We provide IT Staff Augmentation Services!

Sr Network Engineer Resume

SC

SUMMARY

  • 8 years’ experience as a Network Engineer having worked extensively with multiple Clients in Switching, Routing, Network Security (Firewalls and Proxies), Application Delivery Controllers, Authentication, Wireless environments.
  • Experience in Campus and Data Center topologies in multi - vendor equipment.
  • Very strong team member with good communication and Documentation skills.
  • Innovative to new ideas to enhance the workflow in Network Engineering.
  • Experience with legacy and high-end switching technologies in Campus and Data Center environments. Worked on Cisco, Juniper and HP gear in campus environments. Worked on Cisco, Arista, Juniper gear in Data Center environment.
  • Experience with Interior and Exterior routing protocols that includes RIP, OSPF, EIGRP, IS-IS and BGP. Worked on Cisco, Juniper and Arista routers.
  • Experience in Network Security that includes perimeter security for Internet, Extranet, DMZ, Internal Server farms, Web-traffic security with Proxies, Web Application firewalls. Worked and migrated multi-vendor equipment and Next generation firewall technologies. Worked on ASA, Firepower, Checkpoint and Palo Alto firewalls.
  • Experience and high-level understanding in application delivery controllers, local and global load balancing techniques, redundancy solutions, high availability options for mission critical internal, vendor and public facing applications. Experience with F5 LTM, GTM, APM, NetScaler’s, Cisco ACE and A10.
  • Experience with WAN connectivity, MPLS circuits, leased Lines, Metro Ethernet, Site to Site IPSec tunnels, ISP circuits, Customer Edge configurations.
  • Knowledge and operational experience with SDN, Cisco ACI, VXLAN, VTEPS, VNI, Bridge Domain, Arista Cloud Vision, EVPN, MP-BGP, Spine and Leaf Architecture.
  • Basic Knowledge in Python and Ansible scripting for automation in configuration templates, back-ups etc.
  • Experience with Network Monitoring tools, SNMP, Log collectors, Splunk, ticketing tools and thorough understanding of workflows in corporate environments.
  • Very enthusiastic to explore and implement innovative ideas in Network Automation in configuration, documentation, troubleshooting, workflow integration, API integration with multiple tools using Python and Ansible.
  • Experience with AWS network configuration with various virtual networks, direct connect, regions and zones, network interfaces, VPC and EC2.
  • Experience working on cloud security, configuring interface VPC end points, resilience, data protection, identity access management, key pairs.
  • Worked on security groups- default and custom for web server, data base, elastic load balancing rules, VPC peering rules, connection tracking.
  • Experience with protocols including TCP/IP, BGP, and OSPF
  • Ability to create templates using Cloud Formation

TECHNICAL SKILLS

Router and VoIP Platforms: Cisco Routers series ASR, 9k, 7300, 4000, 3800, 2000, 1900; Juniper MX, Arista 7000 series.Routing Fundamentals and Protocols Routed and Routing protocols RIP, EIGRP, IS-IS, OSPF, BGP, IPX; MPLS, Static routing, ICMP, ARP, HSRP, VRRP, Route Filtering, Multicast, Policy-Based Routing, Redistribution, Port forwarding.

Switch Platforms: Cisco Catalyst series 2960, series 3560, 3850, 4500, 6500, 7000; Nexus series 2K5K, 7K; Juniper EX, M series, SRX 240,650.

Switching Fundamentals and Protocols: Ethernet technologies, LAN networks, MAC, VLAN and VTP, STP, PVST+, MulticastRSTP, Multi-Layer Switching, 802.1Q, EtherChannel, PAgP, LACP, CDP, HDLC, RARP

Firewall Platforms: Checkpoint (NGX R65, 3100, 5100, 5900), Cisco Firewalls (ASA 5520, 5585), Palo Alto Networks (PA series 2K, 3K and 5K) with panorama 8.0, WAF

Security Protocols: Standard and Extended ACLs, IPsec, VPN, Port-security, SSH, SSL, IKE, AAA, Prefix-lists, Zone-Based Firewalls, NAT/PAT, Router Security, SNMP trap.

Network Management and Monitoring: Wireshark, Infoblox, HP OpenView, Cisco Prime, Splunk, Security Device Manager (SDM), SolarWinds Net Flow Traffic Analyzer, Network Performance Monitor (NPM), Network Configuration Manager (NCM), IP Address Manager.

Load Balancers and Proxies: F5 (BIG-IP) LTM 2000, 3900, 6400, 6800, Citrix NetScaler.

WAN and SD-WAN technologies: MPLS, ISP Leased Lines, SONET.

Other Networking Protocols and Fundamentals: DHCP and DNS server, Active Directory Management, NTP, NDP, TCP, UDP, FCP, Network Implementation, Troubleshooting techniques, NFS, FTP, TFTP, HTTP, SNMP logging, SMTP, RADIUS and TACAS+, SDN, IPV4, IPv6.

Operating Systems: Windows 10/7/XP, MAC OS, Linux, NX-OS, IOS XR, XE.

Wireless and Radius Technologies: Canopy Wireless Devices, CISCO 1200 series APs, Aruba wireless and APs, Cisco Meraki, WLC’s (8510, 5508, 5706), Cisco Aironet AP’s (2600, 3600, 3700), Aruba 225, Aruba 3000 controller & Airwave, ISE. 802.11a, b, c, g, n, ac.

Scripting: Python, Ansible and TCL (F5)

Cloud Platform: AWS EC2, VPC, S3, IAM, ELB, SQS, Route53, CloudTrail, CloudWatch, CloudFormation, Storage Gateway

PROFESSIONAL EXPERIENCE

Confidential

Sr Network Engineer

Responsibilities:

  • Direct high quality post-sales support to client base by proactively and reactively diagnosing & trouble shooting through remote access (ssh, telnet), phone, email and on-site. Network Development: including installations, technical support and hardware/software equipment up-gradation.
  • Analyze network requirements of client’s network and troubleshoot network problems effectively & efficiently throughout the globe to meet client’s business needs.
  • High quality support for end user LAN/WAN: supports router & switch, ASA/PIX; ospf, eigrp, access lists, meshed VPN, ssl vpn, ipsec, 6500, 1800, 2800, 3500, wireless routes, port forwards, VRRP, NAT/PAT, Lease Line, public ip allocations, dhcp, dns, etc.
  • Configure new vlans, dmz and vpn (easy vpn, site to site, ssl, client) on live environment, redundancy (vrrp, hsrp) thus configuring Nat/Pat and access lists.
  • Translate networking requirements into highly specified technical briefs through effective communications and work flexibly to design/configure components from scratch: ASA5500/PIX, Cisco 800, 1800, 1700, 2800, 3500. Updating IOS/reducing security vulnerabilities.
  • Configuring site-to-site VPNs, VPN Clients, and SSL VPNs on ASA/PIX. Troubleshooting of VPN issues.
  • Continuously monitor data center, data center cabling and troubleshoot network issues, perform high precision testing and incident management; as per SLA agreement.
  • Manage infrastructure installation services, pre-production testing, Information Assurance, Cabling, and pre-sales consultation including network design.
  • Liaise with Cable & Wireless (Thus)/BT and other third-party provider for network connectivity issues and resolve problems by effective communication and coordination.
  • Providing feedback and insight on designing and scaling of SaaS and cloud-based environments and tools
  • Change/Problem Management, updating company Asset Management Systems.
  • Experience implementing and supporting a production multi-tenant architecture
  • Experience providing 24x7 support to production Software as a Service (SaaS) infrastructure
  • Demonstrated ability to create documentation, deployment guides, maintenance preparation task lists
  • Experience performing network and security administration tasks using industry-standard network equipment and software
  • Experience performing network and security administration tasks using industry-standard network equipment and software
  • Demonstrated ability to prepare, review, test, and deploy network configuration and security software to perform administrative tasks as assigned
  • Act as part of NICE Infrastructure Cloud Operations, continuously sharing information and assisting on tasks with other team members
  • Provide excellent and ongoing support to other NICE business teams as needed to solve customer and product issues in a timely manner

Confidential

Sr. Network Engineer

Responsibilities:

  • Installing, configuring, and maintaining of Cisco Switches (2960, 3500, 7600, 3750, 3850 series, 6500 series, Cisco Routers (4800, ASR 9K, 800), Nexus 7k,5k & 2k and Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240.
  • Configured and designed OSPF, EIGRP and BGP Confidential Distribution and Core layers. Worked on advanced technologies like MPLS VPNs and other service provider technologies.
  • Worked on several BGP attributes like MED, AS-PATH, Local Preference for route optimization and load balancing. Worked on Route-Reflector, Route-Redistribution among routing protocols.
  • Palo Alto design and installation of application and URL filtering, SSL decryption, SSL Forward Proxy.
  • Configured and maintained IPSEC and SSL VPNs on Palo Alto Firewalls. Successfully installed PA-5000 series firewalls in Data Center as perimeter Firewalls.
  • Migration of ASA firewalls to PA next gen Firewalls using migration tool in PA.
  • Experience with Cisco ACE 4710, F5 load balancers LTM and GTM and reverse proxy design and setup.
  • Experience with F5 GTM and in-depth knowledge of DNS, Global level load balancing, Wide IP’s, Zones, Prober pools, Delegation from Windows DNS server to listener IP.
  • Experience with Virtual server, Pool, Node, Profiles - TCP, http, https, ftp, fastl4, Persistence - Source IP, SSL, Cookie, SNAT, iRules, iAPP, SSL offloading.
  • High-level network troubleshooting and diagnostic experience using Packet capture tools like Wireshark.
  • Troubleshooting of Linux and Unix servers for application delivery servers. Managed Dockers, Cisco, HP, AD Domain Controller, DNS and DHCP Servers and configurations
  • Worked on Orion (Solar Winds) for mapping network diagrams, updated Orion with commissioned and decommissioned network devices.
  • Worked on Cisco ISE for user Authentication, Security Group Tags, MAC based authentication for Wireless and Wired users, 802.1X, EAP, PEAP etc.

Confidential, SC

Network Engineer

Responsibilities:

  • Worked on configuring site to site connectivity, troubleshoot issues, application load balancing, Network security.
  • Configured the layer 2 and layer 3 devices like Cisco Nexus 7K, 5K, 6509, 9710, 5596 UP, 4500, 3850, 3950, ASR and 2960.
  • Experience on designing and troubleshooting of HSRP standby and complex BGP, OSPF routing problems,
  • Have experience working on HP Open view Network Node Manager.
  • Implemented Policy Enforcement Model with the help of Palo Alto Networks
  • Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router.
  • Applying crypto maps and security keys for the branches, ISAKMP (Internet security association key management protocol) for establishing Security associations (SA) cryptographic keys.
  • Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment.
  • Worked on Bridge Domains, VXLANs, VTEPS, VNID. Configuration of routing using BGP among multiple Leaf to spine switches. Thorough understanding of Application Profile, Tenants, End Point Group, Inter Subnet Tenant Routing, Routing within Tenants, Router Peering and Redistribution. Worked on Migration project from traditional Data Center Architecture to Spine Leaf.

Confidential

Junior Network Engineer

Responsibilities:

  • Configured and monitored the performance of the Cisco switches 2950, 3560 and the Cisco routers 2500, 2600, 2800.
  • Performed Troubleshooting and observed directing conventions such as OSPF, EIGRP & BGP.
  • Installation and configuration of the Network of Cisco Router and Switches for EIGRP and VLANs etc.
  • Initially involved in installations, technical support, troubleshooting and maintenance of network equipment.
  • Good knowledge in Configuring Access Control List(ACL).
  • Configured IPv4 VPNs using IPsec VPNs.
  • Worked on WAN and LAN infrastructure.
  • Managed system backup and restoration protocols.
  • Escalating issue to higher network teams.

Hire Now