PROFESSIONAL SUMMARY:

• Over 8+ years of expertise as Network Engineer in designing, performing Network analysis, troubleshooting, maintaining and supporting complex network systems.
• Havestrong a Experience in Cisco Routing, Switching and Security wif strong Cisco hardware/software.Proficient wif network hardware and technologies including routers, switches, firewalls, Ethernet, Fast Ethernet, Gigabit Ethernet.
• In - depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and valuable experience on IP services.
• Advanced knowledge and indepth understanding of L2/L3 network protocols ( Fabric Path, vPC, VXLAN, Ethernet, RSTP/ MSTP, PAP, CHAP, SNMP, TCP/IP, IPv4/v6 routing, FHRP, HSRP, EIGRP, OSPF, BGP, Multicast, MPLS, QoS).
• Configured Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers & ISR 4431, 3800, 3900,ASR 1002X and 7600,9000, Highly experienced in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 2k, 5k, 7k, 9k series Switches wif strong knowledge on Cisco IOS, NXOS.
• In depth exposure on configuration and troubleshooting of Spanning Tree Protocol(STP), Per VLANSpanning Tree (PVST), Rapid STP (RSTP) and Rapid per VLAN Spanning Tree Protocol (PVST+).
• Extensive experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF and BGP.
• Performed OSPF and BGP protocol administration and used redundancy protocols like HSRP, VRRP. Monitoring MPLS CE (Customer edge router) and BGP sessions.
• Having a very good exposure on Configuring & troubleshooting MPLS VPN circuits, IP VPN, Internet circuits.
• Experience working wif Virtualization and Storage team in Network resource Provisioning. nd configuring IPV4/IPV6 Multicast to support VMware hosts and Storage hosts. Stretching layer 2 VLAN's on OTV across Data centers for V-Motion.
• Proficient in operation of Cisco Nexus 5K switches wif Fabric Extender using VPC, VLAN, STP and LACP.
• Experience in Configuring, upgrading and verifying the NX-OS operation system.
• Assisted in refresh of data center network refresh to Nexus 9k leaf switches.
• Configured Cisco IOS andNXOS devices for various routing and switching tasks, such as a redundant Internet firewall.
• Experience working wif OTV & FCOE on the nexus between the datacenters
• Has a very good exposure on Switched telephone network (PSTN), PPP, ISDN, MPLS, Frame Relay, TCP/IP, and VPN.
• Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Experience in troubleshooting NAT configurations, Access-Lists (ACL), and DNS/DHCP related issues wifin LAN Network.
• Has Strong Knowledge and experience in designing, supporting and troubleshooting of IPSEC VPN's and Remote access SSL VPN'S.
• Hands on Expierence in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Implemented traffic filters on CISCO routes using Standard Access List and Extended Access List.
• Experience in monitoring and troubleshooting of ISE and Cisco MSE.
• Monitored POS and web applications for latency or other connectivity issues - Solar Winds, NetQos, NTop, Splunk.
• Provided engineering support for network infrastructure such as proxies, load balancers, encryption, remote access servers (terminal servers/Citrix servers), Remote client access, Network Admission Control (NAC), VPNs, SSL accelerators, WAN optimizers, DHCP controllers, and performance analyzers).
• Performed IOS upgrades on CISCO routers and Switches.
• Do Has Hands on experience in implementing F5 BIG-IP load balancer
• Experience in implementation of F5 GTM based on topology load balancing methods.Having experience in deploying BIG-IP F5LTM load balancers for Load balancing and traffic management
• Responsible for designing and deploying various network security & High Availability products like Cisco ASA and Checkpoint Firewall products, Palo alto firewalls.
• Expertise in migration of different vendor firewalls Cisco ASA, palo - alto, Fortigate, Checkpoint.
• Involved in the maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Very good understanding on Firewall technologies including general configuration, risk analysis, security policy rules creation and modification of Check Point R65, R70 & R77, Palo Alto and Cisco ASA.
• Installed Operating System and configured kernel parameters forLinux /Unix servers.
• Configured access for all Active directory groups to get network access over WAN connections in Cisco ACS and Windows servers.
• Involved in configuring proxy servers using Bluecoat proxy.
• Experience wif Cisco ONS 15454/NCS and Ciena 6500 optical networking platforms.
• Hands on experience in configuring Cisco Prime 2.1 and WCS wireless platforms.
• Design & administer public wireless using Cisco 5500 WLC and Cisco Prime for network monitoring and configuration.
• Hands on experiences on McAfee EPO wif deploying and removing agent on client’s machine, removing virus and manually updating DAT files.
• Extensive work experience wif Cisco Call Manager Express, CUCM and Cisco Unity Express.
• Managed virtual Cloud lab env using VMware Server and Windows 2008 servers.
• Strong understanding and experience on cloud based services like AWS & Azure platforms.
• Has a strong Knowledge and understanding of Future networking technologies such as SDWAN /SDLAN.

TECHNICAL SKILLS

Network Configuration: Advanced switch/router configuration Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP, IS-IS, RIP

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full)

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Juniper SRX, Palo Alto, Checkpoint, F5 Load Balancer, ASA firewall.

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600.

Security Firewalls: Checkpoint, Palo Alto, Citrix NetScaler App, Fortinet 6TD, FortiGate 3000, 5000,3815, 900, 800, 600 series, Imperva, Bluecoat

Redundancy and management: HSRP, VRRP, GLBP, RPR, NSF/NSR, Wireshark, Solarwinds, SNMP.

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS

Layer 2 technology: VLAN, HSRP, VRRP,GLBP,STP, RSTP, PVST+, MST, PVLAN, Optimizing STP (Port Fast, Uplink Fast, Backbone Fast, Root Guard, BPDU Guard

Layer 3 Switching: CEF, MLS, Ether channel (PAGP & LACP, Load Balancing

Switches: Cisco Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500,Cisco 2948/3560/4500/3560/ 3750/3550/3500/2960, Nexus 5k,7K,9K.

Programming languages: C / C++, Python, Shell Script, SQL,PL/SQL

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Red hat, Opens use, Fedora), WindowsServers 2003/2008Windows MS-Office.VMware ESX 5.1, VMware vSphereclient, Microsoft Azure, office 365.

PROFESSIONAL EXPERIENCE

Confidential, Hanover, NJ

Sr. Network Engineer

Responsibilities:

• Supported and maintained the routing and switching Data Center fabrics according to client needs and developing a plan for software defined networking platforms for use across the Data Centerenvironments.
• Oversee and proactively manage Cisco IOS,NXOS, and Palo Alto PAN-OS software upgrades &Installation, configuration, and testing cisco equipment’s, IOS updates.
• Troubleshooting various LAN/WAN technologies issues for internal and external clients, monitoring network performance, defining network policies and procedures & Resolve customer WAN/LAN/wireless/load balancing networking issues.
• Supported and maintained the routing and switching Data Center fabrics according to client needs and developing a plan for software defined networking platforms for use across the Data Centerenvironments.
• Managing data center and network by using Solar winds, NPM, NTA, NCM and F5 load balancer, citrix load balancer also working on troubleshooting.
• Cisco 7200 and 7600 routers are being used as a provider edge (PE) routers where we configured BGP to connect wif MPLS service provider.
• In the MPLS connectivity ASR 1k and 9K devices are used as Customer Edge(CE) routers and deployed VRF.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Involved in cutting cost by reducing MPLS for certain locations and replacing service wif DMVPNsolutions.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Worked wif Infoblox for secure DNS, DHCP and IPAM.
• Monitoring IP address blocks, Address inventory, DHCP scopes for the inside network infrastructure through IPAM Infoblox.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol
• Involved in IP addresses allocation for all the networking devices including switches, routers, firewalls and F5 load balancers through DNS entry using Infoblox..
• Installed and configured Solarwinds server.
• Implemented the policy rules and DMZ for multiple clients of the state on theFortigate firewall. .
• Deployed the Syslog server at the site to collect logs and monitored them.
• Implementation, maintenance and monitoring of IDS/IPS, WAF, antivirus and Syslog Servers.
• Monitored logs from the firewall and syslog server to know the traffic traversing through the network.
• Troubleshooting and resolve the Splunk- Performance, Log Monitoring Issues,Role Mapping, Dashboard creation, Data models etc. Utilized Riverbed Steelhead, Cisco WAAS and Silver peak appliances.
• Monitored performance and analyzed network irregularities using tools such as Riverbed
• Migration of application, server, service groups from Citrix NetScaler to F5.
• Migrated applications from Brocade Server IronADX to F5 LTM infrastructure..
• Executed various migration/upgrade projects across F5 and hands on wif F5 BIGIP LTMs/EM.
• Configuring STP for switching loop prevention and VLANs for data and voice along wif Configuring port security for users connecting to the switches.
• Monitoring tools implementing configuration and operation (Cacti, Net-Flow, GigamonWindows Apps Health Monitors, HP Open View, and Solar-Winds).
• Successfully installed Palo Alto Next-Generation PA-3060, PA-5060 firewalls to protect Data Center wif the use of IPS feature.
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized
• Ensure dat all system in the domain has McAfee Antivirus Protection Installed.
• Monitoring Network infrastructure using SNMP tools HP NNM, Solar winds and Op-Net.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Vx-LAN, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Should work Network Engineering team wif router configurations for models like Cisco 2911 andASR 9000series routers.
• Worked on bluecoatweb application firewall to improveapplication performance and to perform health checks on HTTP, HTTPS, TCP, ICAP and ICMP in order to monitorWeb content servers.
• Involve in creating a Fortinetfirewallpolicy, Secure Email Gateway and web application firewall.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Worked wif Infoblox for secure DNS, DHCP and IPAM.
• Involved in IP addresses allocation for all the networking devices including switches, routers, firewalls and F5 load balancers through DNS entry using Infoblox.
• Design, install, configure, troubleshoot and maintain varies load balancers including Citrix NetScaler, F5 BIG IP, Riverbed STM.
• Assist in the convergence of an old HP core to the new Cisco Data Center Core Infrastructure.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900..
• Monitored network for optimum traffic distribution and load balancing using Solar winds..
• Validate existing infrastructure and recommend new network designs.
• Created scripts to monitor CPU/Memory on various low end routers in the network.

Environment: Cisco 2948/3560/4500/3560/ 3750/3550/3500/, Cisco 3640/ /3845/3600/2800 routers, Fortinet Firewall, Nexus 7K/5K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP, F5 Load Balancers, Checkpoint, NetFlow, Gigamon.

Confidential, Boston, MA

Sr. Network Security Engineer

Responsibilities:

• Installation and maintenance of network infrastructure and Configure, administer, and document firewall infrastructure, working wif Checkpoint.
• Managed the firewall deployment, rules migrations, and firewall administration and was responsible for converting existing rule base onto new platforms.
• Created and updated jobs by integrating the Python Scripts as windows batch command in Jenkins Server.
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Successfully installed Palo Alto PA-3060 Firewalls to protect Data Center.
• Implemented Positive Enforcement Model wif the halp of Palo Alto Networks.
• Exposure to Wildfire feature of Palo Alto.
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall.
• Researched, designed and replaced aging Checkpoint Firewall architecture wif new next generation Palo Alto appliances serving as Firewalls and URL and application inspection.
• Configured and maintained IPsec and SSL VPN on Palo Alto Firewalls.
• Configuration, support and administration of Palo Alto and Checkpoint and to migrate all gateways and management servers to new hardware and software
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall.
• Researched, designed and replaced aging Checkpoint Firewall architecture wif new next generation Palo Alto appliances serving as Firewalls and URL and application inspection.
• Configured and maintained IPsec and SSL VPN' s on Palo Alto Firewalls.
• Excellent working knowledge, skills and expertise wifFortinet and Palo Alto Firewalls.
• Implement and monitor firewalls (Fortinet and Palo Alto) security policies.
• Assisted on URL web filtering migration from Blue Coat and Websense to Palo Alto firewalls.
• Problem resolution of leveraged and dedicated SIEM Environment.
• Palo Alto design and installation (Application and URL Filtering, Threat Prevention, Data Filtering).
• Successfully achieved main goal of project: Played an Integral role in migrating company's security firewall environment from FortiOS 4.0 firewall platform toFortiGateFG 100D.
• Configuring policies onFortigate and Cisco ASA.
• Implementation experience of VPN technology on Checkpoint SPLAT platform.
• Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 00/3845/3600/2800 routers, Cisco ASA5510, Fortinet Firewall FortiGate 5000 series, Nexus 7K /, ASA, Checkpoint, LAN,OSPF,BGP,RIP,EIGRP Checkpoint, Palo Alto, Netflow, Gigamon.

Confidential, Chicago, IL

Network Administrator/Engineer

Responsibilities:

• Working as Level 3 Network Engineer in On-shore Network Support team which provides Level 3 Network support to Owens-Corning and its various sites Networks across the globe.
• Providing Support and Administration for the entire OC project which includes Cisco routers, switches, and access points.
• Deployed Cisco ACS using TACACS+ for Autantication, Authorization and Accounting of access to network devices
• Providing L3 support for LAN / WAN.
• Installed and configured CSPC software on Windows and Linux platform depending on the needs.
• Maintained End of Life reports for Cisco prime infrastructure.
• Responsible for installing New servers depending on the client needs.
• Hands on experience of large scale access points) wireless deployments including device posturing and profiling wif cisco ISE appliance.
• Use Infoblox to reserve IP address and subnet in the network.
• Hands on experience managing Cisco ISE appliance to support deployment of Network Access Control functionality on LAN switches in an enterprise environment
• Performed WAN Optimizations wif strict QoS policies for converged voice, video and data traffic and integrated wif Net flow tools (OPNET, Manage engine) for the traffic analysis and to optimize the WAN links.
• Planned, designed, installed, configured and maintained fiber optic network, wireless Access points of 802.11 a/b/g/n.
• Configure Multicasting Protocols like IGMP and CGMP.
• Remotely troubleshoot and configure WAN equipment including routers, switches, firewalls, modems (Cisco, Sonic Walls and Juniper)
• Configured Cisco switches for L3 and L2 VLANs wif HSRP, VTP and EIGRP implementations.
• Responsible for voice technology operations based on Cisco VoIP solutions wif specific expertise in several areas including Cisco Call Manager, Unity voicemail, Windows Servers, Linux servers and router/switching/gateway telephony technologies
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Configured switches for LAN/WAN, WLANs, Access list, 802.11a/b/g/n/ac, Cisco PRIME, Cisco (MSE).
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked wif telecom vendors in regards to network fault isolation.
• Working wif Cisco Nexus fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Perform IOS upgrades in Cisco Routers and Switches including Nexus 3K and 5K.
• Dealing wif Cisco ASA 5550 providing advanced application-aware firewall services wif identity-based access control denial of service (DoS) attack protection all built upon market-proven Cisco PIX Security Appliance technology.
• Hands-on experience wif WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality. dis includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.

Environment: In Corporate office architecture wif highly reliable & secured network including Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), ASA (5505, 5510), FortiGate Firewall 80C, 100d, 1240b on Forti OS5.2., Checkpoint, Palo Alto, Load balancers

Confidential

Network Engineer

Responsibilities:

• The client UBS AG, being a very big bank operates from approx. 55 countries across the globe. dis comprises of very large and sophisticated network equipment.
• Investment Banking and Wealth Management are the main forms of business across the world, whereas in SWISS, Retail banking is also performed. Hence, the Network infrastructure of Kensium includes RBO’s, ATM’s as well..
• Using the Netcool/MONDIS infrastructure to monitor all the alerts from various network devices such as Routers, Switches, Firewalls, Load Balancers, Cache Engines, etc. around the Globe.
• Implemented and Maintained Routing Protocols EIGRP and OSPF in the Network.
• Spearheaded meetings & discussions wif team members regarding network optimization and regarding BGP issues..
• Configured Cisco 7204 routers which were also connected to Cisco ASA Firewall (5505) security appliances providing perimeter based firewall security.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls (SPLAT).

Confidential

Network Engineer

Responsibilities:

• Configured and Maintained the Local Network using 2900, 6500 series Switches and 2800 series Routers. Configured and installed the 3600 series Router.
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 wif ASA Firewall 5505.
• Configured Protocol Handling, Object Grouping and NAT on ASA Firewalls (5505).
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA autantication (RADIUS/TACACS+).
• Used load balancers ACE and load balancing technique wif multiple components for efficient performance and to increase reliability through redundancy.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Troubleshoot latency and throughput issues on MPLS and Dedicated Internet Access circuits.
• Configured EIGRP, BGP, and MPLS.
• Configured Firewall, QOS by SDM and provide security by Prefix list, Access- List and by Distribution List..

Environment: Cisco 7200/3845/3600/2800 routers, Routing Protocols EIGRP, OSPF, BGP including VPN, MPLS and Ether Channels.