SUMMARY

• 8+years of diversified experience in LAN/WAN, routing, switching, firewall technologies, administration and troubleshooting as a Network/System Engineer.
• Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Administration of DLP.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with VOIP and QOS implements and support.
• Knowledge of advanced technologies like VOIP, H.323, SIP, QOS, Multicasting, MPLS and MPLS - VPN
• Experience with configuration and support of IPSEC VPN.
• Experience in implementation of F5 BIG-IP Viprions and F5 Virtual Editions.
• Configuring and maintaining Site to Site and client to site VPN connectivity. Experience on Network management tool - Solarwinds. Configured and maintained Cisco ASA firewalls and Palo Alto firewalls.
• Experience in working with GTM, LTM, AFM, APM, or ASM. Experience on Cisco MPLS.
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
• Experience using Hyper-V and VM ware.
• Working experience onEther Channels and Spanning tree Protocol,HSRPandVRRP.
• Hands-on experience with 5 of the following:vulnerability scanning, firewall, antivirus& malware analysis, proxy, IDS/IPS, log correlation tools, SIEM, DLP, NAC, and application firewall solutions
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series)
• Experience on orchestration systems such as Puppet, Chef.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and trouble shooting on LTMs and GTMs.
• Switching (MPLS)network using OSPF and BGP Configuring VLANs and implementing inter VLAN routing.
• Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM
• Experience in TCP/IP protocol suite and OSI Model
• Outstanding experience in designing and configuring of Layer 2 / 3 networking features such as VLAN, ISL, STP, VTP, 802.1X, Port Security, L2PT and SPAN
• Hands on experience of protocols Frame relay, MPLS, ATM, and PPP.
• Testing and migrating locations from hub and spoke topology to MPLS
• Worked on IP QOS, in a MPLS VPN environment
• Experience with implementation of DNS and DHCP protocols
• Configuring firewall devices and configuring Access Control Lists (ACL)
• Excellent technical and project management skills combined with strong communication skills

TECHNICAL SKILLS

Routing: Static, Dynamic - RIP, IGRP, EIGRP, OSPF, IS-IS, BGP-V4

Routers: Cisco (7600,7200, 3800, 3600, 2800, 2600, 2500, 1800 series)

LAN Switching: VLAN, VTP, STP, RSTP, MST, ETHERCHANNEL, HSRP, VRRP, GLBP, Port Security

Switches: Cisco (6500, 4500, 3750, 3500, 2900, series), Nexus 5500

Firewall 506/515/525/535 : Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Protocols: FTP, TFTP, STP, MSTP, VTP, HSRP, VRRP, DHCP, SNMP, NAT, RIP, EIGRP, OSPF, BGP, MPLS.

TCP/IP Services: DNS, DHCP, SNMP, NAT, FTP, TFTP

F5 Load Balancers: VIPRION 4400, 2400.

Security: Checkpoint, Juniper, Nortel, Cisco PIX & ASA Firewalls, Access lists and Policy based routing, Firewall Design, VPN Configuration, Internet Content Filtering, Load Balancing, IDS/IPS,HIDS,HIPS,NAC,DLP.

Firewall: Checkpoint Console R75.40 & R77.10, Cisco PIX - 506, 515, 525 Series Cisco ASA 5550 Series, Juniper SSG

Juniper Firewalls: Cisco 4400, 5500

Wireless Controllers: Cisco 1242, 2400 & 3500.

Access Points: DHCP, DNS, SMTP, FTP, TFTP

Platforms: LINUX, UNIX, Windows, Mac

Languages: Perl, C, C++, SQL, HTML/DHTML

PROFESSIONAL EXPERIENCE

Confidential, Philadelphia, PA

Senior Network Engineer

Responsibilities:

• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Configuration and Administration of Cisco and Juniper Routers and Switches.
• Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts.
• Experience with configuration and support of IPSEC VPN.
• Experience in configuring and managing F5 Web Accelerator module and Application Security Module (ASM).
• Experience in implementing and maintaining Citrix NetScaler load balancers, global load balancers.
• Experience with VOIP and QOS implements and support
• Worked on Solarwinds to manage networks.
• Knowledge on cloud services. Maintained F5 load balancer and Cisco ACE.
• Maintain, configure, and analyze network and host-based security platforms.
• Network-based Intrusion Detection/Prevention Systems (IDS/IPS)
• Host-based Intrusion Detection/Prevention Systems (HIDS/HIPS)
• Application (Layer 7) Firewall. Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Created a network for our Hadoop clusters using Juniper’s firewall filters to keep customer data secure while still providing services that lived outside of that particular network (NetApp NFS, LDAP, OS updates,NTP,various management services, etc).
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Network Access Control (NAC). Data Loss Prevention (DLP)
• Responsible for 6500, 3500, Nexus switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
• Experience indeploying EIGRP/BGPredistribution and the changing the metrics for the primary and backup paths for the packet prioritization andEIGRPtuning
• Planning, designing, Installing and Configuring of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800 and 7200, 7609) & Cisco L2 & L3 Switches (2900, 3560, 4500 & 6500)
• Configuring VLANs and implementing inter VLAN routing.
• Upgrading and troubleshooting Cisco IOS to the Cisco Switches and routers.
• Configuring STP, RSTP, VLAN, VTP, SPAN port and Port binding Configuring Site to Site to VPN connectivity.
• Working knowledge of layer 3 protocolsIP, DNS,NTP,SNMPver 2and DHCPand troubleshooting using ping, traceroute etc.
• Implementation of HSRP, IPSec, Static Route, IPSEC over GRE, Dynamic routing, DHCP,DNS,FTP.TFTP,RAS
• Involved in configuring Cisco pix firewall. Involved smart view tracker to check the firewall traffic.
• Troubleshooting hardware and network related problems.
• Creating, Managing and maintaining rules to adhere corporate security standards using checkpoint Firewall
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Migration to virtual servers in F5 Load balancer as part of web
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN.

Confidential, Plano, TX

Network Engineer

Responsibilities:

• Configuration and Management of Cisco Nexus 7K and 5K Series Switches, Cisco 6500, 4500, 3750 series Switches, Cisco 2800, 2900, 7200, ASR 1000 Series Routers, ASA, Check Point Firewalls, F5 Load Balancers
• Performed Nexus-OS ISSU and EPLD upgrade.
• Maintain, configure, and analyze network and host-based security platforms
• Network-based Intrusion Detection/Prevention Systems (IDS/IPS)
• Configured policy statements, routing instances, route manipulation on RIP, OSPF and BGP.
• Knowledge on VOIP protocols like H.323, RTP, SIP and good understanding about VOIP devices.
• Managed inventory of all network hardwares, configured and monitored them using of SSH,NTP,Syslog, SNMP
• Performing and Generating quarterly audit reports for firewalls
• Migrated Sites From EIGRP to OSPF.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo ALto firewall for the proper network routing for the B2Bnetwork connectivity.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Hands on Knowledge/experience on F5 load balancers.
• Migrated Data Center Backend Firewalls from PIX to the ASA
• Deployed Checkpoint GAIA Firewalls at the Data Centers.
• Coordinating with Store technician for switch addition, movement and replacement
• Creating, Managing and maintaining rules to adhere corporate security standards using checkpoint Firewall
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Worked on Extensively onCisco Firewalls, Cisco ACE, Cisco PIX (506E/515E/525/), Cisco IPS 4200, 4300, 4500 series & ASA 5500(5520/5540) Series, Palo Alto Firewalls, Fortinet Firewalls
• Installation and management of overall administration of LAN, WAN, systems involving design of network layouts, configuration and maintenance, Commissioning Routers & Switches, firewalls, IPS and ensuring maximum uptime during site deployment to VoIP.
• Configuring switch ports (VLAN tagging, switch port mode, Port Channel) at distribution and Access layers for new server builds and critical server movement as per requirement
• Infrastructure trouble shooting and TCP/IP Protocols Experience
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Worked on Cisco PIX 500 series and ASA 5500 series Firewall providing support and configuring for NAT, PAT & advanced Firewall rules implementation. IPS on ASA’s with Botnet protection
• Have implemented Cisco ACE load balancers across the DC for various projects.
• Maintained a Network with more than 600 Network devices, some 25,000 end hosts, and the other Network devices like DHCP, DNS servers, Firewall servers
• Co-ordination with Hardware vendors, software vendors and service Providers
• Helped the Network team to install New switches and routers and configure the IOS according to the requirement
• Troubleshooting and management Cisco, Juniper, Huawei, Redback and Extreme devices.
• Included Vlan, OSPF, Subnetting, EIGRP, BGP, VTP, spanning tree, IP Subnetting, Wireless Access points
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter. Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 7k/5k/2k.Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Assisted in backup, restoring and upgrading the Router and switch IOS
• Attended Team meetings and provided comments on existing network and the recommendations to improve the current network Performance
• Identifying technical problems and debugging hardware and software related to LAN’s/ WAN’s.

Confidential - Murrysville, PA

Network Engineer

Responsibilities:

• Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.
• Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
• Installation and deployment of new class 9X and class 10 Server farms in multiple silos.
• Designing and installing new branch network systems. Resolving network issues, running test scripts and preparing network documentation.
• Configure FirewallFilterin MX-960s (edge routers)to preventNTPand SSDP attacksandnull routes and ACL in Cisco 7609(edge routers)to preventDDoSattacks.
• Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Ensuring problems are satisfactorily resolved in a timely manner with focus in providing high level of support for all customers.
• Working with wireless technologies troubleshooting and configuration.
• Working with BGP, OSPF protocols in MPLS Cloud.
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Work with Engineering on Server Farm refresh project on consolidation and increasing the bandwidth on Server Access silos.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configure BGP features such as as-override, Local pre, EBGP load sharing on client connections
• Configured and resolved various OSPF issues in an OSPF multi area environment between multiple branch routers.
• Working with Juniper JUNOS on M and MX series routers.
• Good knowledge and experience in Installation, Configuration and Administration of Windows 2000/2003, HTTP,FTP,DNS,NTP,DHCP servers under various LAN and WAN environments.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.
• Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
• Providing Level 3 support to customers, resolving issues by attending to conference calls.
• Configuring BGP, MPLS in Cisco IOS XR.
• Configuring multiple route reflectors within a cluster.
• Working on HP open view map for Network Management System and Ticketing.
• Working on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter Vlan Routing, LAN security.
• Working on security levels with RADIUS, TACACS+.

Confidential

Network Engineer

Responsibilities:

• Implement and Manage network security equipment’s across 13 Centers in Chennai
• Involved in managing and maintaining around 100 + firewall of CISCO PIX, ASA and Checkpoint, Netscreen firewalls and Cisco VPN concentrators
• Log Management and audit Co-ordination for Network security equipment’s.
• Configuring Firewalls and giving necessary access for the ODC users’ access to onsite and TCS resources
• Created standard access lists to allowsnmp,ntpand logging servers
• Configured and maintained Cisco 2900 series switches including VLANs and Trunking protocols.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Implemented dedicated VLAN ID for all trunk ports, set user ports to non-Trunking, and deployed port security when possible for user ports for layer 2 security.
• Maintained Radware LinkProof Internet link load balancer.
• Extensively worked on redistribution from RIP to OSPF and OSPF to RIP by implementing Hub and Spoke topology with a Frame Relay Switch.
• Monitored, evaluated and made report on WAN/LAN Networks.
• Used various scanning and sniffing tools like packet sniffer.
• Maintained whole network and troubleshot the network and hardware issues for efficient performance.
• Maintaining OSPF, EIGRP, RIP and static routing protocol on CISCO routers and catalyst switches.
• Responsible for maintaining a client environment which is built out of Verizon MPLS with Juniper Cisco 2600/Juniper SSG5 devices.
• Setup TFTP server to maintain CISCO router configurations and CISCO images. Worked on network software and hardware upgrades.
• Configuring and maintaining VLANS and the VLAN database, managing VTP servers for updated VLAN information.
• Worked with Project Managers to determine networking requirements and provide the Enterprise users with the best solutions to their networking problems from an institutional perspective.
• Monitoring all the network security devices using IBM Tivoli tool.
• Day to day activity includes Change Implementation on firewalls, log analysis and troubleshooting of network access issues. •
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances
• Implementing new configurations like site to site VPN, client to site VPN and new project requirement access as per client request for various location on PIX, ASA, Checkpoint, Juniper and VPN concentrators.
• Taken care of all types of Change approvals, planning and Implementations pertaining to Networks.
• Escalating the high priority issues to Tier-3 Network team.
• Monitoring and Maintaining inventory reports of Network devices.
• Responsible for network availability, network redundancy, bandwidth planning, routing issues.