SUMMARY:

• Experience in Networking, including hands - on experience in IP network design, installation and analysis.
• Network Professional wif 6 Plus years of experience in Designing and troubleshooting LAN, WAN, MPLS in Branch, Campus and Data Center environments.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and Dynamic routing protocols such as EIGRP, OSPF, BGP; ability to interpret and resolve complex route table problems.
• Hands on experience and implemented, deployed teh CISCO ISE 3595 Physical Appliance.
• Implemented and Supported in teh network design and Checkpoint Firewalls and supported teh Routing issues.
• Implementation of traffic filters on Cisco routes using Standard, extended Access list.
• Expert Level Knowledge about TCP/IP and OSI models.
• In-depth expertise in analysis, implementation, troubleshooting & documentation of LAN/WAN
• Architecture and good experience on IP services.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altewir during various planned network changes on teh network.
• Configuring RIP, OSPF and Static routing on CISCO/Juniper EX/MX/SRX series Routers.
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Environment
• Troubleshooting Firewall Connectivity related issues using Smart view tracker on Checkpoint, NSM Log viewer for Juniper Firewalls.
• Worked wif Cisco ASA 5500-X wif Firepower services, Firepower 4100 and Palo-alto Next-Gen PA-5000 Firewalls implementing and managing NAT, IPsec, site-to-site and remote VPNs, advanced inspection, anti-spoofing and AAA policies
• Configured rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools for Editing and Changing Palo Alto Polices and Monitoring threats on firewalls.
• Analyzed traffic pattern and implemented URL filtering using teh Palo Alto Firewall. Troubleshooting and configuring Palo Alto FW's 3060 & 5060.
• Expert level knowledge of MPLS and its applications (VPLS, L2VPN, L3VPN, NG-MVPN, EVPN, MPLS-TP, Seamless MPLS) along wif different vendor specific standards. Strong knowledge base in teh design and deployment of Blue Coat Proxy SG and Checkpoint firewalls.
• Implementing security policies using ACL, ASDM, IPSec, VPN, and AAA Security on different series of routers
• Experience wif F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for teh corporate
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall.
• Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.

TECHNICAL SKILLS

Router platforms: Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900, 6807 series), Nexus 7K, 5K, 2K & 1K.

Switch platforms: Cisco 2900XL, 2950, 2960, 3560, 3650,3750,3850, 4500 and 6500, Nexus (2K, 5K, 7K and 9K)

Networking Concepts: Cisco ISE, Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi Firewall Juniper Netscreen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, CheckPoint (NGX, R65, R70 and R71), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks (PA-2K, PA-3K and PA-5K).

Network Management/Monitoring: Solar winds, HP NNMi 8xi (Network Node Manager), Net flow

Load Balancers: F-5 BIG-IP LTM 2000, 3900, 5000, 6400, 6800 AND 8900, Bluecoat SG8100, AV 510.

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE

Confidential, Greensburg, IN

Network Security Engineer

Responsibilities:

• Supported wif teh Cisco IOS & IP Routing of all routing protocols and WLAN Controller and Anchor Management wif required updates and configuration changes required for HMIN network infrastructure.
• Worked on teh Layer 3 Design and implementation of teh new projects wif architecture and technical solutions and supporting HMIN wif enterprise networking and analysis of IP Traffic Flow.
• Lead teh Cisco NAC (ISE) Project wif teh implementation in HMIN Network Environment.
• Worked on Cisco ISE Appliance and performing various test results for teh visibility of teh endpoints as required.
• Created and implemented teh rules and policies for teh autantication and authorization of teh endpoints and also creating teh necessary profiling devices required for teh endpoints.
• Worked wif HLD & LLD for teh Cisco NAC (ISE) Project and also implemented teh test plan document for teh Cisco ISE wif coordinating teh Cisco Engineer.
• Worked on Cisco Identity Services Engine (ISE) implementation design, configuration, and deployment
• Configured and created teh certificates in teh Cisco ISE 3595 Physical Appliances.
• Created teh Profiles for endpoints and teh required and also teh rule conditions of profile in order to authorize teh device wif teh OUI feedbacks.
• Configured and troubleshoot teh issues wif teh profiling, Autantication and Authorization Policies, and proxy issues.
• Managed and upgraded Wireless Infrastructure primarily used Wireless Services Module (WiSM2) Controller.
• Integrated teh Active Directory wif teh ISE Physical Appliances and added teh groups in teh ISE for specific group access wif teh Physical Appliances.
• Configured wif teh Admin Access in teh ISE Appliance and created teh rule permissions to have limited access to ISE Appliances wif types of AD Groups.
• Created teh Autantication and Authorization Policy rules including (wired devices and wireless devices) 802.1x/RADIUS/TACACS.
• Worked on teh deployment of teh switches wif configuration and changes required to add switches to teh Cisco ISE Appliance and get visibility.
• Worked on teh Python Scripting for teh configuring teh Switches/routers for Cisco NAC Project. Worked on Python scripting for backup of teh Cisco devices.
• Worked on teh Design and Implementation of teh new firewalls for replacement of Current ASA Firewalls wif Checkpoint Firewalls.
• Experience planning and implementing enterprise security solutions using Checkpoint Firewalls.
• Supported wif routing changes on teh new Checkpoint Firewalls and supporting teh Current ASA Firewalls wif rules creation and adding or removing of teh network objects.
• Supported wif teh OSPF routing and other L3 routing challenges on teh cisco routers/switches. Worked on teh Cisco Routers & Switches wif routing for teh configuration changes of implementing new Firewalls and for teh conversion of L3 to L2 traffic.
• Designed layer 3 security for teh network interfaces converted all teh layer to interfaces behind checkpoint firewall. Worked on checkpoint firewalls routing, managing VRF behind teh checkpoint firewall.
• Provided assistance in network planning, engineering and architecture wif technical solutions consistent to enterprise network strategy.
• Maintained and supported all Cisco Chassis and interfaces. Documenting teh inventory of cisco switches/routers and other network related objects.
• Supporting wif teh Lease replacement of teh Network switches Cisco Cat 6509, 4507, 3850, 3750 and all network hardware and repair.
• Configured and supported our network Core Switches Cisco Cat 6509, 6807 and also supported wif teh core switches replacement from 6509 to 6807 Cisco Catalyst Switches.
• Worked, supported and implemented on teh OSPF and EIGRP Routing protocols wif 6807 cat switches.
• Worked on teh replacement of teh bad Network cards & UPS for teh Hubs and also supporting wif teh Network and hardware issues on teh line side in teh plant.
• Coordinating and reviewing of teh project progress in teh Status meeting and team meetings and monitoring wif teh provided timeline for each phase of teh project.
• Reviewing and monitoring teh risks and issues and provide technical solutions and escalate it for any identified issues.
• Managing teh System stability wif Incident report analysis and preventative maintenance and also wif teh weekly status reports and milestone reviews.

Confidential, Tigard, OR

Network Administrator

Responsibilities:

• Created Data-filtering profiles in Palo Alto devices which halps to prevent sensitive information.
• Firewall Policy provisioning on Palo Alto devices using Web UI as well as PANORAMA. Provided day-to-day operational support for all firewall and VPN platforms including Checkpoint and Palo Alto firewalls.
• Performed upgrades on Palo Alto OS devices in High Availability pair. Firewall OS upgrades and Maintenance of OS updates as part of addressing Vulnerabilities on Firewalls.
• Configured rules and Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Configured and maintained teh HP Switches wif OS Upgrades and routing protocols (OSPF, BGP).
• Used Cisco Prime Infrastructure for troubleshooting and managing wireless networks.
• Provided network support for teh core network including MPLS, DMVPN and Datacenters.
• Daily troubleshooting of GRE, IPSEC, and DMVPN deployments and configurations
• Designed and configured customer remote sites utilizing site-to-site tunnels, DMVPN, MPLS on CISCO based routers and ASA's.
• Splunk log monitoring & report monitoring for Data, Network, and Application device & user activities.
• Worked on Source Fire and Palo Alto IPS/IDS Systems, Splunk log monitoring tool, Qualys vulnerability assessment tool.

Confidential, Englewood, CO

Network Operations Engineer

Responsibilities:

• Involved in designing L2VPN services and VPN-IPSEC autantication & encryption system.
• Involved in designing GRE tunnels for encryption of data flow from source to destination.
• Installing and configuring TACACS/RADIUS, Performed ISSU to upgrade to teh core Nexus 7k switches.
• Creating guest users and providing access to limited services by providing limitations wif cisco ISE
• Performed IOS upgrades on various catalyst series switches and maintained latest IOS versions according to company's policy.
• Good automation experience using programming languages like Python and Shell scripting.
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
• Deployed teh Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System.
• Installation and maintenance of Cisco Layer 3 switches 3750, 4500X, 6500 and Cisco 3550/4500/6500 switches in multi VLAN environment.
• Worked on assigning Static Ips’s using Ipam and Infoblox.
• Configure DHCP option Tags based on endpoint requirements
• Worked on switchport configuration and provided switchport assignments to teh Datacenter technicians.
• Decommissioned teh Cisco switches and teh interfaces that are no longer needed in teh infrastructure.
• Performed Extensive and numerous administration tasks Through GUI and CLI on teh A10, Cisco IOS Platform.
• Maintain Infoblox IB 1410 devices and perform NIOS upgrades. .
• Create IPv4 networks through IPAM.
• Reserve IP address for plant floor equipment.
• Coordinate wif network operations center (NOC) for change notifications, alerts and escalation of security incidents.
• Scheduled day to day Network drops connections for new connections and also core & distribution & Access switches routing and switching related changes and seek CAB approval if required for production impacting changes.
• Used Microsoft Visio for technical documentation.
• Used Infoblox to create and manage newly created DHCP scopes and Analyze Infoblox logs for troubleshooting
• Responsible for Enterprise DHCP Server (InfoBlox) and VPN, SSL, and NetMotion Accounts.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Experience wif troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP.
• Worked on ACE load balancers. Experience wif F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for teh corporate applications and their availability.
• Worked extensively wif ASR 9K (9010/9922), Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3650/3850s switches.
• Priorities and optimizing teh application performance wif Quality of service in cisco ASR routers.
• Experience on Deploying and decommission of VLANs on core ASR 9K, Nexus 7K and 5K and its devices.
• Install and upgrade Cisco Wireless LAN equipment including but not limited to: 1100, 1200, 1300 and 3500 series Access Points; 4400 and 5500 series Wireless LAN controllers; 6500 & 3750 Core switch routers; 2960, 3560 & 3750 series switches.
• Expertise in networking technologies like LAN, MAN, WAN and peripheral devices.
• Develop Engineering Documentations to record F5 environment and change processes LTM/GTM/iRules.
• Worked wif F5, CISCO ACE 4710 Load balancers, GSS and Wireless networks.

Confidential, Miami, FL

Network Engineer

Responsibilities

• Experience in setting up and maintaining perimeter security by using Cisco ASA, Fortinet 3340, checkpoint firewalls.
• Hands on experience on Cisco switches (2900, 3550, 3750, 6500, MDS 9000, 5000 NX-OS) series, juniper (EX, QFX, QFabric) series switches, juniper (T4000, LN, CTP) series routers, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers.
• Monitored and responded to network anomalies utilizing Solarwinds/Orion's software and recommended appropriate network solutions for issues.
• Cisco Sourcefire (Firepower) ASA 5585-SSP- 20/40 management, configuration, and maintenance for all cruise ships.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to teh domain.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration).
• Troubleshoot connectivity issues involving VLAN’s, OSPF, QoS etc.
• Migrate configuration and services from ASA to Firepower including licensing
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 4500 switches.
• Optimized performance of teh WAN network consisting of Cisco 3550/4500 switches by configuring VLANs.
• Hands on Experience wif Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.
• Implemented traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Setting Aruba Access to link distribution switch system and tan to WLAN controller.
• Deployed, configured and implemented Cisco 6800 catalyst switch.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path and Worked wif Cisco IOS, NX-IOS, IOS-XR.

Confidential

Network Engineer

Responsibilities

• Configured Cisco ASA firewalls in Single and Multiple Context Mode firewalls. Upgrade of Cisco ASA Firewall in Active/Standby mode.
• Cisco ASA Firewall Policy Provisioning and troubleshoot connectivity issues through firewall.
• Configured ASA 5510 appliance as a Firewall and as a VPN server. Troubleshoot TCP/IP problems; troubleshoot connectivity issues.
• Cisco ASA Firewall Policy Provisioning and troubleshoot connectivity issues through firewall.
• Coordinated wif higher-level support and external vendors for resolution.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Installed, configured and managed Cisco routers such as 3700 series and Cisco Catalyst switch series 3500, and 2900.
• Experience in working wif load balancer for converting CSS to ACE.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control.
• Experience in working wif LTM and GTM for scaling and securing DNS infrastructure during high volumes.
• Included network services such as DNS, email, web, Servers, VPN and Firewall.
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
• Configured various Routing protocols such as RIP, OSPF, EIGRP, static routing.
• Maintaining Core Switches, creating VLANs and configuring VTP.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• Efficient designing of IP Addressing Scenario using VLSM and Subnetting.
• Design implementation and support of Networks using TCP/IP
• Upgrade Cisco Routers and Switches IOS using TFTP.
• Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
• Experience wif convert Checkpoint VPN rules over to teh Cisco ASA solution. Migration wif both Checkpoint and Cisco ASA VPN experience.