SUMMARY:

• Over 9 + years of experience as a security specialist with expertise Includes design, configuration, troubleshooting and support of security
• Environment with VPN, Firewalls, NAT, Proxy, IPSec, DMZ Solution, Load Balancer’s, Intrusion Detection System, Intrusion Prevention Systems, Public Key Interchange, and SSL.
• Has extensive experience in design, implementation and support of Cisco Routers, switches, firewalls, and VPN devices, HP ProLiant DL380, HP Blade 20p Servers, IBM Xserve’s Servers, Windows NT Servers and Active Directory, TCP/IP, Ethernet, DNS, DHCP, WINS.
• He has extensive experience in installation, configuration and administration of firewall including, Checkpoint, Cisco ASA, Cisco PIX, Juniper Net screen, BigIP F5 (LTM,GTM) Cyber Guard, Zone Alarm, Knight Star . He has extensive experience in security Tools and Web proxy’s Arcsite 6.0, EM7, Arbor and Webzine.
• Security Auditing: PCI, FFIEC, GLBA, SOX
• Experienced in Analyzing requirements and Designing, Deploying and operating Enterprise Environment’s in Security stand point of view.
• Has excellent experience in multi - server corporate networking environment consisting of 250+ servers and 2500+ users in disparate geographical locations

SKILLS & ABILITIES:

Routers: Cisco 3600 series, Cisco 2600 series, Cisco 1700 series, Cisco AS5200 series

Switches: Cisco 6400 series, Cisco 2900 series, Cisco 1900 series, Bay stack T switch

Hubs: 3com, Hewlett Packard, D-LINK

Protocols: TCP/IP, RIP, OSPF, EIGRP, BGP, IPX\SPX, DHCP, DNS and PPP VTP, STP, ISDN

Concepts: Frame-Relay, ATM, VLAN, MLS, VPN

OS: CISCO IOS 12.X, MS-DOS 6.22, Windows 95/97/98/Me, Windows NT4.0, Windows 2000,Windows 2000 Advance server, Windows XP, Windows 2003, Linux

Internet: Internet Information server 4.0, Internet Explorer, Netscape Navigator

Firewall: Checkpoint R65-R77, CISCO ASA 5500 & 5585 Juniper Netscreen 1000, 500, Juniper SRX, Cyber guard, and Knight StarWeb Proxy Bluecoat Proxy SG, Websence 7.0

Security tools: Arcsite 6.0, Arbor, Surefire, Wireshark, EM7, Spectrum, Solar wins

Load Balancers: BIG-IP F5 (LTM, GTM), Citrix Netscaler.

Policy & Firewall Management: Tufin, F5 BIG IP Access Policy Manager, F5 Advanced Firewall Manager. F5 Application Security Manager

Languages: C, C++, Html, JavaScript, PHP, and Perl.

RDBMS: Oracle, SQL Server 2000

Applications: Microsoft Office 97/2000/2003 , Adobe Photoshop, QuarkXPress, Page Maker, Macromedia Dream Weaver, Microsoft Front Page, Adobe Acrobat professional, News Wrap Software

Methodologies: SSAD, OOPS

Other Skill: Microsoft Office 97/2000/2003 , Microsoft Exchange Client 5.0, Outlook 97/2000/2003 and Outlook Express, Incredimail, Quest Recovery Manager for Active Directory.

EXPERIENCE:

Network Security Engineer

Confidential, Dundee, MI

Responsibilities:

• Managing end-2-end services in Global organization
• Level 3 & 4 support for Security and Network issues
• Lead Incident response resource
• Managing Cisco ASA Firewalls Using ASDM
• Managing Cisco ASE Load Balancer.
• Managed Linux Syslog server
• Designed and implemented New Network Segments.
• Worked with an outside vendor to implement new Cisco ASA Remote Access VPN with user licenses
• Managing Wireless Networks Using Cisco WLC and Cisco ISE.
• Enterprise Web Traffic Filtering using MacAfee Web-Proxy
• Handling CISCO Nexus 7000 data center core Switch.
• Testing F5 Policy Manager for deployment
• Securing Application Traffic using Application Security Manager.
• Trouble shooting Existing LAN onsite and Remote Locations.
• Monitoring firewalls using Tiffin.
• Managing Checkpoint R70 Old Firewalls in place.
• Checkpoint Migration to Cisco ASA Planning.
• MPLS Circuits Migration from Sprint to At&t
• Managing Team as well as Migration and Merger Operations.

Network Security Engineer

Confidential, Jersy CITY, NJ

Responsibilities:

• Worked extensively on Checkpoint Firewalls R77.10
• Managing Checkpoint firewalls using Smart Dashboard.
• Isolate Issues using Smart Tracker.
• Managing Juper Net screen Firewalls Using NSM
• Extensive Experience in Managing Citrix Netscaler.
• Monitoring Network (Switches and Routers) using Spectrum.
• Managing Branch and Vendor side Firewalls
• Managing MPLS VPN Networks.
• Managing Configuring and Troubleshooting Juniper SRX Firewalls.
• Enterprise Web Traffic Filtering using BlueCoteProxySG
• Managing Load Balancer’s F5 (LTM & GTM) and Trouble Shooting
• Testing F5 Policy Manager for deployment
• Securing Application Traffic using Application Security Manager.
• Managing Cisco ASA Firewalls using ASDM (Creating and Modifying Rules)
• Trouble shooting Existing LAN onsite and Remote Locations.
• Monitoring firewalls using F5 Firewall Manager.
• Upgrading checkpoint Firewalls from R7 .
• Using Arch site for Vulnerability assessment.
• Using BMC Quails for Auditing and Assign Upgrades and \Vulnerabilities.
• Security Auditing for PCI and SOX compliance.

Team LEAD

Confidential, Morristown, NJ

Responsibilities:

• Worked extensively on Checkpoint Firewalls R65/R70/R75/R76/R77.10.
• Managing Checkpoint firewalls using Provider one and Smart Dashboard.
• Isolate Issues using Smart Tracker.
• Well experienced with configuring Juniper ACLs, Cisco ACLs
• Worked on Juper Netscreen Firewalls Using NSM
• Extensive Experience in Managing and trouble Shooting Juniper SSL VPN
• Monitoring Network traffic using Solar Wins.
• Policy Management using F5 Access Policy Manager
• Monitoring Health Check and Maintaining Firewalls using E7.
• Testing F5 Advanced Firewall Manager for feature deployment.
• Experience with design and implementation new Firewalls in Vendor Locations for Site-to-Site VPN Tunnels with multi-vendor products.
• Implementation of MPLS VPN Networks.
• Managing Cisco ASA Firewalls using ASDM (Creating and Modifying Rules)
• Managing Configuring and Troubleshooting Juniper SRX Firewalls.
• Monitoring Enterprise infrastructure for vulnerabilities using ARCSITE 6.5
• Enterprise Web Traffic Filtering and Data loss prevention using Websence 7.0
• Managing Load Balancer’s F5 ( LTM and GTM )and Trouble Shooting
• Trouble shooting IPv4 and IPv6 Dual stacking issues.
• Configuring and troubleshooting cisco ASA Firewalls for Site to site VPN tunnels.
• Managing ARUBA VPN Boxes.
• Resolving QOS issues on routers for Marked Traffic
• Upgrading checkpoint Firewalls from R70 to R76.
• Migrating Juniper Net screen Firewalls to Juniper SRX Firewalls.
• Network Risk assessment, through Pretesting.

Network Security Engineer

Confidential, Bloomington, IL

Responsibilities:

• Worked extensively on Cisco Firewalls, Cisco ASA 5500(5510/5540) Series and PIX (506E/515E/525/).
• Well experienced with configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance,
• Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Verifying and Configuring rules in firewalls.
• Maintaining Corporate Firewalls & Analysis of firewall logs
• Experience with design and implementation of New Branch facility location.
• Implementation of MPLS VPN Networks.
• Checkpoint firewalls R65 Smart Dashboard /CMA build out for 3000 firewalls.
• Configure rules/NAT via Smart Dashboard.
• Checkpoint traffic tracker and isolate issues.
• Experience configuring Virtual Device Context in Nexus 7010
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
• Managed VPN Sites (Checkpoint).
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring IPSEC VPN on SRX series firewalls
• Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
• Worked on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching
• Design, Implement & troubleshooting of Juniper switches, routers and Firewalls
• Switching tasks include VTP, ISL/ 802.1q, IPsec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
• Good knowledge in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• In depth understanding of IPV4 and implementation of Sub-netting.
• Responsible for Cisco ASA firewall administration across our global networks.
• Establishing VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Installing, Configuring and supporting the Cisco routers 3600, 2600 series, Cisco catalyst 1900 and 2900 series, PIX firewall, VOIP,RAD modem, Network cables such as COAX, UTP&STP, Fiber Optics & NICs
• Implementing IP Routing protocols BGP, EIGRP, OSPF, SSL, IPsec, MPLS, RIP1, RIP2 and other Routed, Routing Protocols
• Implementing Networking products like Servers, Proxy servers, web servers, Ftp Servers, Mail servers, Antivirus server, Hubs,
• Repeaters, Switches, Bridges, Firewalls, Structured cabling, CSU/DSU
• Installing, Configuring, Administering and supporting the Windows 2003 Server, Windows 2003 Server, Windows 2000 Server .
• Windows 2000 Advanced Server, IDS server, SQL Server and Active Directory.
• Implementation of Microsoft Clustering & Network Load Balancing solution for high availability File/Print, Application and Database servers.
• Successfully migrated Windows NT 4.0 to Windows 2000 Active Directory

Network Operations Engineer

Confidential, Providence, RI

Responsibilities:

• Installing, Configuring and supporting the Cisco routers 3600, 2600 series, Cisco AS5200 series, Cisco catalyst 1900 and 2900 series, PIX firewall, VOIP,RAD modem, Network cables such as COAX, UTP&STP, Fiber Optics & NICs.
• Downloading and configuring Images of Cisco IOS to router from TFTP server, backing up Cisco IOS.
• Configuring VPN, VSAT, Frame Relay, ATM, ISDN links, T1 leased lines Cisco Routers, NMS and PIX Firewalls.
• Working with IP Routing protocols BGP, EIGRP, OSPF, SSL, IPsec, MPLS, RIP1, RIP2 and other Routed, Routing Protocols.
• Implementation of Networking products like Servers, Proxy servers, web servers, Ftp Servers, Mail servers, Antivirus server, Hubs, Repeaters, Switches, Bridges, Firewalls, Structured cabling, CSU/DSU.
• Setting up complete LAN/WAN infrastructure with switches & routers (Baystack T switch, Cisco routers 3600, 2600 series, Cisco catalyst 1900, 2900 series).
• Setting up Layer 3 Switches and Gigabit Ethernet routers and NAS
• Installing, Configuring, Administering and Supporting the Windows 2003 Server, Windows 2000 Advanced Server, Windows NT Server, SQL server, MS Exchange Server
• Setting up bandwidth of 256 RF links with PointRed modem through CYBEROAM software (a software acts as a proxy server and firewall)
• Installing and supporting the Servers and Network Printers from branded company like HP, IBM and DEL
• Taking Data Backup regularly with DAT drive(HP C1537A sequential Device) & DVD
• Installing and supporting the print software like QUARK4.1
• NEWSWRAP and designing tools like Photoshop 7.0, Acrobat Professional 6.0, InDesign and Acrobat Illustrator
• Pre-install presentations and post install trainings
• Providing technical and procedural guidance on use of LAN and standalones
• Providing technical support and problem resolution for the LAN and its environment by analyzing the problems and identifying the cause and circumstances of the problems and identifying the solutions.
• Setting up Internet, Implementing Networking products like Servers, Proxy servers, Hubs, Repeaters, Switches, Bridges, Firewalls, Structured cabling, Routers;
• Network related troubleshooting like SNMP, HTTP, POP3, SMTP, NNTP, TCP/IP, Routing and Routed protocols;
• Web designing
• Installation & administration of Windows NT, Windows NT 4.0 Terminal Server Edition, Windows 2000 Domain Controllers, Active Directory Design & Architecture, File/Print/Mail/Database Servers.
• Security auditing in accordance with PCI, SOX and FFIEC

Network Engineer

Confidential, Princeton, NJ

Responsibilities:

• The position requires working closely with Vendors to debug firmware code and applying patches for workarounds
• Role involves troubleshooting PVC’s, FRAME, ATM switches
• On call 24/7 for supporting escalations related to FR-ATM SERVICES, WAN switches, NT1 access, CPE issues
• Interacting with CISCO DE engineers, testing teams, Subject Expert engineers towards isolating & resolving hard to track and severity 1 bugs
• INCS voice and data service OSPF, BGP on IPFR platform.
• Undergone training for BT MPLS - VPN support services. Team role involved supporting escalations for BT IP services w. r. t IP over FR services Frame-Mode & Cell - Mode
• Ownership for projects/trouble tickets handled and communicating effectively written & oral to BT customers, upper level management, support parties involved for problem resolution on sensitive escalations. Severity 1 Outages
• Responsibilities as a network specialist included technical design and integration of WANs incorporating Routing, Switching & Web technologies utilizing (Cisco routers, switches, hubs, Windows NT, IIS, TCP-IP, etc.)
• Perspective for supporting networking environment from both ends of the spectrum- Telecom provider WAN - ATM switches - Enterprise Routers

Network Engineer

Confidential

Responsibilities:

• Installed NT server 4.0/2000 on NTFS partition with DHCP/DNS&WINS
• Creation of user accounts for authentication with rights to files & folders.
• Installing & configuring Microsoft TCP/IP
• Installing & configuring Remote Access Server (RAS)
• Installing Backup Domain Controller (BDC) to provide for PDC failure.
• Installations & troubleshooting of windows 95/98 & NT workstation 4.0 Clients logging onto NT server.
• Installation & troubleshooting of network printers
• Create & manage partitions
• Define a custom subnet mask & define a range of valid IP addresses.
• Installation of IIS 4.0 on server and loading appropriate files and folders, for the intranet website.
• Monitoring of website performance and in charge of backups.
• Provide hardware support by means of replacing faulty network cards, addition of memory modules, VGA display cards.
• Interact with users and make them comfortable with network environment
• Provided support to various network projects and provided day-to-day support for recently implemented Windows NT 4.0 Network.
• Involved in moving servers to the new facility, Server Troubleshooting, and
• On-Call responsibility on a rotated shift and occasional off-hours work Supervising documentation for the software
• Giving technical support and troubleshooting
• I was a part of the team who designed the Intrapop mail server