SUMMARY:

• I have 5 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN communication systems.
• Experience in Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point Firewall Smart Domain Manager command line GUI and Cisco ASA.
• Hands-on Experience in configuring and troubleshooting firewalls like Palo Alto, Cisco ASA, Checkpoint, Juniper SRX etc.
• Experience in managing large scale firewall deployments using centralized management system, Panorama.
• Designed and implemented enterprise SIEM systems: centralized logging, NIDS, alerting and monitoring, compliance reporting, based on QRadar 7.0 SIEM.
• Worked on network security design and installation using Palo Alto Firewall (Application and URL filtering, Threat Prevention, Data Filtering).
• Extensively worked on Algosec for firewall rule analysis and firewall rules cleanup.
• Worked on Load Balancer F5 LTM, GTM for load balancing critical corporate applications.
• Sound Knowledge and Experience of Server Maintenance, including establishing Security Protocols, Configuring Network, and Troubleshooting Problems
• Have experience in DHCP DNS, NIS, NFS, SMTP, IMAP, ODBC, FTP, TCP/IP, LAN, WAN, LDAP, RDP, security management and system troubleshooting skills
• Have experience in Deploying Wireless Network Infrastructure and Wireless Survey Best Practices
• Have good knowledge with cloud-based IaaS platforms: Google Cloud Platform, Azure, Digital Ocean, OpenStack and AWS.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Have In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIP, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.
• Have experience in Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS.
• Experience in Checkpoint IP Appliances R65, R70, R75, R77 Gaia& Cisco ASA Firewalls.
• Proficient in configuration of routing protocols like OSPF and BGP.
• Management and monitoring by use of SSH, Syslog, SNMP, NTP and provided tier-3 support.
• Good knowledge of various Unix/ Linux (RedHat, kali and Ubuntu).
• Experience in cloud computing, VMware.
• Experience working on Linux, Centos, shell scripting (VIM, VI, nano).

TECHNICAL SKILLS:

Firewalls: Palo Alto, Check Point, Juniper SRX, Cisco ASA.

Networking Protocols and Tools: TCP/IP, HTTP/HTTPS, SSH, SSL, DNS, SNMP Routers, Switches

Load Balancers: F5 GTM, LTM Series.

Languages/Tools: C, VBScript, Visual Studio 2015, Visio, DIA, Android studio, SQL, Python, Web Development (HTML5, CSS, JavaScript) Cisco packet tracer.

Operating System: Windows 7/8/10, UNIX, Linux (kali, ubuntu).

WORK EXPERIENCE:

Network Security Engineer

Confidential, CA

Responsibilities:

• Installation, Configuring &Troubleshooting the security related issues on Palo Alto.
• Configured and Maintained rules on Palo Alto Firewalls (PA-220, PA3060) & Analysis of firewall logs using various tools
• Manage the day-to-day log collection activities of source devices that send log data to SIEM QRadar.
• Implemented various security profiles on Palo Alto using Application filtering, URL filtering, Threat Prevention and Data Filtering.
• Software Upgrade for Palo Alto Devices and Integrating of Active Directory/LDAP with Palo Alto Next Generation firewalls.
• Configuration of IPsec VPN and design connection, IPsec tunnel configuration, encryption and integrity of data on Palo Alto.
• Provide solutions to Tier 1/2 escalated issues and tickets.
• Implementation and configuration of F5 load balancers.
• Configuring and resolving various OSPF issues in an OSPF multi area environment,
• Remotely controlling Palo Alto firewalls in large scale production environments.
• Configuring and installing enterprise SIEM systems, centralized logging, NIDS, alerting and monitoring, compliance reporting, based on QRadar 7.0 SIEM.
• Access control for browsing, Authentication for all hits from browsing on proxy servers, maintenance of proxy logs for forensic purpose
• Debug firewall process activity in a shell command format.
• Support end to end Security devices checkpoint & Cisco ASA.
• Working configuration of new Vlans and extension of existing Vlans on/to the necessary equipment to have connectivity between two different data centers.

Jr. Network Engineer

Confidential

Responsibilities:

• Configuring, maintaining Cisco Routers for OSPF, BGP.
• Worked on HSRP for hop redundancy and load balancing.
• Provided port binding, port security and router redundancy through HSRP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Provided testing for network connectivity before and after install/upgrade.
• Involved in large firewall configuration, deployments, and implantation rollouts for several company’s security needs including SSL VPN tunnels.
• Administering multiple Firewall of Juniper SRX and Netscreen in a managed distributed environment. Fulfilling routine change requests of Net Screen OS Firewall and resolving trouble tickets, maintain and monitoring firewalls.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security.
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation.
• Routing protocols OSPF, RIP & BGP.
• Implementation of name resolution using WINS & DNS in TCP/IP environment.
• Configured FTP server for inside/outside users & vendors.

Network Engineer Intern

Confidential

Responsibilities:

• Configured and aided in troubleshooting several networking issues including OSPF, EIGRP, BGP routing issues.
• Used DHCP to automatically assign reusable IP addresses.
• Performed LAN operations and troubleshooting which involves working on VLANs, Trucking, STP, RSTP, port aggregation &, link negotiation.
• Actively participated in configuring, implementing and troubleshooting of Cisco Routers, Switches while monitoring Cisco Routers and Cisco Switches.
• Worked as point of escalation for operations team at Level 3 support on network related issues both during normal operations as well as during major project role outs.
• Configured and provided support for S2S IPsec tunnels as well as remote users Assisting in troubleshooting of LAN\WAN issues.
• Tasks included network layer configuration of IP addressing using FLSM, VLSM for all applications and servers in company environment.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Upgrading the IOS of the devices.