SUMMARY

• 10+ years’ experience working in IP Network Infrastructure and Security Technologies.
• Hands on experience with TCP/IP and related routing protocols (OSPF, EIGRP, ISIS and BGP) configuration, testing and trouble - shooting in Cisco and Juniper Routers and Switches.
• Experience in working with IP security related technologies - including IPSec encryption, DMVPN, firewall policy, route-map, NAT and access-lists.
• Experience in implementing MPLS Layer 2/3 VPN (L2VC, VPLS, H-VPLS) and Carrier Ethernet Services (Q-n-Q, E-Line, E-LAN and E-Tree).
• Experience in implementing infrastructure related changes in Cisco Data centre.
• Experience in deploying Wireless LAN Controller/AP in medium and large co- corporate offices.
• Hands-on experience with engineering, testing or deploying networks on Carrier Ethernet platforms ( Confidential, Alcatel-Lucent, Cisco, Juniper, Huawei).
• Knowledge of various Customer Services and CES drivers and requirements (Mobile Backhaul, Ethernet Business Services, SDH replacement, Lease line migrations).
• Proven experience in IP backhaul design and architecture and capacity planning for various technologies (4G/LTE).
• Demonstrated experience in IP Access Network plan, design, equipment installation, commissioning, integration, testing and acceptance.

TECHNICAL SKILLS

Protocols: OSPF, IS-IS, MPLS LDP/RSVP, MP-BGP, MPLS L3 VPN, L2 Circuit / Local Switching.

Features: VRRP, VRF, NAT, PBR, ACL, AS-Path Filtering, LACP, QoS.

Security: TCP/IP Network Security, Firewall Filtering, Private Networking (Site-to-Site, Client-to-Site, ISKAMP IPSEC, Route-Based VPNs), GRE/MGRE, MPLS, IPSEC (P2P/DMVPN)

WAN/QOS/VoIP/Wireless Technology: Riverbed, (PPP / HDLC / Frame Relay / MPLS / ISDN), 802.11b/g/a/n, Non-802.11, WEP, WPA, WPA2, Cisco WLC, Cisco NCS, Quality of Service, Cisco MQC, 802.1p, Voice over IP Protocols (SIP/H.323/MGCP / SCCP).

Data Center Solutions: VLANs, VTP, VDC, VPC, OTV, Ether-Channels, SPAN, RSPAN, ERSPAN, Trunking, Port Security, Spanning Tree (PVST+/RSTP+), VTP, Catalyst Stacking.

Routers: Cisco ASR9006/1006, VXR 7206, 2600/2800, 3845/3745, Juniper MX960/480/240, M320/120/10i/7i, Huawei NE40E-X8/X2, CX600-X1/X2/X8/X16.

Switches: Cisco 2950, 3550, 3560, 3750, Catalyst 4500/6500/7600, Nexus 5K/7K/2K, Huawei S5352 P-EI, S5352 C-EI, S5328, S3328, S3948, and S9352.

Firewall: Juniper SRX, Cisco 5500-X, Checkpoint.

OS: IOS, NX-OS, IOS-XE, IOS-XR (Cisco), Junos (Juniper), VRP (Huawei), IPOS ( Confidential SSR), Screen OS.

Virtualization: ESXi/VMware Server, VMware Workstation; Sun Cluster.

Scripting: Shell, Perl, NAWK, XML, HTML, PHP, ASP, JSP, and JSTL.

Services & Management: NTP, SNMP, IP SLA, Syslog, EEM Scripting, HSRP, WCCP, AAA, QOS, PIM-Sparse (In OTV DCI)

Network Management: HP Open View, Tivoli, Concord, BMC Patrol, Network Sniffer, Windows 2000/XP/2003, Linux, Solaris.

PROFESSIONAL EXPERIENCE

Confidential, New York

Sr. Network / Security Engineer

Responsibilities:

• Roll out of new customer network (routing and switching) and security (firewalls, load balancers, VPN) infrastructure and after successful roll out the hand over tasks to operation team.
• Deploying the Wireless APs and integrating them to the Centralised Wireless LAN Controller.
• Roll out the security policy changes (ACL, new Rules) in Firewalls and IOS-routers.
• Roll out the new policy in Riverbed for WAN optimization in branch offices.
• Integrating new branches to the HQ using IPsec site-to-site VPN over the MPLS cloud.
• Roll out the non-branch ATM and integrating them to the data centre over MPLS cloud or by using the ADSL.
• Configuring VRF, IPv4/VPNv4 BGP, MPLS L3 VPN to separate the customers’ traffic.
• Roll out the configuration changes (Voice and Data VLAN, VTP, STP, Ether Channel, CoS and QOS (Quality of service) configuration) in Data Center switches for new services.
• Implementing QoS on PE and CE routers and upgrading bandwidth and CoS as per client requirement.
• Conduct Layer 3 Data fill in Juniper PE Routers and in ISC for Cisco CE Router configuration.
• Perform pre and post installation UAT for both control and data plane traffic.

Environment: Cisco 7206, 3800, 3700, 3600, 876 VAE, 887, 888 Routers; 2950, 3560, 4506 Cisco Catalyst Switches; Nexus 2K/5K/7K; Juniper MX960/480, M320; Huawei CX600-X1/X2/X8/X16, S5300; Check Point; Cisco ASA; BGP, MPLS, OSPF.

Confidential

Lead IP Transport Network Engineer

Responsibilities:

• Configuration and Testing Routing Protocols (OSPF, ISIS, BGP), QoS Policy set-up, Radius server & AAA configuration to integrate new L3 routers in Core/Access Network.
• Configuring/Troubleshooting Network Security - SSL/IPsec VPN, AAA Architecture, TACACS+ and RADIUS while deploying the L3 network deployment.
• Implementing High availability clustering, Virtual contexts in Firewalls.
• Configuring and Troubleshooting MPLS/VPN L2/L3 services, MP-BGP protocol suite.
• Provisioning IP/Ethernet service (Ethernet o-MPLS, ESA, ELINE and ELAN) and CES services.
• IP DCN (OSPF) Configuration & Troubleshooting via DF/CLI/HTTP/SCT/LCT.
• Design document implementation for Fibre Optics, DWDM and IP networks.
• Configuration, commissioning and troubleshooting of IP Enabled Terrestrial Radios.
• Fault finding and fixing High level design (HLD) for capacity constrain and traffic engineering for IP solution of the existing and future network expansion.
• Provide technical expertise and support to Operations in the ongoing maintenance and surveillance of related networks and applications.

Environment: Cisco ASR9006/ASR 1006/2600/2800, Cisco Switches Cat 6500 Series/3500/3800, Check Point, Cisco ASA, BGP, MPLS, OSPF, ISIS.

Confidential

IP Transport Network Engineer

Responsibilities:

• Physical and logical network audits, for baselining, troubleshooting, performance tuning of the WAN, and LAN functionality.
• IP MPLS Network design implementation (VPLS, HVPLS, TE, RSVP and L2VC) and documenting the MOP followed by E2E service testing.
• Configuring/Troubleshooting Network Security - IPsec VPN, AAA Architecture, TACACS+ and RADIUS while deploying the L3 network deployment.
• Implementing IDP, High availability clustering, Virtual contexts in Firewalls.
• Configuring and Troubleshooting LAN Switching - VLAN, VTP, STP, Ether Channel, CoS and QOS (Quality of service) configuration.
• Provisioning and troubleshooting SDH/PDH services (CES, E1, STM1, STM4, STM16 and STM64).

Environment: Cisco ASR9006/ASR 1006/2600/2800, Cisco Switches Catalyst 6500 Series/3500/3800, Juniper MX960/480/240, Check Point Firewall, Cisco ASA Firewall, BGP, MPLS, OSPF, ISIS.

Confidential

Network Engineer

Responsibilities:

• Design and implementation of LAN/ WAN network using Cisco network infrastructures.
• Implementing E2E IP Backbone Network design and custom adaptations.
• Configure MPLS VPN, MPLS Traffic engineering, fast rerouting, QOS, EBGP, IBGP, OSPF, Route reflectors, confederation, LDP, RSVP for the IP core network
• Integration of Confidential IN, CS/PS core, OSS and service network nodes with IP Backbone Network and SS7 over IP (Sigtran) signalling implementation.
• Design, implementation and configuration of DNS, DHCP, RADIUS server, proxy server.
• Prepare integration report and acceptance test documents for customer approval and perform acceptance test with customer.
• Internal and external customer presentation and knowledge sharing.

Environment: Cisco ASR9006/ASR 1006/2600/2800, Cisco Switches Catalyst 6500 Series/3500/3800, Juniper MX960/480/240, Check Point Firewall, Cisco ASA Firewall, BGP, MPLS, OSPF, ISIS.

Confidential

Infrastructure Engineer

Responsibilities:

• Install, configure and maintain network services, L2/L3 equipment and devices.
• Configuring and Troubleshooting Routing protocols - EIGRP, OSPF and BGP.
• Configuring and Troubleshooting Application protocols - HTTP, HTTPS, FTP, SMTP, SNMP, SSL.
• VPN Configuration on Cisco ASA Firewalls (site-to-site IPSEC VPN, remote access VPN, any connect SSL Web VPN).
• VPN Configuration on Cisco Routers (site-to-site IPSEC VPN, remote access VPN, GRE with IPSEC VPN, Virtual Tunnel Interface - VTI).
• Implementing IDP, High availability clustering, Virtual contexts in Firewalls.
• General Cisco ASA configuration (NAT, Access Control, Routing, sub-interfaces with VLAN, Zoning i.e. access from outside to DMZ or internal servers).
• Troubleshooting analysis of UNIX servers, workstations and associated systems.
• User profile creation in Active directory and Exchange console using Citrix XenApp Client Tool.

Environment: Cisco 7206, 3800, 3700, 3600 Routers; 2950, 3560, 4506 Cisco Catalyst Switches.

Confidential

Network Service Consultant

Responsibilities:

• Analyse and simulate network designs and failure scenarios
• Prepare and evaluate network design documents, router configuration files and redundancy topologies
• Capacity expansion and apply traffic engineering in the IP Backbone network to ensure uninterrupted services
• Level 2 fault-handling and troubleshooting, configuration, integration and maintenance IP Backbone network
• Configuration of MPLS L3/L2 Client VPNs at PE’s and internet routers/firewalls
• Design & provide intranet connectivity (L2 VPLS circuits) for corporate clients such as, Banks, Universities
• Design & Configure E1/Ethernet intranet & internet connectivity to GP/GP-IT branch offices across the country

Environment: Cisco ASR9006/ASR 1006/2600/2800, Cisco Switches Catalyst 6500 Series/3500/3800, Juniper MX960/480/240, BGP, MPLS, OSPF, ISIS.

Confidential

Sr. Service Network Engineer

Responsibilities:

• Involvement in network redesign, router relocation, and router swaps projects
• Design documents, diagrams, traffic flows, technical and solution document preparation
• Integrate new telecom core network nodes, servers and services in the IP network
• IP backbone performance monitoring and analysis on the traffic trend
• Capacity expansion in Juniper MX480, M120 & M10i routers, Extreme switches, Huawei routers
• Expansion activities in the WAN links (inter-site) on the basis of forecast and new services
• Configure of MPLS L3/L2 Client VPNs at PE’s & provide intranet connectivity for corporate clients
• Configure E1/Ethernet intranet & internet connectivity to GP/GP-IT branch offices across the country
• Maintain performance Log, SNMP, Syslog, Cron-jobs in Solaris, Junos & ScreenOS systems

Environment: Cisco 7206, 3800, 3700, 3600 Routers; 2950, 3560, 4506 Cisco Catalyst Switches; Huawei NE40E, NE40-8 Routers, S5352 P-EI, S5352 C-EI, S5328, S3328, S3948, and S9352 LAN Switches

Confidential

Sr. Service Network Engineer

Responsibilities:

• Planning/design, implementation, operation and troubleshooting for Cisco switches, Cisco routers for LAN/WAN connectivity.
• Establish connectivity to the ISP via leased-line connections using Cisco routers.
• Planning, implementing and troubleshooting of remote connectivity to distant offices.
• Cisco VoIP implementation with AS5300, Gatekeeper and Call Manager.
• Creation and management of security policies on Cisco Firewall.
• Resolve day-to-day hardware and software issues for Routers, Switches, DNS, and DHCP, software installation and troubleshooting, hardware diagnostics and repair.
• Perform systems backup, disaster-recovery and data restore.
• Product enhancement suggestions to ISP and Cisco 2nd line.
• Node functionality testing after installation and activation of new features by vendors.
• Network quality and performance management for services related to IP backbone.
• Aiding management for selecting right product in IP backbone and LAN network.
• Configuration and maintenance of IPsec VPN from GPRS core network for corporate customers.
• Add/modify IPSEC/VPN links including BGP peer in ISP firewall.
• Deployment and maintenance of central login and RSA server for user accounting, authentication and accessing Robi network.
• Maintain firewall rules for different firewall (PIX/ ASA), handling network and security related faults.
• Routine monitoring of user access log, network policy Violation, network performance, syslog of hosts and firewall logs.

Environment: Cisco 7206, 3800, 3700, 3600 Routers; 2950, 3560, 4506 Cisco Catalyst Switches, Juniper M120, M10i, M7i Routers.