SUMMARY

• 7+ years of industrial experience in routing, switching, network design, implementation and troubleshooting of complex network systems.
• In - depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS and Firewalls.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms.
• Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
• Using Smart Update, User Management and Authentication in Checkpoint Firewall.
• Configure and troubleshoot Remote access and site to site-in Checkpoint & ASA firewalls.
• Configure and Troubleshoot IPSec S2S, Remote Access and SSL VPN on ASA firewall and Checkpoint Firewalls.
• Expert Level Checkpoint Firewalls Administrator.
• Experience configuring and troubleshooting OSPF, EIGRP, BGP, VLAN's, Trunking, VTP, STP, PVST, RSTP, HSRP, 802.1q, and Ether-channels.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.
• Working knowledge with monitoring tools like Solar Winds & network packet capture tools like Wire-shark
• Provided 24x7x365 availability and on-call support as required by the projects
• Excellent working knowledge of TCP/IP protocol suite and OSI layers
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• Experience in designing MPLS VPN and QoS for architecture using Cisco multi-layer switches.
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzing results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP.

Networking Hardware: Cisco Switches & Cisco Routers.

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting

Firewall: Checkpoint R65/R70/R75/R76/R77, Cisco PIX & Cisco ASA.

Security Technologies: PAP & CHAP.

Operating Systems: Windows XP, Vista, Windows 7 & 8, Terminal Server, Citrix, Windows 2003 & 2008.

Features & Services: HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management

Network Monitoring: Cisco Works 2000, Wire Shark

PROFESSIONAL EXPERIENCE

Confidential, San Jose, CA

Checkpoint Engineer

Responsibilities:

• Implementing and troubleshooting firewall rules in Cisco ASA 5540, 5580, Checkpoint R75.40 and R77 Gaia as per the business requirements.
• Updating global policies and global groups in Provider-1 to replicate to all the firewalls.
• Worked with Level-3 team on upgrading the project of checkpoint firewalls from R75 to R77.
• Configuration and providing management support for Cisco ASA and Checkpoint Firewalls (R75, R76, and R77)
• Monitoring of managed Security Devices and Servers and incident response reporting.
• Daily Firewall rule base changes on Cisco ASA and Checkpoint firewalls.
• Accountable for maintaining and administration of Cisco Iron Port.
• Maintained and Configured Check Point VSX with firewall virtualization.
• Maintaining timely backups of Firewalls.
• Experience with Checkpoint's Smart Center management station Tipping Point Intrusion Protection System and configuration experience.
• Building site-site VPN connections for third party connectivity using ASA Firewalls.
• Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Working on trouble tickets in remedy ticketing system which comes to our queue.
• Continually monitor, assess and improve network security, test and implement new security technologies.
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
• Monitoring Tipping point IPS/IDS and engage SOC team depends on the alerts and act accordingly.
• Participating in 24*7 on-call support and implementing changes in different time zones as per the client requirements.

Confidential, Minnesota, MN

Network Administrator

Responsibilities:

• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Performing the ACL requests change for various clients by collecting source & destination information from them.
• Excellent working knowledge of TCP/IP protocol suite and OSI layer models.
• Diagnosing and troubleshooting layer 1, 2, 3 challenges.
• Expertise in implementing L2 technologies including VLAN's, VTP, STP, RSTP and Trunking
• Expertise in implementing routing protocols RIP,RIP V2,EIGRP,OSPF, and BGP
• Configuring and Troubleshooting Route Redistribution between static, RIP, EIGRP OSPF & BGP protocols
• Configured Security policies including NAT, PAT, VPN's and Access Control Lists.
• Configuring IPSec VPN on Cisco Firewall
• Maintaining timely backups of Firewalls.
• Responsible for Cisco ASA firewall administration across the VIDA networks
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-Trunking, deployed port security when possible for user ports.
• Performed basic security audit for routers and firewall, identifying missing ACL's, configuration of standard and extended ACLs for Security
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA and NAC solution
• Installed, configured and set security policies on cisco and checkpoint firewalls, VPN
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.

Confidential, Irving TX

Firewall Administrator

Responsibilities:

• Building, configuring, maintaining, troubleshooting the firewalls. Develop and implement the company's security policies, and rules implementation.
• Installation and administration of Cisco ASA 5500 series firewalls, and Checkpoint R77.10 Gaia Firewalls.
• Installing and Configuring Palo Alto Pa-500 series firewalls using Panorama.
• Implementing and troubleshooting firewall rules using Checkpoint Provider-1, smart dashboard, ASDM, Smart view tracker
• Monitor and administer Tipping point IPS/IDS and alert SOC team accordingly.
• Coordinated with network operations center (NOC) for change notifications, alerts and escalation of security incidents.
• Providing support to help desk for complex/major network problems. Build the rules for the application access across the IPSEC VPN tunnel.
• Configuring IPSEC VPN tunnels between Checkpoint and other non-Checkpoint endpoint devices using IKE preshared keys, 3DES and MD5.
• Working on the firewall rule optimization tool called Firemon to generate reports for usage reports.
• Performing daily network operations, on-call, and other duties and tasks as required.
• Adding Websites to the URL filtering blocklist in Bluecoat Proxies and upgrading firmware on the bluecoat proxies.
• Implementing enterprise wide network infrastructure and ecommerce support solutions including, network intrusion detection, encryption and monitoring.
• Performing business migration planning including location change, platform introduction and integration.
• Worked on creating network documentation using Microsoft Visio.

Confidential

Network Administrator

Responsibilities:

• Configured and supported TCP/IP networks.
• Monitored the network with Cisco Works 2000.
• Documented the design, implementation and troubleshooting procedures.
• Configured and troubleshoot VLAN, VTP, STP and Trunks.
• Responsible for procurement and installation of H/W, network drives and other IT infrastructure.
• Network Administrator responsible for the full Planning, designing, installation and administration of the Corporate WAN (wide area network).
• Worked on the data center environment, with routers and switches.
• Configuration, Management, Troubleshooting of Network devices (Routers, Switches, Firewalls, Servers, DSL Modems etc.). Maintained the Telecommunication Connectivity using DSL and T1 Lines.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Managed IP addressing and implemented IP Access Lists.
• Evaluate and recommend inter-connectivity hardware, software, and services to full fill various businesses needs as requirements develop.
• Worked on Routers Cisco 2620, Cisco 3750, and Cisco 2950 Switches & Link sys wireless access points.