SUMMARY

• Experienced and certified network Security Engineer with outstanding noledge, skill and expertise, dedicated and committed to providing excellent network security solutions.
• Innovative and detail oriented with progressive hands - on experience in overall system security to ensure strong business continuity through administration of firewalls, incident response and threat prevention.
• Seeking for a position in a growth oriented organization. Ability to management all phases of installation, configuration and administration of Palo Alto,
• Checkpoint, F5, Fortinet, Cisco Firewall. Extensive experience in troubleshooting VPN, LAN, WAN and IPS/IDS.

TECHNICAL SKILLS

Management of Firewalls: Palo Alto, Checkpoint, Cisco Asa, F5, Fortinet Network technologies and protocols, such as MPLS, VRF, SIP, QoS BGP, OSPF, EIGRP, RIP, VLAN AND Trunk, Wildfire, Wireshark, tcpdump, IDS/IPS, ACL. Good noledge of SIEM and PCI compliance and security network monitoring & management tools such as Splunk, Syslog, Qualys, Algosec, Tufin and Firemon. Building and troubleshooting IPSEC, SSL, VPN, and High Availability(HA) in NGFWs TCP/IP and OSI model, Subnetting, Routing Switching and NAT. Configuration and management of PAN Global Protect, app-ID, User-ID and content-ID

ITSM: ServiceNow, Remedy, Jira.

CLOUD: AWS, Azure

Proxy Tool: Zscaler, WSA

Operating system: Windows, Linux Unix

Servers: DNS Servers, Window Servers, Mail Servers, Proxy Servers Application Service

Routing Protocols: RIP, OSPF EIGRP, BGP, DHCP, SMTP, ICMP

Servers: DNS servers, Window Servers, Mail Servers, Proxy Servers, Application Servers, FTP Servers

Monitoring Tools: IDS/IPS, Solarwinds, splunk, Nessus, Tufin Algosec

PROFESSIONAL EXPERIENCE

Confidential

Snr. Network Security Engineer

Responsibilities:

• Installed, configured, deployed and documented firewall infrastructures.
• Administer and managed over 100 enterprise Palo Alto firewall from panorama M-500 v9.06
• Managed Check Point Firewall, Version R77.30 on Gaia/Splat OS, focusing on security of perimeter enterprise environment.
• Managed day to day firewall operations, implementing firewall rule request, troubleshooting a wide variety of client firewall operations, implementing firewall rule requests, troubleshooting a wide variety of client firewall traffic issues using WEBUI, CLI, GUI Smart Console - Smart View tracker/log.
• Monitored all users/firewall traffic using Smart Console/Smart view monitor and Multi-domain security Management.
• Configured NAT and PAT such as Statics, Source (Hide) and destination NAT policies.
• Created Specific data-traffic using policies for allowing or denying host and or network access between environments and audit existing rules for redundancy.
• Perform system Upgrade, Backup, Update and Restore of Firewall appliances.
• Integrated Checkpoint Security Gateway, Gaia R77.20 with LDAP/Active Directory for identity awareness, user autantication and track user activities.
• Configure troubleshoot and manage HA (cluster) and IPSec, SSL VPN checkpoint for network security and redundancy.
• Perform migration from Cisco AA to Palo Alto Firewall

Confidential

Network Security Engineer

Responsibilities:

• Installed, configured and maintained Palo Alto PA220, PA500, and PA 7000 series.
• Palo Alto management server HA for fail-over to ensure network reliability.
• Splunk for viewing data and analysis logs.
• Performed network monitoring, block or allow traffic on teh firewall based on rules.
• Used Zscaler to implement a proxy solution.
• Configured, maintained and analyzed firewall logs using various monitoring features such as traffic logs threat logs.
• Performed firewall rule audit and advice on improvement and optimization.
• Comprehensive understanding of routing and switching configuration.
• Monitored, troubleshoot, configured and deployed LAN/WAN solution.
• Network assessment and document (including technical, operational assessment)
• Remote connected to end-user computers to troubleshoot network issues and VPN.
• Drafted documents to outline procedures for IP addressing scheme and network subject.
• Maintained and monitored routers, switches bandwidth control trough VLAN configuration and routed network with teh use of routing protocol.
• Configured, administered and document firewall infrastructures- Check Point, Palto Alto.
• Installed, configured and troubleshoot Fortinet firewalls.

Confidential

Network Security Engineer

Responsibilities:

• Managed and troubleshoot connectivity problems using teh understanding of TCP/IP and OSI model, Routing Protocols, Switching and NAT.
• Performed installation and upgrade of new network and desktop application software.
• Installed Palo Alto Content and Software Upgrade, Backup and Update regularly.
• Configured and manage LDAP/AD and ACLs for identity awareness. Autantication and user tracking.
• Supported company’s global network and voice environment {including firewalls, VPN devices switches, routers and WAN optimization appliances) from layer 1 through layer 7 using ticketing system to track progress.
• Configured, maintained and analyzed firewall logs using various monitoring features such as traffic log, threat log.
• Remotely connected into end user computer to halp troubleshoot network issues.
• Used Splunk for viewing data and logs analysis.
• Drafted document to outline procedures for IP addressing scheme and network subnet.