We provide IT Staff Augmentation Services!

Sr. Network Engineer/ Security Resume

3.00/5 (Submit Your Rating)

Washington, DC

SUMMARY

  • Network Engineer with 8+ years of experience in IP network design, network integration, deployment, testing, and troubleshooting.
  • Good noledge of WAN technologies such as T1, T3, DS3, OCx, SDH, SONET, LTE, Fiber and Frame relay.
  • In - depth noledge and hands on experience in configuring and troubleshooting Layer 3 Interior Gateway Routing protocols like Distance Vector routing protocols (RIPv1, RIPv2 and EIGRP) and Link-State routing protocols (OSPF and IS-IS).
  • Substantial noledge in configuring and troubleshooting Exterior Gateway protocols such as BGPv4 including internal BGP (iBGP) and external BGP (eBGP).
  • Hands on experience in configuring, and troubleshooting of high end Cisco routers like GSR 12000 series, 7500, 3800, 3600, 2800, 1800 series.
  • Experience in configuring, and managing Catalyst Switches like 7600, 6500, 4500, 3700, 2900 series.
  • Thorough experience in upgrading, backup and password recovery of Cisco IOS.
  • Experience in Designing and implementingCiscoUCS
  • Worked on Cisco Firewalls Cisco ASA 5500(5510/5540) Series and Checkpoint R75, 76 Firewalls.
  • Designed, configured and installed new Cisco ASA 5515. Configured all teh security protocols by implementing strict enforced access via ACLs, NAT, Class Maps, Policy Maps, VPN access to business resources.
  • Configured Port based security, implemented 802.1x port based autantication.
  • Proficient in design, implementation, management and troubleshooting of Checkpointfirewalls, Cisco PIX, NetscreenFirewalls, Check Point Provider-1 / VSX, VPN, Palo Alto IDS, Foundry / F5 Load Balancers, and Blue Coat.
  • Advanced noledge, design, installation, configuration, maintenance and administration of CheckpointFirewallR55 up to R77
  • Experience in tools like SNMP, AAA, RADIUS and designed VPN with IPSEC security layer.
  • Experience working with Cisco Nexus Switches like 5000 and 7000 series and Virtual Port-Channel configuration.
  • Good experience in configuring teh Nexus 5K Aggregation Switch and Nexus 2K Fabric Extenders.
  • Implemented VDC, VPC, VRF and OTV on teh Nexus 5505 and 7009 switches.
  • Knowledge and configuration of redundant router protocols like HSRP, VRRP and GLBP.
  • Thorough noledge, including teh configuration, of Spanning Tree Protocol (STP), Per VLAN Spanning Tree (PVST), Rapid STP (RSTP) and Rapid per VLAN Spanning Tree (PVST+).
  • Extensive experience in configuring Virtual Local Area Networks (VLAN) with IEEE 802.1Q, VLAN trunking protocol (VTP), VLAN Cross Connect (CC), Multiple VLAN Registration Protocol, and shortest path bridging.
  • Experience in troubleshooting both connectivity issues and hardware problems on Cisco based networks.
  • Extensive noledge in testing Cisco routers and switches in lab scenarios and deploy on site for production.
  • Knowledge of IPv4 and IPv6 Addressing, Fixed Length and Variable Length Subnet Masking (VLSM), OSI and TCP/IP models.
  • Experience in migration of IPv4 addresses to IPv6 addresses using mechanisms like Transport Relay Translation (TRT), Tunnel Broker, NAT64, DS-Lite and DNS64.
  • Experience in installing and configuring NAT, DHCP server and DNS in large networks.
  • Hands on experience on LAN/WAN setup, installation, configuration and commissioning of network devices.
  • Experience in configuration of LAN protocols such as Ethernet and Fiber Distributed Data Interface (FDDI) on Cisco Switches.
  • Experience in teh setup of Access-Lists, and RIP, EIGRP, and tunnel installations.
  • Implemented traffic filters using standard and extended access-lists, distribute-lists and route maps.
  • Experience in provided support dat included resolving day-to-day operational issues with tickets generated by a server.
  • Deep noledge on implementing F5 BIG-IP load balancer.
  • Experience in implementation of F5 GTM based on topology load balancing methods
  • Good experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
  • Experience in documenting and preparing teh process related operational manuals.
  • Knowledge of SNMP, IP SLA and Network Monitoring with experience in tools like PRTG.
  • Hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3, SONET POS OCX/ GigE circuits, Firewalls.
  • Extensive experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000 and 2000 for teh corporate applications and their availability.

TECHNICAL SKILLS

Routers: Cisco routers (ASR9k, GSR 12000, 7600, 7500, 7200 VXR, 3800, 3700, 2800, 2600, 2500), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)

Switches: Cisco Switches (6500, 4000, 3750, 3560, 2960), Nexus (2248, 5548 &7010)

Firewalls: Cisco ASA 5500, Cisco PIX 500, checkpoint r60, checkpoint r65, Juniper SSG Firewalls.

Load Balancing: Cisco ACE 4700 series, F-5 BIG-IP LTM (3900 and 8900), Blue Coat SG8100, AV 510, AV810.

IP Routing Protocols: RIP, EIGRP, IGRP, OSPF & BGP, Route Filtering, Redistribution, Summarization, Static routing, IS-IS.

WAN Technologies: FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased lines, DSL modems.

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco

Optical infrastructure: SONET OC3-OC192, SDH, POS, PDH

VoIP Devices: Cisco IP phones, Cisco 5500, 6500 series controller, Avaya 3000, 6000, 7200 series Controllers

Routing Protocols: BGP, OSPF, EIGRP, IGRP, RIP v1 & v2, IS-IS.

Switching Protocols: STP, IEEE 802.1Q, VTP, VLAN & Inter-VLAN routing, QoS, MSTP, RSTP, and LACP.

Network management: SNMP, Cisco Works LMS, HP Openview, Solar winds, Etheiral.

Layer 3 Switching: CEF, Multi-Layer Switching, Ether Channel.

Carrier Technologies: MPLS, MPLS-VPN.

Redundancy protocols: HSRP, VRRP, GLBP.

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists

Wireless Technology: Cisco AP, LWAP, Access Points, WCS

Ticketing software: Connect Wise, Remedy system, ServiceNow.

Operating Systems: Windows Server/8/7/Vista/XP, Nexus OS, Cisco IOS-XR, Linux, Unix (Mac OS).

Language: Unix, Turbo C / C++, basics in Perl and Shell scripting.

Cabling: CAT 5, CAT 5e, CAT 6, CAT 6a002E

PROFESSIONAL EXPERIENCE

Confidential, Washington, DC

Sr. Network Engineer/ Security

Responsibilities:

  • Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
  • Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
  • Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
  • Create and test Cisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
  • Troubleshooting theNetworkRouting protocols (BGP, EIGRP and RIP) during teh Migrations and new client connections.
  • Implement changes on switches, routers,loadbalancers(F5and Brocade), wireless devices as per engineersinstructions and troubleshooting any related issues
  • Implementation and configuration of GLBP/HSRP on multilayer switches for first-hop redundancy
  • Hands on experience testing iRules using browser (IE), HTTP watch onF5loadbalancers.
  • Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
  • Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
  • Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN securityfor Layer-2 and Layer-3 switching domains as per teh organization's requirement plan.
  • Optimized performance of teh WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
  • Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
  • Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
  • Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
  • Strong working noledge of Nexus 5K/7K /2K.
  • Experience working with Nexus 7010, 5020, 2148, 2248 switches.
  • Configuring, Administering and troubleshooting theCheckpointand ASAfirewall
  • Implementation and configuration ofF5Big-IP LTM 6400loadbalancers.
  • Provide Tier IILoadBalancerexpertise onF5BigIP Local Traffic Managers (LTM). DesigningF5solutions/support for migration work of applications and websites from Cisco CSSLoadBalancersto theF5BigIPLoadBalancers.
  • Installation and administration ofCheckpointR 75.40 Firewall.
  • ImplementedCheckpointfirewallrules according to business requirements and verifications
  • Implemented new device of Cisco & Juniper MX - series as per policy reviewed bynetwork architect.
  • Implemented firewall policy change on theCheckpointclusters.
  • Verified and Validated teh Firewall policy onCheckpointR75 clusters for unused rule and halped consolidating rule
  • Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing)
  • Technical assistance for LAN/WAN management and complex customer issues.
  • Provided support for troubleshooting and resolving Customer and user reported issues.
  • Worked withNetworkEngineer's in teh installation and configuration of firewalls.
  • Involved setting up teh TFTP server for backing up teh IOS images and configuration files of Cisco Routers and Switches and troubleshooting teh file servers.
  • Upgrades, installs, configuration and administrationsecurityand monitoring tools on Linux.
  • Experience withSecurity- Firewalls, NAT / PAT, IPSEC, S2S.
  • Experience with ALG (RTP, RTSP and FTP, DNS, HTTP), DHCP.
  • Responsible fornetworkevaluations, troubleshooting a variety ofnetworkproblems, and implementing various software and hardware upgrades efficient performance.
  • Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
  • Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
  • Provided redundancy to tanetwork, implemented hot standby routing protocol (HSRP) andLoad sharing for TEMPeffective utilization of routers.
  • Configuring, implementing and troubleshooting VLAN's, VTP, STP, Trunking, Ether channels.
  • Packet capturing, troubleshooting onnetworkproblems with Wireshark, identifying and fixing problems
  • Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
  • Performingnetworkmonitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
  • Cisco ASA/CheckpointFirewall troubleshooting and policy change requests for new IP segments dat either come on line or dat may have been altered during various plannednetworkchanges on teh network.
  • Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.

Environment: Cisco 3500/ 3550/4500/6500 switches and Cisco 2500/2600/3000/6500/7500/7200 routers, Cisco ASA,Checkpoint, Cisco Nexus7K/5K/2K, LAN, OSPF, BGP, RIP, EIGRP

Confidential, Newark, NJ

Sr. Network Engineer

Responsibilities:

  • Responsible for service request tickets generated by teh halpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
  • Responsible for supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
  • Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
  • Performed L2/L3 Switching Technology Administration which included creating and managing of VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
  • Responsible for configuring switches with port security and 802.1x for enhancing customer’s security.
  • Worked on teh security levels with RADIUS, TACACS+.
  • Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, iRules) for managing teh traffic and tuning teh load on teh network servers.
  • Updated teh HP open view map to reflect and changes made to any existing node/object.
  • Responsible for Handling SRST and implementing and configuring teh Gateways, Voice Gateways.
  • Configuring HSRP between teh 3845 router pairs for Gateway redundancy for teh client desktops.
  • Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to teh switches.
  • Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
  • Handled Tech Support as it relates to LAN & WAN systems
  • Implementation and Configuration (Profiles, me Rules) of F5 Big-IP C2400 load balancers
  • Experience in completing service requests (me.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
  • Identify, design and implement flexible, responsive, and secure technology services
  • Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
  • Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
  • Monitored network for optimum traffic distribution and load balancing using Solar winds.
  • Validate existing infrastructure and recommend new network designs.
  • Created scripts to monitor CPU/Memory on various low end routers in teh network.
  • Installed and maintained local printer as well as network printers.
  • Handled installation of Windows NT Server and Windows NT Workstations.
  • Responsible for designing and implementing Cisco VoIP infrastructure for a large enterprise and multi-unit office environment.
  • Gave my best to meet challenging schedule to ensure a Multi-office reconfiguration project which was successfully delivered within given time frame.

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential, Farmington Hills, IL

Network Engineer

Responsibilities:

  • Responsible for configuring Switches with proper spanning tree controls and BGP routing using community and as path prepending attributes.
  • Implemented VLAN, Spanning Tree and support using PVST, R-PVST and MSTP to avoid loops in teh network.
  • Work in an enterprise network environment with dynamic routing using OSPF and BGP for external connectivity.
  • Responsible for working with BGP routing protocol for communication with business partners and influence routing decision based on AS Path Prepend and other attributes.
  • Responsible for configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation.
  • Involved in teh LAN/WAN level 3 support (diagnose and troubleshoot layer 1, 2, 3 problems) .
  • Responsible for Firewall upgrades as well as Troubleshooting, Security Configurations, IPSec VPN Implementation and Troubleshooting, DMZ Implementation and Troubleshooting.
  • me was also responsible for PIX 7.x/8.x & ASA 8.x Firewall migration and in place hardware upgrades and Troubleshooting, IOS Security Configurations, IPSec VPN Implementation and Troubleshooting, DMZ Implementation and Troubleshooting.
  • Configured Firewall logging, DMZs and related security policies and monitoring.
  • me did IOS Upgrades from 7.x to 8.x as well as backup and recovery of configurations.
  • Installed Windows Server 2003, configure IP addresses, network printers and configure Client Access for PCs.
  • Deployed a Syslog server to allow proactive network monitoring.
  • Implemented VLANS between different departments and connected them using trunk by keeping one Vlan under server mode and rest falling under client modes.
  • Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
  • Administered and supported Cisco based Routing and switching environment.
  • Responsible for Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay).
  • Configured Client VPN technologies including Cisco’s VPN client via IPSEC.

Environment: PIX, CISCO routers and switches, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, SAN, Spanning tree, Nimsoft, Windows Server, Windows NT.

Confidential

Network Engineer

Responsibilities:

  • Responsible for configuring access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
  • Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches.
  • Responsible for configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
  • Configuration and troubleshooting of EIGRP, OSPF, BGP.
  • Configured, installed software applications, anti-viruses, drivers and security software on user devices, maintained and troubleshoot desktop, laptop and peripheral equipment.
  • Configured inside ACL and interfaces, outside ACL and interfaces.
  • Responsible for configuring Site-to-Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
  • Perform hardware and software diagnostics, fault isolation and coordinate repairs and/or replacement of faulty equipment.
  • Maintain logs of network and bandwidth utilization of servers and network devices and create utilization report based on teh logs
  • Design network and create physical and logical network layout diagrams
  • Write and maintain technical documents describing implemented technologies and architecture
  • Configured VLAN’s, Private VLAN’s.
  • Configured NAT and PAT policies.
  • Design OSPF areas for reliable Access Distribution and for Core IP Routing.
  • Extensively used TCP/IP tool like TELNET for remote login to teh routers and SSH for secure login.
  • TEMPHas expertise in LAN/WAN technologies (fast Ethernet, Layer2 & 3 switched/routed LAN, and Frame Relay).
  • Responsible for providing consultation services to clients for installing and configuring Cisco routers and switches.

Environment: Cisco Routers ASR1002X/ 3945/3845/2800/3600, Load Balancer (BIG-IP), Cisco ASA Firewalls, STP, VLAN, VTP, VPN, NAT, OSPF, BGP, EIGRP

Confidential

Network Engineer

Responsibilities:

  • Responsible for providing high level technical support, including identifying and resolving problems on Cisco supported products for e-Commerce infrastructure. This included external routing and internal/intranet routing for DMZ servers.
  • Configured EIGRP, BGP, and MPLS.
  • Configured Firewall, QOS by SDM and provide security by Prefix list, Access- List and By Distribution List.
  • Good experience in implementing new ultra-secure networks in multiple data centers dat included Cisco, Juniper security devices.
  • Implemented cable multi-service operator (MSO) to capture traditional Telco subscribers with IP telephony and provide relevant QOS.
  • Scheduled preventive maintenance for fire-protection systems, including new protocols. Utilize MS Windows, Word, and Excel for reporting/documenting process.
  • Designed VLAN’s and set up both L2 and L3 logical to have it communicate to teh Enterprise network.
  • Satisfactorily Resolved Problems in timely manner with focus on providing a high level of support for all customers.
  • Moved Core switches and several non-Cisco devices under strict deadlines to maintain network functionality.

Environment: Cisco 2950 switches and Cisco 3825 Routers, EIGRP, BGP, MPLS, VLAN, QOS.

We'd love your feedback!