SUMMARY

• Extensive experience in testing, troubleshooting, implementing, optimizing and maintaining enterprise data network and service provider systems.
• Strong hands on experience on Cisco Catalyst (3550, 3750, 6500) series switches, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, ASA Firewall (5505/5510), Load Balancers using Cisco ACE, F5 LTM/GTM, Security Device Manager (SDM), Cisco Works, HP Open View, Solar Winds, Sniffer.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (EIGRP, OSPF, BGP)
• Proficiency in the configuration of VLAN setup on various CISCO Routers and Switches.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Networking: Basic Network Configuration inLinux, Firewall Setup, Troubleshoots Network connectivity.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP, and MST.
• Access control server configuration for RADIUS & TACAS+.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Implementation, working analysis, troubleshooting and documentation of LAN, WAN& WLAN architecture with excellent work experience on IP series.
• Experienced working on network monitoring and analysis tools like SOLAR WINDS, CISCO works and RIVER BED and Wireshark. Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP, and MPLS.
• Experienced VoiceEngineerwith a demonstrated history of working in the telecommunications industry
• Troubleshooting, both Local and Wide Area Networks (LAN's and WAN's). Strong information technology professional with technical training and hands on industry experience looking for new opportunities.
• Well experienced in configuring First Hop redundancy protocols like HSRP, GLBP, and VRRP.
• Excellent communication skills, enthusiastic, motivated and a team player.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4, MPLS, switching (VLANS, VTP Domains, STP, and trunking).
• Implementation and maintained Sourcefire intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall
• Worked on configuring the Nexus 5K Aggregation Switch and Nexus 2K Fabric Extenders.
• Implemented VDC, VPC, and OTV on the Nexus 5K and 7K switches.
• Quality and detail focused Linux systems engineer with specialty in design of F5LTM and GTM/Wide IP load balancing solutions in global enterprise networks.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Experience in installing and configuring DNS and DHCP server.
• Experience in CheckPoint IP Appliances R65, R70, R75, R77 &Cisco ASA Firewalls.
• Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1
• Involved in the integration of F5 Big-IP load balancers with CheckPoint firewalls for firewall load balancing and was responsible was troubleshooting and maintenance.
• Provided administration and support on Bluecoat Proxy for content filtering and internet access between site and VPN client users.
• Deployment and Management of Bluecoat proxies in the forward proxy scenario as well as for security in reverse proxy scenario.
• Performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
• Proficient in using Solar Winds Network Management tools like Network Performance Monitor (NPM), Netflow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.
• Provide 24/7 support.

TECHNICAL SKILLS

Router platforms: Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900, 6807 series), Nexus 7K, 5K, 2K & 1K.

Switch platforms: Cisco 2900XL, 2950, 2960, 3560, 3750, 4500 and 6500, Nexus (2K, 5K, 7K and 9K)

Networking Concepts: Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: Checkpoint (NGX, R65, R70 and R71), Cisco Firewalls (ASA 5505, 5506-X, 5585)

Network Management/Monitoring: Solar winds, HP NNMi 8xi (Network Node Manager), Net flow and Cisco prime, Ethereal / Wireshark, TCP Dump.

Load Balancers: F-5 BIG-IP LTM 2000, 3900, 5000, 6400, 6800 AND 8900, Bluecoatt SG8100, AV 510.

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE

Confidential

Sr. Network Engineer

Responsibilities:

• Deployed and maintained security/network devices and data centers for Service provider network.
• Involved in the configuration & troubleshooting routing protocols like MP-BGP, OSPF, LDP, EIGRP, BGP v4, and MPLS.
• Hands on experience on F5 BIGIP LTM
• F5 Load Balancer Design, Implementation and management
• Experience with Installing and troubleshooting Data center migration with 24/7 support.
• Expert in configuring Cisco Routers, Catalyst Switches, Nexus Switches.
• Upgraded Cisco 6500, 3750, 2960s, Nexus 5000, Nexus 2000 and Nexus 7000 switch software.
• Worked extensively with ASR 9K( ), Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches.
• Creating object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Orchestrated a LDAP remediation critsit for a major international manufacturer conglomerate that had an expiring SSL certificates for a critical legacy non-compliant application and leveraged F5SSL Offloading until their critical apps and encryption methods were updated.
• Monitor performance of network appliances and WAN utilizing using network analyzer like Wireshark.
• Make recommendations as necessary based on business needs pertaining to capacity requirements for upgradingvoiceequipment infrastructure
• Provide support for bothvoiceoutages and issues as necessary. Escalate issues to LEC's and LDC's as necessary
• Experience with the connectivity of Cisco Networking Equipment with F5 Load Balancer.
• Administered Checkpoint Firewalls of R65 and R70 clusters.
• F5 GTM Advisory role for GTMupgrade for a major Security Monitoring Services provider.
• Managed, Created, Troubleshoot Issues on CheckpointSPLAT Version.
• Helped installed F5 VIPRION load balancers for one of our new data centers.
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.
• Implementing and Managing VPN Networks of the Customer through CheckpointR75 firewalls.
• Monitor and troubleshoot BGP, EIGRP, TI circuits, and cellular backup circuits via ICMP and SNMP ticketing systems.
• Working on Cisco 6509 and 4507 series switches for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues.
• Implementation of various protocols like OSPF, BGP and STP.
• Blacklisting and Whitelisting of web URL on Blue Coat Proxy servers.
• Provided administration and support on Bluecoat Proxy for content filtering and internet access between site and VPN client users.
• Worked on design, configuring and managing of Blue Coat Proxy Servers.
• Deploying Cisco ASA and Bluecoat ProxySG (Web Security Appliance) S170 for URL Filtering Policies.
• Worked on Blue Coat Proxy SG to safeguard web applications (Blacklisting and Whitelisting of web URL) in extremely untrusted environments such as guest Wi-Fi zones.
• Adding agents (IDS/IPS) at Host and Network level to Sentinel.
• Working on Enterprise AV Solutions, IDS\IPS, Firewalls, and SIEM (IBM QRadar\HP ArcSight) tools.
• Expertise in networking technologies like LAN, MAN, WAN and peripheral devices.
• Develop Engineering Documentations to record F5 environment and change processes LTM/iRules.

Environment: Cisco routers 7200; Cisco Catalyst switches 6500, 4500, 2950; Cisco PIX Firewalls 535, 525 Routing Protocols OSPF, BGP; STP, VTP, VLAN; VPN, MPLS, HSRP, GLBP, Big-IP F5 Load Balancer, Cisco Works; MS Visio, Checkpoint, Cisco ASA and Blue Coat Proxy.

Confidential, Houston, TX

Sr. Network Engineer

Responsibilities:

• Worked on the migration of existing PIX firewall to ASA firewall and with converting PIX rules over to the Cisco ASA solution.
• Configuring and deploying Cisco ASA 5505; Cisco 594/294; I500 web sense manager at customer locations with minimum downtime possible.
• Active/Standby and Active/Active HA configuration on Cisco ASA Firewalls.
• Drafting and Installation of CheckpointFirewalls rules and policies.
• Adding Rules and Monitoring Checkpoint Firewalltraffic through Smart Dashboard and Smart View Tracker applications.
• F5 LTM Advisory role for an upgrade for a Dallas area financial institution.
• Administering and evaluating firewall access control requests to ensure that these requests are compliant with client's security standards and policies.
• Update & Follow Up CheckpointIPS Signature Packages occasionally.
• Consultant for Security (implementation, administration) on Checkpoint Firewall, Network Management.
• Maintaining Checkpoint security policies including NAT, VPN, and Secure Remote access, Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls. implemented an F5-ASM solution for a major online retailer who never had a web application firewall in their environment and required a Web Application Firewall to meet PCI compliance
• Configuring Checkpoint Firewallin IPSO, Secure Platform and GAIA platforms.
• Maintained and updated Active Directory for authentication purposes.
• Configuration and troubleshooting F5 LTM, GTM series like 6600, 6800 for different applications and monitoring the availability.
• Deployment of data center LAN using Nexus 7k, 5k, 2k switches.
• I was involved in migration projects, which involves replacing legacy devices to new Nexus devices and introduced VPCs in the new architecture.
• Worked on Nexus platform 7k series, 5K series (5548, 5020 and 5010), 2248 and successfully implemented VSS on the Cisco catalyst switches.
• Used FireEye to detect attacks through common attack vectors such as emails and webs.
• Managed successful delivery of massive security response portfolio including Splunk and Cisco ISE.
• Implemented and administered Websense Web Security Gateway for web content filtering and DLP.
• Improved network and system security through setup and ongoing maintenance of Riverbed IPS and FireEye.
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification, and administration.

Environment: Bluecoat Proxies, Panorama, F5 LTM, GTM 6600, 6800, Nexus (2K, 5K, 7K and 9K), Splunk, Cisco ISE, Websense, Solar Winds NPM.

Confidential

Network Engineer

Responsibilities:

• IT experience in administration, troubleshooting & new implementations on Cisco Switches, Cisco Routers & ASA firewall, IP Phone, WLC and APs in LAN/WAN Environment.
• Coordinating with Branch Office Site contact to understand the site-specific Network devices and connectivity.
• Draft and publish internal knowledge base articles such as step-by-step troubleshooting reference material.
• Assist on various projects with multiple vendors and stakeholders.
• Analyze and score RFP submissions from multiple vendors.
• Work done in installing/troubleshooting VOIP phones for branch office.
• Experience conducting desktop support and inventory control over different sites.
• Provide domain and system access to vendors, employees, and customers.
• Lead all deployment and move projects (Installation new hosts, relocate production hosts, system upgrade etc. and bring up new hosts in production environment).
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
• Configured port-fast, uplink fast and other spanning tree features.
• Created Lab demonstrations for new technology deployments with loaner equipment from various vendors and presented the findings to upper management.
• Maintained good understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.).
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Implementing traffic filters using standard and extended access-lists, IP prefix-lists.
• Inspected overall health of the network, server deployment throughout the company's LAN.
• Assigning IP address and password to Routers.
• Preparing the Task list for remote sites implementation steps with timelines and owners.
• Troubleshooting incidents of different levels of severity by working with the OS, Customers and application teams.
• Making emergency changes in the network to ensure uninterrupted services.
• Resolving routing and switching related real-time performance issues.
• Configuration & Management of VLANs, 802.1q trunks, VTP, Security policies.
• Knowledge and configuration of redundant router protocols like HSRP, VRRP and GLBP.
• Developed and documented network diagrams and procedures.
• Implemented route redistribution between OSPF and EIGRP.
• Designed ACLs and VLANs.
• Work done in installing/troubleshooting PCs and Printers and RHEL Servers.
• Testing fornetworkconnectivity before and after installing or upgrading.
• Conducting technical site surveys different branch and main office.
• Experience installing/troubleshooting with data cable and data communications equipment.
• Installation and commissioning of Cisco Catalyst Switches 2900, 2950&3500
• Configuration & Trouble shooting of Cisco Switches: - 2960, 3500 Series Catalyst Switches.
• Configuration and troubleshooting of LAN's and WAN's with various protocols includingTCP/IP, DNS, DHCP, PPP, NETBEIU, RIP, IGRP, EIGRP, OSPF.
• Configuration of Cisco 3600, 2600, 2500, 1700, 1600 series Routers which are used for WAN design.
• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on Call tech as needed for client.

Confidential

Jr. Network Engineer

Responsibilities:

• Worked with the Help Desk for circuit troubleshooting to give Support to the Tech persons at the site.
• Configuring routers and sending it to Technical Consultants for new site activations and giving online support at the time of activation.
• Experience installing/troubleshooting VOIP phones for branch office.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Experience conducting desktop support and inventory control over different sites.
• Experience in Cisco series switches: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Conducting technical site surveys different branch and main office.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Installing/troubleshooting PCs and Printers and Servers.
• Configured the Cisco router as IP Firewall and for NATting.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Responsible for implementing Qos prioritizing voice traffic over a data.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.
• Experience installing/troubleshooting with data cable and data communications equipment.
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues.