We provide IT Staff Augmentation Services!

Network Engineer Resume

San Francisco, CA

PROFESSIONAL SUMMARY:

 
  • CCNA CCNP CERTIFIED professional with over 9 years of experience in experience in network design, implementation, and support. Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
  • Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
  • Good understanding with QoS, PCP and MPLS with over 3+ years of experience.
  • Expertise in configuring and troubleshooting of Palo Alto, Juniper Netscreen& SRX Firewalls and their implementation.
  • Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
  • Working Knowledge of Cisco IOS, Junos & basic Nexus (7K, 5K&2K).
  • Switching tasks include VTP, ISL/ 802.1q, VLAN, Ether Channel, STP and RSTP.
  • Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, NSX,VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
  • In - depth knowledge and hands-on experience in ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
  • Responsible for CheckPoint and Cisco ASA firewall administration across global networks.
  • Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include Integrated, Integrations, configurations, support and maintenance of routers and switches.
  • Good understanding in FabricPath Spine and leaf Topology.
  • Well experienced in configuring HSRP, VRRP,GLBP, ICMP, PPP, PAP, CHAP and SNMP.
  • Experience in installing and configuring DNS, DHCP server
  • Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series), KVM (kernel based virtual machine) switch, Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700)
  • Have good knowledge in virtualization and hypervisors like VMware
  • Have good knowledge in MPLS VPN cloud and can be able to configure CE and PE using protocols like eBGP and iBGP.
  • Have good knowledge in Mpls VPN and can configure VRF’s on Customer Edge routers.
  • Expertise in installing, configuring and troubleshooting Juniper Routers ( J,M and MX-series)
  • Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
  • Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
  • Have experience in Active Directory tools.
  • Experience working with Nexus 7K, 5K and 2K.
  • Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
  • Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
  • Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS
  • Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320,MX,EX,2950,2960,3600,3750,4500,6500,1700,1800,2600 and 3700 series routers & Switches.
  • Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
  • Knowledge on complex Checkpoint, Cisco ASA & Palo Alto firewalls Environment.
  • Proficient in setting up IT infrastructure including wide area networks (WAN) local area networks (LAN), security management systems network device administration.
  • Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
  • Implementation of DHCP, DNS, FTP, TFTP, Frame Relay, MPLS, ATM, software Defined Networking (SDN)
  • Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks
  • IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.
  • Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.

PROFESSIONAL EXPERIENCE:

Confidential, San Francisco, CA

Network Engineer

Responsibilities:

  • Upgraded Juniper EX-4300 Switches, added to the stack and Configured.
  • Configured IPsec tunnels between Juniper SRX550 in San Francisco and Meraki MX64 in Tokyo Japan, removed unused IPsec tunnels to AWS and split AWS IPsec tunnel pairs Between Zayo and Integra (service providers).
  • Designed guest WIFI access on Meraki MR42 APs.
  • Drawn topology diagrams using OmniGraffle.
  • Installed and configured 10 gig Juniper switches for Video editing workgroup.
  • Migrated HP procurve switch configuration to Meraki 320-48p and 225-24p switches.
  • Configured security rules, IPsec VPNs on juniper SSG firewall.
  • Deployed Cisco Firepower 2110 with Firepower Threat Defense that is configured from scratch.
  • Configured and replaced the whole network of datacenter with MS210 48p Poe switches

Confidential, San Jose, CA

Network Security Engineer

Responsibilities:

  • Migrated security rules from JUNOS to PANOS.
  • Responsible for creating security policies including Source NAT, Destination NAT, Bi-directional and U-NAT in Juniper firewalls and Palo Alto firewall through NSM, JUNOS and PANOS respectively using secure change ticketing tool.
  • Responsible for daily on call troubleshooting for layer 2, layer 3 and firewall cases.
  • Handled remedy Incident tickets for break fix issues.
  • Implemented Proxy requests, maintaining Proxy incidents and troubleshooting proxy issues usingWEBSENSE.
  • Also responsible for setting up lab for Palo Alto firewalls including creating templates, device groups, zones etc.
  • Worked on Nexus devices 2k,5k and 7k
  • Implemented port channeling LACP between Palo Alto and other network devices. Also created IPsec VPNs and site-site VPNs.
  • Implemented Routing protocols like EIGRP, OSPF and BGP on Distribution layer switches and internet routers respectively.
  • Involved in documentation and reporting of security policies, process and procedures.
  • Involved in Building and configuring ACI fabric topology from scratch.

Confidential, Phoenix, AZ

Network Engineer

Responsibilities:

  • Designed and implemented various routing protocols such as EIGRP, OSPF and BGPacross networks in multiple locations.
  • Technologies supported includeISDN, Frame Relay, ATM, MPLS, HSRP, NAT, Quality of Service, WLAN and Redistribution.
  • Worked onSpanning tree protocol and different layer 2 technologiesincludes Trunking, STP, RSTP, Post Aggregation and link negotiation.
  • ConfiguredvPC, Fabric path and OTVon Data centerNexus 2k, 5k and 7kdevices.
  • Created VDC’s and vPC‘s and ensure that those vPC’s are formed between VDC’s.
  • Created vPC’s between downstream devices core and aggregation switches and between aggregation and Fabric Interconnect.
  • Worked on troubleshooting the connectivity to servers withfabric extenders.
  • PerformedPort channeling and LACPbetween downstream devices for vPC configuration.
  • Working onF5 BIG-IP LTM and GTM.
  • Designed and implementedCisco Nexus PlatformandCisco UCS.
  • Worked on Cisco Switches for LAN requirements that includes managing VLANs, Port security and troubleshooting LAN issues.
  • ConfiguredPriority Group Activation, Health Monitors and Traffic PersistenceonF5 LTM.
  • Designed and implementedCisco UCSpods in Nexus 7000 and Cisco 6500 platform.
  • Assisted to redesign and implement campus LAN with 6500 platform on Core/Distribution/Access perimeter model on 10G backbone.
  • Gained knowledge inMPLS VPN and Virtual Routing and Forwarding (VRF) and ACI.
  • Configuring ACL’s, NAT and Routes onCisco ASA 5505, 5540 and 5580Firewalls.
  • Configuring Access rules onPalo Alto 3000 and 5000series Firewalls as well as centralized management system (Panorama) to manage large scale firewall deployments.
  • Firewall deployment, rules migration, firewall administration and converting existing rules based on to new Palo Alto next generation firewall platforms.
  • ManagingCisco ASA and Palo Alto firewallsand fail over firewalls for redundancy purposes.
  • Implement and troubleshoot the virtual firewall (Contexts) solution inASA.
  • Troubleshooting VPN related firewall issues and involving layer 2 and layer 3 related issues and resolving them.
  • Performing Migration fromCisco ASA to Palo Alto Firewall.
  • Designing, Planning and Engineering support forIPS.
  • Good knowledge on Cisco Security Manager and Cisco Firepower Management Center.
  • Implemented Firewall Security in compliance withPCIon Cisco ASA.
  • Creating new subnets and configuring routes to reach them and upgrading IOS on Cisco ASA Firewalls.
  • Experience inRADIUS and TACACS
  • Configuration of security policies for security infrastructure using proper change management process.
  • Maintaining corporate firewalls and Analysis of firewall logs usingSecurity Analytics.
  • Knowledge ofMcAfee web gatewaysand other web filtering technologies and giving access to personal email accounts based on Organization’s security policy standard.
  • Providing technical support for service request issues, customer engagement and internal projects.
  • Monitoring performance of network devices usingSpectrum.
  • Implementing Proxy requests, maintaining Proxy incidents and troubleshooting proxy issues usingMcAfee web gateway.
  • Adding external websites to the McAfee Web gateway and blocking them when they categorized as an uncategorized URL.
  • Checking Internet F5 VIP’s security policy usingAppviewX.
  • Documentation and reporting of security policies, process and procedures.
  • Involving troubleshooting network problems using Cisco ASApacket-capture, tracert and Syslog.

Confidential, Lebanon, NJ

Sr. Network Engineer

Responsibilities:

  • Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
  • Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS
  • Configured IPSEC VPN tunneling protocols including NAT, PAT and Access Control Lists.
  • Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
  • Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
  • Experienced in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
  • Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
  • Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
  • Configured CIDR, IP, RIP, PPP, BGP and OSPF routing.
  • Implemented SNMP on Cisco routes to allow for network management. Completed the installation and Configuration of CSU/DSU, T1, T3 & OC3 circuits
  • Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies
  • Configured Juniper MX480s, EX8200s, EX4500s, EX4200s,NSX, from scratch to match design.
  • Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
  • Implemented and used SDM to configure Cisco IOS security features and network connection.
  • Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
  • Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) and etc.
  • Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
  • Datacenter upgrades from C6500s to Nexus 7k/5k/2k, double-VPC between distribution and access, single-VPC to servers
  • Responsible for all routing, switching, VPN, network security, and server load balancing.
  • Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing.
  • Implemented various EX, SRX & J series Juniper devices.
  • Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco ASA firewalls.
  • Very good Experience in using and maintaining various network monitoring tools like Solarwinds, Fluke, plunk.
  • Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
  • Has a good experience working with the Trouble Tickets on F5 Load balancers on LTM module
  • Implementation and maintained intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
  • Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
  • Working knowledge of the UNIX and CLI based command to implement the networking tools.
  • Configured and monitored Firewall logging, DMZ’s and related security policies.
  • Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support of 24*7.
  • Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN
  • Software Defined Networking (SDN)
  • and DMZ and also for special user requests as authorized by management.

Confidential, Providence, RI

Sr. Network Technical Specialist

Responsibilities:

  • Remote infrastructure management of offices in different locations nationwide.
  • Managing Co-location and Datacenter infrastructure in North America.
  • Troubleshooting and escalation management of day-to-day issues for offices.
  • Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
  • Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter. Troubleshooting of CISCO routers like ping, trace route and basic issues.
  • Configuring, testing, troubleshooting multiple vendor device platforms like Cisco routing and switching: Cisco ASR9010, ASR901, ASR903, Catalyst Cisco 7609, 2960, and Juniper routing and switching devices: MX960, MX 480 and SRX5200, ACX2200, NSX, ALU service aggregation router: 7705 SAR 8 and 7750 service router.
  • Ensure connectivity and communication among networks, servers and clients inside and outside department.
  • Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
  • Installed controller and light weight access point coordination with JTAC.
  • Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multilayers Switching.
  • IOS upgrade for Cisco routers & switches.
  • Responsible for DNS, and TCP/IP support.
  • Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
  • Integrated, Integration and trouble-shooting of routing protocols like static and dynamic.
  • Implemented site to site VPN in Juniper SRX as per customer.
  • Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 Big IP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
  • Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
  • Operations and management of company LAN, WAN, and wireless networks, including routers, switches, Access Points, Firewalls and other network i.e. Riverbed, Bluecoat, F5 LTM/GTM.
  • Configure networks to ensure their smooth and reliable operation for fulfilling business objectives and processes.
  • Designed and deployed hosted network andsecurityinfrastructure supporting a single vSphere cloud across two geographically dispersed data centers in 10 days
  • Designed and maintained the VLAN architecture, IP address scheme,securityarchitecture, securitypolicies, OS hardening, ADS architecture, and DNS Name Space across a globally dispersed infrastructure.
  • Procured, installed, configured, and maintained Cisco switches, Cisco routers,ASA/PIX firewalls,CheckpointFirewalls(on Sun Solaris hardware),f5BigIP Load balancers, Nortel VPN Hardware, Avaya Firewall/VPN Hardware, and Dell Windows 2000/2003 Servers.
  • Regular upgrade and maintenance of Infrastructure including Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
  • Monitor network performance and troubleshoot problem areas as needed.
  • Conduct research on network products, services, protocols, and standards to remain abreast of developments in the networking industry.
  • Create and maintain documentation and Visio diagrams as it relates to network configuration, network mapping, processes, and service records.
  • Ensure network connectivity of all servers, workstations, telephony equipment, fax machines, and other network appliances.
  • Improved network capabilities and reliability by evaluating, testing, purchasing, and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet, and wireless technologies
  • Responsible for creating and maintaining Microsoft VISIO diagrams and MS WORD documentation of network systems

Confidential, Scarborough, ME

Network Engineer

Responsibilities:

  • Responsible for Configuring SITE TO SITE VPN on Cisco ASA 5500 series firewall between Head office and Branch office
  • Installation & configuration of Cisco VPN concentrator 3060for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
  • Designed and implemented F5 Big IP load balancers that resulted in improving application performance.
  • Configured Firewall logging, DMZs& related security policies & monitoring
  • Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
  • Performed and technically documented various test results on the lab tests conducted.
  • Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series
  • Worked onCiscoLayer 2 switches (spanning tree, VLAN).
  • WAN Infrastructure running OSPF & BGP as core routing protocol.
  • Support various Routers like 2600/3600/7200 series routers.
  • Configured and InstallF5New Virtual Servers, Profiles, IRules, Pools, Nodes, Generate CSR Certificate, SSL Certificates Etc.,
  • Tested authentication in OSPF and BGP.
  • Actively participated and completed many projects based on MPLS VPN, Internet Solutions for corporate customers in COLT.
  • Responsible for troubleshooting complex networking issues in service provider MPLS & internet
  • Backbone.
  • Hands on experience working on Cisco 7600, 12K, ASR routers & Juniper MX series and Juniper BRAS.
  • Managed the Cisco network infrastructure using Cisco Prime and software Defined Networking SDN
  • Actively participated Implementation and customization of customer network.
  • Designing, Provisioning and Installation of the Customer Sites in Oracle IPSA for MPLS Backbone.
  • Implementation and testing of ISDN BRI/PRI circuits.
  • Responsible to troubleshoot the connectivity between CPE router and the COLT's edge router (SAR).
  • Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and
  • POS controllers for STM1 links.
  • Worked closely with RIR (Regional Internet Registry) to procure PI(Provider Independent) and PA(Provider
  • Aggregately) IP addresses and AS numbers for COLT and customers.
  • DNS Zone administration for 13 countries across EU for COLT customers.
  • Set up DNS Reverse Delegation according to RIPE rules in RIPE Database.

Confidential

Jr. Network Engineer

Responsibilities:

  • Configured protocols ICMP, ICMPv6, ECN, IGMP including IGMP snooping.
  • Configuration and troubleshooting L3 switches with VLAN, STP, SPAN, ETHERCHANNEL, Link Aggregation (802.3ad), SVI, SPAN, CDP, LLDP, UDLD, LST, Multipathing, HSRP, VRRP and GLBP
  • Worked on different networking concepts and routing protocols like BGP, EIGRP, OSPF and other LAN/WAN technologies.
  • Configured EIGRP, BGP, and MPLS.
  • Well Experienced in configuring protocols like HSRP, GLBP, VRRP, ICMP, IGMP and SNMP.
  • Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using WireShark protocol analyzer and recommended solution for better performance
  • Working with Cisco ISE / FWSM
  • Monitor devices in Netcool and Event Manager
  • Implemented Windows NT domain, domain name services, e-mail, Web, and FTP services
  • Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures
  • Perform Firewall OS upgrades using CLI, Splat and Voyager GUI
  • Built and support VRRP / Cluster based HA of Checkpoint firewalls
  • Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks
  • Working experience with A10 and F5 Load Balancer.
  • Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.

Confidential

Technical Network Associate

Responsibilities:

  • Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
  • Maintained the Cisco router as IP Firewall and for NATing.
  • Worked on Windows 2002, Windows 2003 environment.
  • Operations and maintenance of Active Directory, DNS, DHCP and MS exchange.
  • Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
  • Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
  • Installation and maintenance of new network connections for the customers.
  • Configuring all the required devices and equipment for remote vendors at various sites and plants.
  • Installing and maintaining local as well as network printers.
  • Validating existing infrastructure and suggesting new network designs.
  • Installing and maintaining Windows NT Workstations and Windows NT Server.
  • Providing technical support to LAN & WAN systems.
  • Monitoring Memory/CPU on various low end routers in a network.
  • Monitor performance of network and servers to identify potential problems and bottleneck.
  • Performed administrative support for RIP, OSPF routing protocol.
  • Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP, VRRP.
  • Real time monitoring and network management using Cisco Works LMS.
  • Provided technical support on hardware and software related issues to remote production sites.
  • Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.
  • Implemented ISL and 802.1Q for communicating through VTP.
  • Involved in Troubleshooting IP Addressing Issues and Updating IOS Images using TFTP.

Hire Now