We provide IT Staff Augmentation Services!

Network Engineer Resume

St Paul, MN

SUMMARY

  • Over 9+ years of experience in Networking, which includes expertise in the areas of Routing, Switching, security and physical layer deploying and troubleshooting.
  • Expert Level Knowledge about TCP/IP and OSI models.
  • Experience in layer - 3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
  • Proficient withTCP/IP and relative OSI models.
  • Expertise inTCP/IP, DNS, DHCP, Content Load Balancing.
  • Expertise in Migration ofFirewallsfrom Nortel Contivity to ASA, ASA to Checkpoint, Checkpoint to PaloAltoand Vice Versa
  • Configure allPaloAltoNetworksFirewallmodels (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scalefirewalldeployments.
  • Experienced with Cisco CRS-X, CRS-3, CRS-1,ASR9K,ASR1K, 12K, 10K, 7500, 7200, 3900, and 3800 routers
  • Hands on experience in Configuration, Troubleshooting and Maintenance ofPaloAltoFirewalls(160+firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
  • Highly advanced knowledge on 802.11x, WLAN design, deployment, encryption types WEP, WPA2-AES-PSK/EAP, 802.1X/RADIUStied into Active Directory.
  • Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
  • In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN technologies and good experience on IP services.
  • Implementation experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
  • Configured MPLS L3 and L2 VPNs for customers.
  • Migration from a SonicWall firewall to an HP firewall, including policies, NATs, andVPNtunnels
  • Implementation traffic filters on Cisco routes using Standard, extended Access list.
  • Network security including NAT/PAT, ACL, VPN Concentrator.
  • Experience withF5load balancers - LTM, GTM series like 6400, 6800.
  • Responsible for Cisco ASA firewall administration across our global networks.
  • Worked on Extensively on Cisco Firewalls, ASA 5500(5510/5540) & Cisco PIX (506E/515E/525/) Series.
  • Worked on VDC, VPC, OTV, and fabric path on of Nexus 7K and 5K.
  • Hands on experience on Amazon Web Services (AWS) in implementing and maintain security groups per VPC.

TECHNICAL SKILLS

Routers and Switches: Cisco Switches (2900, 2924, 2950, 3550, 5500, 6500, 6509, 6513), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206)

Protocols: RIP, RIP2, PPP, OSPF, EIGRP, IS-IS, BGP, SNMP, HTTP, FTP, TFTP, HTTP, DHCP, SMTP, ICMP

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines

LAN Technologies: Ethernet, TCP/IP, CDP, STP, RSTP, VTP, VLAN, Trunks, Ethernet channel, MPLS.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Firewalls: ASA, PIX, SRX, Watch guard, ASDM, CSM, Checkpoint

Operating Systems: Windows 2000/2003/2008 , windows XP/7, LINUX, Redhat, UNIX, Macintosh

Servers: Domain servers, DNS servers, WINS servers, Mail Servers, Proxy Servers, Print Servers, Application servers, FTP Servers

Load balancer: F5 Load Balancer, ACE, LTM & GTM series.

Monitoring Tools: Wireshark, Fiddler, Microsoft Network Monitor, solar winds and some sniffers

Cloud Technologies: Amazon Web Services (AWS)

PROFESSIONAL EXPERIENCE

Network Engineer

Confidential, St Paul, MN

Responsibilities:

  • Handling day to day activities and requests related to network issues obtained by Cherwell ticketing system and Email alerts generated by solar winds for the network outage.
  • Maintaining the Cisco appliances and virtual Checkpoint firewall appliances installed across 169 stores across United States and the data centers connecting them.
  • Managing and changing Checkpoint rules according to the customers’ requests and issues.
  • Make changes and code upgrades to Cisco 2921 routers and Cisco 2960S switches according to the environment changes in the stores.
  • Monitoring all the network activities using Solar winds monitoring tool and resolving issues according to the alerts generated by solar winds.
  • Making changes to the Checkpoint and Cisco ASA, firewall rules according to the ongoing business transitions and upgrades.
  • Monitoring, handling and upgrading Cisco WAPS (wireless access points) according to their range, coverage and issues across each and every store.
  • Managing, installing, troubleshooting and replacing Cisco WAPS (wireless access points) such as AIR-AP37021, AIR-AP1142N, across the stores located in United States.
  • Provisioning the universal Cisco WAPS (Access Points) before being configured and dispatch to the installation sites.
  • Supporting 24/7 round the clock with any network issues and down time and fixing the issue as soon as possible.
  • Communicating with the internet service provider and the store dispatch team for each location, when they have a network outage and fixing the issue as soon as possible.
  • Maintaining and documenting the changes and updating the VISIO diagrams in the network shared folder for further references.

Network Engineer

Confidential, Austin, TX

Responsibilities:

  • Design an available and secure firewall solution for the Cloud program
  • Design, implementation and operational support of routing/switching protocols in complex environments including IS-IS, BGP, OSPF, EIGRP, Spanning Tree
  • Migration on physical environment to cloud environment, Amazon web services (AWS) environment.
  • Technical support to operations team for resolving complex technical issues, on daily Ticket and network issues.
  • Implementing and maintainingthe developing complexnetworkdesign documentation and presentations using VISIO.
  • Monitoring ofnetworkto ensure secure and smooth operations.
  • Configuring and troubleshooting EIGRP, RIP, OSPF, BGP and static routing.
  • Configured Multi-layer Switches with VLAN’s, STP, VTP and Port Security
  • Configure DHCP Scopes for Cisco Endpoints and Troubleshoot issues related to it
  • Configured and troubleshoot link-state protocols such as OSPF in single and multiple areas
  • Configuring BIG-IP-F5 LTM and GTM Load Balancers and troubleshooting Issues in F5 and upgrading and modifying the Virtual Pool, Nodes and Virtual Servers
  • Configured BIG-IP GTM to provide disaster recovery and routing based on service and business plan.
  • Configure the Cisco router with the Dynamic routing protocols (BGP & EIGRP).
  • Configure IP Multicast related configurations on the routers
  • Configured and administrated various Cisco and Nexus Routers and Switches.
  • Install, Upgrade the Nexus OS and Nexus Series Switches
  • Install and Configure GRE Tunnels and Extended the Data Center access to remote sites to access the Data Center
  • Install and Configure Cisco routers with dynamic routing protocols like OSPF and BGP as part of the Data Center build out
  • Troubleshooting of DNS, DHCP and other IP conflict problems
  • Configured ASA 5500 to ensure high-end security on thenetworkwith ACLs and Firewall
  • Experience with Firewall Administration, Rule Analysis, Rule Modification.
  • Introduced new procedures to improveNetworkSecurity
  • Responsibilities includedNetworkSecurity for Internal and ExternalNetworks.
  • Implementing and maintaining security groups creations, processes and documentation in AWS to increase network security and to also provide a streamlined standardization.
  • Performing security group remediation from the old security groups to the new security groups to ease of audit and increase security in AWS.
  • Technologies used include Cisco routers, switches, DNS, DHCP, Security Devices, Cisco UCS, VMWare, and EMC Storage
  • Oversee network and equipment upgrades to include IOS image upgrades, and configuration changes.
  • Troubleshooting of LAN/WAN infrastructure including routing protocols OSPF & BGP
  • Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring
  • Engineered in day-to-day network troubleshooting, image upgrades for routers and switch and hybrid to native conversion of Cisco multilayer switches

Network Engineer

Confidential, Indianapolis, IN

Responsibilities:

  • Migration from a SonicWall firewall to an HP firewall, including policies, NATs, andVPNtunnels
  • Exposure to wild fire feature ofPaloAlto.
  • Good knowledge on security protocols, TACACS+ and RADIUS.
  • Expertise inTCP/IP, DNS, DHCP, Content Load Balancing.
  • Configuring and maintaining F5 SSLVPNandnetworkaccess and Single Sign-On (SSO) for SAML resources.
  • Configure allPaloAltoNetworksFirewallmodels (PA-2k, PA-3k, PA-5k etc.) as well as a centralized
  • Configured and managednetworkdevices with TACACS+ for access control with Cisco ACS.
  • Configuring, Administering and troubleshooting the Checkpoint andASAfirewall.
  • Configure LTM system/F5 Load balancers
  • Configuration changes to F5 GTM devices
  • Configure and troubleshoot Remote access and site to site-in Checkpoint &ASAfirewalls
  • Configured monitor tools on BIG IP load balancers and monitored the packet flow using the monitor tool.
  • Trouble shootingVPNand Firewalls, Support SSL, wireless, Meraki Guest Wi-Fi, Cisco ISE, Lan-to-Lans, virtual.
  • Troubleshot VLANs, VDCs, Ports Virtual port channel (vPC) and configuration on Nexus 7k
  • Implementing APM on F5 for best security and securing the data center.
  • IP address management, IP Sub netting, VLSM,TCP/IP, NAT, DHCP, DNS, racking, stacking and Data Centre concepts.
  • Experienced with Cisco CRS-X, CRS-3, CRS-1,ASR9K,ASR1K, 12K, 10K, 7500, 7200, 3900, and 3800 routers
  • Management system (Panorama) to manage large scalefirewalldeployments.
  • PaloAltodesign and installation (Application and URL filtering, Threat Prevention, Data Filtering)
  • Successfully installedPaloAltoPA 3060firewallsto protects Data Center and provided L3 support for routers/switches/firewalls
  • Highly advanced knowledge on 802.11x, WLAN design, deployment, encryption types WEP, WPA2-AES-PSK/EAP, 802.1X/RADIUStied into Active Directory.
  • Proficient in design, implementation, management and troubleshooting of Check Pointfirewalls, Cisco PIX, NetScreenFirewalls, Check Point Provider-1 / VSX, Nokia VPN,PaloAltoIDS, Foundry / F5 Load Balancers, and Blue Coat Packet Shaper systems.
  • Experience with converting 6500 to Cisco Nexus in the data center environment.
  • Maintain and troubleshoot switch applications andNetworkconnectivity including DNS, DHCP, LAN andTCP/IP issues.

Network Engineer

Confidential, Fairfield CT

Responsibilities:

  • Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
  • Configuration and extension of VLAN from one network segment to other segment between Different
  • Configuring/Troubleshoot issues with the following types of routers Cisco (1700, 2600 and 3500 series), to
  • Configuration of EIGRP and OSPF as interior gateway protocol with route filtering and route
  • Redistribution, Installed and Maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP
  • Configuring and troubleshooting perimeter security devices such as Checkpoint NGX R77 Gaia, Provider-
  • 1/MDM, Secure Platform,PaloAltoand ASAFirewalls.
  • Managednetworksecurity processes usingASAfirewalls
  • Monitoring Traffic and Connections in Checkpoint andASAFirewall
  • Supported core network consisting of Cisco 7200 series routers running multi area OSPF
  • Extensive experience in configuring and implementing OSPF, BGP and MP-BGP
  • Hand on experience on configuration and implementation of various Cisco Routers & L2/L3 Switches.
  • Worked on Infrastructure Oriented project migrations
  • Securednetworkaccess with Cisco Secure (RADIUS/ TACACS+)
  • Setting up VLANS and configuring ISL trunk on Fast-Ethernetchannel betweenSwitches.
  • Working Troubleshooting with theTCPdumps and wire shark.
  • PaloAltodesign and installation (Application and URL filtering, Threat Prevention, Data Filtering)
  • Implemented Positive Enforcement Model with the help ofPaloAltoNetworks.
  • Build IT security infrastructure including Checkpoint, Juniper andPaloAltofirewalls
  • Worked on High availabilitynetworkslikeASR9K, Cisco Nexus devices such as 2k, 5k.7k, 9k.
  • Senior Engineer in charge of data center migration upgrading End of Life Cisco IOS routers to Cisco ASRIOS-XE/XR.
  • Replaced aging Checkpointfirewallarchitecture with next generationPaloAltoappliances serving as firewallsand URL and application inspection
  • Expert in usage ofPaloAltoNetworksfor implementation of Positive Enforcement Model
  • Comprehensive understanding of OSI Model,TCP/IP protocol suite (IP, ARP, ICMP,TCP, UDP, SNMP, FTP, TFTP).
  • Substantial lab testing & validation prior to implementation of Nexus 7K, 5K & 2K connecting to blade servers
  • Involved in the modification and removal of BGP from the MPLS routers.
  • Also prepared documentation for various Vlans and Voice subnetworks and worked on Visio for the same. vendor switches (Cisco, Juniper)
  • Replace branch hardware with new 2851 routers and 2960 switches.

Network Engineer

Confidential, Township, NJ

Responsibilities:

  • Migration ofFirewallsfrom Nortel Contivity to ASA, ASA to Checkpoint, Checkpoint to PaloAltoand Vice Versa
  • Designed and installedEthernet, Coax, and HDMI cables.
  • Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
  • Configured IP access filter policies.
  • Configured Multicasting protocol for IPTV and Multicast over GRE tunnels.
  • Configured and maintained ISDN and persistent dial IPVPNconnections.
  • Configuration, Troubleshooting and Maintenance ofPaloAltoFirewalls(160+firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
  • ConfigureVPNtunnels between various vendor's hardware and software firewalls
  • Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
  • Configured Routing protocols such as OSPF and policy based routing.
  • Configuring Cisco IOS AAA with TACACS+ andRADIUSand Local privilege authorization fallback
  • Configuration and troubleshooting link state protocols like OSPF in multiple areas.
  • Implemented security policies using ACL, Firewall,IPSEC, SSL, and VPN.
  • Implemented Positive Enforcement Model with the help ofPaloAltoNetworks
  • Manage project task to migrate from CiscoASAfirewallsto Check Pointfirewalls
  • Team member of Configuration ofCisco7206 router and Configuration of Catalyst switches.
  • Supported on CiscoNexus 5000and Nexus7000 SeriesSwitch fabric links.
  • Managed TACACS+, SevOne and Cisco Works for Xerox Infrastructure.
  • Expert in usage ofPaloAltoNetworksfor implementation of Positive Enforcement Model
  • Securednetworkaccess using Cisco Secure (RADIUS/TACACS+)
  • Create and testCisco router and switching operations using OSPF routing protocol.
  • Installing and Powering F5,Palo-AltoFirewall, Juniper SSL VPN, and Isilon server equipments
  • Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
  • To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
  • Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing and deploying emergency hot fixes within a global network

Network Engineer

Confidential

Responsibilities:

  • Researched, designed, and replaced aging Checkpointfirewallarchitecture with new next generation PaloAltoappliances serving asfirewallsand URL and application inspection.
  • Migration of RIP V2 to OSPF, BGP routing protocols.
  • Configuring rules and maintainingPaloAltofirewallsand analysis offirewalllogs using various tools
  • Configured and troubleshoot OSPF and EIGRP.
  • ConfigureVPNtunnels between customer sites.
  • Configured MPLS L3 and L2 VPNs for customers.
  • Configuring rules and MaintainingPaloAltoFirewalls& Analysis offirewalllogs
  • Implemented ISL and 802.1Q for communicating through VTP.
  • Deploying and decommission of VLANs on coreASR9K, Nexus 7K, 5K and its downstream devices.
  • ConfiguredRADIUSserver.
  • Implemented Zone Based Firewalling and Security Rules on thePaloAltoFirewall
  • Worked onCiscoLayer 2 switches (spanning tree, VLAN).
  • WAN Infrastructure running OSPF & BGP as core routing protocol.
  • Support various Routers like 2600/3600/7200 series routers.
  • Setting up VLANS and configuring ISL trunk on Fast-Ethernetchannel betweenswitches
  • Worked with TACACS+ and RADIUS servers for managing user authentication.
  • Tested authentication in OSPF and BGP.
  • NetworkMonitoring using tools likeCiscoWorks 2000.
  • Worked on configuration and maintenance of Webtops and Portal Access, and F5 SSLVPNand networkaccess.
  • Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
  • Performed and technically documented various test results on the lab tests conducted.
  • Planning and configuring the entire IP addressing plan for the clients'network.
  • Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
  • In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
  • WAN Infrastructure running OSPF as a core routing protocol.
  • Support various Series ofCiscoRouters like 7200/7600 series.
  • Support Complex 0 Series Switches.

Jr. Network Engineer

Confidential

Responsibilities:

  • Designing solutions for frozen requirements using Cisco Routers and Switches
  • Configured EIGRP for Lab Environment.
  • Configured Cisco Catalyst 6500, 4500, 3850, 3750, 2960 switches and Cisco 3600, 7200 &ASR1K & 9k Routers for an enterprisenetwork
  • Experienced in handling and installingPaloAltoFirewalls.
  • Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
  • PaloAltodesign and installation for Application and URL filtering
  • Configured and troubleshotPaloAltofirewallusing CLI.
  • Installation ofPaloAlto(Application and URL filtering, Threat Prevention, Data Filtering)
  • Working with Client teams to find out requirements for their Network Requirements.
  • Working knowledge of Firewall, LDAP, AAA, TACACS/RADIUS, and IPSEC.
  • Deploying the network infrastructure to meet the requirements
  • Successfully installedPaloAltoPA-3060firewallsto protects Data Center
  • Create and test Cisco router and switching operations using OSPF routing protocol,ASAFirewalls, and MPLS switching for stable VPNs.
  • Support customer with the configuration and maintenance of PIX andASAfirewallsystems
  • Created VLAN and Inter-Vlan routing with Multilayer Switching.
  • Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades.)
  • Providing technical consultancy for better application response using QoS.
  • Monitor performance of network and servers to identify potential problems and bottleneck.
  • Performed RIP, OSPF, BGP EIGRP routing protocol administration.
  • Installed wireless access points (WAP) at various locations in the company.
  • Build and maintain Visio documentations for Clients.

Hire Now