SUMMARY

• 7+ years of IT experience in design, development, implementation, troubleshooting and maintenance of Cisco devices for both networking and security.
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509 - V-E, 6513, 6504, 6503, 6506, 6500 series switches
• Design and configuring of OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls (SRX240)
• Strong hands on experience on PIX Firewalls, Palo Alto, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
• In-depth Cisco technology experience/knowledge in design, implementation, administration and support.
• Experience in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NATING, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Good Confidential Manage hosting plans for Azure Infrastructure, implementing & deploying workloads on Azure virtual machines (VMs).
• Capable of designing cloud-based networks on top of AZURE, AWS, and Alibaba frameworks
• Worked on Cisco Wireless LAN Controller 4402 Cisco Wireless LAN Controller Modules NME-AIR-WLC8-K9 with 3845 Services Router, Cisco Catalyst 3750G Integrated Wireless LAN Controllers, Cisco Unified Communications Manager.
• Configured Client-to- Site VPN using SSL Client on Cisco ASA 5520 ver8.2.
• Experience with Troubleshooting tools for example protocol analyzers, load generators & network traces.
• Design expertise for the SD-WAN (Versa & Viptela), SD-LAN and WAN optimization technologies for efficient delivery of the application data across LAN and WAN.
• Experience working with F5 Load Balancer LTM and GTM module
• Experience working with Nexus 7010, 5000 and 2000 Series.
• Experience with design and implementation of Virtual Switching System (VSS)
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC & MPLS.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
• Good experience in deploying AD solution on AWS, AD on enterprise, and AD on hybrid cloud.
• Experience in managing Active Directory Domain Controllers, DNS and DHCP Servers.
• Strong experience on Administration and troubleshooting of Azure IAAS Components - VM’s, Storage, VNET, NSG, Availability sets, Site to site VPN.
• Good experience in designing DHCP solutions, IP Address management solutions, VPN, Web application Proxy solution, Monitoring strategy and Direct Access Solution.
• Proven Experience in Planning and implementing the High Available Network, Storage Solutions, failover Clustering, Business continuity and disaster solutions.
• Patches Upgrade Procedure for secure computing and network environment.
• Expertise in network protocols, Firewalls and Communication Network design.
• Have Hands on experience on Cisco PIX Firewalls 535, 525; Cisco ASA 5550, 5520.
• Good knowledge on security protocols, TACACS+ and RADIUS.
• Involved in designing and deploying multitude applications AWS stack (Including EC2, Route53, S3, RDS, SNS, SQS, IAM) focusing on high-availability, fault tolerance, and auto-scaling in AWS Cloud formation
• Managing and Administering Cisco ASA 5515, Palo Alto, SonicWALL, Fortinet Firewall
• Deploying Cisco Aironet 2700, 3700 Series, Cisco Meraki Enterprise Cloud Access Points and Wireless Bridges/Repeater for LAN Expansions
• Internet and WAN Circuit provisioning for client and coordinating with ISPs such as Verizon, ATT, Comcast, Rogers, Bell etc.
• Deploying and managing Windows 2003/2008/2012 , Microsoft Hyper-V 2012, Office 365 Cloud migrations, Microsoft Exchange 2003/2010, Blackberry Enterprise 5.5/10.0/10.1 (BYOD), MS Active Directory 2003/2008, Windows 2012 AD GPOs Domain/OU Level Security, VMware Virtualization, MS SQL 2003/2008, SAN/NAS Storage
• Administering Microsoft Win2008 Migration, Microsoft Exchange 2003/2010 Migration, Win7 Migration, DNS/DHCP Deployments and Migrations, Symantec NAV Client/Server Deployment
• Involved in configuring Juniper SSG-140, SRX-240, and Cisco ASA 5585.
• Working knowledge with monitoring tools like Solar Winds & network packet capture tools like Wire-shark
• Efficient Confidential use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS

Routing Technology: RIP, RIPV2, IGRP, EIGRP, OSPF, BGP, TCP/IP, Static and Dynamic Routing.

Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800. CISCO High End Routers 3600, 3800, 7200, 12010, 12404. CISCO Switches 1900, 2950, 2950, 2960G. CISCO Campus Switches 3550XL, 4948 Core Catalyst 4503, 4507 RE, Catalyst 6500/6503/6507 , Nexus 5000 series

Antivirus & Endpoint protection: Cisco CSA, Symantec Enterprise Edition, MacAfee Enterprise Edition.

Security & VPN: PIX 500 Firewall, ASA 5505 Firewall, AIP SSM, CSC SSM, FWSM, Fortigate, Cisco CSM, ACL-Access Control List, IPS/IDS, NAT, PAT, Cisco ACS, Juniper Net Screen firewall, Palo AltoFirewalls, Windows Patch Management (WSUS).

LAN Technology: Workgroup, Domain, HSRP, DNS, DHCP, Static, VLAN, STP, VTP, Ether Channel, Trunks.

WAN Infrastructure: Leased Line, ISDN/Dial-Up, Frame Relay circuits, Metro Ethernet.

WAN Technologies: HDLC, PPP, ATM, SONET, MPLS, VPN, IPSec-VPN.

Wireless & Wi-Fi: Canopy Wireless Device (point to point/point to multipoint), DLink Wireless (point to point), DLink Access Point, CISCO 1200 series Access Point, and Linksys Wireless/Wi-Fi Router.

Operating Systems & Tools: Cisco IOS, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Windows XP/Windows 7/8, LINUX, Solaris, Active Directory, Apache Server, MS Exchange server, VERITAS Volume Manager.

PROFESSIONAL EXPERIENCE

Confidential, Frisco, TX

Sr. Network Engineer

Responsibilities:

• Working with Network Design and implementation teams on different projects across United States.
• Experience in manipulating various BGP attributes like Local Preference, MED, Extended Communities, Route-maps Route-Reflector clusters and route policy implementation.
• Deploying and decommission of Nexus 7K, 5K, VLANs on core ASR 9K and its downstream devices.
• Performed DHCP Profile, HSRP, BGP, IPV6, OSPF Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured PPP, BGP, CIDR IP RIP, MPLS and OSPF routing.
• Hands on experience with cisco iWAN technologies, specifically DMVPN
• Assisted in MPLS migrations, implemented backup for existing WAN connection by using the site-to-site IP sec VPN tunnels.
• Configuring and installing 6500, 4500 in Campus networks.
• Experience with WCS predictive maps & RF Engineering Planning.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves in modern wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.
• Involved in cisco iWAN technologies, specifically Wan Optimization
• Configuring routing protocols EIGRP, RIP, LDP, OSPF, MPBGP, and BGPV4.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Build Logical design and Implementation of Wireless Solutions.
• Leading Solutions for Virtualization, on SDN/NFV, WAN, VPN, MPLS, BGP and WAN Optimization & Building Strategy for SDN, Virtualization and open stack Innovations.
• Deploying and decommissioning Cisco switches and their software upgrades.
• Maintain complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPsec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, and have an experience with converted PIX rules over to the Cisco ASA solution.
• Performing troubleshooting on slow network connectivity issues, routing issues that involves BGP, OSPF and identifying the root cause for the issues.
• Involved in Configuration of Access lists (ACL) on ASA firewall for proper network routing for B2B network connectivity.
• To Secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Troubleshooting the Network Issues onsite and remotely depending on the severity of the issues.
• Created Visio Documentation / Visio Dean to give complete picture of network design for each building.
• Knowledge on shell Scripting and Python Scripting.

Environment: Cisco 3500 series switches, Cisco Routers 3700/2600 series, Cisco PIX firewall-515/525/535, Windows 2000//NT/XP, Checkpoint Firewall-NG, AIX, VPN, DHCP, DNS, Linux, Cisco IDS 4235, MRTG, NMS- Cisco Works, OSPF, EIGRP.

Confidential, IL

Sr. Network Engineer

Responsibilities:

• Installing, configuring, troubleshooting and managing Cisco Switches, Routers, firewalls as a part of network support team.
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (7200, 3800, 3600, 2800, 2600)and Cisco Switches (3500, 3700, 6500) series switches (CAT OS/IOS).
• Upgrading various Cisco IOS switches like 3650,3750,3850,4506, Aruba 3810 and various Routers like ASR 1001, ISR 4331, ISR 4431 to fix the bug issues and maintain the stability of the network.
• Implementing the IOS upgrades by coordinating with the Netops,Voiceops and firewall (SecOps) Teams.
• Wirelesses network troubleshoot and support based on CISCO Aironet 1100,1200, Cisco 1520/1522 Mesh Access Points. Maintain security and privacy with sharing permission.
• Cisco IOS, Nexus OS 2000, 5000, Catalyst switches, Firewalls administration, ISDN line, Checkpoint upgraded to R80.
• Upgrading the firmware on CX770 & CX5070 Steelhead’s to Rios 9.6.3 and SF2000 Steel Fusion’s to RIOS 5.1.2 versions.
• Upgrading Aruba wireless controllers 7030, 7220 models to the latest version to fix the bug issues and provides latest features.
• Downgrading the IOS from Denali code to universal code on Cisco 3650 and 3850's.
• Created AWS Route53 to route traffic between different regions. Configure IAM and Security Group in Public and Private Subnets in VPC.
• Wirelesses network troubleshoot and support based on CISCO Aironet 1100,1200, Cisco 1520/1522 Mesh Access Points. Maintain security and privacy with sharing permission.
• Creating New changes and Incidents using Service-Now tool.
• Communication with site engineers for getting the maintenance windows to perform the IOS upgrade of switches and routers etc.
• Provide technical documentation for Upgrade of Cisco IOS devices and document any issues connected to those devices.
• Upgrading the IOS on Gigamon cluster TA10 model to v5.6.
• Configuration and troubleshooting different types of routers and switches to fix the issues.
• Create RFC for every change with details and notify a group of people who might be affected by those changes.
• Working on Turnovers and adding TACACS to the newly deployed devices.
• Monitoring the network alerts by using NNMI (Network Node Manager) tool.
• Hands on Knowledge/experience on F5 load balancers, its methods, Implementation and troubleshooting on LTMs and GTMs.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Configuration and Administration of Palo Alto NetworksFirewallto manage large scaleFirewall deployments.
• Daily monitoring of network traffic using sniffers (wireshark) and access logs to troubleshoot and identity network issues.
• Worked extensively on Cisco ASA 5500(5510/5540) series and have experience with converted PIX rules over to the Cisco ASA solution.
• Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
• Troubleshoot and hands on experience on security related issues on Checkpoint IDS/IPS.
• Collecting information of Network infrastructure, packet capturing, network monitoring using SNMP tools Solar-winds.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Created Visio Documentation to give complete picture of network design for each building.
• Keeping track record of customer network Confidential NOC 24 X 7.

Environment: CISCO routers and switches, OSPF, BGP and IS-IS routing protocols, Arista switches, Juniper MX routers, CISCO 7010, 7204, 7206,3850, VLANS, CSU/DSU’s, SNMP, NAT, Cisco IOS, HSRP, VLAN trunking 802.1Q, F5 Networks, CISCO ASA, Aruba and Checkpoint firewall.

Confidential, Atlanta, GA

Sr. Network Engineer

Responsibilities:

• Designed, validated and implemented LAN, WLAN & WAN solution to client’s needs.
• Implement ATM/Frame Relay between data centers utilizing Cisco routers & switches.
• Installation and configuration of wireless AP’s to provide network connectivity to various buildings.
• Installed cisco 5508 WLAN controllers and configured Access points.
• Configured Cisco routers for MPLS VPN connectivity and VRF tables on edge routers for customer usage of the MPLS network.
• Configuration and programming new circuits EPL, ELAN, L2VPN, L3VPN, VPRN, QoS, MPLS TE LSP, BGP, OSPF, RSVP.
• Configuring and troubleshooting of the wireless Access points (AP1140, AP1231, AP2600, and AP3600, AP3702I), Wireless LAN Controller (WLC2106, WLC4400, WLC5500) and Wireless client issues
• Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800.
• Utilized NSGs for layer4 Access Control List (ACLs) for incoming and outgoing packets. Leveraged VNET system routes and underlying route table that holds Local VNet Rules, On-premise Rules, Internet Rules and IP Forwarding as design basis.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the VPN networks
• Managed Juniper NetScreen Firewalls and Intrusion Prevention and Detection (IDP) Device
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Design OSPF Areas for reliable Access Distribution and for Core IP Routing.
• Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
• Troubleshooting and monitored routing protocols such RIP, OSPF, EIGRP & BGP.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Experience working with High performance data center switch like nexus 7000 series
• Experience working with Nexus 7010,7018, 5020, 2148, 2248 devices
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
• Upgraded load balancers from Radware to F5 Big-IP v9 which improved functionality and scalability in the enterprise.
• Managed the F5 BIGIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs
• Implemented TCP/IP and related services like DHCP/DNS/WINS.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center.
• Configured and troubleshooting of HSRP on Cisco routers.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Implemented SNMP on Cisco routes to allow for network management.

Environment: Juniper firewalls 5GT, 208, SSG 5, 140, 550, 550M, NSM, IDS/IPS, Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, SSL

Confidential, Chicago, IL

Network Security Engineer

Responsibilities:

• Experience with hybrid CATOS to Native Cisco IOS code migration involving Catalyst 6503 to Catalyst 6504 switches
• Experience with managing the completed end to end site solutions
• Involved in Datacenter build and support, Implementation, migrations network support, Interconnectivity between an old Datacenter and new Datacenter.
• Converting access-lists to Firewall rule sets on FWSM module with 6509-E Catalyst switches
• Involved in setting up Voice VLANs on distribution switches, and configuring access switches ports for AVAYA IP PHONES
• Experience working with Nexus 7010,7018, 5020, 2148, 2248 devices
• Managing a TACACS server for VPN user authentication and network devices authentication
• Upgrading IOS on 2960 and using 2960 switch as a PAGP between VSS
• Working knowledge of PPP Protocol with Enhanced Flex WAN module on 6500 catalyst switch
• Involved configuring ppp multilink group, dialer group, PPP authentication protocols like PAP, CHAP
• Working knowledge of Terminal server and the configurations
• Installation of L3 Switching Engine policy Feature Card & Distributed Forwarding Card DFC3C
• Implementing 3750 Rack/Stack switches using Cisco Stack Wise technology
• Experience with design and implementation of Virtual Switching System (VSS) for both User segment and server segment using 6509-V-E catalyst switches
• Converting Cat-OS to Cisco IOS Config Conversion on distribution layer switches
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst switches
• Configuring PAGP and LACP protocol along with BFD link detection protocol
• Experience with design and implementation of Data center migration
• Data center migration was involved in Access, Distribution and Core layers.
• Installed new purchased Hardware to the new DC, Migrate data over WAN connection, also greatly involved in virtualization of physical servers
• Experience with migration Hybrid based Cisco CATOS and Native Cisco IOS on 6500 catalyst switches.
• Involved in migration of WLAN segment on the LAN Core. Also, involved in configuring wireless VLANS
• Working knowledge of Firewall service module FWSM UPGRADE, FWSM RULESET conversion
• Coordinated precise scheduling for all migration events including all equipment and resources for the data center migration on an extremely accelerated schedule with for a high profile client.

Environment: 6500/3750/3550/3500/2950 switches, Juniper (M320, T640), Cisco 5 0 routers, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, Ether Channels.

Confidential, NYC, NY

Network Engineer

Responsibilities:

• Performed Troubleshooting and monitored routing protocols such OSPF, EIGRP & BGP.
• Involved in writing troubleshooting guidelines for MPLS VPN.
• Involved in customer escalations and troubleshooting issues related to connectivity, STP, VLAN, Trunking, VTP, Layer 2/3 switching, Ether channels, Inter-VLAN routing, log messages, high CPU utilization and parameters that can degrade performance of network.
• Installed and configured four PIX 525 and two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for the Guest access
• Configured VLANS on multiple catalyst switches performed troubleshooting on TCP/IP network problems, Administered Frame-Relay and networks.
• Provided technical support and problem resolution for the LAN and its environment by analyzing the problem, identifying the cause and circumstances of the problems and finding a solution to the identified problem.
• Configured ACL & NAT through CLI.
• Experience with protocols such as Frame Relay, IEEE 802.11 and VLAN, OSPF and BGP, DNS, DHCP, FTP, NTP, SNMP, SMTP and TELNET.
• Installed, configured (through CLI & SDM) and managed CISCO routers and Catalyst switches.
• Set up Internet, implementing Networking products like Servers, Proxy servers, Switches, Firewalls, Routers.

Environment: CISCO 2600, 2800 and 3200 series routers, CISCO 3300 and 2950 switches.

Confidential 

Network Admin

Responsibilities:

• Handled the up gradation and replacement of network components like NIC cards, display cards, RAM, keyboard, mouse and other peripherals/ devices.
• Handled installation of operating systems (NT/2000, MS Office, XP), troubleshooting of operating systems and configuring the servers.
• Gained knowledge in IP Sub netting for Class A, B, and C networks.
• Configured and installed CISCO routers 2500, 2600, 3601 and 4000 series.
• Remotely testing links up to 1.5 Mbps using tools like REACTS.
• Troubleshooting on routing protocols, which include RIP, BGP, EIGRP, and OSPF.
• Recovered lost passwords and created standard access-lists and extended access list to new users.
• Monitoring network performance to improve the backup strategy using Netrep, Solar winds.
• Team member of Configuration ofCISCO7206 router and Configuration of Catalyst switches.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Worked on Cisco Routers, Active /Passive Hubs, Switches
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches

Environment: CISCO 2600, 2800 and 3200 series routers, CISCO 3300 and 2950 switches.