN,SDWAN /Viptela solution, Meraki

Juniper Platforms: M, J and MX Series Routers

Firewall: Cisco ASA/PIX/FWSM, Checkpoint (IP Series/NGX R65/R77/IPSO), Palo Alto, Juniper NetScreen and Juniper SRX.

Load Balancers: F5 Networks (BIG-IP/IQ), Citrix, A10, CSS

Network Tools: Splunk, StealthWatch, Solarwinds, SNMP,, Wireshark,BMC Remedy, Tufin Secureapp, Tufin Securetrack, Infoblox IPAM (IP Address Management Solutions),Postman, JIRA, ServiceNow,QRadar,ForeScout NETDATA, KIWI, Infoblox NETMRI, SecureCRT, Putty, VMware NSX, VMware Onecloud, Citrix Netscaler

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Networking Protocols: RIP, OSPF, EIGRP, MULTICAST, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

IKE, IPSEC, SSL: VPN

Operating System: Windows 7/XP, Office 365, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE:

Confidential, Downey, CA

Network Engineer

Responsibilities:

• Design, configure, implement, and maintain the F5 VIPRION LTM, GTM and VMWARE AVI
• Configure the F5 load balancer virtual servers, nodes, pool members and monitor, update the s and high availability pools to ensure it is up-to-date and secure.
• Reviewing and implementing security policies and configuration on Cisco Meraki
• Experience with bash and python scripting for monitoring and configuring network devices.
• Contributed to upgrading Nexus 7K and Nexus 9K switches.
• Troubleshoot the F5 VIPRION LTM and GTM/AVI (VMWare software-based load-balanced applications when needed.
• Configures policies on Imperva IPS and Incapsula Cloud IPS.
• Utilized Postman to automate scripts on Cisco ACI and Office 365.
• Upgrading multiple sites from Aruba wireless to Cisco Meraki devices
• Work on deep packet troubleshooting with Wireshark and/or Riverbed ACE and tcpdump.
• Creating tenants, bridge domains, L3out and static port binding on Cisco ACI and managing configurations on Cisco Viptela /SDWAN solution.
• Contributed to setting up production, development, and lab environment for BIG-IP Viprion.
• Configured ExpressRoute, Virtual Network on Azure to accomplish Hybrid Cloud connectivity.
• Built DMVPN tunnels between HQ Datacenter and branches to enable connectivity or redundancy.
• Configuring, testing and troubleshooting Cisco ASR1K, ISR, ASR9K for hybrid cloud setup.
• Implemented IPS/IDS policies on Imperva for preventing DDOS attacks.
• Strong experience on AWS, Azure and GCP deployment and configuring VPC, VPC peering and using different features such as EC2 instances, ELB and S3 services.
• Extensively worked on setting up wireless environment with Cisco Meraki and Aruba products
• Design and Implement multicast in networks
• Maintenance and troubleshooting of LAN, WAN, IP Routing, Multi layers Switching.
• IOS upgrade for Cisco routers & switches.\
• Integrated, Integration and troubleshooting of routing protocols like static and dynamic.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 Big IP Load balancers,
• Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Designed and maintained the VLAN architecture, IP address scheme, security architecture, security policies, OS hardening, ADS architecture, and DNS Name Space across a Globally dispersed infrastructure. Implemented various EX, SRX & J series Juniper devices.

Confidential, Concord, CA

Cybersecurity Network Specialist

Responsibilities:

• Performed Level 3-4 troubleshooting and analysis of disaster recovery issues, security implementations, firewall configurations, vulnerability assessments, and intrusion detection and analyze, customer consultation.
• Handled McAfee SIEM solution for preventing data loss and Office 365.
• Creating network object groups and Access Control lists and Object group services on Cisco ASA 5500 as per client needs.
• Setting up Cisco Meraki Controllers and Access points.
• Demonstrated experience with IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption, and integrity protocols.
• Configured iRules and VIP on F5 Load balancers.
• Migrated from Cisco ASA to Palo Alto.
• Performed URL filtering and utilized features such as User-ID, App-ID for Palo Alto Firewalls.
• Used IBM QRadar monitoring tool to troubleshoot network issues.
• Implemented VLAN, VTP domain, Trunking and Ether Channel on Cisco 5500 switches.
• Worked with IPSEC VPN and B2B VPN design connection and protocols, IPSEC tunnel.
• Upgraded with Nexus 9k,7k and 5k switches to deal with the vulnerability issues.
• Upgraded Panorama version 7.0 to 8.0 on Palo Alto Firewalls.
• Provided operation support for Cisco ACI, ASA, VMWare, Checkpoint and Palo Alto, VMWare NSX Firewalls.
• Strong hands on experience with AWS and Azure cloud deployments for EC2, ALB and S3 services
• Implemented NSG and Firewall configurations on Azure as per client’s requirement.
• Provide support for DMZ’s creating and developing DMZ designs IDS signatures to meet new and emerging technologies threats.
• Install, configure, and maintain Network Security devices. This includes software installation, patches, and upgrades.
• Hands-on experience with all phases of firewall and network operations, firewall change requests, firewall configuration, network services, and network security.

Environment: Cisco Routers, Cisco ACI Cisco Switches, Nexus 7k/5k/2k Routing protocols, Palo Alto, Checkpoint, Aruba, F5, Load Balancer, Cisco Viptela SDWAN, AWS,Azure, BlueCoat, IPSEC VPN, VPN, QOS,F5 Load balancer, Multicast, MPLS, VLAN, VTP, RSTP, ACL, NAT, IDS/IPS, RADIUS, TACACS+, Cisco ASA Firewall, Office 365,Infoblox NETMRI, Infoblox IPAM,IBM QRADAR, McAfee SIEM.

Confidential, Deer Field, IL

Network Security Engineer

Responsibilities:

• Responsible in Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring, testing, troubleshooting multiple vendor device platforms like Cisco ACI routing and switching: Cisco ASR1K, ISR, ASR9K.
• Migrated configurations from A10 to F5 load balancer.
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in Datacenter.
• Troubleshoot the F5 VIPRION LTM and GTM systems and load-balanced applications when needed.
• Extensively worked on setting up wireless environment with Cisco Meraki and Aruba products
• Design and Implement multicast in networks
• Maintenance and troubleshooting of LAN, WAN, IP Routing, Multi layers Switching.
• IOS upgrade for Cisco routers & switches.\
• Integrated, Integration and troubleshooting of routing protocols like static and dynamic.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 Big IP Load balancers,
• Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Designed and maintained the VLAN architecture, IP address scheme, security architecture, security policies, OS hardening, ADS architecture, and DNS Name Space across a Globally dispersed infrastructure. Implemented various EX, SRX & J series Juniper devices.
• Procured, installed, configured, and maintained Cisco Viptela, SDWAN Meraki WLC and Access points, Cisco routers, ASA/PIX firewalls, Checkpoint Firewalls (on Sun Solaris hardware), F5 Big IP Load balancers, Nortel VPN Hardware, Avaya Firewall/VPN Hardware, and Dell Windows 2000/2003 Servers.
• Hands on experience with Python scripting for configuring routers and switches.
• Regular upgrade and maintenance of Infrastructure including Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, F5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy, and Riverbed Steelhead appliances.
• Experience with Virtualization technologies like Installing, Configuring, and administering VMware and created and managed VMs (virtual server) and involved in the maintenance of the virtual server.

Environment: Cisco Routers, Cisco ACI, Cisco Switches, Juniper Routers, Juniper Switches, Nexus 7k/5k/2k Routing protocols, Palo Alto, Checkpoint, Aruba, F5, Load Balancer, AWS, BlueCoat, HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA firewall, Load balancer, Multicast, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, SIP, RTP, RADIUS, TACACS+, Juniper SRX, ASR 9000, Catalyst 6500, CRS, Cisco ASR Firewall, Symantec SIEM.

Confidential, Providence, RI

Network Engineer

Responsibilities:

• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital s, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTM.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Configuring various BGP attributes such as Local P, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATTing with the firewalls as per the design.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Configuring DMVPN's on Hub routers to the spoke customer Routers (Hub-spoke)
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to Get VPN.
• Migrated configurations from CSS to F5 load balancer.
• Worked on Cisco ACI, Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
• Handling Complaints for Intranet and Extranet over MPLS backbone. Checking the connectivity between different locations.
• Conversions to BGP WAN routing. Which are to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP, VRRP, UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Involved in implementing Cisco Meraki Wireless Controllers and Access Points
• Multisite distributed ISE 2.0 (10 VM nodes) Design, Implement, Configure, Planned and migrated ACS existing configured devices like WLC, Radius, Tacacs+,802.1x, Guest portal, posture policies and VPN authentication

Environment: Nexus 9k, 7K, 6K, 5K, 2K; 4500, 6500 VSS pairs; Cisco IOS, Arista switches; Cisco IOS & IOS-XE routers; ASA, Checkpoint and Juniper Firewalls; CSS, F5, Cisco ACI, Cisco UCS, Dell, HP Chassis, Office 365,VMware vCenter.

Confidential, Raleigh, NC

Jr. Network Engineer

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Implemented ISL and 802.1Q for communicating through VTP.
• Working with Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Created VLAN and Inter-VLAN routing with Multilayer Switching.
• Documenting and Log analyzing the Cisco ASA 5500 series firewall.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed administrative support for RIP, OSPF routing protocol.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites.

Environment: Cisco Nexus switches 7010, 5020, 2248, VPCs, VDCs, Cisco 7200, 3600, 2600 routers, ASA 5505, 5510, 5515, SRX 220, 1400 Firewalls, AAA servers, Palo Alto, Juniper, GLBP Load balancing, Cisco GSR 7600, MPLS, PPP Multilink, IPsec, Cisco WAAS, site-to-site VPN.