SUMMARY

• CCNP Certified Professional with nearly 8+ years of experience in Networking and Security including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
• Expert level knowledge in troubleshooting, implementing and testing of static and dynamic routing protocols such as EIGRP, OSPF, RIP and BGP.
• Implementation, Configuration and Support of Checkpoint (NGX R65, R70 and R71), Juniper Firewalls (SRX5400, SRX5600, SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo AltoNetworks Firewall models (PA-2k, PA-3k, PA-5k).
• Familiar with Cisco Security AAA, NAT/ACLs, SDM, Layer 2 Security, Layer 3 Security, IPS/IDS, VPN, Cryptography, IPS/IDS, IPsec.
• Manage monitoring of equipment capacity/utilization and evaluate the need for upgrades; develop methods for gathering data needed to monitor hardware, software, and communications network performance.
• Working on Cisco Routers and Switches and Wireless networks 802.11a/b/g/n at Enterprise level.
• Cisco’s Application Centric Infrastructure (ACI) implementation (Nexus 9K, APIC).
• Configuring Cisco switches including Nexus9K, Nexus7K, Nexus5K and Nexus2K.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Load Balancers & Cisco Firewalls.
• Experienced and trained on the Cisco Call Manager versions4.X-8.0; Cisco Unified Call Manager(CUCM) express versions 4.0-9.0
• Experience with F5 load balancers to provide Land Balancing towards Access layer from core layer and configuring F5 LTM both by GUI and TMSH/CLI and Cisco load balancers (CSM, ACE and GSS).
• Firewall experience with ASA 5500-X with Fire POWER Services, ASA 4100 Series, ASA 5585-X with FirePower SSP-20.
• Palo Alto next-generation firewalls provide complete visibility into allnetworktraffic based on applications, users, content and devices. (PA-5200, PA-3000, PA-800)
• Deployed Check Point Next- Generation Firewall for enterprisenetworksecurity high-performance, multi-core capabilities (1400, 3000, 23000).
• 3 years WAN experience with ATM, Frame Relay, SMDS, DSL, ISDN, DDS, T1 and T3, VPN, Cisco routers, PIX firewalls, RIP, IGRP, EIGRP, OSPF, BGP, HSRP, TACACS+ and Cisco Works
• Extensive knowledge of firewall Checkpoint, McAfee, Juniper Net Screen on SRX 550, 650 Series and IPS/WAF (Tipping Point, Imperva, and Citrix NetScaler) Technologies.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs
• Wide experience in implementing and managing F5 BIG-IP load balancing, including GTM, APM, ASM, and custom iRule development.
• Planned and worked on design with Network team to re-architect F5 load-balancers to load-balance traffic anywhere in the company network.
• Juniper JunOS and ScreenOS SRX/SSG firewalls and EX series switches
• Network analysis and capacity planning experience using tools like Sniffer, Wireshark, and tcp dump.
• Knowledge on Cloud Computing Concepts like - IAAS, PAAS, SAAS.
• Strong hands on experience and expertise configuring cisco routers, switches, firewall, and ISE (Guest access/Radius)
• Integrated ForeScout product to work together with Cisco, Juniper, Aruba, or other 3rd party network equipment.
• Experienced in DHCP, DNS, SMTP,HTTPS, FTP and web security architecture
• Implemented IPv4 migration to IPv6 (NAT-PT, Tunneling, etc.) and IPv6 routing protocols (RIP, OSPFv3, EIGRP, BGP etc.).
• Well Experienced in configuring protocols HSRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Experience with T1, T3, ISDN, HDLC, PPP, Frame Relay, ATM and MPLS VPN.
• Performed switching technology administration including VLANs, Inter-VLAN routing, trucking, port aggregation and link negotiation.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzing results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS

Routers: Cisco 7600, 3800, 3600, 2900, 2800, 2600,1800, 4400, ASR 9K

Routing: OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches: Nexus 2K/5K/7K,9K Cisco Catalyst 2900, 3500, 3700,6500, 4500, 3850,3560, 3750, 2960

Switching: VLANs, VTP, RSTP, PVSTP, VLAN routing, multilayer switching, Ether channels, VSS, Port Security, Ether channels, Transparent Bridging

Protocols: IP, TCP, UDP, ICMP, NAT, DNS, DHCP, SNMP, IPSEC, SSL, HTTP, SSH

Gateway Redundancy: GLBP, VRRP, HSRP

Operating systems: Windows servers & Linux (Ubuntu & Debian), windows 7, 8, windows XP, Vista, Red Hat, Active Directory

VOIP Devices: Cisco IP phones, Avaya

Voice Technologies: QoS, Computer Telephony Integration (CTI), VoIP, PoE, H.323, SIP, MGCP, RTP, SCCP, TAPI, XML

LAN Technologies: Ethernet standards, inter VLAN routing, VLAN, VTP, STP, RSTP, Port Fast

WAN Technologies: Frame relay, ppp, HDCL, DS3, OC192, Fiber Optic Circuits, Frame

Network tools: NCM, Wire shark, Zenoss, Net flow analyzer, solar winds, CSM & Cisco ACS.

Network security: Cisco ASA, Pal alto, checkpoint, f5 load balancer, juniper SRX

Hardware: Dell, HP, CISCO, IBM, SUN, CHECKPOINT, SONIC WALL, and Email Appliances

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Windows Server Admin: Active directory, User Management, Profiles, Permissions, Group policies. Network

Administration: DHCP, DNS, Routing, Terminal Services, Windows Deployment Service

VMware: VMware Vsphere 3.5/4.1/5.0, Workstation 6/7, ESX Server 3.5

Cloud & SaaS Platforms: Amazon and Google Web Services, Salesforce.com, Workday, Concur, Service Now

Programming languages: C, java, python, shell script, Perl

PROFESSIONAL EXPERIENCE

Confidential, Cleveland, OH

Sr. Network Engineer

Responsibilities

• Design and implementation of Main Data Center Move project from one location to another location with minimal down time using traditional DCI with VPC and In-box configurations with same HSRP group for redundancy on four Nexus 7k switches, two on each side.
• Created and configured dashboards in What's Up Gold and OPNET/Riverbed tools to assist with identifying network failures or application performance issues on CDC internal network
• Design and Implementation of Disaster Recovery Co-location consisting of Nexus 7K switches, ASR 1002, 9000 Cisco ASA Firewalls, Cisco 3925 routers etc. Successfully implemented OTV for VLAN Extension.
• Upgrade, Configure, maintain and troubleshoot CAT-OS/IOS/NX-OS Different flavor of routers and switches
• Experienced in installation, configuration and maintenance of Cisco Nexus 7K, 5K switches in standalone as well as in V-BLOCK infrastructure
• Administer and troubleshoot Cisco PIX/ASA firewalls, ACE, F5 load balancer and Redhill Load-balancers.
• Configuring various advanced features Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured Session based persistence and configuring I-Rules for specific redirection purpose and I-rules for persistence
• Extensive knowledge and experience in VPC, ether channel, STP, VTP, and HSRP also VRRP protocols.
• Responsible for level 3 VoIP support. Monitoring call quality, Utilization, troubleshooting, and reporting the overall VoIP infrastructure status
• Experienced in Cisco ASR 1000, 7200, 9000, 2700, 2900, 3900, 1800 Routers, Cisco Catalyst 4500, 2900, 3700 Switches.
• Implementation and Proactive Monitoring of MPLS (MPLS-VPN), QoS (Layer2 and Layer3) and BGP technology.
• Managed Virtualization Environment using VM Ware ESX 3.x, VM Ware V Spere 4.x, Virtual Center, VI
• Experience in migration of IPv4 addresses to IPv6 addresses using mechanisms like Tunnel Broker, Transport Relay Translation (TRT), NAT64, DS-Lite and DNS64
• Provide Network, Tier 3 support (diagnose and troubleshoot layer1,2 &3 problems) and administration for various Vanguard environments like Internet, Intranet, QA, DR, Proxy BiG-IQ
• Planning and implementing enterprise monitoring and configuring tools for the F5 platforms such BiG-IQ.
• Experience to add, modified, delete devices from HP monitoring system as based ofnetwork changes
• Worked on Cisco Routers, Active/Passive Hubs, Switches, Cisco PIX Firewall, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall
• Experience in designing, managing, supporting Web Application Firewall
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA
• Design and configure VoIP thru DHCP Scripting for data and voice Vlan’s based on Avaya and Polycom specifications
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.

Environment: s: Nexus 7k, 5k, Cisco ASR, Checkpoint firewall, CUCM, Cisco ASA, Bluecoat proxy, Reverbed, IPS/IDS, BGP, OSPF, MPLS, VPN, F5 Load Balancers-Global Traffic Manager(GTM), Cisco prime, Juniper Switches and Routers.

Confidential, Boston, MA

Sr. Network Engineer

Responsibilities:

• Involved in the activity of DATA-Center migration of regular Cisco catalyst switches with the new Nexus 2148, 2224T, 5548, 6018, 7010 using F3/M3 line-cards with 10GE & 40GE interfaces and Supervisor 2E.
• Configuring Palo Alto policies and setting different device configurations.
• Configured Firewall logging, DMZs& related security policies & monitoring
• Hands-on experience with Ether Channel, Spanning Tree, Trunking, ACLs, Syslog. Experience in the setup of HSRP, Access-Lists, and RIP, EIGRP, and tunnel installations.
• Involved in the troubleshooting aspects of complex networkinfrastructure using routing protocols like EIGRP, OSPF and BGP.
• Configuring Palo Alto policies and setting different device configurations.
• Configure legacy route map configurations using the new Cisco IOS XR Routing Protocol Language (RPL).
• Monitoring threats on firewall and changing policies to prevent attack.
• Responsibilities also included placing order for new SFP's, implementing inline capabilities for home agents and runningnetworkcables from Palo Alto direct to required firewall.
• Configuring Palo Alto's for inline use and Adding signature attacks on prevention lists.
• Created new policies for CDE and syncing the same policies in all the Data Centers.
• Auto Tuning Palo Alto Signatures and syncing between the data centers, working on PCI's and managing it during peak if needed.
• Applied ACLs for Internet access to the servers using Cisco 5550 ASA firewall and performed NAT.
• Dealing with Cisco ASA 5550 providing advanced application-aware firewall services with identity-based access control, denial of service (DoS) attack protection all built upon market-proven Cisco PIX Security Appliance technology.
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen routers.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Configure and Install F5 New Virtual Servers, Profiles, I Rules, Pools, Nodes, Generate CSR Certificate, SSL Certificates Etc.,
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Performed Security operations in terms of pushing new policies and deploying new rules. Performing security troubleshooting in terms of checking ACLs and ACEs and traffic flow analysis using packet capture features.
• Supported in giving access the User machines and partners exterior to the network using IPsec VPN tunneling and SSL.

Environment: Cisco Routers, Cisco switches, Cisco ASA, Firewall, Infoblox, RIPv2, OSPF, BGP, EIGRP, LAN, WAN, MPLS, F5 Load Balancer, VLAN, Trunking, ATM, PPP.

Confidential, Bloomington, IL

Network Engineer

Responsibilities:

• Performed switching technology administration including VLANs, inter-VLAN routing, STP, RSTP, port aggregation & link negotiation.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Configured &Troubleshooting with BGP OSPF, EIGRP.
• Configuring VLANs, STP, VTP and Inter-VLAN routing in LAN environment.
• Configuring and troubleshooting with Cisco ASA (5550/5520), Juniper SRX (3600/650)
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuration & maintenance of Cisco 2600 series routers with OSPF protocols.
• Upgrading the networkby translating protocol like EIGRP to OSPF.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Implemented Cisco IOS Firewall IDS using 2600 series router.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Experienced with PPP and TCP/IP internals and debugging techniques
• Designednetworkarchitectures and implementation ofnetworkSwitches.
• Configured VTP domain, trunk links, ether channels and remote VLANs on Cisco and other vender's switches
• Configured and installed new IP addresses for new users by using IP Addressing and Subnetting Scheme.
• Create a Virtualnetworkon Windows Azure to connect all the servers.
• Creating and updatednetworkshares, adding permissions software and groups for users through Windows server Active Directory.
• Troubleshooting thenetworkfor the connectivity issues andnetworkperformance issues.
• Laying down thenetworkdesign for the premises and recommending the required equipment's.
• Getting the issues solved in a timely manner and escalating the problems which require intervention from higher levels.
• Ensuring proper working of all thenetworkequipment's (routes switches & firewall).
• Producing reportsnetworkproductivity, plans and issues for higher management.
• LAN / WAN installation, Configuration and support / IOS update (CISCO routers, Switches).
• Administer & troubleshooting Manage engine firewall analyzer, MRTG Graph for bandwidth utilization.
• Responsible for network documentation and daily, weekly and Monthly Reports.
• Provided load balancing towards access layer from core layer using F5networkLoad Balancers
• Responsible for communication protocols configuration and integration
• Investigating diagnosing and resolve Level 1 & 2networkproblem
• CISCO Switch configuration in particular VLAN configuration / troubleshooting

Environment: Cisco Routing and Switching, Nexus 5k, Infoblox, Cisco ASA, PIX, OSPF, BGP, MPLS, Juniper SRX, Juniper NetScreen, Riverbed, IPS/IDS, Cisco ACE, Cisco prime.

Confidential

Jr. Network Engineer

Responsibilities:

• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalysts
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Experience in working with Cisco Nexus 5000 series switches for data center.
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies. configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Cisco IOS upgrade, manage and install for switch and router
• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
• Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuring Vlan’s, VTP’s, enabling trunks between switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.

Environment: Cisco Routing and Switching, Infoblox, NetScout, Cisco ACE, Ether-Channels, Port Channel, Cisco prime.

Confidential 

Network Administrator

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Migrate Physical Servers to Virtual Server using VMware Converter
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fa
• Establishing VPN Tunnels using IPsec encryption standards and configuring and implementing site-to-site VPN, Remote VPN.
• Involved in DC Xaas Technologies.
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Other responsibilities included documentation and change control
• Troubleshooting traffic passing managed firewalls via logs and packet captures.
• Strong working knowledge and troubleshooting of T1, T3, OC-3 and OC-12.
• Estimated Project costs and created documentation for project funding approvals.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Identify design, configuring and managing flexible, responsive, and secure technology services.
• Configuration and troubleshooting of EIGRP, OSPF, BGP.
• Design OSPF areas for reliable Access Distribution and for Core IP Routing.

Environment: Cisco Routing and Switching, Infoblox, NetScout, Cisco ACE, Telnet, BGP, OSPF, EIGRP, Cisco prime.