We provide IT Staff Augmentation Services!

Sr. Network Engineer Resume

Washington, DC

SUMMARY

  • CCNA, CCNP Certified Network Engineer around 9 years of professional experience with Roles including: performing network analysis, design, Implementing, capacity planning with focus on performance tuning and support of large Networks.
  • Hands - on experience on Upgradation of Cisco IOS on different Cisco devices and modules.
  • Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, HSRP, OSPF, BGP and MPLS.
  • Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 9k, 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3600, 3500, 2900 series switches.
  • Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
  • Configuration and troubleshooting of CSM, integration with ASA devices.
  • Experience in managing security policies with Fortigate firewalls, Forti-Explorer.
  • Strong Knowledge in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
  • Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
  • Experience in handling Network Monitoring tools and Packet Capture tools (NAM, New Relic, OPNET, NetFlow, Wireshark, and Sniffer).
  • Worked with HP tools like HPNA, NNMI, Service Request Provider, and HP Service Manager.
  • Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, OSPF, CHAP and SNMP.
  • Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
  • Strong knowledge and experience in implementing, configuring VPN technologies like IPSEC, MPLS.
  • Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
  • Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
  • Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
  • Experience in implementing Next Generation Firewalls (NGFW) such as Bluecoat ProxySG and other vendors such as Palo Alto networks NGFW for URL filtering.
  • Extensive hands on support of F5 Products including AFM, ASM, LTM, GTM, WOM and APM.
  • Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
  • Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP, STUN and TURN.
  • Worked extensively on Palo Alto, Juniper Net screen, Sonic wall and SRX Firewalls.
  • Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
  • Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
  • Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
  • Comprehensive understanding of OSI Model, TCP/IP protocol suite (IP, ARP, ICMP, TCP, UDP, SNMP, FTP, TFTP).
  • Well versed in TCP/IP, DPI (Deep Packet Inspection), P2P (Peer-To-Peer) Detection, with good knowledge of Datacom, Firewall and NAT.
  • Experience with Cisco IOS XR on ASR9000, 12000 series routers.
  • Support to Cisco voice components to include H323 gateways, CUCM 6.x and 8.x, Unity 4.x, Cisco Unity Connections 8.x.
  • Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO.
  • Experience in monitoring and analyzing the load balancing of network traffic using Wire shark and Solarwinds.
  • Troubleshooting complex datacenter environment resolved many critical Severity 1 incidents.

TECHNICAL SKILLS

Cisco Technologies: Cisco IOS, Routers (3900, 2900, 1900, 800), Cisco Catalyst switches (6500-E, 4500, 3700, 3600), Cisco Nexus … 2248, 5010, 7010), Cisco ASA 5500 Series, HP Switches, Cisco WCS and WLC, Cisco Aironet AP, and Net Flow

Network Technologies: EIGRP, BGP, MPLS, QoS, OSPF, Multi-Area OSPF, NBMA, HSRP, GLBP, VRRP, PPP, Network Address Translation (NAT), Port Address Translation (PAT), OSPF Virtual links, RIP, RIPv2, Static Routing, and Stub Routing, VLANs, VLAN Trunking, VTP, STP, SVI, CEF, Ether channel, BPDU, Port fast,, SNMP, SNMPv3, SMTP, CDP, and Cisco Prime Infrastructure.

Security Technologies: RADIUS and NPS (on Windows) authentication, ACL, AAA, IPS/IDS, Blue coat, TACACS+, LDAP, SSH, VPN, Cisco ACS, IPsec, Data Management Zone, Public Key Infrastructure (PKI), Port Security, MAC Address Filtering, IPS/IDS, NPS, SonicWALL Firewall (NSA 2400, Pro 2040, and TZ Series 210, 205, 100), Juniper Net screen 6500, 600, 5400, Checkpoint, Fortinet FortiGate-200B, 300C.

Wireless Technologies: IEEE 802.1x & 802.11 a/b/g/n/ac, WLAN, WLC and LWAPP, WAP, AP, SSIDLWAPP, CSMA/CA, Bluetooth, MMDS, LMDS, CCK, DSSS, Meru, Aruba.

Wireless LAN Controllers: CISCO … 2504 Wireless Controller - Network management device, CISCO AIR-AP1702I-A-WLC 2504 Wireless controller.

Monitoring Tools: Wireshark, Cisco Works, Cisco Security Manager Suite

Enterprise/Server: Windows Server 2012, 2008 R2, and 2003, Exchange … DNS, WINS, LogMeIn Central, GPMC, RDP, Internet Information Services

Connectivity & Hardware: Exchange Server, Blade Servers, DNS Servers, DHCP Servers, Web Servers, RAID systems.

System Administration: Windows … 7, Linux/Unix

Project Management Tools: JIRA, Version One, MS Visio, MS Project

Scripting: Python, Shell

PROFESSIONAL EXPERIENCE

Confidential, Washington, DC

Sr. Network Engineer

Responsibilities:

  • Worked in Configuration and extension of VLAN from one network segment to other segment between different vendor switches (Cisco, Juniper)
  • Installation, Maintenance, Troubleshooting Local and Wide Areas Network by using ISDN, Frame relay, DDR, NAT, DHCP and TCP/IP.
  • Provided Technical support in terms of upgrading, improving and expanding the network.
  • Performed network implementation that includes configuration of routing protocols, leased lines, ISDN lines, VLANs and IOS installations.
  • Worked with the following software, tools and utilities: VSphere, Exchange, Sophos.
  • Used DHCP to automatically assign reusable IP addresses to DHCP clients.
  • Performed the ACL request changes for various clients by collecting source and destination information from them.
  • Troubleshot the network issues onsite and remotely, depending on the severity of the issues.
  • Deployed and decommissioned the VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
  • Had hands-on experience with WAN (ATM/Frame Relay), Routers, Switches and IP addressing.
  • Worked with layer 2 switching technology architecture. Implemented L2 and L3 switching functionality, which includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
  • Supported core network consisting of Cisco 7200 series routers running multi area OSPF.
  • Configured EIGRP and OSPF as interior gateway protocols with route filtering and route redistribution. Troubleshot complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF and BGP.
  • Responsible for all aspects of TCP/IP functionality across multiple enterprise environments.
  • Configured and deployed VPC, OTV, FABRIC PATH between Nexus 7010 and Nexus5596, 5548 switches along with FEX2248
  • Configuration, administration and maintenance of Wireless Access Points (Meraki and Fortinet devices).
  • Design WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities.
  • Conduct online product demonstrations using the Cisco Meraki Cloud Controller web interface via WebEx, answer technical questions, contribute to proposals, analyze clients' needs, and develop technical solutions
  • Configured and installed 3Com, Cisco, and Alcatel (Aruba) access points. Configured and managed Cisco & Aruba wireless controllers.
  • Designed, configured and installed new Cisco ASA 5515. Configured all the security protocols by implementing strict enforced access via ACLs, NAT, Class Maps, Policy Maps, VPN access to business resources.
  • Installed, configured Cisco ASA 5510 Firewalls in DMZ and Disaster recovery
  • Configured Class Maps, Policy Maps and Service Policy for Layer 7, 3 and 4 URL filtering
  • Configured Port based security, implemented 802.1x port based authentication.
  • Configured and Implemented RADIUS for VPN, AAA and controls for all devices
  • Assisted in the development of access-controls, separation of duties, and roles. Conducted technical risk evaluation of hardware, software, and installed systems and networks. Assisted with testing of installed systems to ensure protection strategies are properly implemented and working as intended.
  • Involved in Implementation and Configuration (Profiles, I Rules) of F5 Big-IP C 4400 load balancers
  • Configured ASA 5500-X Series firewalls to provide highly secure and high performance connectivity between the site locations.
  • Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, rules) for managing the traffic and tuning the load on the network servers.
  • Worked on Juniper SRX 5800 firewalls to create policies using J-Web User Interface.
  • Performed Network Address Translation on Cisco ASA 8.2 and 8.3
  • Good experience in Bluecoat proxy SG/AV/ Director / Reporter and bluecoat SSL decryption.
  • Migration of independently managed Bluecoat proxy appliances to Bluecoat director centralized management console.
  • Experience working with JUNOS OS on Juniper Routers and Switches.
  • Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers
  • Participated in on call support in troubleshooting the configuration and installation issues.

Environment: Cisco Routers, Cisco Switches, Nexus 7k/5k/2k Routing protocols, F5, Load Balancer HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA firewall, Load balancer, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, Monitoring tools (PRTG, HP Openview), SIP, RTP, RADIUS, TACACS+, Cisco Wi-Fi technologies, Juniper SRX and MX, ASR 9000, Catalyst 6500, CRS, Cisco ASR Firewall, IPV6, Cisco IP phones

Confidential, Glen Allen, VA

Network Security Engineer

Responsibilities:

  • Installed FireEye tools to provide network security, end point security, detecting threats and preventing from threats.
  • Project work for Riverbed Professional Services that require expertise with the SteelCentral/Opnet network modeling and application performance products.
  • Regular upgrade and maintenance of Juniper Routers PTX, M and MX series and Next Generation Firewalls NGFW, Nexus 9k, 7k, 5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
  • Installed riverbed steelhead appliance to bring WAN optimization to reduce latency, and eliminated unnecessary traffic between application and users, used steel central controller for steelhead to monitor the status of application rollout.
  • Used Data Traffic generators lxia network and Spirent to test the L2/L3 Protocols.
  • Cisco ACI (Application Centric Infrastructure) deployed, monitored, and managed in a way that benefits different teams in the IT organization including SDN Network, Cloud and DevOps, and Security.
  • Provided second/third level technical support for ACI (Application Centric Infrastructure) technologies.
  • Configured the Dynatrace, Nagios XI monitoring tool to monitor routers and switches and customized its dashboard.
  • Planning and deployment of Cisco Identity Service Engine Solution, HP OpenView, Riverbed Opnet, SIEM Qradar, ArcSight, Solarwinds, Rapid7, SNMP, WFM, Infoblox, SOAP, SourceFire, Cisco UCS, Symantec, ACI, ITSM, ITIL, COBIT, ITAR, SAFE, NIST and RMON.
  • Installed and configured switching protocols on Alcatel-Lucent Core switches 9900, 9000E and 6900, and access switches are 6250, 6350, & 6450.
  • Configure and deploy network security i.e. ASA 5508x, Sonic wall and support IDS/IPS SourceFire/ Cisco FireSight management.
  • Design, install and configuration. Involved in large-scale wireless integrations into existing networks. Technologies included Cisco Wireless, Meraki,
  • Windows 2000, 2003 and 2008 maintenance using Shavlik patch management.
  • Accountable for SAN migrations, LUN creations, and masking removal; Citrix XenApp, XenServer, and XenDesktop design and implementation; and Citrix NetScaler configurations and maintenance.
  • Design and implementation of multiple Cisco technologies. Cisco ISE, ISR/ASR Routers, Nexus/Catalyst Switches, Firepower, S2S, ASA Firewalls, VMware/vSphere.
  • Installation and Configuration of Cisco Wireless LAN Controllers on Branch ISR G2 Service Ready Engines (SRE) and Virtual Wireless LAN Controllers for Central Office Infrastructure.
  • Successful configuration of the Infoblox system to meet client needs also calls for an ability to quickly grasp client-specific current solutions for DNS, DHCP, and IPAM (DDI).
  • Deploying Cisco ASA and Bluecoat ProxySG (Web Security Appliance) S170 for URL Filtering Policies.
  • Planned and coordinated wired/wireless installations/augmentations/refreshes including wireless network design, utilization/capacity, involving configuration of Cisco and Aruba switches/wireless controllers and testing of Configurations, Security, Applications and clients across the wireless network.
  • Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
  • Efficient at use of Microsoft Visio/Office as technical documentation and presentation tools.
  • Experience with Synchronous Optical Networking (SONET) over optical fiber.
  • Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
  • Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
  • Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
  • Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
  • Configuring, Installing and troubleshooting on Check Point Devices.
  • Configured IPSEC VPN on SRX 5800 & SRX 5400 firewalls, Policy using IDP.
  • Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
  • Responsible for day to day management of Cisco Devices, Traffic management and monitoring using Dynatrace.
  • Knowledge on multiplex techniques such as DWDM.

Confidential, Bloomington, IL

Network Security Engineer

Responsibilities:

  • Installation and maintenance of network infrastructure and Configure, administer, and document firewall infrastructure. Managed the firewall deployment, rules migrations, and firewall administration and was responsible for converting existing rule base onto new platforms.
  • Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
  • Successfully installed Palo Alto PA-3060 Firewalls to protect Data Center.
  • Implemented Positive Enforcement Model with the help of Palo Alto Networks.
  • Administration and L3 support of our Infoblox DDI deployment and F5 GTM's and configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, and HA) on F5 BIG IP appliances.
  • Installed Solar Winds Network Performance Monitor with emphasis on traffic analysis and virtualization management.
  • Handling of citrix farm creation, zone creation, citrix servers installation, and configuration and managing of citrix servers.
  • Implemented antivirus and web filtering on Juniper SRX 240 at the web server.
  • Deployed the Nexus 9000 Application Virtual switch to support network telemetry applications.
  • Deploy Nexus 9k Core with VPC and 3172 TOR.
  • Incorporate Cisco Nexus 9000 NX-OS to ACI fabric to work in concert with existing Nexus 7000s and ASRs for MPLS.
  • Integration of services appliances to Cisco ACI fabric that includes storage, Load balancers, application delivery controllers and firewalls.
  • Planning and Development of a migration strategy to ACI from the exiting fabric path design
  • Configure IPv6 access lists and assign IPv6 addresses to dual stacked devices as part of an agency-wide migration from IPv4 to IPv6.
  • Strong Knowledge of networking including OSI L2, L3 Routing Protocol, IPv4 and IPv6 L3 Forwarding and NAT.
  • Configured OSPF as the IGP for both intra and inter datacenter connectivity with OTV running over the WAN for extended layer 2 network and used Localized HSRP for gateway redundancy and to aid workload mobility.
  • Configuring and maintaining the Network connectivity to Cloud Providers such as AWS, Azure using AWS VPC, AWS Direct.
  • Experience in migration of data to Cloud environment.
  • Good working knowledge of Azure and AWS
  • Worked with team Managing and configuringArubaWireless controller devices (7210, 7240) and Cisco Access Points.
  • Installation and administration of VMware ESX, ESXi Servers using vCenter Server.
  • Experience with Cisco UCS, Virtual Infra on VMware, Installation, Upgrades and Patching.
  • Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA, Netscreen devices for easier management and common configurations.
  • Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.
  • Implemented F5 hardware refresh of older 3600 hardware to Viprion.
  • Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
  • Used Meraki cloud management for traffic shaping and Configuring, monitoring and troubleshooting AP's.
  • Experience in Handling various trouble tickets, firewall rule changes, assisting other teams to bring the device to production, making DNS changes in InfoBlox and routing changes.
  • Serve as part of a team of network engineers responsible for network upgrade from Cisco Layer 3 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches across multiple sites.
  • Involved in the migration of EIGRP to OSPF in the environment as to support the new implementation of Juniper Devices in the network.
  • Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, from scratch to match the design.

Confidential

Network Support Engineer

Responsibilities:

  • Experience in configuring Site-to-site and remote access VPN solutions.
  • Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
  • Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
  • Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
  • Created data migration strategies to help with completion of migration of data center from one point to another.
  • Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
  • Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
  • Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
  • Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
  • Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HRSRP, EIGRP in unequal cost load balancing to build reliant network.
  • Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP.
  • Troubleshoots in Cisco Aironet 2700 and 600 series.
  • Configured Client VPN and RSA Token ID technologies including Cisco's VPN client via IPSEC.
  • Configuring ACL to allow only authorized users to access the servers.
  • Participated in on call support in troubleshooting the configuration and installation issues.
  • Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
  • Provided technical support in terms of upgrading, improving and expanding the network.
  • Providing technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, F5 Load Balancer Cisco Nexus 5K, Checkpoint, Cisco ASA.

Confidential

Jr. Network Engineer

Responsibilities:

  • Configuring OSPF, RIP, EIGRP protocols and IP sub-netting, Routers and Switches.
  • Supported and maintained networking devices, cabling and standalone systems as part of job duties.
  • Installed and Configured Active Directory in Windows Server 2003 and helped System Admins to set up LAN network in the company.
  • Installed different software on the systems. Install and managing network devices including Hubs, Switches.
  • Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality. This includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
  • Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
  • Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
  • Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches with new Cisco switches.
  • Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
  • Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
  • Build Logical design and Implementation of Wireless Solution.
  • Layer Three routing protocol configurations such as: Directly Connected Interfaces, Static Routing, RIP, RIP2, IGRP, EIGRP, OSPF and other proprietary protocols used by Cisco.

Environment: Cisco catalyst 19xx, 29xx, 29xx series switches and Cisco 25xx, 25xx and 36xx routers, Cisco ASA5510, Checkpoint, F5 Load Balancer Cisco.

Hire Now