SUMMARY

• 6+ years of experience in Networking and Security, widely in Network Security Products and Firewalls (Checkpoint, Cisco ASA).
• Experience in Checkpoint firewalls, Cisco ASA.
• Extensive experience in various aspects of Infrastructure management, majorly in the field of Information Security, Network security & Networking.
• Advanced knowledge in Cisco ASA 5000 series and PIX installation, configuration and maintenance, configuration and installation of IOS security features and IPS, security risk analysis, attack mitigation & penetration tests based on LPT methodology.
• Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point/Nokia Firewall VPN - 1 FW-1 NGX R65, R70 & R75 Provider-1/Site Manager-1 R65, R70.30 & R75.40 Smart Domain Manager command line & GUI.
• In-depth knowledge and hands-on experience in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX SSL Security.
• Advanced knowledge, design, installation, configuration, maintenance and administration Checkpoint Firewall R55 up to R77 version.
• Advanced knowledge in Linux and Unix Operating Systems, web security devices or proxy - Cisco WSA/CWS and Bluecoat, understanding of globalsecuritypolicies .
• Thorough knowledge of Windows Vista, XP, Windows Server 2003; 2008; Windows NT; TCP/IP.

TECHNICAL SKILLS

Firewall: Checkpoint R65/R70/R75/R77/Firewall-1, Cisco ASA

Protocols: NAT, VTP, VLAN, TCP/IP, UDP, EIGRP, OSPF, RIP

Switches: Cisco Catalyst VSS 13 / 00 / 3750- X / 2960

Routers: Cisco Routers ASR 06 / 06 / 51 / 2600

Operating Systems: Windows XP/7/8, Windows Server 2000/2003/2008

Tools: Cisco Packet Tracer, VMware Workstation, Wireshark

PROFESSIONAL EXPERIENCE

Confidential, Lake Zurich, Chicago

Network Engineer

Responsibilities:

• Configuration, troubleshooting Checkpoint Firewall using R76/R77 SmartView Tracker and Monitor
• Handled more than 500+ security devices and upgrades
• Worked extensively on checkpoint R77.20 on GAiA and SPLAT, Cisco ASA firewalls environment.
• Configuring Site-Site VPN on Checkpoint Firewall with R77 GAIA.
• Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.
• Led configuration of secured IPSEC-VPN tunnels between corporate and branch office firewalls checkpoint.
• Built and support VRRP / Cluster based HA of Checkpoint firewalls.
• Bluecoat Administration - Blocking/Unblocking URL's.
• Third Party VPN migration from old data center to new data center.
• Creating object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Troubleshooting connectivity issues on the firewall using smart view tracker, monitor health of the appliance using SmartView monitor etc.
• Providesecurityoperations center support, in real-time monitoring of Company's enterprise assets for Coverage in all areas of informationsecurity.

Confidential, Montville, NJ

Network Engineer

Responsibilities:

• Provides design, installation, configuration, maintenance and administration of CheckPoint Firewall R71 up to R75 version.
• Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation appliances, serving as firewalls and URL and application inspection.
• Implementation configuration and troubleshooting of Checkpoint firewall.
• Configuring VPN, clustering and ISP redundancy in Checkpoint firewall.
• Verify Firewall status with Checkpoint Monitor.
• Configuring rules and Maintaining Firewalls & Analysis of firewall logs.
• Assisting in deploying enterprise wide Network SSL Security and High Availability Solutions for ASA
• Configuration of IPSEC L2L and SSL VPN connectivity for the projects
• Managing of CISCO ASA 5550 Firewall in Active/stand-by mode
• Troubleshooting, Diagnosing, isolating & resolving Network problems
• Black listing and White listing of web URL on Blue Coat Proxy servers
• Working and commenting on global firewall polices.
• Firewall Policy administration and work with user requests submitted by users.

Confidential, Roseville, MN

Network Engineer

Responsibilities:

• Configuration and management of Cisco Routers and Switches.
• Configuration of VLANs, Inter VLan Routing, VTP, Trunking and Ether channel on Cisco Catalyst Express Switches.
• Implementation, Configuration and troubleshooting of multi-vendor Firewalls Cisco ASA, FortiGate UTM.
• Managing Cisco ASA 5510 and Fort iGATE UTM Firewalls and Traffic Filtering using IPS/IDS, content filtering and ACL, intrusion/virus protection at Gateway level.
• Secure Network access and Remote IPSEC VPN for mobile clients.
• General technical responsibilities include administration, maintenance, documentation, designing, monitoring and troubleshooting technologies and devices according to needs and requirements.
• Evaluate and upgrade IOS or code of router and switches and firewalls.
• Assisting and managing IT Team of Windows System Support Engineers.
• Looking after the commercial aspect of Network Infrastructure and managing Hardware AMC Vendors, ISP, Antivirus, Vendor management, Security Access Door and CCTV management.
• Windows Server 2008 Management with ADS, DHCP, DNS, WSUS configuration.
• Backup management using Symantec Backup Exec for various Departments within organization.
• Managing Polycom Video Conferencing and Configuring Wireless Network access points.

Confidential

Network Support Engineer

Responsibilities:

• Deploying and configuring Cisco 12000, 7600, 3800 & Juniper M series routers & Catalyst 6500 series switches for the core, distribution and access layer in an enterprise composite model network infrastructure.
• Designing and deploying EIGRP, OSPF, BGP, MPLS-VPN protocols and routing technologies for connecting data center to remote locations.
• Configuring, Monitoring and Troubleshooting Cisco's PIX firewall, ASA 5500 security appliance, Cisco 4200 IPS appliance and Implementation experience in building DMZ, and integration of firewalls with Gateway Anti-Virus and web Filtering applications from Trend Micro and Web sense.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Designed and Developed Internet Security policy for the company in order to build a secure and robust network Infrastructure.
• Configuration of Failover on firewalls and configuration of Cisco (AAA) ACS server, RADIUS and TACACS+ for VPN users and implementation of secured VPN on Cisco routers, PIX and VPN concentrator appliances.
• Worked on IP Frame Relay (FR) and Gigabit Ethernet WAN Technologies.
• Installed, configured, maintained and troubleshoot JUNOS, Juniper M-Series & T-Series routers, Foundry Network L2/L4 Switches.
• Worked with vendors (Juniper, Cisco, etc) when issues arise and see it through all the way until issue is resolved or a bug has been identified and turned over to development.
• Real-time network monitoring using HP Open View by implementing policies and creating custom events. Analyzed network traffic using analyzer such as Wireshark, MRTG 2.13.
• Configuring Quality of Service (QoS) policies and rate limiting queuing parameters on Cisco and Juniper Platforms.
• Created & documented wiring and network diagram using MS- Visio.