We provide IT Staff Augmentation Services!

Senior Network Security Engineer Resume

SUMMARY

  • Over 7+ years of experience in Network design, Security, Tier support of Networks in various environments.
  • Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
  • Extensive experience working on Cisco and Juniper routers/switches in complex environments with multiple ISPs.
  • Experience working on Cisco Catalyst Series3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000, 7000 and 9000 series switches.
  • Experience in Network Planning, Implementing, Configuring, Troubleshooting, Security and testing of networking system on both Cisco and Juniper Networks in physical and cloud - based environments
  • Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Routers and Cisco 2900, 3500, 4500, 5500, 6500 and Nexus 5K series switches and Sound knowledge of Routing and Switching concepts and MPLS design.
  • Extensive knowledge on Juniper SRX configurations on various platforms of Junos
  • Hands On Experience in Amazon Web Service (AWS) provisioning and good knowledge AWS services like EC2, S3, AMI, ELB (Load Balancers)
  • Expert in dealing with Networking Protocols and Standards such as TCP/IP, OSI, UDP, Layer 2 (VLANs, STP, VTP), Routing Protocols (RIP, EIGRP, OSPF, BGP), WAN technologies (Frame relay, IPSec, VPNs, MPLS), QoS.
  • Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
  • Experience with Firewall migrations from PIX firewall to Cisco ASA and Juniper SRX firewall appliances.
  • Experience in troubleshooting NAT configurations, Access-Lists (ACL), and DNS/DHCP related issues within the LAN network.
  • Experience working on Cloud Computing Virtualization using VM ware ESXi 4.0 and Windows Hyper-V.
  • Worked in the area of Virtualization with VMware VSphere 5.1 and 5.5, 6.0, ESXi 6.0, 5.5, 5.1, vCenter server 6.0, 5.5 and 5.2.
  • Provided the technical integration of public and private Cloud services, including AWS, Microsoft Azure, Office 365, Rackspace & VoIP/SIP providers to increase infrastructure agility due to business demands.
  • Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.
  • Installed and configured Cisco Unified Communications Manage(UC).
  • Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.
  • This global role helped expand my expertise into other areas such as Cisco UCS, Checkpoint Firewalls, Cisco ASA, and VMware NSX.
  • Experience on a project to build out a software defined data center based on Cisco ACI, VMware NSX and F5 load balancers
  • Support and maintain VMware Infrastructure Running on Cisco Ucs and Vsphere.
  • Established VPN tunnels between Cisco routers and Cisco Firewalls and Palo Alto Firewalls.
  • Implemented Cisco Application Centric Infrastructure (ACI) as a solution for data centers using a Spine and Leaf architecture
  • Used Cisco ACI Fabric which is based on Cisco Nexus 9000 series switches and Cisco Application Virtual Switch (AVS)
  • Performed IOS Software upgrades on switches Cisco 6509, 4510, 3750 and Cisco ASR for compatibility with Cisco ISE.
  • Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
  • Good knowledge in SD-WAN technology in involving discovery design and implementation of client's network.
  • Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.
  • Experience in A10 and F5 Load balancers such a BIG-IP LTM and GTM modules.

TECHNICAL SKILLS

  • Cisco (Nexus; 2k, 6k, 7k, 9k, ASR, ISR) Juniper (MX, M and SRX, vSRX) Alcatel (SR7750, OS6850) Nortel (DMS500, DMS250) Foundry/Brocade
  • SDN, Open Daylight, Open Flow, VIRL, Nexus, NX/OS, ACI, Cisco IOS-XE, JunOS, ScreenOS, AOS, SR/OS
  • AWS, Azure, Google, Aviatrix Multi-Cloud Network Architecture (Overlay)
  • F5 BigIP/IQ, Viprion, LTM, GTM, ASM. AFM, Cisco ACE, CSS11000, Foundry/Brocade
  • MPLS, VPLS, VOIP, ATM, SONET, Frame Relay, POS, BGP, EIGRP, OSPF, SNMP, ISIS, TCP/IP, IPv4, IPv6, IPSec, SSL/TLS, VxLan, FabricPath, ACI, DMVPN, iWAN, SD-WAN
  • Wireshark, T-bird, RF Analysis
  • Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q
  • Frame Relay, ISDN, ATM, MPLS, Riverbed Steelhead SD-WAN, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET
  • F5 BigIP ASM, AFM, Juniper SRX, Palo Alto, Cisco ASA/PIX/FWSM
  • Reverse engineering, IDApro, GCC, GDB, ASM, SoftICE, Windbg, MS Visual studio, OllyDbg, Secure Coding Practices and Code Review
  • Viptela, Meraki, Fortinet, SilverPeak, VeloCloud
  • GRE, mGRE, SSL, IPSec, DMVPN, Aruba Global Protect, Cisco AnyConnect
  • PKI and Symmetrical Cryptography RSA, ISAKMP, IKE, AES, 3DES, DES, RSA, RC4-6, Blowfish, DH, DSA
  • SDN, Open Daylight, ACI, Firemon, Tufin, OpenFlow, REST
  • -VMware ESXi, KVM, Containers, Zones, HyperV, AWS, GCE
  • HP Openview, Prime, Ciscoworks, Tivoli Netview, PRTG, Netflow, sFlow, SolarWinds, Rancid, NetMon, OpenNMS, Visionael, Enterprise Pro, Custom written solutions
  • PBash, Shell, Python, REST, Java, TCL, Perl, C++, Pascal, Dot Net, Low-Level Assembly and C
  • SONET, DWDM, ATM, F/R, ISDN, PSTN, T1/E1 T3/E3, Metro Ethernet, MPLS
  • PostgreSQL, MySql, pgSQL, PL/SQL
  • Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix.

PROFESSIONAL EXPERIENCE

Confidential

Senior Network Security Engineer

Environment: Cisco 3850/3750/3500/3650/6500/7600 switches, SÁ 5500 firewall, Palo Alto PA-3060 firewall, ASR router 1002/1006, Cisco ACI, Juniper SRX, Cisco ISE, AWS, AWS FLANDERS. Aw Cloud forge, AWS Blade runner, juniper EX-2200, EX-4200, M-320 router, SD-WAN, AWS Builder Hub, juniper SRX 5800 Fire wall, F5 LTM 1600/6400, Citrix NetScaler, OSPF, BGP, EIGRP, IPv4, IPv6VLANS, LAN, WAN

Responsibilities:

  • Installing and configuring new Cisco equipment including Cisco catalyst switches 3850, 3750, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
  • Completed the migration of L2 layer and L3V1 layer networks to L3V2 network design by consolidating, designing and implementing the L3V2 Console network configuration in AWS PROD and EC2 fabrics.
  • Responsible for design and installation of new Quanta Lb9 routers and juniper QFX5100 48 or 96 port routers as per new L3V2 network design model.
  • Responsible for consolidating current design models after validating the cabling and patching feasibility on each AWS data center.
  • Cut sheets creation for connection between console access switches, routers,aggregation and core routers in both fabric of AWS.
  • Configured AWS IAM and Security Group in Public and Private Subnets in VPC.
  • Working experience with creating XML definition file and 0+ jinja template files using AWS tool called BLADERUNNER
  • Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers.
  • Configure and installation Cisco prime infrastructure to deploy IWAN.
  • Provide NSX Micro-Segmentation Security for ASW Data Center.
  • Configured RIP, PPP, BGP and OSPF routing, and Involving in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies and Creating and provisioning SRX firewall policies.
  • Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
  • Design, deploy, test, and implement in support of Cloud platform solutions of Open Stack and VMware infrastructure.
  • Managed application micro-segmentation project with VMWare NSX T to create secure zone in data centers and cloud deployments
  • Experience working on Cloud Computing Virtualization using VMware NSX and Windows Hyper-V.
  • Implementations of Network and Devices for Network SD-WAN environment.
  • Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel on CISCO Catalyst Switches 3500, 3650, 3850 6500, 7600.
  • Focused on working with Cisco Channel partners to build practices around Cisco ACI.
  • Implemented Cisco Application Centric Infrastructure (Cisco ACI) as a solution for data centers using a Spine and Leaf architecture.
  • Troubleshooting Issue in Production and QA environment for Business and Developer customers using AWS networking services in their architecture like Route 53, Virtual Private Cloud (VPC), Elastic Load Balancing (ELB), EC2 and so on.
  • Expert in troubleshooting production issues and resolving incident and change tickets related to Cisco ACI.
  • Strong LAN and Data Center Networking (IP Routing, LAN Switching, Firewalls, ACLs, DNS, QoS, IPv4, IPv6 etc).
  • Established IPSEC VPN tunnels with ASA 5500 series Firewall between some branch offices & headquarters.
  • Successfully Design and installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/ switches/ firewalls.
  • Provide data center support upgrading and configuring ASR 5k device to support SDM/ SD-WAN
  • Handled and participated in migrating AWS PROD devices from L3V2- to L3V2+ network design.
  • Identifying the current design on each fabric by plotting the network graphs and checking the diagrammatic view of the data center through an AWS tool- Cloud Forge.
  • Maintenance and Network control with secure DNS, DHCP and IPAM using Infoblox .
  • Managing the AWS security policies and network configuration, including AWS direct connect, vpn failover, Multiple VPC's, user and site access to servers and accounts.
  • Created S3 buckets in the AWS environment to store files, sometimes which are required to serve static content.
  • Configured and implemented F5 BIG-IP GLB and LTM load balancers.
  • Worked on F5 LTM series like 1600, 6400 and Viprions for the corporate applications and their availability.
  • Migration from Cisco firewalls to Palo Alto firewalls platforms PA 4000 and PA 500 and PA- 200 firewalls network technologies including Optical VoIP VPN SAN switching and routing.
  • Extensively worked on four End-to-End Datacenter Migration including application servers, Database Servers, Web servers and cloud (AWS/Azure) Migration.
  • Expert in troubleshooting production issues and resolving incident and change tickets related to Cisco ACI.
  • Experience on dealing with Cisco ISE Secure Network Server 3515 and other network security products.
  • Used Python scripting for network sniffing and managed parameters for pool of servers and updated, automated and migrated different services and software by means of Ansible.

Confidential

Network & Security Consultant

Environment: Cisco 6500/4510/4500 X/4948/3560X switches, AWS, Nexus 9000, 5000,3000, 9504, 9300, 3200, 2308, Cisco ASR 1k/7200/3925E/2951E GSR 7000/12000 Routers, Cisco ISE, Aruba 7200/3600 wireless controller, Nexus 2k/5k/9k, Cisco Nexus 7000, ASA 5500/5510/5540 fire walls, Windows 2000/2003/2008/ R2/2012, Juniper SRX firewall, MX routers, Palo Alto firewalls, SSLVPN, F5 load balancer LTM >M, Citrix Net scalar, BGP, EGBP, VPC, VDC, OSPF

Responsibilities:

  • Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.
  • Implemented AWS networking services Amazon VPC for the Private/PublicCloud, EC2 instances, IAM, and S3.
  • Deliver Solution to improve Cloud architecture, deployment for AWS and Azure clouds.
  • Design, configure, and administer Juniper MX routers, SRX Firewalls, Cisco routers & switches.
  • Design and configuring of OSPF, BGP on Juniper Router and SRX Firewalls.
  • Establish AWS technical credibility with customers and external parties.
  • Help customers build scalable, resilient, and high-performance applications and services on AWS.
  • Configured Policies on Juniper Net screen and SRX firewalls and Palo alto as well.
  • Develop /capture/document architectural best practices for building systems on AWS.
  • Create Azure virtual machines in Azure and AWS, Set up domain controllers in Azure and AWS.
  • Installing, Maintaining and Troubleshooting of Cisco ASR 1K, 7200, 3925E and 2951E Routers and Cisco 6500, 4510, 4500-X, 4948, 3560X, 3750X and 2960S Switches for deployment on production.
  • Configuration and management of network routers (Cisco 6500, 7K; Juniper MX) and switches (Cisco 3850, 3750X, 3750, 3550; Juniper EX).
  • AWS data backup (snapshot, AMI creation) techniques, along with data-at-rest security within AWS.
  • Responsibilities include software upgrade, license activation, configuring/installing new GSR router 7000,12000, Nexus switch 9000, 5000,3000, 9504, 9300, 3200, 2308, F5-5050 and maintaining network documentation.
  • Created and resolved Palo Alto and Checkpoint Firewalls Rules, Routing, Pushed Policy.
  • Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
  • Configured rules and maintained Palo Alto Firewalls & analysis of firewall logs using various tools.
  • Experience working with High performance data center switch like nexus 9000, 7000 series.
  • Configuration of Fabric path and connectivity between Nexus 5K and Nexus 7k.
  • Hands-on Experience with CISCO Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
  • Automated network implementations and tasks and designed monitoring tools using python scripting.
  • Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP's on a need basis.
  • Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
  • Configured DNS and DHCP for servers using Infoblox.
  • Completed basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers.
  • Expert in design, configuration and deployment of F5 Solutions with extensive experience working with APM and ASM technologies.
  • Creation of ASM policies (Application security) on F5 Virtual servers.
  • Experience with Using GTM, APM & LTM F5 component to provide 24"7 access to applications.
  • Responsible for configuration of A10 load balancer.
  • Creating, configuring and Troubleshooting VIP's for (EBL & EFL Extranet networks) on F5/A10networks.
  • Configured and Created wireless sites using the Cisco Meraki System dashboard.
  • Implemented site to site VPN on Cisco Meraki MX64, MX65, MC84, and MX400.
  • Experience with LAN protocols like VSS, STP, RSTP, MST, VTP, VLAN.
  • Administrated LAN and WAN with of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
  • Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.
  • Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
  • Hands on experience in Aruba S2500 switches, Aruba 7200, 3600 series wireless controllers.
  • Migrated from Cisco 3650 switches to Aruba 3810 series switches.
  • Integrating Panorama with Palo Alto Firewalls, managing multiple Palo Alto Firewall using Panorama.
  • Implementation of L3 MPLS-VPN and Migration of branches to the new MPLS cloud4.
  • Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.

Hire Now