SUMMARY

• Experience in Network engineering with Cisco Certified Network Professional andPalo Altocertified network Security Engineer performing Network analysis,design,Implementing, capacity planning with a focus on performance tuning and support of large Enterprise Networks.
• Implementation, Configuration and Support of Checkpoint (NGX R65, R70, R71, R75 and R77), Juniper Firewalls (SRX5400, SRX5600and SRX5800), Cisco Firewalls (ASA 5505, 5506 - X, 5585),Palo AltoNetworksFirewallmodels (PA-2k, PA-3kand PA-5 k).
• Hands-on Experience withCISCONexus 9000, Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
• Extensive hands-on experience with complex routed LAN andWANnetworks,routers and switches
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers
• Experienced in usingiRuleandMikrotikplatforms onF5.
• Experience in the setup of Access-Lists, and RIP, EIGRP, and tunnel installations.
• Experience of routing protocols like EIGRP, OSPF, RIP, and BGP
• Enhanced level of experience with OSPF, BGP, and TCP/IP
• Worked on Cisco 7200,7300,3800,3900,3600, 2800, 2600, 1800 series Routers andCisco 2900, 3500,3850,4500,4900,5500, series switches.
• Proficiency in configuration of VLAN setup on variousCiscoRouters and Switches
• ConfigurePalo AltoNetworksFirewallmodels (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to managelarge-scalefirewalldeployments.
• Network monitoring and debugging tools:Netscout, Wireshark, Nagios, SiteScope, Wily, AppDynamics and ELK.
• Participate in planning, implementation, andgrowthof our customer's Amazon Web Services (AWS) foundational footprint.
• Designing, testing and deploying Proof of Concepts forSilver PeakSD-WANtechnology using multiple MPLS carriers and internet breakout. Knowledge on traffic shaping, underlay and overlay concepts.
• Implemented Cisco Application Centric Infrastructure (ACI) as a solution for data centers using a Spine and Leaf architecture.
• Worked on various network projects involving Cisco Routers-ASR1000/9000, Switches-Nexus 7K/5K/2K.
• Hands-on experience in using network monitoring toolSolarWindsOrion.
• Experience with BIG-IPF5load balancers, version 9.x, 10.x, 11.x,CitixNetscalers and Web Accelerators.
• Experience with CiscoMerakiwireless managed network infrastructure.Deployed and configured devices usingMerakidashboard.
• Planned and implemented new infrastructure in Data Center Implementing Security Solutions usingPalo AltoPa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Implemented and Configured Confidential NetworksFirewallmodels and centralized management system Panorama to manage large scalefirewalldeployments. Implemented Zone BasedFirewalland Security Rules on the ConfidentialFirewall.
• Optimize and virtualizeSD-Wanservice providers using viaSilver peak,Riverbed.
• Manages, maintains and support Checkpoint Firewalls, IPS, IDS, and Endpoint servers, PKI and network security Infrastructure.
• Good Understanding of Python scripts for system automation, monitoring and security reporting. Maintain existing Perl scripts and migration existing Perl scripts to Python.
• Expertise in installing, configuring and troubleshooting Juniper Routers (J, M and MX-series)
• Designed, configured and administratedSilver-PeakWANOptimization devices.
• Experience with Blue Coat URL filtering with white listing and black listing URL, creating rules for content filtering.
• Experience with Cisco Networking, VoIP, TDM Gateways, SIP, CUBEs, UC Platforms 10.X and up, CUCM, CUC, PCCE, 3rd Party VoIP.
• Strong knowledge of various network platforms such as Cisco, Arista,Palo AltoNetworks, Juniper and Load balancer.
• Experience on advancedPalo AltoFirewallfeatures like URL filtering, User-ID, App-ID, Content-ID on both inbound and outbound traffic andPalo AltoPanoramaM-500 centralized Management appliance.
• Experienceinworking with Infoblox in managing, control and optimize DNS, DHCP and IPAM.
• Experience in installing, configuring and troubleshooting ofFortinetFirewall,Check Point,Palo AltoandCisco AS

TECHNICAL SKILLS

Hardware: Cisco Nexus Switches Nexus 9K/7K/5K/3K/2K, Catalyst Switches 6500/4500/3850/3750 , Routers 7600/7200/4000/2900/2800 , ASA 5555, Palo Alto 5000 firewalls, Cisco MDS 9000 and F5 BIG-IP Load Balancer VIPRION 2400/2200, Viptela - vEdges (5000/2000/1000 ), cEdges- All Cisco IOS-XE Cisco devices and Cisco Wireless Controller 5520 & Access Points (3700/3600).

Routing Protocols: OSPF, EIGRP, BGP, Static route, Policy Based Routing, Multicast, Redistribution LAN/WAN Protocols IEEE 802.1Q, STP, MST, MPLS, VPN, PPP, CHAP, Ether channel, VLAN, PVLAN, Port security, Ethernet (Gigabit and Fast Ethernet).

Network Security: IPsec/VPN, NAT, PAT, Cisco- AAA, Cisco ISE, Aruba-Clear Pass, ASA, Checkpoint & Palo Alto Firewalls.

SDWAN: Cisco Meraki MX 100, MX450.

CLOUD: AWS, Azure, GCP

Operating Systems: Windows 10, Windows 2000, Windows Server 2003/2008, Linux - Ubuntu LTS 16.04.

Ticketing Tools: BMC Remedy, Service Now.

PROFESSIONAL EXPERIENCE

Confidential, Herndon, VA

Sr. Network Engineer

Responsibilities:

• Troubleshooting issue related with OSPF, BGP and IPS link flap related issue.
• Troubleshooting the issue related with S2S VPN on AWS, GCP clouds.
• Working on migration of MPLS to SDWAN solution for remotes locations.
• Managing and updating SOP, Run Book, HLD, LLD, cab meeting & change MGMT.
• Lead implementation of remote sites and Data Centre switches Cisco 4700, 6509 Nexus 7K, 5K switches and Fibre extenders.
• Troubleshooting the issue related with Routing Protocols, VLAN, VXLAN and firewall rules (Palo alto- 5020 B, Cisco ASA- 5555).
• Managing, monitoring and /i-88exporting reports from load balancer Like F5.
• Proving L2/L3 Network support in team and working on escalated issue.
• Working on ticketing tool like Remedy and monitoring system like Solarwinds.
• Scheduling the backup of critical network devices using NCM-Solarwinds.

Confidential, Minneapolis, MN

Network Engineer

Responsibilities:

• Designing (HLD), Analysing, implementing, Solutions for complex multi-layer routing/Switching environment for different enterprises.
• Proving L2/L3 Network support in team and working on escalated issue.
• Responsible for designing and configuring BGP, OSPF, MPLS, GRE over IPSec, HSRP, VRRP for remote locations and Data Centre devices.
• Writing LAB Procedure like FAT, SAT, SIT and UAT for Government Projects.
• Hands on updating signature of IPS & IDS and other network defense, Building HLD, LLD Design, resolving Escalated issue with ISP or L2 engineers. Following process of ITL and six sigmas for Change Mgmt. and Process Mgmt. at On Deck Capital
• Experience with forensic investigation of network breaches, participate in solution architecture meetings design meetings, RUN Book, SOP and SIP. Working as technical lead on complex security network troubleshooting issues and incoming design and architecture requests.
• Hands on experience with BIG-IP environment utilizing two or more of the following: GTM, LTM, APM or ASM.
• Dealt with creating VIP pools, nodes and created custom “iRules” for the virtual servers like cookie persistency and redirection of URL on F5 ASM cookies issues and configures ASM policies.
• Installed and configured Big IP i7000, i5000 and i-4000 ADC. Managing Upgrades for all devices across DC and involved in firmware hotfix 12.0.0 to 13.0.0.

Confidential, Plano, TX

NetworkEngineer/security Engineer

Responsibilities:

• Support routing protocol operation (OSPF and BGP), routing policies at BGP peering points, VPNs and the associated tunneling technologies (L2TP, MPLS, etc.), switching, Spanning Tree, VXLAN-EVPN and other switching technology.
• Maintain developed network systems by escalating any issues pertaining to networking: installation, configuration and administration of LANs, WAN, Cisco Nexus 5000/7000/9000.
• Working on technologies Like MPLS services, BFD deployment, BGP, BGP path selection criteria, OSPF.
• Experience working with network monitoring applications. (Solarwinds, Nagios, etc.)
• Scheduling meeting and driving P1 & P2 conference calls. Creating PIR and providing RCA for escalated issue.
• Producing documents for Test cases, RCA, Knowledge data base(KDB), File tracker, MOM - tracking.
• Building ESxi 6.7 for Cisco prime installation and windows server 2006 for User Desktop.
• Working on QOS for all network edge devices, configuring Firewall like Palo Alto, ASA and Fortinet.
• Automating Day to Day Troubleshooting of Network Related Issues by Using Python Script and Modules Telnet,Netmiko, NAPALM and All Network Related Models.
• Configuring IPS policies on the checkpoint, cisco firepower management centres.
• Configured andmanaged cloud-based wireless network.
• Installed, Configuration and managed CiscoMerakiSwitch Series MS LP, MS LP, MS FP andMerakiAP.
• DesignCisco,Meraki,and Aruba WLAN/Wi-Fiinfrastructures.
• Responsible for entire company network infrastructure that includes Cisco Switches, Routers, Firewalls, Access Points, Servers and PBX.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers and Cisco ASR9K routers
• Hands on experience in implementation and deploying BIG-IPF5LTM load balancers for load balancing and network traffic management for business applications.
• Configuring and troubleshooting on Bluecoat Proxy, Pulse VPN Devices, Firewalls, McAfee Email Gateways, Bluecoat Reporter and Director.
• Proficient withF5LTM and Cisco CSM load balancer in-between the servers inside the server farm and DMZ.

Confidential

Network Engineer

Responsibilities:

• Experience in configuringF5Load balancers.
• Network Monitoring and creating Ticket for Router and switches.
• Basic troubleshooting of routers and switches.
• Involved indesignand implementation of Data Centre Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup.
• Installations, configuration and troubleshooting Cisco Router, Switches, Firewalls, Bluecoat and Wireless Controller.
• Working with FortinetFirewallto create policy, HA and monitor malicious traffic.
• Configured Site-Site VPN onPalo Alto,Checkpoint, Cisco ASA, Juniper SRX andFort iGATE.
• Cisco IOS experience on 3600/7200 class hardware in complexWANenvironment and experience on Cisco OS and IOS on CAT6500 in a complex data centres environment
• Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
• Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router
• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Handled Corporate and Review Audits from the perspective of IT Security for Network Devices and Servers under our control.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).