PROFESSIONAL SUMMARY:

• Network Lead and administrator with 8 years of experience in the industry.
• Assists or leads in the planning, forecasting, implementation, and identification of resource requirements for network systems of high complexity.
• Designs and establishes corporate standards, develops and implements network enhancements and makes recommendations for improvement.
• Responsible for implementation of approved network architecture and designs.Networks (LAN’s), Wireless Networks (WLAN’s) and Wide Area Networks (WAN’s).
• Planning designing, Installation, configuration and maintenance of 802.11a/b/g Networks and Wireless Access points.
• Implement & manage around 500+ Network & Security Devices that includes Cisco Nexus & Catalyst Switches, Cisco ASA, Juniper EX Series Routers, Juniper SRX Firewalls.
• Proficient handling Cisco Routers, Cisco Switches, Firewalls, Packet shapers, VPN Concentrator
• Plan, impement and support Client’Network infrastructure.
• Expertise in Configuration of Virtual Local Area Networks (VLANS) using Nexus 7Ks, Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble- shooting of inter-VLAN routing and VLAN trunking using 802.1Q.
• Deploying Intrusion Detection System (IDS), Intrusion Prevention System (IPS) devices in the network.
• Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and Policy routing over Cisco Routers, Switches (Nexus 7Ks, Catalyst 6500).
• Experience with NX-OS on Nexus Switches.
• Excellent experience in working with Cisco 1800, 2500, 2600, 2620, 2800, 2900, 3600, 3800, 3900, 7200, 7600 and ASR 1000, 9000 series Cisco Routers.
• Experience working on Juniper series of devices like MX-960, MX-480, MX-104, M10i, M7i, SRX-550, SRX-240, SRX210 and EX, QFX series of switches.
• Experienced in working with Cisco 2900, 3500, 3700, 4500, 6500 series Cisco Catalyst Switches and Nexus Switches 2200, 5500 and 7000.
• Experience with different Network Management Tools and Sniffers like SNMP, and Cisco works to support 24 x 7 Network Operation Center.
• Experience in designing WAN technologies including MPLS, T1, T3, ISDN, HDLC, Point to Point, ATM &Frame Relay
• Working Knowledge of SD-WAN technologies Such as Meraki, OpenStack and Silverpeak.
• Hands-on experience with windows server 2008/2012 Active Directory.
• Experience with creating DNS architecture and DNS solutions for applications
• Working experience with Identity and Accessmanagement tools such as AAD, AWS, Oracle.
• Expertise in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCPdump and Linux operating system servers.
• Experienced in wireless/RF communications with knowledge and experience in technology integration of Wireless Broadband/Convergence (IEEE 802.11, WiMAX)
• Troubleshooting DNS/DHCP issues within the LAN network.
• Strong Analytical, Problem Solving, Technical Troubleshooting, Decision-Making, Customer Service Skills, Results-Driven.
• Excellent communication skills to interact with team members and support personnel and also can act as a mentor to less experienced personnel.

TECHNICAL SKILLS:

Routers & Switches: Cisco Routers (3800, 2800, 2500, 2400 Series), Cisco Switches (6500, 4500, 2960, 2950, 2924, 3700, 3500), Juniper EX43XX, QFX1XXX series, Cisco NX 9k, ISR, CRS, GRS and ASR

Protocols: TCP/IP, IS-IS, EIGRP, BGP, HSRP, IPSec, VPN, DMVPN, QoS, Multicast, dot1q, STP, VLANS, VTP,WLAN, DNS, DHCP, ARP, SNMP, NetFlow, TACACS+, VRF, Cisco vPC

Operating Systems: Windows 2000/2003/2008/12 Servers, Linux, IOS

AAA Architecture: TACACS+, RADIUS, LDAP, Cisco ACS

Firewalls & VPN: Checkpoint Firewall UTM Series, Cisco 5500 Series ASAs, FirePower, PALO ALTO firewall

UC Products: CUCM, CUC, CME, CER, VCS, Jabber

Wireless Equipment: Cisco Wireless LAN Controllers (WLC) 4400 Series (4402 & 4404) 5500 Series (5508), Cisco Aironet Wireless Access Points ( Series).

VMware: ESXi 5.1/4.2, VMware VSphere, VMware Workstation 8, VMware view, Virtual Desktop Interface.

Applications: MS Office 2003/2007- Word, Excel, Power Point, MS Outlook, Outlook Express, Opnet, Bluecoat, Riverbed, NetBrain.

Security: Checkpoint Firewall UTM/NGX Series and Cisco PIX 500 Series and Cisco 5500 Series ASAs, IPS, IDP

Juniper Devices: Juniper EX2200,3300,4200 model Switches and MX5, MX10, MX40 model Routers.

OS & Database: Windows, Linux/Unix, IOS, GAiA, Oracle, SQL

Programming: C, Java, Python, Shell

PROFESSIONAL EXPERIENCE:

Confidential, Frisco TX

Network Lead

Responsibilities:

• Lead the team of 6 engineers in integration of client’s network infrastruct3ure with newly acquired company.
• Managed Client’s global network services(GNS) and implemented network management and Firewall services, Wireless, and Load balancing technologies.
• Provided the full design services on ISE, ASA 5500X & Palo Alto Next generation firewall and Prime.
• Design IPv4 enterprisenetworkinfrastructure utilizing Juniper routers like Juniper MX80, MX 480 and MX960.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IPv4 and IPv6 Networking.
• Designed the migration from Cisco Catalyst 6513 switches with Sup 720 to Nexus 7009 with Nexus 7000 Supervisor 2E, F&M line cards in data center with features like VPC and VDC's.
• Planned and deployed of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol (LDP) & MP-BGP.
• Provide Load Balancer expertise on F5 BigIP LTM and GTM devices like 7050 and 2200 and Troubleshoot application slowness.
• Performed Nexus In-Line Service upgrades and deployed advanced nexus features VPC and VDC.
• Deployed Nexus 2248 Fabric Extenders, 5596 series Fabric Interconnect and 7010 with f3 modules, with features like VPC, VDC, and Fabric Path for high availability and redundant server farm environment.
• Set up VSS cluster, ether channel, VLAN trunking, VTP and inter - VLAN routing on Catalyst 6509 and 6513 switches.
• Responsible for the configuration of Cisco router ASR 1k, ISR 44XX, 7000, 3800, 2800 series. Configurations involved routing protocols like OSPF, BGP, and EIGRP.
• Performed Route Filtering and Route Manipulation by applying distribute-lists, route-maps, administrative distance and offset-lists.
• Installing and configuring Palo Alto firewall devices on thenetwork.
• Troubleshooting and configuring access lists on Palo Alto firewall.
• Monitor and manage network devices using Cisco Prime LMS, Cisco Prime Infrastructure manager Tools.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IPv4 and IPv6 Networking.
• Add Trunks, Spanning Tree protocol, Port-Security, VLAN-MAPs and DOT1X for Switches and Wireless.
• Worked on creating EC2, IAM, and CDN tools in AWS cloud environment.
• Troubleshoot issues with Wireless Access points (Cisco 3502) and configure SSID’s on 5520 Wireless LAN Controllers.
• Responsible for Palo Alto firewall management and operations across our corporate networks.
• Responsible for Working with JTAC/CISCO TAC for resolving escalated issues and bug fixes.
• Monitored network traffic and developed capacity-planning initiatives, making necessary recommendations, additional resources or hardware.
• Responsible for writing and executing Test Plan, Desk level procedures and Test Case for smooth network operations.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Involved in switching technology administration such as creation and management of VLANS, Port security, trunking, RPVST+, Inter-VLAN routing, LAN security etc.
• Configured STP, RSTP in the Access Layer Switches (2950, 2960, 3750 and 3550) as a loop prevention mechanism. Configured Port-security, Private-VLANS for maintaining loop free and secure environment.
• Implemented port aggregation & link negotiation using LACP and PAGP.
• Provided proper documentation to maintain accountability and priority of installation during the migration. Ensured proper documentation was delivered to Change Management team, Incident Management.
• Expertise in deploying BGP multi-homed network using AS-Path, MED, etc.
• Experience in working with F5 BIG-IP LTM load balancing technologies.
• Worked on Riverbed network and application performance monitoring tools.
• Worked on ASA Firewall rule management as part of network operations to take care of Firewall ACL requests.
• Implemented Cisco FirePower and integrate FirePOWER with unsupported up and down stream switches so deep understanding of network concepts were required to driver project success
• Involved in the cloud networking like NOC and traffic and capacity planning.
• Used internal network monitoring tools to ensure network connectivity and protocol analysis tools to assess the network issues causing service disruption.
• Used internal network monitoring tools such as Solar Winds, ExtraHop to ensure network connectivity and Protocol analysis tools to assess the network issues causing service disruption.
• Network documentation including Visio Diagrams, Rack Elevation Diagrams, Backbone Fiber/Copper Diagrams, Cabling reference documents, Run books

Confidential, Houston, Texas

Network Engineer

Responsibilities:

• Upgrade Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 3560, 4500 switch configurations.
• Delivered highly specialized support to worldwide customers that run Palo Alto and Cisco ASA in their network infrastructure.
• Analyzed, configured and troubleshoot the LAN/WAN networks. Monitor Network traffic andaccess logs in order to troubleshoot network access issues.
• Planning designing, Installation, configuration and maintenance of 802.11a/b/g Wireless Networks and Aironet Wireless Access points.
• Deployment, configuration, and management of 802.1x solutions to include Cisco Identity Services Engine (ISE), ACS (Radius and TACACS+), and Cisco Prime Infrastructure.
• Working on CISCO Prime and Wireless controller to Manage all WAPs in campuses.
• Assisted in layer 2 issues with the senior engineer as well as monitor the status of the network with ExtraHop for the LAN/WAN and Cisco Prime for the wired and wireless LAN.
• Maintain and configure Cisco core and access layer switches in production environment.
• Addressed technical issues and questions regarding Cisco ISE including troubleshooting and feature changes and modifications.
• Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
• Design and Implement a MPLS network for a new subsidiary with BGP redistribution into OSPF
• Evaluated current network for design flaws and correct as necessary; specifically enabled spanning-tree and removed static routes from OSPF configuration
• Involved in the migration of legacy voice system to Cisco VoIP telephony system.
• Installing and supporting telepresence devices like VCS Expressway.
• Configuring VCS Control using DNS Servers inside the network.
• Maintained Cisco FirePower and adjusted filtering rules as need by individual business units.
• Designed the implementation plan to add the new Cisco Firepower FMC and four of the 4110 modules to improve IPS performance.
• Work with vendors to design a new datacenter solution with Cisco Nexus 9000 switches and ASR Routers support 24x7 operations and answer calls from the customers on network emergencies and resolve issues
• Implemented traffic filters using Standard and Extended Access-lists. Handled Route-map, Re-distribution list & access-list configurations.
• Adding Websites to the URL filtering block list in Bluecoat Proxies and upgrading firmware on the bluecoat proxies.
• Implementing IP Routing protocols EIGRP, OSPF, BGP, RIPv1 and RIPv2.
• Install and manage Cisco Catalyst 3500XL, &2960 series Switches and Cisco 1800, 3900 series routers.
• Perform configuration and maintenance of LAN\WAN technologies such as Ethernet and Fast Ethernet.
• Perform network control with secure DNS, DHCP, and IPAM using Infoblox.
• Manage IP address and DNS using QIP and resolve DNS queries using BIND.
• User management and creating user accounts on Windows Active directory.
• Participating in disaster recovery testing,maintaining system documentation logs and assisting in troubleshooting and diagnosis of system problems.
• Plans, coordinates, implements and supports the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.
• Troubleshoot Frame Relay; T1, T3, IP and OSPF related router and circuit issues.
• Maintaining Macafee Webwasher proxy to control the user traffic.
• Responsible for working with the business and other IT resources to create IAM provisioning roles(RBAC) related to AWS, Oracle, etc.
• Configuring various advanced features (Profiles, monitors, I Rules, Redundancy, SSL/TLS Termination, Persistence, SNATs, HA on F5 BIGIP appliances, SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Worked on F5 LTM series like 7050, 5050, 2200 for several applications and their availability.
• Manage F5 BIG-IP APM, ASM to control traffic and secure web applications from users.
• Created Python script for automating VTP configurations on all Cisco switches.
• Created python script for automating interface turn-ups and sending email alerts for change notification.
• Supported the design, development and implementation of the Riverbed Steelhead and Interceptor architecture for WAN optimization.
• Worked on Riverbed Steelhead-5050, Steelhead-7050 optimizer and Interceptor-9350 appliances
• Responsible for the configuration of Virtual Servers, Nodes, and load balancing Pools and configuring load balancing algorithms.
• Monitor performance of network and servers to identify potential problems and troubleshoot problem areas as needed with Solarwinds.
• Handled Tech Support as it relates to LAN & WAN systems.
• Primarily involved in Troubleshooting issues on a day to day basis & provide solutions that would fix the problems within their Network.
• Use Remedy ticketing system to track and resolve trouble tickets.
• Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic NAT
• Provide assistance to Network Manager and serve as Secondary Network support.
• Design OSPF areas for reliable Access Distribution and for Core IP Routing.

Confidential, Dallas, TX

Network Engineer

Responsibilities:

• In-depth expertise in the implementation of analysis,optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Performed IOS Software upgrades on switches 6500, 3750 and 4500s
• Supported nationwide LAN and Data center infrastructure consisting ofCisco4510, catalyst 6513, Cisco NX 9k.
• Configure and installation Cisco Prime infrastructure to deploy IWAN.
• Configured Cisco Prime for wired and Wireless Infrastructure.
• Assessed client Wireless Security requirements and discovered Infrastructure.
• Installed Cisco Identity Services Engine 1.4 and configured and customized Sponsored Guest Portal.
• Designed and built datacenter, and subsequently migrated datacenter. Supporting the production network.
• Lead a team of 24 Network Engineers covering 1400+ Global Sites and 32 b2b partner connections
• Worked onCiscoLayer 2 switches (spanning tree, VLAN).
• Configuration and troubleshooting of Juniper EX/QFX series and Cisco 2500, 2600, 3000, 7500, 7200 Series routers.
• Design and configuring of OSPF, BGP on ASR Routers and Palo Alto Firewalls.
• Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
• Troubleshooting IOS related bugs based on past history and appropriate release notes.
• Implemented, Monitored and troubleshoot the protocols EIGRP, OSPF, BGP and Static Routes.
• Configuration and Installation of ASA 5520 firewalls.
• NAT, VPN and Traffic filter implementation in Cisco Firewall and IPS.
• Installing and maintaining Proxy client and DTP proxy.
• Access distribution and core layer switching architecture, created VLANS, Firewall Services Module (FWSM) and STP configuration.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500, Checkpoint Firewalls.
• Deployed and Implemented 3rd party security applications using Crossbeam hardware and software Platform.
• Clear understanding of IAM workflow and tools and technology in Identity and Access management area.
• Lead/participate in implementations of IAM related projects/initiatives.
• Assisted in executing the implementation of IAM systems and upgrade to systems as needed.
• Worked on F5 BIG-IP LTM 8900, Citrix Netscalar Configured profiles, provided and ensured high availability.
• Complete basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers.
• Configuring ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Supported the implementation of Gigamon GigaSecure SDP prducts.
• Implemented traffic filters using Standard and Extended Access Control lists. Handled Route-map, Re-distribution list & access-list configurations.
• Perform network control with secure DNS, DHCP, and IPAM using Infoblox.
• Used tools WireShark, Packet Sniffer and Microsoft Network Analyzer for monitoring LAN’s and WAN’s for Network connection and failure issues.
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Installation and configuration of HP MSL, HP Store Once D2D Systems, EMC DataDomain
• Installation of VMware ESX, NSX Servers, vSphere Client and Vcenter Server.
• Create the data store for storing VMs and data.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA & Palo Alto Firewalls, and MPLS switching for stable VPNs.
• Install, configure and maintain several Cisco DMVPN router servicing smaller Sites, Several Edge router running BGP and MPLS to Internet service providers.
• Administering the Microsoft Windows Servers and managing disk space, user profile creation and user rights management.
• Monitored LAN’s and WAN’s for Network connection and failure issues using tools such as solarwinds and Microsoft network Analyzer.
• Take support calls and troubleshoot various Layer 2 & Layer 3 network connectivity issues.
• Work Requests completed using Salesforce Ticketing systems.
• Troubleshoot issues related to VLAN Trunking, NAT inside, ACL, MTU mismatch, EIGRP AS, Switchport Trunk, GRE Tunneling.

Environment: Palo Alto, Cisco ASA 5540/5500, IPS, IDP, Rip, EIGRP, OSPF, BGP, LAN, WAN, HSRP, DMVPN, MPLS, F5 BIG - IP LTM 3900, GTM, MS Visio, PPP, VLAN, VPN.

Confidential

Junior Network Engineer

Responsibilities:

• Extensively performed network configurations, conducted analysis to determine design standards, and leveraged best practices
• Performed IOS Software upgrades on Cisco Routers, Nexus Switches, ASR, ISR routers, Switches 6500, 3750 and 4500s.
• Installed and configured routers, Cisco 2800, 3845 routers and cisco catalyst switches.
• Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring
• Trouble-shooting end-user reported problems, thoroughly and accurately documenting problem in trouble management tool.
• Configuring DNS /NIC card issues and wall jack issues while troubleshooting IP addressing problems.
• Responsible for creating, modifying, removing VLAN configuring as per the need.
• Tracking overall network traffic and capacity issues that are impacting throughput, bandwidth, and quality
• Pinpointing physical network conditions that are contributing to call quality issues
• Applied effectively various routing protocols including EIGRP and OSPF Implemented Redistribution of Routing protocols.
• Solving web related problem including HTTP, HTTPS, DNS, SMTP.
• Involved in migration from EIGRP to OSPF and documented change management procedure for migrating from EIGRP to OSPF network.
• Configured ACLs to prevent access to internal network from unauthorized users on ASA firewalls.
• Troubleshoot intra-net and internet connectivity issues using PING and Traceroute.
• Configured HSRP, Ether Channel in the LAN environment and NAT.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Design and Implement Remote access management and VPN access between the sites.
• Configured T1 interface and Channelized T1 interfaces between Cisco 2800, 2400 and 2500 series routers. Cisco IOS upgrades on routers.
• Configuring ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Adding websites to blocked list on the bluecoat proxies based upon business requirements
• Create end-user VPN accounts with appropriate access. Installed and configured for VPN IPSEC and VPN Dial-upconnections for remote users using VPN Concentrator.
• Installation, Maintenance and Troubleshoot DNS, DHCP Servers and System issues.
• Managed and maintained DNS, DHCP protocols and windows AD Infrastructure.
• Configuration and installation of wireless networks using access points, and Wireless LAN cards of Wi LAN,Dlink, Linksys, and Cisco AG APs.
• Installation, Configuration and maintenance of Network Printers.
• Disaster Recovery, backup and restoring Data using R-TT Disk Imaging Software
• Providing End-user support for configuration and troubleshooting of hardware, software and Windows operating systems related issues, Network connectivity issues, Remote access setup and Management issues, and VPN connection issues.
• Experience in installing SQL 2005 Database server and Internet Information Server (IIS) 6.0 on Windows 2003 andInternet Information Server (IIS) 7.5 on Windows 2008 Server.