SUMMARY

• 8 years of experience in Routing, Switching and Firewall technologies which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
• Experience in Cisco IOS for configuration & troubleshooting of routing protocols: MP - BGP, OSPF, LDP, IS-IS, EIGRP, RIP, BGP v4, MPLS.
• Configured Security policies, Including NAT, PAT, Route-maps and Access Control Lists.
• Implementation of HSRP, VRRP, GLBP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP for Default Gateway Redundancy.
• Experience in the design, configuration/implementation, management, maintenance and support of Cisco, Check Point and Juniper firewalls.
• Implemented security policies using a Firewall, IP Sec, VPN, AAA Security TACACS+, and Radius on different series of routers.
• Integrating Cisco ACI and Intercloud strategies into their cloud-based service
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Good knowledge in configuration of Voice VLAN’s (VOIP) and had experience in Prioritizing the voice traffic over the data traffic.
• Involved in trouble shooting of DNS, DHCP and TFTP other IP conflict problems.
• Perimeter DMZ firewall rule/NAT migration and decommissioning of firewall.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST.
• Knowledge of Voice Grade Wireless, Location Based Wireless and Data Grade Wireless standards.
• Experience working with Nexus 7018/7010, 5020, 5548, 2148, 2248 devices.
• Knowledge of configuring the Overlay Transport Virtualization technology on Nexus 7000 switches to utilize the network and resources.
• Has experience with F5 configuration CLI including both BigPipe and Shell
• Worked extensively in Configuring, monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Implemented traffic filters using Standard and extended access-lists, Distribute-Lists, prefix lists and Route Maps.
• Experience with Frame Relay, ISDN, ATM, MPLS, leased lines and exposure to PPP,
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 4500, 6509-V-E, 6513, 6504, 6503, 6506, 6500, 3750 stack series switches, 800, 1700, 2800, 2600, 3800, 7600 series routers.
• Good knowledge of CISCO PIX and ASA 5500 series, Palo Alto Firewalls.
• Configuration and management of Host Based Intrusion Detection and/or Prevention Systems (HIDS/HIPS).
• Experience on working, implementing, configuration and managing Juniper SA 2500/4500/6500 SA devices.
• Designing and configuring of OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls (SRX240).
• Hands on experience supporting Cisco Call Managers, Unity, and Voice Gateways working experience on Cisco NAC (Network Access Control) appliance 4.8,4.9.
• Experience with various security practices and products including: OS hardening, encryption methods, virus protection, etc.
• Good knowledge of using Microsoft VISIO/Office as technical documentation and presentation tools.
• Working knowledge with monitoring tools like Solar Winds, Solar winds, HP open view and network packet capture tools like Wire-shark.
• Experience in monitoring and correlation of IDS, firewall, system and network events & logs.
• Risk assessment and management of Internet Data Center, Network security, perimeter protection and improvements based on information security industry best practices and guidelines.
• Worked On UNIX, Linux, and Windows Platforms and also involved in capacity planning of Network Maintenance.
• Implementation of network system upgrades and modifications including planning, testing, scheduling and coordination. Ensures that change management and defined security procedures for all network systems are executed in accordance with customer policies and procedures.

TECHNICAL SKILLS

Routing Protocols: OSPF, IS-IS, RIP, EIGRP, BGP, HSRP, VRRP, GLBP & Multicast Routing

Routers: Cisco 17XX, 18XX, 26XX, 28XX, 37XX, 38XX, 44XX &72XX series.

Switching Protocols: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging

Switches: Cisco 3550, 3750, 45XX, 65XX series.

Nexus devices: 7010,7018, 5020, 2148, 2248.

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240.

LAN Technologies: like Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, LAN Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN Emulation, 802.1Q.

WAN technologies: like Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET.

Security / Firewalls: Cisco ASA Firewalls, IPSEC & SSL VPNs, IPS/IDS, DMZ Setup, CBAC, Cisco Secure ACS, Cisco FireSIGHT, Cisco ISE, Cisco NAC, ACL, OPENDNS, IOS Firewall features, IOS Setup & Security Features, Cisco Sourcefire.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Infrastructure services: like IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management.

VoIP protocols Like SIP, MGCP.:

QoS / traffic engineering: DiffServ QoS, IntServ QoS, MPLS-TE, RSVP, LDP, MBGP

Programming Languages: C, C++, Assembly, Python.

PROFESSIONAL EXPERIENCE

Confidential, Mooresville, NC

Sr. Network Engineer

Responsibilities:

• Member with project team in design and implementation of Data Center Migration for external Connections.
• Performing troubleshooting on slow network connectivity issues, routing issues that involve OSPF, BGP and identifying the root cause of the issues.
• Multiprotocol BGP (MP-BGP) is implemented between leaf and spine switches to propagate external routes within the ACI fabric.
• Implementation and upgrading core and distribution layer including multiple server farms silos with Nexus 5K and 7K.
• Deployment of Cisco Nexus 7k, 5k and 2K along with ASR 9K, 6509s (Sup 720), Cisco 4900, 3750, 2960 switches.
• Use of Cisco Nexus 7000 Series Switches data center interconnect (DCI) devices between the Cisco ACI fabric and the existing Cisco Nexus fabric
• Experience in working with Cisco Nexus 5000 series switches for data center configured in a vPC (Virtual Port channel).
• Experience with configuring Nexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000.
• Experience with configuring Overlay Transport Virtualization on Nexus 7000 switches to efficiently utilize the network and resources.
• Integration of Cisco ACI into an existing Cisco Nexus environment (Nexus 7010 Switches).
• Configure trunk ports and implement granular control of VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that can extend further across the network infrastructure than previous generation of switches.
• Using Cisco ACI, establishing the communication path between the servers.
• Installed and configured over 600 network devices including access and distribution layer switches, wireless controllers, wireless access points and IP phones.
• Working with Network Design and implementation teams on various projects across related to Branch and Data Center.
• Load Balancing using F5 Networks Big IP
• Implemented and maintained Big-IP F5 load balancing solution across multiple datacenters.
• Configuring and implementing F5 BIG-IP, load balancers to maintain global and local traffic
• Designed and implemented data center network refresh in support of virtualization efforts.
• Troubleshoot the Network Issues on-site and remotely depending on the severity of the issues. Knowledge in working with issues regarding the network changes and migrations.
• Performs system level documentation on platforms and assists in project tracking and documentation. Experience with developing network design documentation and presentations using VISIO.
• Familiarity with various MSIT Tools to check Networking connectivity, Testing, Configuration and Adding or Removal of IP address blocks, Decoming or Adding the Devices.

Environment: Cisco 2948/3560/4500/3560/ 3750/3550/3500/ switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA5510, Checkpoint, Aruba Controllers 6000, 3600, 3400,650, windows server 2003/2008.

Confidential, Dover, NH

Sr. Network Engineer

Responsibilities:

• Design and implement secure network connectivity with trusted partners and 3rd party vendors. Interact with trusted partners and 3rd party vendors for planning and implementation of new connectivity, expanding existing access, migrations and troubleshooting access issues.
• Experienced in troubleshooting various WAN technologies like Frame-Relay, MPLS, T1, DS3 and ISDN.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Day to day responsibilities include tasks like building new connections to third parties and doing server moves, adds and changes within the DMZ as are requested.
• Maintained work relationships with customer technology groups to ensure compatibility between implanted solution and emerging business requirements. Created network documentation for production site support and engineering, packaging for change control.
• Provided end to end design, engineering, implementation and support for secure builds within the DMZ and EBNC complexes via projects and MACS.
• Designed and engineering of secure customer connections over the internet via IPSEC Tunnels.
• Extensive experience managing Cisco Client appliance to support deployment of Network Access Control functionality on LAN switches in an enterprise environment.
• Worked on Visio software to create and design the network diagrams according to the business requirement.
• Implemented the firewall rules on Checkpoint according to the Business Requirement and verification.
• Involved in migration of Frame-relay connections to MPLS based technology with the extranet clients.
• Involved in meetings with external engineering teams to design and build the network connections According to the business requirement.
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Experience in application switching and traffic management using cisco prime, deep knowledge of application requirements, understand SSL offload and implementation of SSL certificate and Key, and web acceleration.
• Involved in VPN migrations and new designs for the clients.
• Configured remote access VPN using EZVPN.
• Troubleshoot the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections. Designed secureB2B (Business to Business) network connections.
• Worked on tools like ALDEA and IW Remedy (integrated workflow system) or BMC Remedy.
• Worked with service providers in Installing, Troubleshooting T1, DS3, OC3 and OC-12 circuits.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Supporting and performing projects for the client WAN environment at a global level.
• Configured Cisco prime to Manage Helpdesk Incidents and Requests using CA Service desk manager- interact with business and end users to resolve incidents and complete requests.
• Initiated circuit orders; create high-level engineering diagrams and giving level 3 support on call.

Environment: Cisco 6509/ 3750/3550/3500/2950 switches, 7200/3845/3600/2600 routers, PIX Firewall, Checkpoint firewalls, TACACS, EIGRP, RIP, OSPF, BGP, VPN, Content Switching, Frame-Relay, MPLS, CSM. F5 BIGIP LTM.

Confidential, NYC, NY

Network Engineer

Responsibilities:

• Convert Branch WAN links from point to point circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.
• Responsible for design & management of Juniper Netscreen Firewalls, Juniper Switches, Cisco Switches.
• Worked on Juniper SRX FW 100/220/1400/3600 with configuring Rule-base policy, NAT issue and directly work with Vendor for any to fix Bug code in JUNOS.
• Implementing Site to Site VPN’s, Juniper Managed firewalls, Juniper NSM.
• Implemented clientless SSL VPN on Juniper SA 2500/4500 with Secure access 7.1/8.0 ASA 5500-x platforms.
• Configured new Juniper SRX firewalls for remote site implementation.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuring Vlan’s, VTP’s, enabling trunks between switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP which involves new wan links.
• Experience with design and implementation of Data center migration at NBC Universal
• Data center migration was involved in Access, Distribution and Core layers.
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Installing the Network devices in datacenter environment and clearly articulate complex network designs and drawings through documentation (Visio) as well as verbal training sessions.
• Monitoring, Troubleshooting and Customer Centric approach.
• Plan Design and assist in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Implementing and managing Security technologies like Cisco NAC
• Worked extensively in Configuring, Monitoring, and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Experience working JuniperT-Series, M-Series, MX-Series, J-Series Routers.
• Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525) & ASA 10/5540) Series.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces
• Supporting and performing projects for the client WAN environment at a global level.
• Configure Corporate, Wireless and Lab Devices which include Bandwidth Upgrade, Testing (Pilot).
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418 (with PRP and RPR processors).
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Aruba Controllers 6000, 3600, 3400,650, Cisco Nexus 7K/5K.

Confidential

Network Engineer

Responsibilities:

• Designed and implemented the Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project, which was successfully delivered.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Responsible for service request tickets generated by the help desk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Involved in L2/L3 Switching Technology administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Updated the HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Worked on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
• Providing daily network support for wide area networks consisting of MPLS, VPN and point-to point site.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Network Cabling, dressing, labeling and troubleshooting various network drops on-site.
• Managing Cisco Secure ACS for TACACS+, RADIUS authentications
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Configured cisco anyconnect VPN for remote users.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Working on Network design and support, implementation related internal projects for establishing connectivity between the various field offices and data centers.

Environment: Cisco 3750/3550/3500/2960 , 6500 switches and Cisco 3640/ 0/3845/3600/2800 , 3845 routers.

Confidential 

Network Engineer

Responsibilities:

• Design, integration, configuration, maintenance, performance monitoring and security of network infrastructure including local area networks (LAN), wide area networks (WAN), firewalls, DHCP, DNS.
• Configured, Maintained the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and troubleshooting.
• Designed, installed and configured network devices and monitoring tools, core network switches, routers, firewalls and proxy servers.
• Experience in Configuring Site-to-Site and Remote Site VPNs, NAT/PAT policies
• Maintenance and Troubleshooting of connectivity problems using PING, traceroute.
• Experience in designing and troubleshooting of EIGRP routing issues
• Configured router IOS upgrade with TFTP server.
• Implemented NAT (PAT) on cisco 3700 router.
• Switching related tasks included implementing VLANS, VTP and configuring ISL trunk on Fast - Ethernet channel between switches.
• Performed IOS upgrades on Catalyst 3550, 2950, 1900 switches, and 3600, 2600 and 2500 routers.
• Interacting with Carriers for installation of new WAN circuits at Customer premises and make sure circuit installed with no issues and ready to use before users move into the branch
• Providing Teir-3 technical support for LAN/WAN issues and on-call for technical escalation on a rotational basis. Well experienced in troubleshooting bug related issues with the help of Cisco TAC service
• Providing networking services, coordinate tasks and ensure their execution and documentation in accordance with established corporate standards.

Environment: Cisco 6500, 3560, 3750, 2950, 4500 series switches; 3550, 2600, 2950, 1900 routers, CiscoWorks.