SUMMARY

• 7 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
• Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4, MPLS.
• Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPSec, VPN solutions using ASA/PIX firewalls, Cisco, VPN client in addition to providing TACACS+ and RADIUS services.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy
• Strong knowledge of LAN/WAN security and understanding of wireless communications, protocols, end point troubleshooting and wireless configuration.
• Understanding of configuration and implementation of Aruba, Juniper, Extreme and Cisco Wireless solution building scripts and processes for automating repeatable operational business tasks.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience working with Nexus 7K, 5K, 2K devices.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Experience in designing MPLS VPN and QoS for architecture using Cisco multi-layer switches.
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200) series.
• Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP
• Expertise in installing, configuring and troubleshooting Juniper Routers (E, J, M and T-series)
• Implementing security policies using Cryptography, ACL, SDM, PIX Firewall, IPsec, VPN, and AAA Security on different series of routers.
• Extensive knowledge in developing test plans, designing of network, procedures, and testing various.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.

TECHNICAL SKILLS

Cisco & other vendor equipments: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series). PIX Firewall (506/515/525/535 ), ASA Firewall (5505/5510), Cisco ACE Load Balancers

Routing Protocols: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP & GLBP

Network Management: Solar Winds, SNMP, Cisco Works, Wireshark

Infrastructure services: DHCP, DNS, SMTP, FTP, and TFTP

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

Network Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS)

Platforms: Cisco IOS-XR, Cisco Cat OS, Cisco IOS (11.x, 12.x), PIX IOS (6.7.x), CAT-OS UNIX, LINUX, Windows XP, NT, 2000, 2003

Documentation: MS Office, MS Visio

Firewall Security: Cisco ASA, Nokia PIX, Juniper SRX, Checkpoint

PROFESSIONAL EXPERIENCE

Confidential, Secaucus, NJ

Sr. Network engineer

Responsibilities:

• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.).
• Responsible for wireless configuration, implementation of wireless solutions, and remote troubleshooting
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter Vlan routing, LAN security etc.
• Implemented with Cisco Layer 3 switches 3750, 4500, 6500 in multi VLAN environment with the use of inter-VLAN routing, HSRP, ISL trunk, ether channel.
• Used Cisco routers, switches, Access Points, Concentrators for implementation and management purpose.
• Configured IP, EIGRP and OSPF in routers. Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience configuring Virtual Device Context in Nexus 7010
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Provide Tier III Level Load Balancer expertise on F5 BigIP Local Traffic Managers (LTM). Designing F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Working with Checkpoint Support for resolving escalated issues.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Once trouble ticket has been created keep customer informed of status of ticket and estimated time to repair.
• Coordinating with service providers for WAN link outages.
• Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.
• Working on Cisco 6509 and 4507 series switches for LAN requirements that include
• Upgraded and updated Cisco IOS from 12.3T to 12.4. Used to DHCP to automatically assign reusable IP addresses to DHCP clients.
• Used PIX Firewall and ACLs for authentication of EIGRP to ensure high security on the network.
• Configured Cisco 7200 routers which were also connected to Cisco PIX 535 security appliances providing perimeter based firewall security.
• Used load balancers ACE and load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Used Network monitoring tools to ensure network connectivity and Protocol analysis tools to assess and pinpoint networking issues causing service disruption.
• Environment: Cisco routers 7200, IOS 12.4 & switches 3750, 4500, 6500; RIP, OSPF, EIGRP, VLAN, DHCP, DNS, MPLS, ISDN, DSL, T1 Lines.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Configuring ASA 5510 Firewall and accept/reject rules for network traffic.
• Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Other responsibilities included documentation and supporting other teams.

Environment: Cisco 3750/3550/3500/2960 switchesandCisco 3640/12000/ 7200/3845/3600/2800 routers, CiscoASA5510, Checkpoint, OSPF, BGP, VLAN, HSRP, LAN, WAN, IPV4, ASAFirewall, Checkpoint, Nexus 7K/5K/2K

Confidential, Wilmington, DE

Sr. Network Engineer

Responsibilities:

• Configuring and installing 6500, 4500 in Campus networks.
• Experience with WCS predictive maps and RF Engineering Planning.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Experience working in 24x7 NOC team monitoring and support various client system infrastructures, network devices and IPT network using Spectrum, Nimsoft and silverback.
• Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches with new Cisco switches.
• Configuring routing protocols OSPF, EIGRP,RIP, MPBGP, LDP and BGPV4
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Build Logical design and Implementation of Wireless Solution
• Planning, designing, staging and configuring wireless AP’s switches and access controllers for new network deployments.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 and Radware for the corporate applications and their availability
• VMware, Vsphere and Vblock
• Primary responsibility is to design and deploy various network security & High Availability products like check point other security products
• Worked extensively in Configuring, Monitoring and Troubleshooting Check point security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design
• Involved in iRule management like loading rules, writing iRule syntax using TCL language
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Cisco ASA firewall administration across our global networks
• Support customer with the configuration and maintenance of PIX and ASA firewall systems
• Assist with various duties that will arise including: implementation, configuration, management, rules definition, problem solving, design advice, troubleshooting, updating, maintenance, etc
• Experience working with JUNOS OS on JuniperRouters and Switches.
• Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540)
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Setup simplified and traditional VPN communities, and Cisco Anyconnect
• Support customer with the configuration and maintenance of PIX and ASA firewall systems
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope.
• Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Responsible for Cisco ASA firewall administration across our global networks
• Experience with migration Hybrid based Cisco CatOS and Native Cisco IOS on 6500 switches.
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(with PRP and RPR processors)
• Excellent Troubleshooting Skills and Customer Centric approach.
• Managed corporate Checkpoint Firewall implementing security rules and mitigating network attacks.
• Rebuilt and maintained the headquarters demonstration lab with the latest security hardware and software solutions from Checkpoint.
• Deployed the first Checkpoint firewall to utilize 12 physical interfaces
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ /3845/3600/2800 routers,Cisco ASA5510, Checkpoint, Junos, RIP, OSPF, EIGRP, BGP, VPN, LAN, WAN, VPN, Nexus 7K,5K,2K.

Confidential, Boston, MA

Sr. Network Engineer

Responsibilities:

• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Updated the HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• A firm understanding of LAN & WAN network technologies and topologies with a focus on Troubleshooting, Excellent understanding of network data flows in various protocols.
• Strong networking experience with routing protocols like TCP/IP, Layer 7 applications protocols, and variable length subnet masking.
• Managing IP allocation.
• Other responsibilities included documentation and change control
• Worked on Cisco routers 7200, 3800, 2800 and Cisco switches 4900, 2900
• Routing protocols OSPF, RIP & BGP
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues
• Troubleshoot network connections both physically and from command line
• Ensure thorough network documentation, including maintaining each account’s backup configurations and network diagrams.
• Engineering team member supporting enterprise networks.
• Network Topologies, Internet Protocol addressing, networking components, basic network design, router configuration, routed and routing protocols.
• Installed various branch Cisco devices including switches and routers.
• Install IOS flash, configurations, and trouble shoot Cisco routers and layer 2 switches.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.

Environment: NetFlow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls

Confidential

Network Engineer

Responsibilities:

• Hands on experience with Juniper EX-Series Ethernet Switches.
• Worked on Installation of PIM modules on Juniper J-Series routers.
• Configuring and deployment of Juniper ERX310 router.
• Configured IP access filter policies.
• Hands on experience and good working knowledge with Checkpoint Firewall policy provisioning.
• Worked on Firewall Administration, Rule Analysis, and Rule Modification.
• Resolved various OSPF issues in an OSPF multi area environment.
• Created, configured and managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core.
• Configuring RIP, OSPF and Static routing on JuniperRouters.
• Involved in configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Troubleshooting traffic passing managed firewalls via logs and packet captures.
• Strong working knowledge and troubleshooting of T1, T3, OC-3 and OC-12.
• Estimated Project costs and created documentation for project funding approvals.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Experience with Juniper firewalls.
• Identify, design, configuring and managing flexible, responsive, and secure technology services.
• Gathering the information on planned resources and presented the project status to higher management.
• Implementation and deployment of series 7613 as PE and CE router and configuring and troubleshooting the Edge Routers.

Confidential

Network Engineer

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fa
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark.
• Experience with Infoblox technologies.
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.