Network Security Engineer Resume
Fort Worth, TexaS
SUMMARY
- Network Engineer wif 6+ years of experience in Network designing, Troubleshooting, implementation, deployment and supported production environment
- Worked extensively on Cisco Firewalls, Cisco PIX & ASA … Palo Alto 200 Series.
- Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5585 Firewalls
- Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
- Updated and maintained inventory of all network hardware, Management and Monitoring by use of Secure Shell (SSH), Syslog, SNMP, NTP.
- Designed Cisco Routers, Cisco Switches, Load Balancers and Firewalls wif practical experience
- Configured ACLs, VLSM, NAT, Subnetting, Syslog Server, DHCP Server, DHCP relay on Cisco routers.
- Good noledge of upgrading Cisco IOS - Upgrading hardware and installing new network devices such as routers, switches and firewalls.
- Very good noledge of BGP and MPLS, VLAN.
- Experience on creating images through Docker and deploying them inKubernetesenvironment
- Experience wif how to configJunipervirtual chasses, make IP ranges onJuniperswitches and Help on their more than 15 different side my solving issue through Jira tickets system and halp them troubleshoot issue on.
- Implemented, configured and troubleshoot various Routing Protocols like RIP, EIGRP, OSPF, BGP wif real time hands-on experience.
- Configured 802.1d Spanning Tree Protocol (STP) for loop prevention and VTP for Inter-VLAN Routing.
- Working experience wifJunipernetworking systems, and familiar wif Cisco routers, and switches.
- Experience wifJuniperSRX 240 Firewalls, QFX, MX, EX SERIES
- Experience in configuringJuniperLayer 3 EX4200 & EX3200 switches. Design, implement and administer IPv4/IPv6 enterprise network infrastructure utilizingJuniperrouters
- Implemented various Switching Technologies STP, RSTP, VLAN & VLAN Trunking Protocol (VTP), Inter-VLAN routing, Ether channel using LACP, PAgP along wif Failover Mechanisms such as HSRP & GLBP on Layer 2 Setup.
- Knowledge of encryption, MPLS/VPN and GRE tunnel implementations using Cisco IOS wif DMVPN and IPSEC.
- For security purposes, enabled Authentications such as WPA2, PAP/CHAP, and AAA model for authorization, authentication and accounting purposes.
- Extensively used Route Reflectors, Route Influence by Attributes, Multi homing, Route dampening, and Optimization of BGP.
- Experience in implementing and have noledge in troubleshooting protocols and technologies in: BGP, OSPF, IPv4 and Ethernet.
- Experienced in working on Juniper firewall SRX 240, SRX 550, SRX 650 as well as Juniper MX series routers MX40, MX80, MX105
- Experienced in working on Cisco Catalyst (CAT) … 4500, 6500 series
- Worked on Nexus FEX-2K (2248, 2232), 5K (5548, 5020, 5010) and 7K (7018, 7010) series switches
- Expertise in VPC (Virtual Port Channel), used VDC (Virtual Device Contexts) to enable virtualization and to present teh physical switch as multiple logical devices, Fabric path and OTV configurations.
- Routed Cisco 7600, 7200, 3810, 3925, 2811, 1800 series wif layer 3 routing
- Experience in implementation of Cisco ACS Servers & configuration of TACACS protocols.
- Experience in T1/E1/T3 technologies and different LAN & WAN technologies.
- Implemented traffic filters using Access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
- Expertise in structured cabling, IP address management, Racking, Stacking, UCS management
TECHNICAL SKILLS
Routers: Cisco 1800, 2600, 2800, 2900, 3600, 3600, 3800, 3900, 7200, 7300 series.
Switches: Cisco 3560, 3750, 4500, 4900, 6500 & Nexus 2000, 5000, 6000 and 7000 series.
Switching: VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps
Protocols: TCP/IP, UDP, LAN/WAN, DHCP, DNS, FTP, TFTP, ICMP, SNMP, ARP, SIP, HSRP.
Technologies: GRE, mGRE, ACL, DHCP, DNS, Route map, HSRP, Tunnel.
Security: ACL, NAT/PAT, VPN, SSH, SSL, GRE Tunneling, ASA.
Technology: Ethernet, Frame relay, DSL, ISDN, MPLS.
Tools: Riverbed (OPNET), GNS3, Wireshark, Packet Tracer, PUTTY, MS Visio and SolarWinds.
Operating System: Windows … Server … Cisco IOS, Ubuntu.
Routing: OSPF, BGP (eBGP & iBGP), EIGRP, RIP v1 and v2, Summarization, Redistribution, Static Routing and Dynamic Routing,IPV4, IPV6
PROFESSIONAL EXPERIENCE
Confidential, Fort Worth, Texas
Network Security Engineer
Responsibilities:
- Involved in planning and implementing Firewalls, DNS and other networking equipment.
- Ensuring teh smooth working of network.
- Configuring routing protocols such as RIP, OSPF, EIGRP, MPLS, static routing and policy based routing on cisco routers.
- Changed teh AWS infrastructure Elastic Beanstalk to Docker wifKubernetes
- Migrated REST web services toKubernetescluster on AWS by creating fabric 8 files using YAML and JSON.
- Responsible for deploying web applications packaged inDockercontainers.
- TroubleshootingJuniperRouters, Switches and Firewall.
- Troubleshooting network topologies connectivity, software recovering, virtualization permission control and accessibility issues. Help software QA/Test Engineers and Developers to build network topologies for their regression on demand testbeds of Juniper's products.
- Worked extensively in Configuring, Monitoring and Troubleshooting F5 BIG-IP load balancer and responsible for Cisco ASA firewall administration across global networks.
- Installation and configuration of Nexus 7k, 5k and 2K in Data Center wif concept of VDC, Fabric extender (FEX), VPC and OTV.
- Implementing ether channels wif LACP and PAGP wif troubleshooting of inter-VLAN routing.
- Performed basic security and ACL administration on Juniper SRX firewalls dat includes day to day rule deployment, troubleshooting using data flow analysis and packet capture.
- Setup and Configured Cisco Meraki Switch (MS-250) and Cisco Meraki Wireless (MR-42/52) appliance at local site.
- Deploying teh applications in cloud as a Docker image using Drone pipeline andKubernetes
- Packaged application code in a Docker container image, and run dat on aKubernetescluster.
- Worked on Migration ofJuniperSRX firewalls for isolation of network segments and VPN's, ISIS, Point to point and more.
- Performed troubleshooting on link state protocol like OSPF in single and multiple areas.
- Performed administrative support for RIP, OSPF routing protocols.
- Configured ACLs to allow only authorized users to access service.
- Installed Wireless access points at various locations in teh company.
- Worked on Cisco ASDM for implementing VPN on Cisco ASA firewall.
- Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preempt.
- Involved in designing of LAN (Ethernet) and WAN infrastructure for teh new Data Centre Using MS Visio.
- Experience Branch Relocation: Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect teh circuits. Work wif Carrier to test and turn-up circuits.
- Configured of ACL's in Cisco 5520 ASA firewall for internet Access requests for servers, Protocol Handling, Object Grouping and NAT
- Securer network using AAA (Authentication, Authorization and Accounting).
Confidential
Network Security Engineer
Responsibilities:
- Provide basic technical support on hardware and software.
- Plan and support network and computing infrastructure.
- Creating small LAN network and install, configure network equipment such as router and switches.
- Worked onJuniperMX 480, MX960 network infrastructure utilizingJuniperrouters.
- Worked wif IOS upgrade ofJuniperdevices.
- Configuration of RIP, EIGRP, OSPF routing protocol on routers, switches and small networks.
- Troubleshoot error messages and suggest layer-2 / layer-3 switch configurations.
- Used Layer 2 Cisco's Switching platform noledge (e.g. system architecture, switching and forwarding issues) in Catalyst Switches.
- C6500, C4000, C3000, C2900, and other Layer 2 devices to work wif customers and business units.
- Provided Layer-2 support by troubleshooting issues related to HSRP, VLANs, VTP, STP, RSTP, VRRP and TRUNKING.
- Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
- Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
- Implemented Zone Based Firewalling and Security Rules on teh Palo Alto Firewall.
- Troubleshoot and diagnose customer issues.
- Network and system monitoring.
Environment: Cisco 4900, 4500, 3750, 3700, 2950 Switches, Cisco 7600/7200/3800/2800/2600 Routers, Firewall, Juniper, Palo Alto, Security, LAN, WAN.
Confidential
Network Engineer
Responsibilities:
- Configuration, LAN/WAN, Switch/Routing protocols.
- Troubleshooting complex LAN /WAN infrastructure dat include routing protocols EIGRP, OSPF.
- Configured Access-lists, Distribution-lists, Offset-lists and Route Redistribution.
- Configured Ether channels, Trunks, VLans, HSRP in a LAN environment. Configured STP for loop prevention and VTP for Inter-VLAN Routing.
- Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
- Implemented port aggregation & link negotiation using LACP and PAGP.
- Responsible for performing administration on OSPF routing protocols.
- Implemented route redistribution between OSPF and EIGRP.
- Performed IOS upgrades on various catalyst series switches and maintained latest IOS versions according to company's policy.
- Configured Access List (Standard, Extended, and Named) to allow users all over teh company to access different applications and blocking others.
- Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
- Worked on network-based IT systems such as racking, stacking, and cabling.
Environment: Cisco ASA 5540, BIG-IP LTM 8900, Juniper, LAN, WAN, Ethernet.