SUMMARY

• 8 years of experience in routing, switching, firewall technologies, systems design, administration and troubleshooting.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting
• Experience with routing protocols like EIGRP, OSPF, RIP, BGP and IP addressing,
• Experience in Troubleshooting connectivity and hardware issues on Cisco Networks.
• Experience in L2/L3 protocols like VLAN, STP, ISL, MPLS and Trunking protocols.
• Proficiency in Cisco Routing, Switching and Security with strong Cisco hardware/software experiences with Cisco Routers such as 1900, 2900, 3900, Cisco ASR - 1k/9k,Cisco ISR 2900, 3900, 4000 series, Cisco Multilayer Switches 4500, 6500, Cisco CRS 4/8 CRSx, Cisco Nexus 2k/5k/7k/9k, Cisco/Meraki Wireless, HP 2920, 3500, A5000 Series and Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches, F5 Networks. Palo Alto Networks.
• Experience in set up, configuration and management of Cisco ASA Firewall in various domain such as Internet, DMZ, Business-Partner, Remote-Access VPN etc.
• Experience in creating DAP Policies on Cisco ASA for Remote-access users and Creating IPSEC tunnel on ASA with Business Partner Firewall.
• Multicast: PIM-DM,-SM,-BIDIR,-SSM, MSDP
• QoS: Policing, Shaping, H-QoS, LLQ, SRR, WRR, CBWFQ
• MTA Security Fundamentals, MTA Server Fundamentals, MTA Operating System Fundamentals, MTA Networking Fundamentals.
• Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM,GTM
• Have Experience in Global ITIL Network Support.
• Good knowledge in F5 and Cisco ACE, Citrix Netscaler 10, load Balancing.
• Creating Virtual Servers, Nodes, Pools and rules on BIG-IP F5 in LTM module.
• Experience in Layer 3 Routing protocol configurations: RIP, EIGRP, OSPF, BGP, & MPLS.
• Experience in Layer 2 Routing protocol configurations: ATM/FRAME RELAY,IP services such as QoS and VPN technologies: IPsec& SSL.
• Implemented MPLS/VPN services for various customers
• Experience in configuring and troubleshooting VPC on Cisco Nexus-5k for downstream FEX and Servers.
• Experience in configuring VLANs, STP, VTP, PVST and 802.x authentication in access layer switches.
• Strong knowledge of HSRP, VRRP Redundancy Protocols in high availability environment.
• Experience with different Network Management Tools and Sniffers like SNMP, HP-Open view, and Cisco works to support 24 x 7 Network Operation Center.
• Worked extensively in Designing, Implementing & Managing LAN, WLAN & WAN solutions for different client setups. In-depth knowledge and experience in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM& Frame Relay.
• Experience in Physical cabling, IP addressing &subletting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Access Control Server configuration for RADIUS & TACACS+.
• Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Staging, Lab & Production Environments.
• Strong Experience in using various tools for management, analyzing, troubleshooting, monitoring & process automation in Lab & Production environment.
• Highly valuable Project Management and Operations Planning skills.
• Good knowledge in WAN Technologies, ACL, NAT/ PAT, Ether Channel, IPsec and VPNs.
• Good knowledge on testing tools such as IXIA, Spirent Test Centre.
• Enhanced level of knowledge in PPP, ATM, and T1/T3 Frame-Relay.
• Expertise in implementation and troubleshooting of protocols such HSRP, VRRP, GLBP, RSVP ACL.
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP),
• Experience with Varonis Dat Anywhere, Dat Advantage and Dat Alert products.
• HP Comware/ Wireless and 3com Networking, Hp enclosure / blade and Flex modules
• Knowledge of Terminal Server, Firewalls, Standard/ Extended ACL, Distribute-Lists.
• Work closely with Customers in determining the business needs for a Project and build Detail design which includes Data Flow diagram, Logical and Physical Diagram
• Perform Design, Implementation & Change Control Script review across organization
• Continually update understanding of business and technology status and objectives and respond to strategic design requests as the business evolves
• Constantly Monitor & Analyze Network Performance to detect problems and find ways to improve the Network
• Perform analysis and diagnosis of highly complex networking problems in the Data Center Environment
• Build simulated networks in test labs to resolve highly complex problems and compatibility issues
• Involved in various POC to test drive new Products/Technologies that would Value add to our Data Center Operation
• Implementing security policies usingASA55XX Firewall as well as Fortinet firewall, PS/IDS, AAA Security (TACACS+, RADIUS) on different series of routers
• Extensive experience with Cisco IOS, NX-OS, IOS-XR, JunOS, Windows client/server operating systems, Linux, Networking technologies, Firewalls.
• Hands on experience in tools like Solar winds, INfoblox, What sup Gold for IP address, DNS, DHCP monitoring and management.
• Good knowledge in configuring wireless Controllers Cisco 4400, 5500 and access points Cisco 1242, 2400 & 3500.
• Good knowledge about SDN (Software Defined Networks) - Open day light. Experimented with Netscaler for SDN
• Knowledge about Blue Planet Cyan and other network devices.
• Demonstrated success record in: Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
• In-depth knowledge of network communication technologies and techniques.
• Configuration Juniper router and F5 Load balancer- BIG IP
• Finely tuned analytical/critical thinking and debugging skills with excellent verbal and written communication skills.
• Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills

TECHNICAL SKILLS

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series)

Juniper Platforms: SRX, MX, EX Series Routers and Switches

Networking Concepts: Access-lists, Routing, Switching, Subletting, Designing, CSU/DSU, IPsec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: PIX Firewall (506/515/525/535 ), ASA Firewall (5505/5510)

Network Tools: Solar Winds, SNMP, Cisco Works, Wire shark

Load Balancers: A10 Networks(AX2500),Cisco CSM, F5 Networks (Big-IP)

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1,DS3,OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPSEC, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

Languages: Perl, C, C++, SQL, HTML/DHTML

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Network Separation project:
• Designed the plan for logical network separation using VRF lite concept and BGP attributes, Route maps, prefix-lists etc.
• Strong hands on experience on ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS)
• Experience in adding firewall rules, Network address Translation and also in creating multiple security contexts (virtual firewalls).
• Involved in setting up IP sec VPN between ASA firewalls.
• Experience with implementing Cisco 6500 VSS on the User distribution switches.
• Upgraded IOS on the ASA 5520 firewalls
• Working with MPLS Designs from the PE to CE and also configuring VRF on PE routers
• Experience with designing and deployment of MPLS Traffic Engineering
• Configuring RIP, OSPF, EIGRP BGP, MPLS, QOS, ATM and Frame Relay.
• Involved in design and implementation of Data Center Migration, worked on implementation
• Strategies for the expansion of the MPLS VPN networks
• Working Knowledge of Cisco IOS, Cisco IOS-XR, Cisco Cat OS, Cisco NX-OS, JUNOS
• Experience with configuring BGP in the data center and also using BGP as a WAN protocol and manipulating BGP attributes
• Design and deployment of MPLS QOS, MPLS Multicasting per company standards.
• Implemented site to site VPN in Juniper SRX as per customer.
• Implemented various EX, SRX & J series Juniper devices.
• Experience with deploying Fabric Path using Nexus 7000 Devices
• Experience with configuring VPC, VDC and OTV between the data centers as a layer 2 extension.
• Experience with configuring FCOE using Cisco Nexus 5548.
• Installed controller and light weight access point coordination with TAC.
• Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multilayer Switching.
• Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Build, manage and maintain internal data systems via Active Directory DS, NTFS permissions, DNS and OS security including GPO's.
• Configured Routing protocols such as EIGRP, BGP, static routing and policy based routing.
• Installed and configured new WAAS device (WAN accelerator) for the separated network.
• Switching related tasks included implementing and separating VLANs, VTP and configuring and maintaining multi VLAN environment, inter-VLAN routing, VPC and VSS.
• Hands on Cisco 3945 router, 3750, 4506 and 6500 switches.
• Managed the testing, deployment and configuration of WLC, WCS and WiSM systems. Worked on Cisco 1242, 2400, 3500, 8510, 5500 and Access points 2700, 3700.
• Replaced 6409, 6413 switches with 4510, 3750 switches as a part of refresh project.
• Hands on Infoblox IPAM.
• Fixed the broken MPLS and VPLS configurations (VPLS id mismatch) in the MPLS cloud as a part of research project.
• Hands on IPsec VPN tunnelling.
• Proposed designs for Cisco Wireless, LAN/WAN, and Security solutions.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.

Confidential, Washington, DC

Network Engineer

Responsibilities:

• Installation, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
• Configured various advanced features (Profiles, monitors, rules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/GTM/APM, DDOS attack detection and mitigation.
• ConfiguredJuniperMX480s, EX8200s, EX4500s, EX4200s, from scratch to match design and installed new f5- VI prion 4800, 2400 controllers.
• Worked with the Trouble Tickets on F5 Load balancers on LTM module
• Deployed and managed Varonis specifically Data Governance, Data Advantage and Data Alert modules in complex environments.
• Installed, configured and managed Citrix Presentation Server 4.5 including patch management and system upgrades, maintained logon scripts, troubleshot all Citrix related software problems and provided end user support.
• Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches and Cisco Nexus switches 7000 and 7700 series.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing.
• Design and implementation of Secure LAN (SLAN) switching, Implemented techniques like port security, IP permit lists, Protocol filtering.
• Configured private LANs on Catalyst 6000 switches for layer 2 isolation to connected devices.
• Implemented SLAN (Secure Local Area Network) back up to avoid data loss due to any disasters.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.
• Implemented and used SDM to configure Cisco IOS security features and network connection.
• Network Segmentation-application migrations for enterprise Private Data Firewall and data behind ASA 5585-Xs, Juniper SRX.
• Knowledge of Active Directory; SMS remote support; Presentation Management Console and VNC technologies
• Operate and analyze results from enterprise detection systems such as Source fire, Tripwire, and several others.
• Configured Object Grouping, Protocol Handling and Code up gradation on ASA Firewalls.
• Implementation and maintained Tipping point intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
• Conductedvulnerability assessments and generic security scans of both systems andnetworks to identify and mitigate security vulnerabilities using Nessus Vulnerability Scanner.
• Performed full disk encryption systems- Point Sec, personal firewall-McAfee Host Intrusion Protection, McAfee Antivirus/Anti Malware - McAfee Endpoint Protection systems.
• Performed networking testing using IXIA
• Design, implement and provide second level support for hostload-balancingsolutions at SWA.
• Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) and etc.
• Perform PCI-DSS and PA security assessments with a diverse client base in accordance with the PCI security standard and local laws.
• Worked with different vendors and implement Site-to-Site VPNs over the Internet.
• Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Working knowledge of the UNIX and CLI based command to implement the networking tools.
• Configured and monitored Firewall logging, DMZ’s and related security policies.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.

Confidential

Network Engineer

Responsibilities:

• Designed and Configured Nexus 7000/5000/2000 in Top of Rack & End of Row Architecture for a Scalable Production Network that supports Rack & Blade server architecture in a Multi-Tenancy environment using vPC, VDC & VRF
• Designed and Implemented Nexus 7K/5K/2K and Catalyst 6500/4900/3750- X in a complex DC Core/Aggregation/Access layer on a 10G backbone in Production and DR Data Center
• Migrated Servers from 6500 Platform to Nexus without any application outage
• Designed and Deployed Service Switching layer with 6500 platform for Firewall and Load Balancing Services for WEB and APP server Cloud on the Nexus platform.
• Responsible for Installation, configuration and maintenance of Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
• Used Perl scripting for Network testing and customized Network monitoring system using Perl.
• Redesigned and Implemented Campus LAN with 6500 Platform on Core/Distribution/Access /Perimeter model on 10G backbone
• Exchange 2003/Windows 2000 server admin with Active Directory
• Designed and Implemented Cisco UCS pods in Nexus 7000 and Cisco 6500 Platform
• Configured UCS Fabric Interconnects 20
• Configure UCS Manager by defining Service Profile Template, Policies & Pools for Production Servers and DR Servers
• Design and Configure the vNIC & vHBA Fabric/Templates based on Application bandwidth requirement.
• Designed and Implemented Overlay Network Management Network to manage all our Production Devices with Syslog, Cisco Secure ACS, TACACS+ and Solar winds NPM
• Hands on Solar winds IPAM.
• Worked with F5 Load balancer. Hands on F5 BGPIP GTM.
• Analyze and Troubleshoot Network Performance issues with Cisco NAM & Distributed Sniffer
• Installed and Configured Cisco ASA G Firewall at Database & App Server Layer
• Designed and implemented Cisco Nexus data center platform and worked closely with Cisco advance services and built Communication access zone for contact center services, management access zone for network management and monitoring tools, private wan access zone for remote site and elastic computing access zone.
• Handling Cummins Global Network including Cisco High end Routers, Switches, ASA’s, FSWM and Cisco ACE Load balancers
• Configuration of New & Existing Network devices, includes Cisco Routers, Switches, ASA and ACE’s
• Worked with Cisco advance services to implement data center Nexus environment for new Upgraded the NX-OS in nexus 7018,7010 and nexus 5548 and 5596.Consolidated multi-tiered environment into a pair of Nexus 7000 switches using VPC and VRF
• Maintained good understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.)
• Configuration included VLANs & VTP, STP port features, Gateway redundancy using HSRP, enterprise security using Cisco Port Security and Dot1X framework.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, Route maps, prefix-lists etc.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local Preference, Communities.
• Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
• Team member of Configuration ofCisco router with VPN and Configuration of Catalyst switches.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Providing Technical Support and solutions forNetwork Problems.
• Planned, tested and evaluated various equipment’s, systems, IOSs and procedures for use within the Network/ security infrastructure.
• Designed, integrated, and rolled out more than ten wireless regional wide area networks (WAN / WLAN)
• Managed the testing, deployment and configuration of WLC, WCS and WiSM systems. Worked on Cisco 1242, 2400, 3500, 8510, 5500 and Access points 2700, 3700.
• Hand-on experience in developing scripts using Perl scripting language.
• Experience in designing, managing, and implementing complex IPCC and Cisco ICM/UC systems.
• Exposure to network testing tools like IXIA, Spirent Test Centre.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Juniper SRX firewall, VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.

Confidential

Network Consultant

Responsibilities:

• Configuration and implementation of CISCO 3750, 4500, 6500 series switches and HP 2920, 3500, A5000 Series, Cisco Analog Gateways Cisco VG350, VG204, VG224, Nexus 2k/5k, Cisco Ip Phones Cisco 7821, Cisco 7841, Cisco 7940, Cisco 8800 series.
• Configuring and implementing EIGRP, OSPF and BGP.
• Core network support- Cisco 3900 series routers running multi area OSPF
• Configuration of EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution.
• Responsible for service request tickets generated by the helpdesk such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP for problems of L2/L3 in internal teams & external customers.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Configured VLANs with 802.1q tagging, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture
• Upgrading Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers.
• Design, WAN link using PPP Multilink and by implementing Cisco WAAS.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
• Hands on Cisco Call Center and Cisco Hosted Collaboration Solution (HCS)
• Designed,Installed and configured all aspects of Cisco Unified Communications Management (CUCM)
• Implemented video H.261 protocols and equipment, IPx4 addressing and router components and functionally.
• Configured and Managed IP Telephony (VoIP) Users, Configured and maintained SRST.
• Created Route Patters for WAN & PSTN using Wildcards
• Worked with Nortel Meridian IP ready PBX systems, product / practices, Cisco IP VoIP Toll Bypass.
• Call-Manager 3.X, 4.X, 5.X, 9.X CME 3.X, 4.X, CUOM 2.0, Unity 4.0
• Designed and Implemented Contents switching and SSL offloading solution, enabled non-disruptive scaling of core products already in place.
• Implemented and deployed IP video conferencing infrastructure.
• Designed, Integrated & Certified entire Cisco CM Solution for a new enterprise.
• Implementation and troubleshooting of wan, PFR, Wireless and IPT(VoIP)
• Installed Cisco 2900, 4000 ISR (VoIP) with a Cisco Unity Express Network Module (NM-CUE) installed, Cisco Communications Manager Express, a standard Cisco 3550 Switch, and a Cisco 3550 switch with Power-over-Ethernet.
• Reviewing the site document that contains Mac address, gateway information, voicemail, Analog phones, VG's paging and Gate info.
• Generated queries/views on the SQL Server Database and created monthly reports.
• Implemented SNMP for the network utilizing Cisco Works, NAGIOS/CACTI, and MRTG to ease network management.
• Configured, VLANS, NAT, DHCP, HSRP, QOS, STP and trunking on Cisco routers •
• Migrated Checkpoint R65 to R75 and Installed Smart-Reporter which allows us to run reports on Security rules usage etc.
• Worked on WAN connectivity between CISCO routers using T1, T3, Frame relay and troubleshooting connectivity issues.