SUMMARY

• Cisco certified professional with 8.3 years of experience in network design, implementation, and support. Experience working with Nexus 7K, 5K and 2K
• Proficient in configuration & troubleshooting of routing protocols: MP - BGP, EIGRP, OSPF, BGP and MPLS.
• Involved in configuration setup and troubleshooting of Cisco IOS and juniper devices to perform functions at the Access, Distribution, and Core layers.
• Experience working with Nexus 7010/Nexus 7018, 5020, 2148, 2248 devices.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Cisco NX-OS 5000.
• Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010.
• Hands on experience in troubleshooting and deploying of various IP Routing Protocols OSPF & BGP on Juniper routers.
• Implemented security policies using ACL, Firewall, IPsec,GRE tunneling, VPN, AAA Security TACACS+, and Radius on different series of routers.
• Worked on Juniper devices like EX-2200, EX-4200, EX-4300, MX-80, MX-480, M Series, SRX210 and SRX240.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Ability to manage all phases of network installation and administration.
• Excellent customer management/resolution, problem solving and debugging skills with good verbal/written communications and presentation skills.
• Experience with convert Cisco ASA rules over to the Juniper SRX based solution.
• Responsible for Cisco ASA 5525X, Juniper SRX firewall administration across customer’s networks.
• Excellent skills to implement VLANS, private VLANS, Voice VLANS,Installing VOIP capable wares, Port security, STP and RSTP (802.1W), standard and extended access lists for managing access based security, creating root views for administrative privileges.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Familiar with security products such as Cisco ISE.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support troubleshooting issues.
• Adept in preparing Technical Documentation, MOPS and presentations using Microsoft VISIO/Office.
• Well organized, Self-starter, Quick learner, Self-Motivated, Team player with analytical, technical and communication skills.

TECHNICAL SKILLS

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch,Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging

Network security: Cisco (ASA, PIX) 5510, ACL, IPSEC, Palo Alto firewalls

Load Balancer: Cisco ACE load balancer, F5 Networks (Big-IP)

LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), IWAN Fiber Optic Circuits, Frame Relay, ISDN, Load Balancing.

Routers: Cisco 17XX, 18XX, 26XX, 28XX, 37XX, 38XX, 39XX &72XX series

Switches: Cisco 3550, 3750, 45XX, 65XX series

Routing: OSPF, EIGRP, BGP, RIP-2, PBR, IS-IS, Route Filtering, Redistribution, Summarization, Static Routing

Various Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP Management.

OS products: Windows (2000/2003, XP, vista, 7, LINUX).

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Network Management: SNMP, Cisco works LMS, HP open view, Ethereal

PROFESSIONAL EXPERIENCE

Confidential, Chicago, IL

Network Security Engineer

Responsibilities:

• Dealt with implementation, deployment related to Cisco devices and applying security policies.
• Administration of the AWS cloud environments and Working with virtual environments
• AWS cloud management - for e.g. creating VPC, installing VM using AMI and creating AMI for different environments. Creating network connectivity and ensuring security parameters are correct. Ability to troubleshoot issues in a cloud hosting environment. Installed, configured multiple operating systems onsite and provisioned similar instances on AWS cloud.
• Worked on AWS EBS Volumes, Cloud Formation and Cloud Watch services.
• Troubleshoot issues related to VLAN, VLAN Truncking, HSRP failovers and related issues.
• Planning for upgrade of IOS on devices and performing the upgrade.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IP Networking.
• Responsible for maintaining the entire Routing and switching domain across the campus / Branch to head office
• Automated network implementations and tasks and designed monitoring tools using python scripting
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
• Participated in the installation, configuration, and post installation daily operational tasks and configuration of the deployment of Cisco Nexus equipment
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
• And also the Layer-2 campus network across the remote branches which included configuring VLANs
• And Trunks, Spanning Tree protocol, Port-Security, VLAN-MAPs and DOT1X for switches and Wireless.
• Monitored network traffic and developed capacity planning initiatives, making necessary recommendations additional resources or hardware.
• Responsible for creating network documents and Visio drawings for smooth and efficient network operations.
• ConfiguredJuniperMX480s, EX8200s, EX4500s and EX4200s from scratch to match design.
• Possess a good experience working with the Trouble Tickets on F5 Load balancers.
• Providing technical security proposals, detailed RFP responses, security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.
• Switching experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
• Responsible for adding new BGP peers for remote branch offices and business partners.
• Worked as part of a team to manage Enterprise Network Infrastructure as a Tier 3 Support Engineer.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Implemented Positive Enforcement Model with the help ofPaloAltoNetworks
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Configured networks using routing protocols such as OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Experienced with Juniper: EX-2200, EX-4200, EX-4500, MX-480, and M Series.
• Configured BIG IP (F5) Load balancers and also monitored the Packet Flow in the Load balancers.
• Configured OSPF and BGP on JuniperM and MX series Routers
• Configured VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Documenting and Log analyzing the Cisco ASA 5500 series firewall
• Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide security

Confidential, Rockville, MD

Network Engineer

Responsibilities:

• Responsible for Support of network security and network devices such as routers, switches and wireless access points.
• Responsible for designing and implementation of Network Infrastructure.
• Implemented upgraded firewall platform built on Checkpoint Firewall Technologies.
• Migrated the rules from Checkpoint firewall to Palo Alto firewalls
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Configured VLAN, OSPF, Sub-netting, EIGRP, BGP, VTP, spanning tree, IP Sub-netting, Wireless Access points
• Involved in configuring Checkpoint firewall and applying rules to pass servers and switches through firewall.
• Involved in Migration of Juniper EX series switches to Cisco 3500 series and 6500 series switches.
• Coordinated and scheduled the delivery ofF5Professional Service implementations and consulting engagements
• Experience working with Nexus 7010, 5548, 5596, 2148, 2248 devices.
• Experience with configuring FCOE using Cisco nexus 5548
• Configure and troubleshoot Juniper EX series switches and routers
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Experience with configuring BGP, OSPF in Juniper M and MX series routers
• Infrastructure trouble shooting and TCP/IP Protocols Experience.
• Involved in installing newer 3502 Wireless Access Points.
• Helped the Network team to install New switches and routers and configure the IOS according to the requirement
• Research, diagnose, troubleshoot and identify solutions via phone, email, and WebEx to resolve customer issues regarding a collection of products within the Qualys Solutions Suite including
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Configuration and extension of VLAN from one network segment to their segment between Different vendor switches (Cisco, Juniper)
• Assisted in backup, restoring and upgrading the Router and switch IOS.
• Maintaining the health of 250+ wireless Access points in two locations.
• Involved in installation and configuration of Cisco 3500 and 6500 series switches.
• Involved smart view tracker to check the firewall traffic.
• Experience with deployment of Palo Alto firewalls for different NAT, Skype traffic

Confidential, Arlington, VA

Sr. Network Engineer

Responsibilities:

• Experience with configuring Cisco 6500 VSS in Distribution layer of the Data center network
• Configuration and Administration of Cisco and Juniper Routers and Switches
• Experience working with Nexus 7010, 5548, 5596, 2148, 2248 devices.
• Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018
• Convert Campus WAN links from point to point to MPLS and to convert encryption from IPsec/GRE to Get VPN.
• Experience with configuring FCOE using Cisco nexus 5548
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 to connect servers and storage devices.
• Experience with setting up MPLS Layer 2 VPN in data center and also working with BGP WAN towards customer
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Involved in iRule management like loading rules, writing iRule syntax using TCL language
• Hands on Experience testing iRules using Browser(IE), HTTP watch
• Dealt with creating VIP(virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL
• Configure and troubleshoot Juniper EX series switches and routers
• Migrated to Juniper EX series switches from Cisco 3500 series and 6500 series switches
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center
• Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment
• Network security including NAT/PAT, ACL, and ASA/SRX Firewalls.
• Good knowledge with the technologies VPN, WLAN and Multicast.
• Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches
• Experience with communicating with different with different customers, IT teams in gathering the details for the project
• Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
• Experience in installing and configuring DNS, DHCP servers.
• Replace branch hardware with new 3900 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Involved in configuring Juniper SSG-140 and Cisco ASA firewall
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.

Confidential

Network Engineer

Responsibilities:

• Implementing new/changing existing data networks for various projects as per the requirement.
• Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Providing support to networks containing more than 2000 Cisco devices.
• Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
• Carrying out documentation for tracking network issue symptoms and large scale technical escalations.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Migrated the polices from PIX firewalls to ASA firewalls.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Commissioning and Decommissioning of the MPLS circuits for various field offices.
• Preparing feasibility report for various upgrades and installations
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configured switches with port security and 802.1 xs for enhancing customer’s security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Validate existing infrastructure and recommend new network designs.
• Created scripts to monitor CPU/Memory on various low end routers in the network.
• Installed and maintained local printer as well as network printers.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems
• Configuring and troubleshooting multi-customer network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Subnetting networks. Troubleshooting DHCP and DNS Servers.

Confidential

Network Engineer

Responsibilities:

• Monitoring the NMS system for different Network Alerts.
• Set up of distributed core LAN using Cisco 6500 series switches.
• Coordinating with service providers for WAN link outages.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.
• Design, execution of installation and configuration of VPN/IVPN, LAN/WAN as per organizational requirements.
• Experienced in Planning and Organizing Change Managements.
• Maintenance/updating of Network diagrams.
• Worked on Network Operations using Ticketing system.
• Ensure standard Router and Switch Configurations are maintained.
• LAN Segments monitoring/Trouble shooting LAN related issues.
• Carryout periodic backup of Router/Switch configurations.
• Analyzing the Bandwidth Utilization of the Links.
• Troubleshooting on the devices by remote login to determine the RFO (Reason for outage) and RCA (Root cause analysis) to minimize the consequences of malfunctions.
• Equipment Installation/Removal in the NOC.
• Attended meetings and technical discussions related to NOC changes