PROFESSIONAL SUMMARY:

• CCNP Certified Professional with 9 plus years of experience in routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Extensive experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF and BGP.
• Racking, Stacking, configuring, Nexus 5K and 2K and 7K.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches.
• Experience in sourcefire implementation and design
• Design, Build, and Implement various solutions on Check Point Firewalls, Blue Coat Proxies, F5 Load balancers and F5 Global Traffic Managers.
• ManageCitrixuser group policies andCitrixgroup policies.
• Netscalersupport and configuration.
• Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud - based) process that does not impact stream processing.
• Implemented NetApp storage and Cisco UCS compute environment
• Engineered and implemented IDS and IPS for the traders' servers and data center
• Network security including NAT/PAT, ACL, and ASA/PIX Firewalls.
• Good knowledge with the technologies VPN, WLAN and Multicast.
• Knowledge of protocols like DHCP, DNS, TCP/IP.
• Implement security policies using ACL, IPSEC, SSL, VPN on ASA … AAA, ACS ISE/Dot1x.
• Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Manage all network and devices to include Cisco routers, switches, VPNs, SSL, Check Point, Cisco PIX, Cisco ASA, Cisco FWSM as well as content delivery networks (CSS, Citrix Netscaler and F5 BigIP LTM and GTM 1600 and 3400 load balancers) enterprise environment.
• Experience in configuring Site-to-site and remote access VPN solutions.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• In depth understanding of IPV4 and implementation of Subnetting.
• Experience in NOC (network operation Center) and DATA center.
• Administered LAN that utilized 802.1x to secure wired and wireless networks.
• Configured Security policies including NAT, PAT, VPN, Route-maps, prefix lists and Access Control Lists.
• Checkpoint Level3 operations support with hardware operations - fixed all problems & RMA’s, taking any escalations that dealt with the equipment and its connection: interfaces,VLAN’s, routes, etc.
• Extensive Experience in WAN Technologies, Switching Technologies along with Failover Mechanisms & Inter Vlan Routing types.
• Experience in designing, implementing and supporting networking components of Cisco UCS implementation.
• Configured Sourcefire Sensor, ASA Firewall, Defence Center, FireAMP, NetAMP
• Worked on ACE load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Managed VPN token issuance via RSA implementation.
• Involved in iRule management like loading rules, writing iRule syntax using TCL language.
• Involved in design and deploying various network security & High availability products like Cisco ASA and other security products.
• Deployment of configuration and improvement over a large number of physical & virtual servers with Chef and Puppet.
• Adept in preparing technical documentation and presentations using Microsoft Visio/ Office
• In-depth knowledge and hands-on experience in Tier II Confidential Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, Firewalls.
• Have knowledge in Ciscomonitoring and troubleshooting tools.
• Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC & MPLS.
• Expertise on Cisco Datacenter Switches such as Nexus 6500, 7000.
• Experience in implementation, support and trouble shooting of VLAN’s including operational knowledge spanning tree protocol (STP),VLAN Trunking, inter VLAN routing and ISL/802.1q.
• Maintenance of existing network for day to day activities like link utilization and traffic monitoring.
• Working experience with Natting techniques on firewalls such as Cisco PIX, Cisco ASA Appliance.

TECHNICAL SKILLS:

Routing: ISIS, OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static Routing, GSR and CRS1

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, MPLS, Transparent Bridging

Routers: M120 Cisco 2620, 2901, 3925, 3945E, 7201, 7613

Switches: Cisco Catalyst 2232, 2960, 3560, 4507R+E, 5596, 6509-E, 7009, Nexus 2232, 5596, 7009

Network Security: Cisco ASA 5540, ACL, IPSEC

Load Balancer: F5 Networks (Big-IP) LTM 6400, 1600

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet

WAN: PPP, HDLC, Channelized links (E1/T1/E3/T3), Fiber Optic Circuits, Frame Relay. Gateway HSRP, VRRP, GLBP

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Network Management: Wire shark, SNMP, Ethereal, EMC Smarts

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7, 10)

Tools: Pythonscripting

PROFESSIONAL EXPERIENCE:

Confidential, New York, NY

Sr. Network Engineer

Responsibilities:

• Conversions to BGP WAN routing which involves converting WAN routing from OSPF/EIGRP to BGP
• Troubleshot LAN/WAN by using routing protocols EIGRP, OSPF, & BGP.
• Switching related tasks included configuring VTP for Inter-VLAN Routing, Ether Channel (LACP & PAGP) and RPVST for loop avoidance.
• Configuration of Standard and Extended ACLs for Security.
• Configured DUO dual factor authentication integrated with Cisco ASA VPN andNetScaler5500 FIPS
• Build, configure, deploy & support ofCitrixNetScaler10.1, 9.3, x - GSLB, Content filtering & Application Firewall. Managed CAG 5.0.4.x, Web Interface/Storefront support/configuration.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Configure / Troubleshoot CISCO 12000, 7500, 3800 series routers and 3560 series switch for LAN/WAN connectivity.
• Configuration of IPS and Blue-coat Proxy SG for internet proxy and content filtering
• DNS administration like adding/modifying/deleting IP and DNS assignments using InfoBlox.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Configured network using routing protocols such as EIGRP MPLS, OSPF, and BGP and troubleshooting L2/L3 issues.
• Responsible for security assessment of CISCO ASA 5500-X series Next-Generation Firewalls, IDS Sourcefire Defence Center to find vulnerabilities like CSRF, XSS, SQL Injection, Code Injection, Authentication & Authorization Bypass
• Proactively manage customer Firewall’s (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS) and other security threat data sources on Check point, Palo Alto and Juniper FW’s.
• Experience on NOC operations like Hotline calls and Network performance monitoring.
• Actively involved in Switching technology Administration including creating and managing VLANS, Port security- 802.1x, Trucking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Configured the F5 Load balancers to distributes network or application traffic across a newly deployed servers to improve the overall performance of applications and increase capacity concurrent users and reliability of applications or servers
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• VPN / WAN Support -Network Monitoring/24-7 Maintenance
• Build various network technologies from the ground up specifically Bluecoat Web proxies.
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher(RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP
• Implemented Access lists and policy mapping onJuniperrouter installed in each branch across all the states.
• Supporting ISIS and BGP based on the network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Upgraded switches with updated Cisco IOS images and perform initial switch configuration including AAA security, generating RSA keys, and configuring switch ports for various end devices.
• Supported on Cisco Nexus 5000 and Nexus 7000 Series Switch fabric links.
• Redistributing from RIP to OSPF and vice versa by implementing Hub and Spoke topology with a Frame Relay Switch.
• Infoblox was used as the DHCP and DNS server for centralized management
• Performed Site-to-Site VPN's, VPN concentrators, ASA's, Anyconnect, 802.1x with ISE, Radius, ACS.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Responsible for 3rd level data support. Design and implementation of network security elements-intrusion detection, VPN, checkpoint firewalls, firewall rule additions, incident responses, documentation, Confidential and Xbream hardware. Incharge providing support troubleshooting Network and DNS issues with client DHCP Scopes and Scopes assigned on the firewalls and VPN appliances.
• Responsible for writing processes and procedures on Netmotion, Endpoint Encryption, Blue Coat ProxySG, Proxy Web Filter, ProxyAV, Proxy Reporters, and Proxy Director, F5, Checkpoint Firewalls, Cisco Pix, Smart Dashboard Server 7.0.
• Experience in building Brand new CISCO UCS C 460, C 420 and making necessary patchings to core gateways.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Tasked with design, implement and support of 802.1x/NAC with EAP/Radius Wired and Wireless, AAA, and ACS
• Experience with design and deployment of Client VPN technologies including Cisco’s IPSEC VPN between the ASA Firewall and between Cisco Routers.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Experience with deployment of Fibre Channel over Ethernet(FCoE) between the Data Centers using Nexus 5548P Switch.
• ExtensiveAristaand Cisco Nexus 3000 low latency systems
• Cisco Nexus 7K, 5K, 2K and UCS Deployment in multi-tenant design w/Cisco ASA 5585-X's
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP
• Troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP, MPLS
• Implemented Site-to Site IPSec VPN between two branch offices and also SSL VPN for user’s connecting from various locations.
• Established test environment for prototypePRLProject comprises of Solaris 2.5
• Actively involved in Data Center Migrations and its operations.
• Configured Security Policies including NAT, PAT, AAA, ACL’s Standard Access Lists, Distribute-Lists, Route-Maps, VPN Concentrators, IPS/IDS, (PIX, ASA) firewalls
• Implementation and Configuration ( Profiles, iRules) of F5 Big-IP LTM-6400 load balancers
• Provided Layer-3 redundancy by implementing HSRP and GLBP for High availability

Confidential, Irving, TX

Sr. Network Engineer

Responsibilities:

• Worked as part of a team to manage Enterprise Network Infrastructure as a Tier 3 Support Engineer.
• Responsible for maintaining the entire Routing and switching domain across the campus / Branch to Head Office and also the Layer-2 campus network across the remote branches which included configuring VLANs .
• Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide Security and
• Controlled/ restricted access.
• Design the firewalls rules on Cisco ASA 5520 and 5540-X and implemented the different NAT policies
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Administration of Checkpoint Firewalls, migration from R 65 to R 70, upgrading SLAP OS.
• Configuring Blue Coat Proxies, IOS upgrade and creating rules and policies.
• Dealt with implementation of deployment related to Cisco devices and applying security policies on it.
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Migration of Palo Alto firewalls from ASA
• Working on IPS and IDS (sourcefire and fireeye)
• Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP
• Providing Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Worked with Wireless Control Systems, Access Point, and 802.1x, PKI, EAP, TLS technologies.
• Upgrade of Legacy network from 6500 series to Nexus 5596UP and fabric extenders 2248 for Data center servers, Installation UCS 5100 series server install
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Creating Wide IPs with various load balancing methods like Global Availability, Topology and Round Robin.
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention & URL filtering
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and Cisco 2950, 3500, 5000, 6500 Series switches.
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Has a good experience working with the Trouble Tickets on F5 Load balancers.
• Experience on NOC operations Telco circuit issues and Network performance monitoring using Solarwinds, Net brain and riverbed
• Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
• My responsibility was also to add new BGP peers for remote branch offices and business partners
• Scaling of IGP and BGP in the core.
• Monitored network traffic and developed capacity planning initiatives, making necessary recommendations additional resources or hardware.
• My responsibilities also include writing and executing Test Plan, Desk level procedures and Test Case document for smooth network operations.

Confidential, Broomfield, CO

Network Engineer

Responsibilities:

• Assisted in troubleshooting LAN & WAN connectivity and hardware issues in the network of 10000 hosts.
• Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
• Experience with configuring BGP, OSPF on 7609 router.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP & OSPF routing protocol administration.
• Interacted with support services to reduce the downtime on leased lines.
• Dealt with creating VIP (virtual servers), pools, nodes and applying Irules for virtual servers like cookie persistency, redirection of the URL.
• Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.
• Support customer with the configuration and maintenance of PIX and ASA firewall systems.
• Assisted with various duties that will arise including: implementation, configuration, management, rules definition, problem solving, design advice, troubleshooting, updating, maintenance, etc.
• Monitor the operability and reliability of the network.
• Maintenance and Troubleshooting of LAN connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks (VLSM).
• Worked on project and coordinated with cabling vendors.
• Involved in troubleshooting IP addressing issues and Updating IOS-XR images using TFTP.
• Worked along with the team in ticketing issues.
• Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issues

Confidential, NY

Network Engineer

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Implemented ISL and 802.1Q for communicating through VTP.
• Working with Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Deploying the network infrastructure to meet the requirements
• Created VLAN and Inter-Vlan routing with Multilayer Switching.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, and etc)
• Providing technical consultancy for better application response using QoS
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP, OSPF, BGP EIGRP routing protocol administration.
• Installed wireless access points (WAP) at various locations in the company.
• Build and maintain Visio documentations for Clients
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites.
• Other responsibilities included documentation and support other teams.