SUMMARY

• CCNA, CCNP CERTIFIED professional with7 plus years of experience in network design, implementation, and support. Routing, switching, firewall technologies, Proxy and Load Balancersystem design, implementation and troubleshooting of complex network systems.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP, VoIP and MPLS.
• Responsible for Check Point, Juniper and Cisco ASA SourcefireFirepower firewall administration across global networks and cisco ISE Management.
• Hands on experience on Bluecoat Proxy SG Devices Implementation configuration and maintenance.
• Hands on Experience on SolarWinds,Algosec,Firemon, Nagios and Cisco sourceFireFirepower and Inflobox Network monitoring tools.
• Worked on projects which involved SolarWinds Orion in configuring the device for Ping, SNMP, ICMP, SYSLOG etc.
• Experience in working on Inflobox network security tool in managing DNS, DHCP and IPAM.
• Working Knowledge on Amazon AWS cloud for Cloud based networking.
• Hands On experience in working on F5 Load balancer and Viprion. Worked in a project where Implemented, Configured, Maintained and Trouble shoot incidents.
• Experienced in Working in DLP, IPS, IDS, Antivirus, NAC and Authentication
• Configured the enterprise LAN, WAN, DMZ and STZnetwork devices routers, switches, firewalls and Windows servers in SolarWinds Orion for monitoring and alerting.
• Extensive knowledge with VLAN’s, Trunking, RSTP, SNMP, Ether Channels, HSRP, Port Security, ACL’s, QoS, Traffic Policing, Shaping, NAT, PAT, Inspections, VPN’s, DHCP, Wireshark etc.
• Switching tasks include VTP, ISL/ 802.1q, VLAN, Ether Channel, STP and RSTP.
• Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Configuring and troubleshooting STP, VTP, Port configuration, switching and routing theories.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server.
• Experience in configuringACD, VoIP, IVR and Telephony concepts and technologies including analog, TDM and SIP
• Expertise in installing, configuring, and maintaining Cisco Switches (2900,3750, 3850, 4507, 4510, 2911 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 4510, 4507, 3850, 3750,3600, 2800,2000, 2600, 2900, 2911, 1800, 1700, 800)
• Administration and diagnostics of LAN and WAN with in - depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Experience in site-to-site and remote access VPN solutions.
• Experience working with Nexus 7K, 5K and 2K.
• Hands on Knowledge/experience on F5 load balancers and Viprion its methods, implementation and troubleshooting on LTMs and GTMs.
• Worked extensively on Juniper Net screen, Fortinet Firewalls and SRX Firewalls.
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLSQOS
• Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320,MX,EX,2950,2960,3600,3750,4500,6500,1700,1800,2600 and 3700 series routers & Switches.
• Troubleshooting & implementation of VLan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks
• IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.

TECHNICAL SKILLS

Network Protocols: MPLS, VRF, OSPF, BGPv4, EIGRP, HSRP, VRRP, VoIP Policy-Based Routing (PBR), Route Redistribution, Static Routing, Web Cache Communication Protocol (WCCP), WAAS, MPLS, Metropolitan Area Network (MAN), Wavelength Division Multiplexing (WDM), ISDN, PPP, VTP, STP, RSTP, VLANs, 802.1q/ISL, CDP, LACP, MSDP, IGMPACD, VoIP, and IVR systems

Cisco Router Platforms: 1841, 2611, 2621, 2800, 3600, 3800, 3845, 3900, 7206VXR

Cisco Switch Platforms: 2900XL, 2950, 2960, 3500, 3550, 3560, 3760, 4500, 6500, Nexus 4k, Nexus 5k, Nexus 2k, Nexus 1k, Nexus 7k

Routing Protocols: EIGRP, BGP, OSPF, RIP, MPLS

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, Port Channel, TCP/IP, VLSM, Cisco/Catalyst L2/L3 Switches, Wireless (802.11 a/b/g/n) Juniper/Netscreen/Cisco Firewalls, check point firewalls and Palo Alto panorama.

WAN Equipment: Cisco/Juniper Routers and firewalls, Silver Peak NX-7xxx, WAN AcceleratorsOC-192, OC-48, FRAME RELAY, PPP, T1/E1, HDLC, MPLS, DS3, Leased Lines, DSL Modems, ISDN(PRI/BRI), Fiber technology, Copper Cabling Technology

Network Management Tools: Cisco Firepower, SolarWinds Orion, InfoBlox, ArcSight,Fireeye and Firemon, Algosec, Cisco Works, Silver peak GMS, RSA Security Console, RSA Operations Console, vSphere Client, TFTP, FTP, SSH

Security Access Control/Policy: Cisco Secure ACS for Windows, RSA, AAA, TACACS+, RadiusIPSec, GRE, NAT/PAT, ACLs, Juniper SA SSLVPN w/DUO, Cisco Altiga SSLVPN, VeriSign

Languages: C, C++, coding, Assembly Language, HTML, SQL, Python, PHP

Operating Systems: Windows 2003, Windows 2008, Linux

Software: Microsoft Visio 2010, HP Asset Center, Microsoft Office

Network Operating Systems: Cisco IOS, Nexus OS, CATOS, Junos

Documentation Tools: Microsoft Office, Visio, SharePoint

PROFESSIONAL EXPERIENCE

Confidential, Auburn hills, Detroit

Network Security Engineer

Responsibilities:

• Worked as Network Cisco Switching, routing and Firewall engineer for Confidential Inc.
• Managed Firewall like Checkpoint, Juniper and Cisco ASA.
• Worked on F5-Loadbalancer, Cisco ACE Load Balancer and Bluecoat Proxy.
• Worked intensively on Bluecoat Proxy SG Devices in Implanting, Configuring and troubleshooting.
• Worked on Web filtering using Bluecoat proxy and Forcepoint.
• Worked in F5 load balancer. F5 BGP-IP LTM, F5 BGPIP ASM, GTM and APM and Viprion.
• Worked on Integration of F5 load balancer, Checkpoint firewalland Cisco switches, routers, Cisco ISE and firewalls to Amazon AWS cloud technology.
• Involved in many projects to design and Develop Rules for the Project and access.
• Worked on Checkpoint R55, R65, R75 and R77 (Updated)
• Configured, Troubleshoot and Upgrade checkpoint firewalls for manage secure access for the clients.
• Working knowledge on Data loss prevention (DLP), Authentication, Network Access control (NAC), Intrusion Prevention Systems (IPS).
• Responsible for software IOS updates in Network devices, Documentation of process, Visio presentation.
• Hands on Experience on InfoBloxnetwork security tool and QIP.
• Working know on VXLAN with AWS cloud technology.
• Knowledge on working virtualization technologies VXLAN, EVPN, SDN, SD, WAN, NFV.
• Worked in Vyatta Virtual routers. Configuration and Maintenance of Vyatta virtualization routers.
• Worked on in installing, configuring, and maintaining Cisco Switches (2900,3750, 3850, 4507, 4510, 2911 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 4510, 4507, 3850, 3750,3600, 2800,2000, 2600, 2900, 2911, 1800, 1700, 800)
• Upgrading the rule base, VPN and NAT according to the banks security policies. generating logs for log viewer.
• Worked on project in Migration network switches to Nexus Switches
• Worked with Cisco Layer 3 switches 3750, 3850, 4500, 4510, 4507,6500; Cisco Nexus 5596 and 7010 in multi VLAN environment with the use of inter-VLAN routing, 802.1Q trunk, ether channel.
• Hands on experience in Microsoft and Unix, Unix Shell scripting based serves and systems.
• Routing protocol configuration such as OSPF, EIGRP and BGP, Router redundancy configuration (HSRP, VRRP and GLBP).
• Working Knowledge onOperations and configuration of Splunk in managing Corporate Data.
• Worked on Palo Alto PA- 5000 and PA-3000 series and panorama. Worked on creating in creating new policies and OS updates.
• Created NAT, Zones, Tags, VPN tunnels using 5060, 3050 and 3020 series in Palo Alto.
• Worked onPalo alto and Panorama in creating updating rules, VPN Tunnels and troubleshooting the incidents.
• Experience in IPv4, IPv6, Multicast, Unix,Linux.
• Hands on experience in Cisco SourceFireFirepower Network security and Firewalls.
• Configured and maintained Cisco ASA SourceFireFirepower to monitor security alerts, Malware protection.
• Working knowledge on Cisco ASA 5510, 5505.
• Working knowledge on Aruba and Riverbed Networks for LAN/WAN.
• Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks
• Knowledge aboutCisco Identity Service Engine (ISE) using Cisco Platform Exchange Grid (pxGrid) devices in Detecting the Identity awareness advanced treats, Malware protection and providing secure connectivity.
• Worked on Identity and access management IAM and Data Loss Prevention DLP.
• Worked on level 1 and 2 security incidents and event management using IBM Qatar SIEM.
• Worked on AWS cloud based technology for the network configuration.
• Worked on Citrix NetScaler load balancers and NetScaler Unified Gateway in configuring security rules for user authentication.
• Documentation, assigning and solving the incidents form ServiceNow and Service Desk.
• Worked on Level 3,2 and 1 tickets based on LAN, WAN a security tickets.
• Hands on experience SolarWinds Orion exclusively on configuring the Switches, Routers, firewalls and Windows servers for SNMP, ICMP, Syslog, Netflow, SNMP traps and Ping.
• Worked on SSG, IRS and SRX models is configures to provide user subscription access to cisco.
• Worked on all the 6-major application in SolarWinds Orion like IPAM, NPM, SAM, NCM, VOIP, UDT.
• Created prominent level documentation and training guide for the colleague in the corporate for SolarWinds, Forcepoint and Firemon. Organized WebEx meeting to collect the data and network or server IP’s to monitor for critical alerts.
• SolarWindsand Algosecused for critical alerts to on-call person, Generating logs for troubleshooting and audit purpose. It’s used to generate unique IP to allot in required by the management.
• Hands on experience in ArcSight, FireEyeand Algosecin managing logs and auto generation or security alerts as per Banks requirements.
• Experience working with Nexus 7K, 5K and 2K.Configure VDC and vPC on Nexus 7010 and Nexus 5596.
• Configures and managed Nexus 2248 and 2400 series of wireless controller.
• Performed Proxy testing which serves Layer-7/ HTTP traffic and other Proxy features like HEADER ERICHEMENT, TFD, LTMI and Video Optimization.
• Worked on web access management (WAM). Creating policies, Realms and groups for web based authentication under Banks Security and AuditSOC2 Rules.
• Worked on Fortinet Firewalls in configuring and maintain under the security standards.
• Worked on Fortigate High end firewalls 5000,3000series and Mid-level 800,600 series.
• Performed Deep packet inspection using Wireshark for various protocols like RADIUS, HTTP, LDAP and SSL.
• Configured network interfaces, routes, DNS, DNAT, NTP and SNMP on traffic servers and VLAN on network switches.
• Worked on DHCPand DNS Servers.
• Worked on Bluecoat SSLV, Pac file and proxy devices. ProxySG800, SG600.
• Worked on F5 BIG-IP LTM 6900, configured profiles, and provided and ensured high availability.
• Responsible for addressing all issues on core nodes (MSS, MGW, SGSN, MME, CPG,MSPand IMS) related to performance, capacity and QOS and provide sustainable technical solutions through engineering and/or tools for AT&T.
• Worked on Disaster Recovery (DR) test plan and build an IPSEC tunnel site to site.
• Intermediate knowledge about Amazon AWS cloud based Technology.
• Hands on experience in Multicasting, Worked on sniffing and packet analysis.

Environment: Checkpoint, Juniper, JunosOS,Nexus, Screen OS, Bluecoat Proxy,Firemon,Solarwinds, F5LoadBalancer,Nagios.Cisco 6509/6500/6503/6513/7500/7503/7513 and catalyst 3750, 3700Switches and Cisco 7200/3845/3600/2800 routersWireshark and Sniffer.

Confidential, Stamford, CT

Network/ firewall Engineer

Responsibilities:

• In depth knowledge of configuring cisco switches, routers and Cisco ASA Firewalls and Cisco ACE load balancer.
• Worked on developing security architecture and maintaining security Infrastructure.
• Hands on experience in STP, VTP, PVST, LACP.
• Worked on F5 Load balancer F5 LTM/APM/ASM/ WAF and ARM.
• Worked on Palo Alto PA-3000 and 800 Series.
• Hands on experience in port allocation, port security and port fast.
• Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.
• Worked in providing Remote support, troubleshoot issues and managing hardware and software.
• Worked on SolarWinds Orien in configuring Network devices and Servers.
• Experience in Palo alto and Panorama in creating updating rules, VPN Tunnels and troubleshooting the incidents.
• All the switches, router, Firewalls, Proxy and servers are monitored and supported by SolarWinds. Alerting the designated person when the devise or nodes goes down.
• Worked on Citrix NetScaler load balancers
• Worked onArcSight to monitor logs under risk and security aspects.
• Configuring and Maintaining TACACS+ for AAA.
• Worked extensively on Cisco Firewalls, Cisco PIX &ASA 5500(5525/5585)
• Managing security tools IPS/IDS, WAFs, DLP and Data at rest encryption and malware detection system.
• Hands on experience on juniper 4200EX, 8216 EX Switches, SRX firewalls.
• Worked on VoIP protocols RTP, SIP,SCCP, RTCP, MGCPand test tools WinEyeQ, Wireshark/TCPDump.
• Working with Cisco IOS-XR on the ASR9000, 1000 devices for MPLS and Cisco ISE Management.
• Hands on experience on customize & maintain enterprise network hardware & softwareExperience with administering, troubleshooting and configuring / implementation (Cisco and Checkpoint) Firewalls
• Worked in Checkpoint in troubleshooting Tickets. User access, rules upgrade and Decommission task are accomplished in time in checkpoint.
• Set up VSS cluster, ether channel, VLAN trunking, VTP and inter-VLAN routing on 6506.
• Configured site to site VPN technologies using IPSEC.
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched Network.
• Worked with Routing Protocols of OSPF, and BGP.
• Worked on DHCP servers and DNS, Citrix NetScaler load balancer.
• Worked on Worked on call routing and cisco call management (CUCM), UCCE and ICM.
• Worked on F5and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance and F5 TMOS architecture.
• Nexus platforms - 6004, N3048. N3064, 5596, 3132
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance, troubleshooting etc.)
• Performed Network Security Assessment and implemented security improvements such as network filtering, SSH, AAA, SNMPcall routes lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.

Confidential, Austin, TX

Network Firewall/ SecurityEngineer

Responsibilities:

• Worked in configuring, Implementing and supporting Cisco Network.
• Lead the testing team on Virtualized Proxy which supports port 80 traffic in connected car project.
• Worked on F5 Load balancer F5 LTM/GTM
• Worked on checkpoint R65 in Upgrading and troubleshoot the level 1 and 2 incidents.
• Worked on MacAfee security and TrendMicro antivirus.
• Involved in test case design, execution and analyze the traces and perform root cause analysis on issues.
• Worked on SolarWinds monitoring tools.
• Hands on experience in UNIX and Junipernetwork andfirewalls.
• Hand on experience in VLAN and VPN networking.
• Worked on Cisco ISE management.
• Worked on call routing and cisco call management (CUCM).
• Worked on Traffic analysis tools like sniffer and TCP dump.
• Working closely in sync with other node teams for integration, functionality and understanding.
• Worked on Tools like Net scout, IRIS EPC/IMS analyzer, JDSU, Wireshark, HPQC
• Integration, Testing, Verification and Software upgrade of Ericsson’s Multi Server Proxy (MSP) Solution in AT&T’s Core Network for optimizing HTTP, MMS and video traffic.
• Solution deployment and implementation was done on various Servers running on Linux
• Performed troubleshooting of networking issues inMSPsystem using tools like TCP dump, trace route, and netstat, nslookup and SQL queries.
• Configuring ports for port security, Port channel, Port loop, loop guard, Switching and routing concepts.
• Experience in Testing application working on VoIP, managing VoIP in quality, load performance.
• Hands on experience in windows server and windows security policies.
• Implemented DER and DEA, Post challenge request messages for authentication on AAA and HSS. Implementation of Radius and Diameter (RFC 3588, RFC 4072) interface with EAP for AAA Controller

Confidential, Sacramento, CA

Network Engineer

Responsibilities:

• Involved in the Team of Data Center Operations to perform duties like administration and deployment of Cisco Routers and Switches according to the organization requirements
• Experience with moving data center from one location to another location, from 6500 based data centers to Nexus based data center
• Worked with the data center planning groups, assisting with network capacity and high availability requirements
• Worked inVLAN and VPN and Network Monitoring tools like Nagios and SolarWinds.
• Experienced in install, customize & maintain enterprise network hardware & software
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 7010 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Reviewing all changes to network configuration for technical accuracy and providing solutions to Multi-Protocol Network problems
• Multicasting, Route redistribution, Route Filtering using Distribute list
• IP Allocation for all applications and servers with high availability throughout the company
• Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall
• Provided application level redundancy and availability by deploying F5 6500 series LTM load balancers
• Involved in designing WAN infrastructure for redundancy in case of link failure
• Responsible for technical evaluation, troubleshooting, overall project management, problem solving and turn-up of the service with the ISP
• Created and designed network layout and documented network system design with detail information using Visio

Confidential

Network Engineer

Responsibilities:

• Configured CIDRIP RIP, PPP, BGP and OSPF routing.
• Involved in the configuration & troubleshooting of routing protocols: BGP, MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Installed different software on the systems. Install and managing network devices including Hubs, Switches.

Environment: Cisco 6509/ 3750/3550/3500/2950 switches, Cisco 7200/3845/3600/2800 routers, Checkpoint firewalls(SPLAT), Net Flow, TACACS, EIGRP,RIP,OSPF,BGP,VPN, MPLS.