SUMMARY

• Cisco and Palo Alto certified professional with 8+ years of experience in network design, implementation, and support.
• Experienced in routing, switching, firewall technologies and troubleshooting of complex network systems.
• Experience in working with Nexus 7K, 5K and 2K series switches
• Responsible for Checkpoint and Cisco ASA firewall administration across our global networks.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs and switches.
• Experience in working with SSG Series, Netscreen Series ISG 1000, SRX Series Juniper Firewalls.
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP on various Cisco Switches.
• Experience in migration with both Checkpoint and Cisco ASA VPN.
• Experience in site - to-site and remote access VPN solutions.
• Experience in QOS on multicast VPN.
• Working knowledge with Load Balancers F5 LTM like 3900, 6900 for various applications
• Hands-on experience of python scripting, automation using python, string parsing, libraries.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP).
• Hands-on experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience in installation and configuration of DNS, DHCP server.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Experience with Change management process and Project documentation tools like Excel and VISIO.
• Experienced in working on network monitoring and analysis tools like, Solar winds, Cisco works, River bed and Wireshark.
• Worked onJuniper MX Series Routers and EX series Switches.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Hands on Experience in testing iRules using Browser (IE), HTTP watch on f5 load balancers.
• Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP’s on a need basis.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Experience with BIG-IP F5 load balancers, version 9.x, 10.x, 11.x, Citrix Netscalars and Web Accelerators.
• Experience in the setup of Access-Lists, and EIGRP, and tunnel installations.

TECHNICAL SKILLS

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS, VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Juniper SRX

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Cisco Switches: Cisco 2960, Cisco 3560, Cisco 3750, Cisco 6500 series

Juniper EX Switches: EX8200, EX4500, EX4200, EX3200, EX2500, EX2200 Series

Juniper Routers: E, J, M and T- Series

Cisco Nexus Switches: Cisco 7010, Cisco 7018, Cisco 5020, Cisco 2148, Cisco 2248

Layer 3 Switching: CEF, MLS, Ether Channel

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Redundancy and management: HSRP, RPR, NSF/NSR

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, HDLC, and CSU/DSU.

Security and VPN: PIX 500 Firewall, ASA 5505 Firewall, FWSM, CISCO CSM, ACL- Access Control List, IPS/IDS, NAT, PAT, CISCO ACS, Check point, RSA Secure ID, SRX,SSG series firewalls.

Firewalls: Palo Alto PA-500, PA-2k, PA-3k & PA-5k series, Checkpoint Provider-1 R65/R70/R75/R77 & Cisco ASA

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, OpenSuse, Fedora) Windows Servers 2003/2008, Windows MS-Office

PROFESSIONAL EXPERIENCE

Confidential, Boston, MA

Sr. Network Engineer

Responsibilities:

• Installing, Maintaining and Troubleshooting of Cisco ASR 1K, 7200, 3925E and 2951E Routers and Cisco 6500, 4510, 4500-X, 4948, 3560X, 3750X and 2960S Switches for deployment on production network.
• Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548and Nexus 2k as per the requirement of the Organization.
• Involved in upgrades to the WAN network from existing 7200vxr with ASR1004 and 3845/3945 routers.
• Firewalls migration project ASAto Palo AltoImplementations
• Worked as a part of data center deployment where we converted Cisco 6500 to Nexus.
• Experience in configuring VPC (Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018
• Involved in designing new 10-Gig infrastructure with Security team on Gigamon HC2.
• Good knowledge on HPNA (HP network automation)
• Knowledge of advanced technologies like VOIP, H.323, SIP, QOS, Multicasting, MPLS and MPLS-VPN
• Worked on network projects involving Cisco Routers- ASR1000/9000, Switches-Nexus 7K/5K/2K.
• Configure / Troubleshoot CISCO 12000, 7500, 3800, Juniper MX 480, MX960 series routers and EX4200 & EX3200, 3560 series switch for LAN/WAN connectivity.
• Implemented Access lists and policy mapping on Juniper router installed in each branch across all the locations.
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration.
• Configured Palo AltoNetworks Firewallmodels (PA-3k, PA-5k) as well as a centralized management system (Panorama) to manage large scale firewalldeployments
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Serve as part of a team of network engineers responsible for network upgrade from Cisco Layer 2 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches across multiple offices.
• Design, implement and administer enterprise network infrastructure utilizing Juniper routers across locations.
• Experience with 802.11x wireless technology.
• Implementation of L3 MPLS-VPN and Migration of branches to the new MPLS cloud 4.
• Managing and providing support to various projects teams with regards to the addition of new equipment such ASA routers switches and firewalls to the DMZs.
• Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
• Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions
• Proficient with F5 LTM and Cisco CSM load balancer in-between the servers inside the server farm and DMZ.
• Help customers build scalable, resilient, and high-performance applications and services on AWS.
• Develop/capture/document architectural best practices for building systems on AWS.
• Responsible for Cisco ASA and Palo Altoconfiguration and administration across global networks.
• Implemented F5 hardware refresh of older 3600 hardware to Viprion.
• Review all changes tonetworkconfiguration for technical accuracy and impact and provide Multi- ProtocolNetworkproblem resolutions.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.

Confidential, Phoenix, AZ

Sr. Network Engineer

Responsibilities:

• Configuring, Maintaining the Routers and Switches and Implementation of EIGRP, OSPF, BGP routing protocols and troubleshooting Remote infrastructure management of offices in different locations nationwide.
• Creating object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Troubleshooting and escalation management of day-to-day issues for offices.
• Managing Co-location and Datacenter infrastructure in North America.
• Experience with Project data and voice documentation tools & experience with developing network design documentation and presentations using VISIO.
• Security policy review and configuration in Palo Alto and Junipers Firewall in US offices and Datacenter. Designed and configured of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope.
• VPN User access management on check point firewalls. Use LDAP for identifying user groups
• Installed, configured, and maintained Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Configured PPP, BGP and OSPF routing. Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP’s on a need basis.
• Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers.
• Worked on Data center migration project involved in Distribution layers.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Working experience with A10 andF5LoadBalancer.
• Experience deploying BIG-IP F5LTMLoadBalancersforloadbalancing and traffic management of business application.
• Automated network implementations and tasks using python scripting.
• Worked extensively with Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches
• Configuration of Virtual servers and pools onF5Loadbalancer.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Establish AWS technical credibility with customers and external parties
• Release management of all significant public EC2 launches
• Managed complex wireless network strategies and imparted support to operational wireless computer networks.
• Maintained wireless IPS infrastructure and coordinated with management, customers and peers regarding wireless network innovations.
• Offered users with wireless network technical support and handled indoor and outdoor site surveys.
• Experience working with ASR 9000 series switches with IOS-XR
• Migrated Firewall infrastructure from Check Point R65 to Net screen ISG2000
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Supervised call center and technician routine maintenance and up-gradation of network device.
• Creating and provisioning Juniper SRX firewall policies.
• Provided network and workstation support.
• Participated in Cisco IOS-XR and NX-OS software upgrade projects and manage deadline to accomplish goals.
• Convert IOS/IOS XE routers to ASR9k/IOS XR with Network virtualization.
• Troubleshooting experience on Cisco ASR 9K devices and also have an experience to upgrade IOS-XR software.

Confidential, Providence, RI

Network Security Engineer

Responsibilities:

• Firewall Policy administration and work with user requests submitted by users.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
• Worked with Palo Alto Panorama management tool to manage all Palo Alto firewall and network from central location.
• Configured and setting up DMVPN, GRE based VPN on Cisco-IOS based router.
• Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Build Site to Site IPSec based VPN Tunnels between various client and business partner sites
• Managed over 40 checkpoint Firewalls split through multiple CMA's and administer using provider-1.
• Administering multiple Firewall of Juniper / NetScreen, in a managed distributed environment. Fulfilling routine change requests of Net Screen OS Firewall and resolving trouble tickets, maintain and monitoring firewalls.
• Actively use, smart view tracker, and Checkpoint CLI (to security gateways) for troubleshooting.
• Implementing and configuring Checkpoint VSX for security gateways.
• Perform advanced troubleshooting using Packet tracer and tcpdump on firewalls.
• Built and support VRRP / Cluster based HA of Checkpoint firewalls.
• Firewall Policy Optimization using third party tool Tufin.
• Perform Firewall OS upgrades using CLI, Splat and Voyager GUI.
• Review Firewall rule conflicts, unused rules and miss-configurations and clean up.
• Checkpoint firewall policy administration and support between various zones.
• Modify and implement ACL changes on Client routers and assist the user when there are any issues using Network Authority. Authentication to this is also done through TACACS.
• VPN User access management on check point firewalls. Use LDAP for identifying user groups
• Working experience with virtual firewalls like checkpoint VSX, IDS, IPS as well as encryption techniques
• Supporting more than 100 Site to Site IPSec based VPN Tunnels for all B2B and 3rd party communications.
• Work on Cisco based Routing and Switching environment with MST and Rapid Spanning tree and using Routing Protocols such as BGP and OSPF.
• ITIL Based Incident, Change and Problem management.

Confidential

Network Engineer

Responsibilities:

• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5585 Security appliance
• Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Implementation and Configuration (Profiles, I Rules) of F5 Big-IP LTM-3600 load balancers
• Configured F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Worked on updating the SSL certificates to the application URL using the F5 LTM and F5 GTM
• Worked on migrating the LTM 5100 version 9.2 to 5100 LTM version 9.4.
• Troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP, MPLS
• Involved in implementation of Data Center Migration, worked on strategies for the expansion of the MPLS VPN networks
• Worked on evaluation of vendor hardware, software, and wireless communications products
• Operational support and troubleshooting of production wireless network issues
• Provided technical support case escalation for customer wireless infrastructure.
• Supported internal wireless network infrastructure operational requirements.
• Automated the process of neighbor check in OSPF using python scripting.
• Performed Cabling check automation using python.
• Maintaining Checkpoint security policies including NAT, VPN and Secure Remote access
• Actively involved in Switching Technology Administration including creating and managing VLANS, Port security- 802.1x, Trucking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.

Confidential

Jr.Network Engineer

Responsibilities:

• Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Configured the Cisco router as IP Firewall and for NATting. Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
• Configuring all the required devices and equipment for remote vendors at various sites and plants. Installation and maintenance of new network connections for the customers.
• Monitoring Memory/CPU on various low- end routers in a network.
• Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.