PROFESSIONAL SUMMARY:

• 6.5 years of Experience in Network Security, Network Engineering, Firewalls, Systems Analysis and Design, Implementation, Deployment and Maintenance.
• Experience working with security devices such as Firewalls, VPN switches and Intrusion Detection Systems.
• Extensive experience working on Cisco and Juniper routers/switches in complex environments with multiple ISPs.
• Expert in dealing with Networking Protocols and Standards such as TCP/IP, OSI, UDP, Layer 2 (VLANs, STP, VTP), Routing Protocols (RIP, EIGRP, OSPF, BGP), WAN technologies (Frame relay, IPSec, VPNs, MPLS), QoS.
• Experience working on Cloud Computing Virtualization using VMWare ESXi 4.0 and Windows Hyper - V.
• Experience on Network Monitoring & Testing tools such as Wireshark/Ethereal, Cisco Works, and IXIA.
• Good understanding of VoIP implementation and protocols such as H.323, RTP, and SIP.
• Experience in troubleshooting NAT configurations, Access-Lists (ACL), and DNS/DHCP related issues within the LAN network.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and valuable experience on IP services.
• Good understanding of cable management such as CAT3/4/5, Fiber-Optic (Multi & Single mode fibers).
• Knowledge of Subnetting IPv4/IPv6 addresses and IP address management.
• Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
• Familiar with security products such as Cisco ISE
• Implementation of HSRP, VRRP and GLBP for Default Gateway Redundancy.
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Hands-on experience with TCP/IP, LANs, WANs, and WLANs (WiFi)Cisco VPN Concentrators, F5 Fire pass SSL VPN, 6509 Core Datacenter designs.
• Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection
• Worked on Palo Alto Firewall
• Worked on Cisco ASA 5500 series firewalls.
• Worked on Cisco Nexus 5010 Switch.
• Experience in F5, Cisco ACE 4710 Load balancers.
• Exposure to Cisco WAAS, WCS.
• Expert Level Knowledge about TCP/IP and OSI models.
• Familiar with security products such as Cisco ISE
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.

TECHNICAL SKILLS:

Operating Systems: Windows (Server 2003/2008, Vista, Windows 7), Linux OS

Routers: Cisco GSR12016, ASR1001, 2900, 3900, 7200, 7600 & ASR9000

Switches: Cisco 3750, 4507, 4510 & 6500 series switches, Nexus 7010, 5548

Routing: MPLS, OSPF, EIGRP, BGP, RIP: 2, PBR, IS-IS, Route Filtering, Redistribution, Summarization, Static Routing

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging.

Network security: Cisco (ASA, PIX) 5510, Palo Alto, juniper, ACL, IPSEC VPN, GRE VPN, NAT/PAT, Filtering, Load Balancing, IDS/IPS

Load Balancer: F5 Networks (Big-IP) LTM Module, Cisco ACE 30 load balancer

LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet.

WAN: Leased lines 128k: 155Mb (PPP / HDLC), Channelized links (T1/DS3/OC3/OC12), Fiber Optic Circuits, Frame Relay, ISDN, Load Balancing. Various Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP Management

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Network Management: SNMP, Solar Winds, HP open view, and Wire shark

Reports and Network Diagrams: Microsoft (Visio pro.)

EXPERIENCE:

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Designed, built, and implemented various solutions on Check Point Firewalls, F5 Load balancers and F5 Global Traffic Managers.
• Experience in delivery of our proposed Wireless and Route Switch solutions centered on Cisco products
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
• Experience in delivery of our proposed Wireless and Route Switch solutions centered on Cisco products.
• Experience in deploying Wireless controllers, Wireless access point, Wireless Sniffer.
• Experience in Configure Vlans, VTP, STP, RSTP
• Experience on Upgrade on 5k, 7K Nexus device.
• Resolved trouble tickets generated by McAfee reports and security threats.
• Pushed out policy updates to endpoints using McAfee Security gateway.
• Hands-on experienced in Network Security, firewall, DMZ design, IPSec VPN, PKI, Network monitoring, Network gateways, Network design / topologies, and Networking protocols.
• Designed solutions to challenging Security problems and Security Designs.
• Configured, implemented and supported Juniper QFX10000,5200 and 5100 Switches.
• Configure F5 Big IP to provide Load Balancing for server farm
• Worked on F5 Big IP LTM, GTM 1600 and 3600 series load balancer
• Configured with F5 Load balancers in Failover for Load balancing and SSL
• F5 Big- IP LTM-6400 load balancers, all Clustered, 3DNS GTM Balancers, Active and Secondary Datacenter's, working with IIS 6 and up for migration
• Configured with F5 Load balancers in Failover for Load balancing and SSL handling
• Configured F5 BiGip to provide Load Balancing for server farm.
• Experience with configuring VIPs on F5 and Citrix load balancer which include creating policies and creating redirection rules.
• Created, deployed and managed BigIP F5 load balancer nodes and pools.
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters.
• Configured with F5 Load balancers in Failover for Load balancing and SSL handling
• Configured F5 BiGip to provide Load Balancing for server farm.
• Experience with configuring VIPs on F5 and Citrix load balancer which include creating policies and creating redirection rules.
• Pushed out regular policy updates in McAfee security gateway.
• Monitored security related logs and events to identify potential threats.
• Implemented and administered Websense Web Security Gateway for web content filtering and DLP.
• Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/Routing/NATing
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Responsible for Checkpoint and Cisco ASA firewall administration across our global networks.
• Extensive experience in Installation, Configuration and Administration of FIREWALLS i.e. CISCO, Cisco ASA 5510, 5520, 5540, 5550, 5580, Juniper SRX, Junos, Fortinet, Checkpoint NGX-1/VPN-1 Firewall.
• Expert in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/Routing/NATing with the firewalls as per design.
• Experience in Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Experience with Checkpoint and Cisco ASA firewall administration across our global networks
• Proficient in Installing, Configuring and Troubleshooting the following network devices:
• Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware.
• Installation, configuration, and management of WAN optimizer, Riverbed Steelhead.
• Implemented and supported SSL VPN network tunnels on F5 APMs.
• Architect, implement and manage LAN and WAN development leading to a flexible infrastructure that minimizes the reliable on consultants.
• Proficient with IP access list, Cisco Discovery Protocol(CDP), Static Routing, Network Address Translation(NAT), VLAN Trunking Protocol(VTP) and HSRP.
• Replaced 6500 from access layer and installed 3000 Series Switches.
• Worked on 2600, 3500, 7613 Cisco Routers and 4500 and 6500 series Cisco Switches.
• Configured and managed Cisco access layer routers and Switches and carried out route redistribution and manipulated route updates using distribute lists, route-maps and administrative distance and offset-lists.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Established policies and procedures related to Systems Security and Integrity.
• Deployed 100+ Cisco ASA 55XX firewalls at multiple sites.
• Performed hardware upgrade of Cisco ASA 55XX firewalls at branch offices.
• Upgraded several Cisco PIX firewalls to Cisco ASA 55XX.
• Maintained and supported multifactor authentication deployment using RSA secure ID with Active Directory, ASA and Cisco integration.
• Experience working with 5505, 5510, 5520 and 5550 model ASA's.
• Configured over 200+ Site-to-Site & Remote Access VPNs on PIXs, VPN Concentrators, IOS routers and ASAs.
• Skilled knowledge of RIP, EIGRP, BGP, OSPF
• Deployed the iRules using TCL for the Enterprise Intranet work for the VLAN based applications and their load balancing between datacenters.
• Worked on different networking concept and routing protocols like HSRP, DHCP, DNS, LAN/WAN technologies.
• Implemented layer 2 access switching networks with spanning tree and vPC technologies.
• Implemented standard configurations template scripts in various network devices for SNMP v2, logging and STP.
• Performed VSS on Cisco catalyst 6500 series Switches.
• Tested various BGP attributes like local preferences, MED, Weight and replicated customer issues in the testing lab environment.
• Racking and stacking of Cisco 3750 Switches.
• Maintenance of corporate VLAN, adding new hosts and nodes to network for expansion.
• Implemented and supported SSL VPN network tunnels on F5 APMs.
• Implemented and supported security policies in ASM for securing LTM VIPs.
• Configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication.
• Installing and configuring firewalls like checkpoint NG & NGX.
• Managing and configuring Cisco Switches and Firewalls independently.
• Monitoring network infrastructure using SNMP tools like HP Open view.
• Involved in configuration of Access Lists (ACL) for the proper network routing for the B2B network connectivity.
• Worked with customers in troubleshooting issues related to connectivity STP, VLANs, Inter-VLAN routing, VTP, Ether-Channels, Layer 2/3 switching and log messages.
• Dealt with NAT configuration and troubleshooting issues related to access list and DNS/DHCP issues within the LAN network.
• Design and implement corporate solutions for email, internet, virus protection, disaster recovery, data storage and backup, system and bandwidth monitoring.
• Created business cases for supporting network infrastructure upgrades and changes.
• Provide 24/7 on call support and document the environment.
• Implemented and managed network monitoring tools like Nagios and solarwinds and other modules.
• Hands-on experience in datacenter environment (LAN/WAN/security/application).
• Hands-on experience with design and implementation of large IP networks.
• Knowledge of debugging Cisco ASA Firewall and strong understanding of TCP/IP.
• Detailed knowledge and experience of layer 2 protocols that includes Spanning Tree Protocol, VLAN Tagging (802.1Q), Link aggregation (IEEE 802.1AX).
• Manage Cisco Router, 29000xl switches and 3Com hubs configurations for WAN and LAN interfaces.
• Optimized performance for the WAN network consisting of Cisco 4500/5500 switches by configuring VLANs.

Confidential, Omaha, NE

Network Engineer

Responsibilities:

• Involved in Configuring Cisco routers and switch administration, familiar with enterprise level Cisco Routers such as 7200 Series, 3800 Series, 3700 Series, 2800 Series, and Cisco Catalyst series switches like 6500, 3750, and 4500
• Managing and Configuring Cisco Switches and Firewalls independently.
• Configuring and install hardware and software required to conduct network penetration testing.
• Experience in infrastructure strategies, hardware/software, security and networking products.
• Good experience with Check Point Provider - Version R62 and R65.
• Experience with configuring, supporting and troubleshooting security products including Checkpoint, Juniper, Cisco, IDS solutions and others.
• Create self-signed certificate and deployed on load balancer.
• Worked on LWAP and EAP protocol.
• Designed highly redundant and fault tolerance for the financial industry clients.
• Provide on call support and created documentation on the issues solved.
• IOS upgrade and router hardening for 2600, 3600, 7200 routers and 6500, 2900 and 3500 series of switches.
• Investigated and resolved network issue using troubleshooting skills and network sniffers.
• Assisted with establishing Network Operations center (NOC) to proactively monitor the network resulted in better SLA and network performance.
• Experienced in Web gateways, firewall, IPS/IDS, VPN, DMZ and proxies.
• Maintained and supported daily, weekly, and monthly backups for servers and network configurations.
• Hardware migration from Citrix Netscaler NS 7000 to MPX 9500.
• Involved in setting up new Citrix Netscaler SDX 15000.
• Experience in the PCI remediation project, which includes Switches, Routers and Firewalls.
• Managed network monitoring tools like Solarwinds and Splunk.
• Diagnose and solve Frame relay /T1 lines, CSU/DSU and routers connectivity problems.
• Configuring and managing network traffic using 3Com SNMP and access list.
• Configured/ administered/ deployed several Cisco 6500 series Switches.
• Good knowledge of standards and compliance such as ISO 27001, COBIT, SOX, SSAS16, ISAE 3420.
• Configured site-to-site & remote access VPNs on PIXs, VPN concentration, IOS routers and ASAs.
• Experience in managing and maintaining Nexus 5000 and 7000 series.
• Migrate Cisco series voice gateways.
• Implemented and administered websense Web Security Gateway for web content filtering and DLP.
• Implementation of checkpoint Firewall 4.1 to protect and authenticate local-net and DMZ.
• Defined policies, NAT and anti-spoofing for internal, external networks as well as Internet gateways.
• Configured multi-homed BGP with HSRP, to provide full fault tolerance and automatic failover
• Capabilities for several clients.
• Provide Network Operations support using Peoplesoft CRM.
• Designed and configured HSRP for redundancy.
• Used Fabric Extenders like 2248TP GE series for the top of the rack solution and used 5548P for the end of the row solution.
• Worked on physical site to gather the information of all network devices for device onboard program.
• Configuring and troubleshooting different protocols such as Static routing, VLAN routing, EIGRP and Frame relay.

Confidential

Network Engineer

Responsibilities:

• Worked on different networking concept and routing protocols like BGP, EIGRP, OSPF and other technologies.
• Hands on experience on the LTM Products like 6800 with 10.x and 3600 with 4.x with TMOS versions.
• Worked on Cisco Pix Firewall 520/515 and ASA 5500 series.
• Replaced 6500 from access layer and installed 3560s Switches.
• Configured and managed Cisco access layer routers and switches.
• Hands-on experience on installing IOS to the Cisco switches and routers.
• Identify additional Network operations requirement and improve opportunity with the help of senior engineers.
• Accountable for the performance of direct reports on daily basis.
• Assisted senior engineers in testing and troubleshooting when system failure occurs.
• Assisted the engineer’s team in the development and management of the network security policy.
• Experienced in various WAN technologies such as DSL, cable, T1 and MPLS.
• Experience in managing Cisco call manager and unity express.
• Maintenance of network Servers such as file servers, VPN gateways, intrusion detection system, etc.
• Upgraded IOS on over 15 Cisco 2000 and 3000 series Routers.
• Engaged in various migration projects like migrating V9.x load balancers to V10. X.
• Implemented the firewalls rules using Netscreen manager (NSM).
• Trained the interns with product technologies and infrastructure setups.
• Worked with customers in troubleshooting issues related to connectivity, STP, VLANs, Inter-VLAN Routing, VTP Ether Channels, Layer2/3 switching, log messages
• Possess excellent verbal and written communication skills and experience developing and maintaining technical procedure and documentation.

Confidential

Jr. Network Engineer

Responsibilities:

• Performed network engineering, design, planning (WAN & LAN) & implementation. Studied single point failures & designed WAN structure in such a way that there are no failures in network in case of any device or link failure.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between Switches.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices
• Designed and implemented security policies using ACL, firewall.
• Worked on Extensively on Cisco Firewalls, Cisco (506E/515E/525/) & ASA 5500(5510/5540) Series
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configured routing policy for BGP. Switching related tasks included implementing VLANs and configuring ISL trunk and 802.1Q on Fast-Ethernet channel between switches
• Implemented Cisco IOS Firewall IDS using 2600 series router.
• Troubleshooting on network problems with Wire shark, identify problem and fix.
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices
• Redistribution of routing protocols and Frame-Relay configurations.
• Configuring and troubleshooting type of routing to route traffic flow per customer requirement as primary, backup/load balanced and load splitting.
• Performed the maintenance of Active Directory and replication scheme, DNS/DHCP services and time services; wrote step-by-step procedures for implementing upgrades.
• Dealt with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL
• Configured VLANs on a switch for inter-VLAN communication. Configured VLAN Trunking Protocol (VTP) on Core Switches. Configured various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches for STP, VTP Domain, VLAN, Trunking, Fast Ether Channel configuration.
• Documented all the work done by using Visio, Excel & MS word.