PROFESSIONAL SUMMARY

• PMP certified IT Professional wif 10+ years of experience in IT Infrastructure Management, Network/Security Operations, System Integration and CoLo IT Ops Lead
• Manage all network and security infrastructure related projects end to end as a part of Infra Engineering for large scale IT industries.
• Hands on Experience Mission Critical projects for elite customers, managing more TEMPthan 400 locations (6 tier 3 datacenters) and almost 3000 network devices across the globe in a 24*7 pattern. Delivering the utmost performance of Network Infrastructure as per the stipulated time frame and requirements.
• Expertise to provide on - demand solution as and when required. Define the structured design as per Client standard.
• Giving Onsite as well as Remote Site Infrastructure Management services to different clients.
• Responsible for Designing of New Topology and implementing the same by considering the cost-TEMPEffective measurement.
• Handling CRE High as well as Low level design documentation presentation to customer.
• Analyze the Syslog and Wireshark logs for deep troubleshooting of critical issues.
• Adhere to the best IT industry process for Incident, Problem and change management.
• Ensure compliance based standardization across devices me.e. routers, switches, FW LBs etc.
• Has been working wif USA based clients since 2009 E.g. Citi, Stats ChipPAC, 24/7 customer, i2 Technology etc.
• Hands on experience in IT, BPO, Telecom and manufacturing and Ecom industries across the world
• Currently working in USA (Connecticut) for one of the largest E-Com client of Wipro
• Experience in Security/Network Infrastructure wif latest Technologies.
• Responsible for building/deploying security /Network devices in customer networks and for the full management/maintenance of those devices.
• Hands on experience on Site to site VPN, Remote access VPN and SSL VPN in Firewall as well as IOS routers through Pre-Shared Key and CA.
• Deployment of transparent and routed mode FW as per requirements.
• Implementing Context based FW setup and High Availability in both Active/standby and Active/Active scenario.
• Experience on Dynamic NAT, static NAT, Policy based NAT, Identity NAT and Access list wif Object Nat and twice Nat.
• Implementation of MPF for advanced traffic control.
• Implementation of IPS Sensor, Signature update and OS up gradation.
• Build up and manage ACS servers, define role based access to different users as per the requirement.
• Deployment CBAC feature in Routers.
• Setting up STATIC VTI for multiple Opcos across the Globe.
• Implement and manage Iron port for mail security.
• Implementation of IPSLA and tracking for seamless F/O in firewall and routers.
• Knowledge in Dynamic routing protocols like BGP, EIGRP, OSPF and RIP.
• Implementing OSPF and EIGRP in multi area and multi AS respectively.
• Experienced on WAN technologies like Lease line, MPLS, PPP (Multi Link).
• Experience on advanced routing manipulation like Route map, redistribution Distribute List, prefix list and PBR etc.
• Deployment of QOS in Cisco IOS routers.
• Standard and extended ACLs in Routers and L3 switches including VACL
• Setup GRE tunnels among remote sites.
• Multiple VRF implementations for multiple Customers.
• Core switching knowledge like STP, RSTP, MST, VTP, Ether-channel/Port channel, HSRP/VRRP, port security and IBNS (802.1X) etc.
• Configure Private VLAN for DMZ zones for more security related environment.
• Implementation of Nexus switches wif VPC and Fabric extender.
• Basic deployment of Autonomous Access points wif two SSIDs for corporate and Seamless Guest Internet access.
• Disaster and password recovery of Routers, switches and Access Points.
• OS upgrades for PIX, ASA, Router and switches.
• Syslog server setup for logs and deep troubleshooting.
• Deploy Load balancer (LTM) and Link controller wif High availability for server and WAN link load balance respectively.
• Creation of Virtual servers, Pools and Nodes.
• Configuration of different types of Profile for Virtual servers as per requirement.
• SSL Certificate renewal, verification of certification validity & configured Key, defining the cipher for certificate.
• Configuration of iRule for traffic diversion, specific treatment of any Traffic.
• Standalone switch LTM migration to viprion.
• Deployment of Bluecoat Proxy, integration wif AD and defining Filter policy for different groups. Review of weekly report and necessary preventive action.
• CSM deployment, integration and management.
• Up gradation of CSM, discover ASAs in to CSM, Deploy changes through CSM

TECHNICAL SKILLS

Routers (Cisco): 7200,3800,2800, ISR-3900,2900,4400 & ASR 1000 series.

Routers (Juniper): MX960, MX10 & MX5

Switches (Cisco): Nexus 9K, 7K & 5K, C6500, C4900, C4500, C3800, C3500 and C2900

Load Balancer (F5): Viprion chassis, application switch hardware module (LTM) & GTM.

Infoblox: Grid manager (DDI)

Security Management:

Firewalls (Cisco): ASA 5520, 5540, 5555, 5580, 5500-x series and 5500 series wif SF.

Firewalls (juniper): SA2500, SRX, SSG

Iron port: C100, C160, C650

TACACS: ACS3.2, 4.2 and 5.2 (appliance)

CSM: CSM 4.8/4.11 & 4.12

FMC: 4000 series

Proxy: Bluecoat (SG900), web sense (later)

Wireless management:

WLC: AIR-CT8540 and AIR-CT5508

WAP: 3502i, 3702i and 3802i

Prime: Prime Infra 3.0

PROFESSIONAL EXPERIENCE

Confidential, Danbury, CT

Ass. Consultant

Responsibilities:

• Analyze existing Infrastructure such as Switches, Routers, FWs, WAPs, SRST GWs, etc. Find out the current status e.g EOS and EOL and Smart net coverage. WAN BW, local internet BW report. Based on analysis, suggest the Up gradation of devices, WAN BW and local internet BW.
• Define the new Design, for Data, VoIP, Wireless, Mobility etc.
• wif All redundancy in place and execute the design wif appropriate standard process of change request as per industry standard.
• Design includes MPLS as primary and VPN will be secondary for general traffic, Local internet as primary and through MPLS to DC internet as Secondary.
• Register WAPs in WLCs. Configure HA for WAPs for redundancy.
• Implement QoS across the globe for various Traffics, e.g-VoIP, Video, Skype, business critical traffic etc.
• Define DSCP marking for various traffic.
• Build site to Site VPN tunnels from DC to third party vendor or remote locations.Data center Consolidation.
• Migration of Small DCs into Tier3 DCs across the globe (USA, EMEA and APAC)
• Migration of Servers, Routers, Switches etc. to the Core DCs.
• Analyze the capacity of existing network and suggest Up gradation /Expansion for the new Servers etc.
• Hosting of URLs through LTM, GTM and DNS as per DC standard.
• Design the traffic Flow of General internet and Ecom wif redundant ISP.
• Implement eBGP wif ISPs and iBGP among DC routers, FWs etc. for traffic manipulation.
• Seamless Traffic failover in between ISPs for different traffic through BGP routing Protocol.
• Migrate small Office VPNs to DC for better BW and optimized resources.
• DC based VPN FO across regions.
• Upgradation of Routers from ISR 3900 to ISR 4451 for better throughput.
• Integration of Cisco 9K Switches into Existing Infra for high BW (40G) uplink.
• Configuration of PL, vPC etc.
• Configuration of VDC for different segments in 7K switches.
• Implement HA for DC resources like passive redundancy, HW redundancy, ISP level redundancy etc.
• URL Hosting and Migration.
• Creation of New Ecom URLs in LTM.
• Creation of Profile, Customize health Monitor, iRule SSL timeout etc. as per requirement.
• SSL certificate Offloading,
• URL redirection through iRules.
• Expose the URL to Internet through FWs.
• Creation of WIP, virtual Servers etc. at GTM for the respective region LTMs for load balancing.
• Ensure DC level Redundancy through GTM based Load balancing.
• Host/A/C Name Record creation in DNS.
• Migration of Juniper SSG and SRX FWs into ASAs.
• Use Cisco Support tools to convert Netscreen OS and Junco’s config file to ASA.
• Upgradation of Legacy ASA/PIX into Nex Gen FW wif SF.
• Upgradation to HA where their is a Single point of failure.
• Deployment of SSL any connect VPN across the globe.
• GTM based load balancing of SSL any connect VPNs.
• Installation of CA for Any connect vpn.
• Integrate Source Fire into FMC.
• Integrate ASAs into CSM for central management. Discover the devices, Multiple Deployment method eg. File and device etc.
• Migrate CSM from UCS appliance to VM and Up Gradation to 4.14.
• Prepare Technical documentation and SoPs for Operations
• Migration of Domains from Infoblox to Cloud.
• Configure the Access list for domain AXFR domain query.
• Configure the domains in Cloud as Salve.
• Sanity check of Primary and secondary name server to make sure of Sync in between them.
• Coordinate wif Registrar to make Cloud NS server as primary.
• Lock down the Domain in the Infoblox so that No changes are made
• Provide training and Prepare Technical documentation & SoPs for Operations
• F5 LTM Load balancer Migration.
• Installation of New viprion chassis, Installation of LTM license.
• Configuration of Interface, VLANs, trunk and floating IPs.
• Routing for internal and external destinations.
• Migration of URLs from Old LTM to New LTM, Configure the switch and FW to manage those traffic,
• Migrate UCS/SCF file from 9.x series LTM to 11.x series LTM.

Confidential

Sr Engineer

Responsibilities:

• Managing Network and security related Issues for 3major locations Singapore, Malaysia and USA.
• Managing routers, switches, FWs and Load balancers.
• Configuration of routing protocols such as EIGRP, OSPF and manipulate Network Traffic.
• Managing all Layer2 switching technology like Vlans, trunks, advance STP like BPDU guard, Portfast etc.
• Managing Layer 2 port security, Intervlan routing, Port channeling etc.
• Manage FW policies, Access control list, Natting, Object group, etc.
• Managing Site to Site VPNs, Remote access VPNs etc.
• Compliance based standardization e.g. OS upgradation, Device hardening, SNMP management etc.
• Manage proper documentation of Network like Flow process, Location diagram etc.
• Troubleshoot all layer2 and 3 switching issues, like STP, Root guard, BPDU guard, bpdu filter etc.System Integration Projects.
• Define the industry standard practice for designing the new Infra.
• Collect information like, user strength, Application usage, types of applications, etc. to decide the devices model like routers, switches, FWs etc.
• Prepare HLD and LLD for the new project.
• Installation of cisco 2800, 2900 series routers, Cisco 4750 switches, FWs, standalone Autonomous cisco 1200 Series WAPs.
• Co-ordinate wif ISP for eBGP establishment for Internet traffic.
• Learning of default-Only routes and Advertise customer Public subnet for Internet accessible.
• Installation of F5 Link controller for ISP load balancing for internet traffic and Auto Failover.
• Implement routing protocol EIGRP in between internal Routers through the MPLS cloud.
• Configure SVIs, Intervlan routing, HSRP, VTP, port security etc. in the Layer 3 and 2 infra.
• Design all layer2 uplinks wif 10G model wif ether channel for redundancy and ensure the best practice of STP like BPDU guard, Root guard etc. for layer 2 Security.

Confidential

Sr. Engineer (Network management)

Responsibilities:

• Installation of 10G based layer 2 Oracle switches in the Data Centers for Oracle servers.
• Configuration of port channels across the switches wif 10G bundles.
• Analyze the data traffic of high end servers through the switches and ensure we has proper flow control on this.
• Configuration of Jumbo frame in the switches for the heartbeat links for faster sync up and data backup
• Installation of cisco 7k switches as Layer 3 switch. Configuration of SVIs, Intervlan routing, VDCs, vPC etc for Production and test environment traffic flow.
• Installation of Fexes for Nonoracle based servers.
• Design for HA from active and passive areas for 100% Uptime for servers (Server Dual Home Concept).
• Prepare design Documentation and flow control for Operational work.

Confidential

Sr. Engineer

Responsibilities:

• Manage day to day network and security related issues.
• Manage Cisco 3800, 3600, 2800 and Juniper MX-5, MX-10 & MX-960 routers across DCs.
• Configuration of routing protocol like iBGP, IS-IS in routers for internal network.
• Configuration of Route reflector and BGP peer group among iBGP peers.
• Managing Cisco PIX and ASA FWs.
• Configuration of Site To Site IPSec tunnels for third party and remote locations.
• Configuration of SSL VPN in juniper SA 2500 series FWs.
• Manage Email Gateway cisco C100 Ironport for External Domain mails.
• Configuration of Access control Lists, and Nat statement for exposing servers and for third party remote access.
• Installation of lease Line, frame-relay for different customers.
• Configuration of VRFs for different customer to isolate the issue of subnet over lapping.
• Installation of Metro Ethernet for VLAN Extension (VPLS).
• OS upgradation of Pix and ASAs, Routers, Switches to maintain Compliance standard.
• Manage ISA proxy for Web filtering.
• Data Center Buildup and Migration.
• Design and develop new Tier 3 DCs at MTN Swaziland Head Office.
• Responsible to check the standard for DC like rack design, Rack Space, HVAC etc.
• Upgradation of E1 links to STM links and Installation
• Installation of HA pair of Juniper MX-5, MX-10 series routers across DCs to manage high volume data flow.
• Migration from Cisco 3845 to Juniper MX5 and 10 routers.
• Up gradation from PIX to ASA.
• Configuration of IS-IS for IGP, and iBGP for routing.
• Configuration of VRF over MBGP cloud for Private Subnet across Locations.
• User and Server Vlan Extension from Old DC to New DC through VPLS.
• Department Wise Vlan creation, Intervlan routing
• Advance Routing like PBR, Traffic manipulation etc.
• DC Upgradation and Expansion
• Analyze the Current infra, loop holes and come up wif the plan.
• Installation of Cisco N7K (7010) wif Dual Sup engine for redundancy.
• Configuration of VDC for Prod and NonProd environment.
• Allocation of resources e.g. interfaces etc. based on Line card e.g. M1, f1 etc.
• Installation of Cisco 5555-x series FWs for Server DMZ.
• Configuration of static NAT and Access list for Web Server, Exchange server, FTP server etc.
• Configuration of Object groups for Access lists.
• Installation BlueCoat Proxy SG900 Series and Antivirus for Web filtering.
• Department wise Role Based policy for web filtering through VPM.
• Bluecoat Reporting tool to manage the top talker, top URL, etc.
• Integration of Bluecoat AV device wif Proxy for internet Traffic.
• LDAP Integration for Bluecoat Proxy for User Based Filtering.
• Installation of cisco C-100 series iron port for Redundancy of Mail GW.
• Integrate Iron port wif Domain for MX record etc.
• Installation of F5 Viprion 2400 series chassis wif 2100 series Dual blade for HA wif LTM license
• Configuration of Viprion for LTM license.
• Creation of Virtual servers, pools, Nodes etc.
• Configuration of Profile, Customized health monitor etc.
• Installation of SSL certificate for SSL Offloading for HTTPS URLs.
• Configuration of Partition in LTM

Confidential,

Sr Engineer (Network Management )

Responsibilities:

• Responsible for Day to Day Operational related activity.
• Manage network and security related incidents like Routing issues, Link failure, FW Issues etc.
• Responsible for Device monitoring and Take necessary actions as and when needed for any abnormalities.
• Manage Network devices across the globe Locations for USA and APAC region.
• Configuration of EIGRP routing protocol and traffic manipulation.
• Installation of New L2 MPLS link, L3 MPLS link, Lease line, DS3 etc.
• Configuration of L3 vlan (SVIs) in the 6500 switches, Intervlan Routing, Policy Based routing based on vlan traffic for different ISP.
• VLAN Movement for different Customers.
• Configuration of HSRP for the new VLAN for redundancy.
• OS upgradation for Switches, Routers, PIX and ASA.
• Device hardening as per compliance policy.
• Handle Internal and external Audit issues wif the Network Related devices.
• Troubleshoot Failover issues of PIX and ASA.
• Configuration of Advance technology like, Policy Based routing, Source based Natting, Traffic route manipulations.
• Configure cisco Autonomous 1200 series Aps wif multiple SSID for internal and external Customers etc.
• Prepare implementation plan as per project management team.
• Configure and Installation of New MPLS link and 3800 and 7200 series routers for new customers.
• Configuration of Multilink Bundles wif E1 and T1 pipes
• Configure cisco 4000 series switches as L3 wif HA pair. Configuration of HSRP protocol for redundancy.
• Configuration of Intervlan routing, Access-list etc. to restrict traffic flows to different environment.
• Configuration of Both data and VoIP VLANs.
• Installation of PIX wif HA Pair for Failover.
• Configuration of Site to Site VPN for third party customers like KOHL, SEARS etc.
• Built network integration wif Customers like Citi bank, TWC, Capital One, Adobe, Getty Image, Target etc.
• Configuration of Routing protocols, Redistribution of different Routing protocols, Redistribution of EIGRP wif different AS number.
• Configuration of Static VTI based topology for major locations to reduce the Latency,
• Configuration of IPSLA tracking for ISP auto failover in router and manual flipping of traffic in PIX.

Confidential

Engineer (Network Management

Responsibilities:

• Used to manage network infra for almost 21 counties across the globe for i2 Technologies
• Support the network activities as well as monitoring the devices.
• Take Proactive measures before any critical situation.
• Escalate to next level for any critical incident or outage.
• Follow the industry standard process for Incident and change management.
• Responsible to provide periodical and On Demand reports to customer senior management
• Configure Routers, switches and Firewalls etc. for day to day requirement.
• Installation of New Switches, configuration of L2 technology like Vlan, VTP, trunking. L3 technology like SVIs, Intervlan routing etc.
• Configuration of HP Site Scope tool for Devices monitoring.
• Involved wif many project implementations as a team members.
• Successfully completed IT related projects for different customers.
• Implement network setup for 40 regional sites to its HO successfully.
• Build up fully phased network and security setup for NIT (Warangal) individually
• Installation devices like Cisco Routers, Switches FWs etc. for different Customers.
• Collection of Information’s to understand the requirement and prepare Plan Of action to integrate the Devices into Existing network.