EXECUTIVE SUMMARY

• Over 7 years of experience in routing, switching and firewall security with cisco hardware/software including Hands - on experience in providing network support, installation and analysis.
• Expert level of knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP,OSPF,BGP and ability to resolve complex routing problems.
• Strong hands on experience in installing, configuring and troubleshooting of cisco routers such as 7600, 7200, 3800, 3600, 2600, 2800, 1800 series.
• Worked on cisco 2900, 3500, 4500, 5500, 6500series switch
• Extensive experience working on cisco and juniper routers/switches in complex environments with multiple ISPs.
• Design, implementation and troubleshooting experience with routers and switches, checkpoint firewall, cisco PIX, ASA and juniper firewalls.
• Expertise in in the analysis, implementation, troubleshooting and documentation of LAN/WAN architecture and good experience on IP services.
• Hands-on experience with ether channel, spanning tree, trunking, ACLs, Syslog.
• Experience in network security including troubleshooting NAT configurations, access-list and DNS/DHCP related issues within the LAN networks.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN trunk, VTP Ether channel STP, RSTP, MST.
• Knowledge on security attacks like DOS, DDOS, spoofing, Nessus and Cisco IOS, Cisco Works.
• Understanding the JUNOS platform and worked with ios upgrade of juniper devices.
• Expert in installing, configuring, juniper devices such as EX-2200, EX-4200, EX-4500, MX-480, M series, SRX210 and SRX240.
• Complete device installations, maintenance, and perform regular upgrades and patch work on F5 load balancer devices.
• Configuring Nexus 2000 fabric extender which acts as a remote line card for the Nexus 7000. Configuring VDC & VPC in Nexus 9k,7k,5k and 2k.
• In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether channel, IPRouting protocols - (RIPV2, OSPF, EIGRP and BGP), ACL’s, NAT, VLAN, STP, VTP, DOT1x, HSRP and GLBP.
• In-depth understanding of IPV4, IP subnating, VLSM and ARP, Ping concepts.
• Hands-on experience in configuring and supporting site-to-site and remote access Cisco, IPsec, VPN solutions using ASA/PIX firewalls, Cisco, B2B VPN client in addition to providing TACACS+ and RADIUS services.
• Configured HSRP and VLAN trunking 802.1Q, VLAN routing on catalyst 6500 Switch.
• Worked on network topologies and configurations, TCP/IP, UDP, frame-relay, bridges, routers, hubs and switches.
• Experience with configuring Nexus 2000 fabric extender (FEX), which acts as a remote line card (module) for the nexus 5000.
• Experience in cisco ASA firewall deployment, maintenance and troubleshooting including implementing adding, removing and editing firewall policies and rules per requirement.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Providing support and troubleshooting for business VOIP client.
• Proficiency in handling network monitoring tools and packet capture tools.
• Worked extensively on firewalls and VPN gateways checkpoint, CISCO, juniper, FortiGate GUI and arista equipment’s.
• Maintained F5 devices for load balancing, authentication, and high availability/disaster recovery.
• Experience in the setup of access-lists, and RIP, EIGRP and tunnel installation.
• Involved in migration of WLAN segment on the LAN core and configuring wireless VLANS.
• Well experienced with OSPF, BGP and TCP/IP.
• Fundamental knowledge on python scripting.
• Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, and VRRP.
• Involved in migration of WLAN segment on the LAN core.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing the files for malware in a separate (cloud-based) process that does not impact stream processing.
• Worked extensively in configuring, monitoring and troubleshooting Cisco’s ASA 5500/PIX security appliance, Failover DMZ Zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
• Adept in preparing technical documentation and presentation using Microsoft Visio/office.
• Excellent leadership with good written and communication skill.
• Highly motivated and able to work independently or as an integral part of a team.

TECHNICAL SKILLS

Cisco Routers: (1800, 2500, 2600, 2800, 3600, 3800, 7200, 7600)

Cisco Switches: (2900, 3500, 4000, 4500, 5000, 6500, 3750, Nexus 5k,7k, 2k, 3k)

Juniper Devices: (EX 2200, EX 4200, EX4500, MX-480, M Series, SRX 210, SRX 240)

Routing Protocols: (BGP, OSPF, EIGRP, IS-IS, RIP, MPLS)

Application Protocols: (DHCP, DNS, FTP, TFTP, SNMP, HTTP, ICMP, SSL, IPV6)

LAN Protocols: (VLAN, VTP, RAS, inter-vlan routing, ISL, STP, RSTP, PVST, HSRP, GLBP, Ethernet, Port Security)

WAN Technologies: (Frame Relay, X.25, PBR, E1/T1/DS1/DS3, ATM, MPLS VPNsLDP, L3VPN, VRF, and MPBGP)

AAA Architecture: (CISCO ACS, RADIUS, TACACS+)

Load Balancer: (F5 Network (Big-IP) LTM, GTM, APM, ASM module, Cisco ACE 30 Load Balancer)

Firewall: (Juniper net screen (500/5200), Juniper SRX(650/3600), pix(525/535), ASA(5520/5550/5580), Checkpoint Firewalls, Fortigate Firewalls.

Network Management: (SNMP, SSH, Telnet, ICMP)

Management Tools: (SNMP, Syslog, Sniffer, Wire shark, Visio)

Operating System: (Windows, MS DOS, UNIX, Linux)

Documentation: (Microsoft Office, Visio)

PROFFESIONAL EXPERIENCE

Confidential, Columbus, NE

Network Engineer

Responsibilities

• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP ability to interpret and resolve complex route table problems.
• Working knowledge of frame-relay, mpls services, OSPF, EIGRP, BGP routing protocols, sub-netting, also including DNS, LDAP, DHCP, HTML, HTTP, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STTP, RTSP and multicasting protocols.
• Responsible for configuring redundant cisco ASAs as firewalls and VPN concentrators at NACA group datacenters.
• Implemented numerous firewalls rules on the checkpoint with both hide NAT and static NAT.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Experience in Installing Firmware Upgrades, kernel patches, systems configuration, performance tuning on Unix/Linux systems.
• Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Extensive Arista and Cisco Nexus 3000 low latency system.
• Hands on experience in configuring VDC, VPC and FCOE, upgrading NX-OS for Nexus Family Switches.
• Created an automated backup procedure for all F5 load balance appliances in the corporate network.
• Worked extensively on checkpoints firewalls for analyzing firewall change requests and implementing changes into existing firewall policies, maintaining security standards.
• Configuring and implementing of F5 big-ip LTM, GTM load balancers to maintain global and local traffic.
• Worked extensively on checkpoints firewalls for analyzing firewall change requests and implementingchanges into existing firewall policies, maintaining security standards.
• Installation configuring and troubleshooting of cisco 7200VXR, ASR1K, ASR4k, ASR9K series routers and catalyst 6500, 2900 series switches.
• Installing and configuring checkpoint and ASA firewalls, VPN networks and redesigning customersecurity architecture.
• Configured multiprotocol label switching (VPN) with RIP on the customer’s stage.
• Proficient in cisco prime infrastructure.
• Manage network security via ASA, FWSM, TACACS and cisco ACS.
• Maintenance of global site to site tunnels using ASA firewalls and maintenance of secure and isolated global networks through firewalls and VPN.
• Experience with convert checkpoint VPN rules over to the cisco ASA solution. Migration with cisco ASA VPN experience.
• Configure and Manage site-to-site IPSEC VPN with different partners. Troubleshoot remote access services like Citrix Netscalar, Cisco VPN clients and for the users to access their enterprise network.
• Maintained a network with more than 700 network devices and around 20,000 end hosts, and the other devices like DHCP, DNS servers, and firewall servers.
• Worked on F5 BIG-IP LTM 8900, Citrix and Netscalar configured profiles, provided and ensured high availability.
• Experience working with Nexus 7010, 5020, 2148, 2248 switches.
• Cisco ASA firewall configuration and maintenance.
• Implemented load balancing in various environments using Netscalar also used NIC bonding.
• Implemented juniper EX2200, EX3200, EX3300, EX4200 juniper wireless 800 series junos 11.4 r, 12.2 r junos, 7.7, ring.
• Monitoring Traffic and Connections in Checkpoint and ASA Firewall.
• Working with OTV, FCOE on the nexus between the datacenters.
• Familiar with managing tools such as cisco prime, solar winds, radius/tacacs+, ASDM.
• Design, implement and troubleshooting of juniper switches, routers and firewalls.
• Worked as a network engineer to test the juniper components of the network subsystem that includes juniper MX960 and net screen 5400 devices.
• Experience with configuring virtual servers and configuring load balancing methods in f5 LTM.
• Configuring and troubleshooting with cisco ASA (5550/5520), juniper SRX (3600/650).
• Configuring virtual chassis for juniper switches EX4200 firewall SRX 210.
• Involved in configuring juniper SSG-140, cisco PIX firewall and check point firewall.
• Worked with checkpoint smart event and smart reporter to generate and analyze, events, charts, reports, maps and present the monthly generated report to the higher management.
• Checking and configuring cisco 7600 routers at datacenter for remote sites issue.
• Build it security infrastructure including checkpoint, juniper, and Palo Alto firewalls.
• Installing and configuring checkpoint and ASA firewalls, VPN networks and redesigning customer security architecture.
• Provide cloud network infrastructure support for global clients Included setting up new VPNs, NAT and url configuration.
• Provided project oversight for all network-engineering projects and managed a team of network engineers.
• Worked with installation of Palo Alto firewalls.
• Established development lab for testing of network equipment. Models included EX4200, EX3200, J2350, J6350, Cisco 6500 and Cisco 3560.
• Working experience on tolls and devices like gigamon, source fire, fire eye, Aruba, cisco ASA, Cisco ISE.
• Troubleshoot and hands-on experience on security related issues on cisco ASA/PIX, checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls. Installed and configured DNS and DHCP server.
• Included reviewing and improving plan application requirement and WAN failover.
• Configuration of cisco WCS, NCS, 5500 WLCs, and 3600/2600/1200 access points.
• Developed design and testing of EIGRP to OSPF migration.
• Expert level knowledge about TCP/IP and OSI models.
• Updated old cisco switches and routers in existing datacenters and installing new cisco switches and routers.
• Configured Cisco Routers, some LAN switches, and hardened LAN/WAN security with ACLs.
• Involved in switching technologies administration including creating and managing VLAN’s, port security, trunking STP, inter VLAN routing, LAN security etc.
• Implementing 3750 stackable switches using cisco stack wise technology experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Network security implementation with Cisco IOS Feature Set, NAT and simple Network management protocol.
• Involved in design and implementing QOS and policy map to 2800 series routers for all the branches.
• Implemented VoIP solutions using SIP and H.323 also have sound knowledge of Avaya VoIP products.

Confidential, Livingston, NJ

Network Engineer

Responsibilities

• Migrated with a team from a predominantly checkpoint environment to a Palo Alto global solution.
• Configured the BGP as a WAN protocol, and OSPF/EIGRP as interior routing protocol.
• Configures Nexus 7010 including NX-OS virtual port channels, Nexus port Profiles, Nexus port profiles, Nexus version 4.2, 5.0, Nexus VPC peer link.
• Design, implementation and operational support of routing/switching protocols in complex environments including Static, RIP, OSPF, BGP and EIGRP.
• Design and implemented specialty solution such as network security (ASA, PIX, and Palo Alto firewalls), network admission control (Cisco ACS), WAN optimization (Riverbed), DNS (INFOBLOX, Microsoft), DHCP (INFOBLOX, Microsoft, and IOS), and IPAM (INFOBLOX), network quality of service (IOS based QOS for voice, video, and critical apps, Riverbed QOS).
• Provide technical support for clients with dial-up internet issues.
• Adding and removing checkpoint firewall policies based on the requirements.
• Redistribution of OSPF and EIGRP into BGP with the correct tagging parameters from the old legacy network to route and to utilize the correct MPLS VRF VPN’s provided from the bearers.
• Involved in configuring of access-list on checkpoint firewall for the proper network routing for the B2B network connectivity.
• Multiple projects implementations, support and co-ordination, firewall IPS, IDS, VPN and remote access technology.
• Experience in identifying and evaluating implementations of specific and general security tools (IDS, ASA, etc).
• Checkpoint level 3 operations support with hardware operations - fixed all problems and RMA’s, taking any escalations that dealt with the equipment and its connection: interfaces, VLAN’s, routes etc.
• Manage network security via ASA, FWSM, TACACS and cisco ACS.
• Installed, configured and administered palo alto firewalls.
• Managing and configuring F5 load balancers for their local and global network traffic troubleshooting with for F5 support team with escalated requests.
• Exposure of large complex checkpoints, cisco ASA and Palo Alto firewalls environment.
• Involved in configuring and implementing of composite network models consists of cisco 7600, 7200, 3800, 9000, CSR-1 series routers and cisco 2950, 3500, 5000, 6500 series switches.
• Experience with checkpoint firewall policy provisioning.
• Design, develop, install and manage a very large and extensive 802.11 a, bg, n & ac or(2.4 ghz & 5 ghz) aruba wifi network at UTMB.
• Researched, designed, and replaced aging checkpoints firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Always keeping up with all security policies on the ASM module to meet business PCI requirements.
• Implementation, configuration and provisioning Aruba wireless technology.
• Configured and resolved various OSPF issues in OSPF multi area environment between multiple branch routers.
• Responsible for supporting the Citrix NetScaler F5 platform, configuring, implementing, and troubleshooting Citrix NetScaler VIP configuration with health check, policy configurations Access Gateway, and content switching configuration solutions.
• Working with wireless technology troubleshoot and configuration.
• Involved in L2/L3 switching technology administration including creating and maintaining VLANs, port security, trunking, STP, RSTP, LAN security.
• Configuring network devices for TACACS+, Syslog, SNMP, DHCP and DNS.
• Daily technical hands-on experience in the configuration, troubleshooting of Juniper SRX firewalls as well as experience working directly with customer in a service/support environment.
• Extensive implementation of firewall rules on juniper SRX 3600, SRX 650, and SRX 220 on a daily basis using space as well as CLI when needed.
• Application maintenance, performing tuning, upgrades, migration, user account maintenance, storage management, patch management and all other daily system administration functions.
• Attending meetings and technical discussion related to current project.
• Maintain redundancy on cisco 2600, 2800, and 3600 routers with HSRP and VRRP.
• Implemented and configured routing protocols like EIGRP, OSPF.
• Works closely with customers in determining the business needs for a project and build detail design which includes data flow diagram, logical and physical diagram.

Confidential

Network Engineer

Responsibilities

• Provided tier 2 and tier 3 supports for DNS, DHCP, and IPAM (both Microsoft INFOBLOX environment).
• Experience in WAN environments, installing and troubleshooting data circuit problems (MPLS, T1).
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansions of the MPLS VPN networks.
• Configured and maintained IPSEC and SSL VPN’s on Palo Alto Firewalls.
• Hands-on experience in configuring VDC, VPC, and FCOE, upgrading NX-OS for nexus family switches.
• Understand JUNOS platform and worked with ios upgrade of juniper devices.
• Design and configuring OSPF, BGP on juniper routers and SRX firewalls.
• Managing cisco routers, brocade and cisco switches to include ISG 2000, NS-5200, NS-5400, and SSG series.
• Extensive experience with citrix Xen app, Edge sight, Netscaler, Microsoft server OS, Microsoft appV, and Citrix Provisioning services.
• Physically deployed new cisco Nexus Devices, catalyst and nexus replacement blades, FWSMs, cisco ASAs, Citrix Netscaler MPX and SDX chassis.
• Configured and deployed Brocade FCX648 fast iron switches.
• Global NOC works with engineering and architecture on new implementations and network for operations for enterprise network and multiple clients.
• Configuring and managing Blue Coat proxy servers.
• Upgrading VOIP call manager and by implementing cisco WAAS.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) that does not impact stream processing.
• Configuring and maintaining the firewall like sonic wall.

Confidential

Network Engineer

Responsibilities

• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
• Designing and involved in developing strategy to plan and implement new technology like networking, virtualization, cloud, application and monitoring in core datacenter and Lab.
• Member of application networking team focus on network performance prediction WAN optimization.
• Experience with migrating the partner IPsec VPN tunnels from one datacenter to another datacenter.
• Involved in the modification and removal of (wherever necessary) BGP from MPLS routers.
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Configure corporate, wireless and Lab devices which including bandwidth upgrade, adding new devices, decommissioning the devices.
• Co-ordinate with data network and security team and come up with a possible solution.
• Troubleshoot the network issue onsite or remotely depending on the severity of the issue.
• Worked on layer 2 protocols such as STP, VTP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues.
• Involved in configuring IP quality of service (QOS).
• Installed configured and maintain with the latest update on the 3700, 3800, 7200, 7600 cisco routers and 2960, 3750, 3560, 6500 switches.
• Configuring and management of VLANs, 802.1q trunks, VTP, security policies.