SUMMARY

• 8 years of experience as a Senior Network/Security Engineer responsible for designing, integrating, implementing, and support ofLAN, WAN, F5, and Citrix load balancers, and Aruba Wireless, ACS, NAC, ISE, Call manager VOIP, SDN, SD - WAN, ASAs, Palo Alto Firewalls, Cisco Firepower, and Network Security.
• Design, Build, and implemented various solutions on F5 LTMs and GTMs.
• Design, implement and administer Ipv4/Ipv6 enterprise network infrastructure utilizing.
• Hands on Experience with different traffic tools Ixia and Spirent test center.
• Highly experienced in AWS Cloud platform and its features, including EC2, VPC, EBS, AMI, SNS, RDS, EBS, Cloud Watch, Cloud Trail, Cloud Formation, AWS Config, Auto Scaling, Cloud Front, IAM, S3, and Route53.
• Well experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Understanding of network virtualization such as VRFs, and VXLAN.
• Network Security Network Infrastructure Oral/Written Communication
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs, and switches.
• Checkpoint, Cisco ASA, Fortinet, and Palo Alto installation, upgrade, Monitoring, and patch management.
• Expert level knowledge about TCP/IP protocol suite and OSI model.
• Highly experienced inAWSandGCPCloud platform and its features.
• Hands-On experiencewith Cisco IOS/IOS-XR/NX-OS,Juniper JUNOSfor configuration troubleshooting of routing protocols:MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Experience in troubleshooting OSPF, EIGRP, BGP, RIP, BFD, SNMP, VLANs, 802.1Q, and HSRP.
• Experience in VPC creation and troubleshooting in Nexus.
• Extensive experience as a system administrator and IT experience in multiplatform VMware, Linux, and Windows server virtualization with hands-on expertise in networking, storage, and system integration.
• Experience with Application delivery controllers which include F5 LTM, GTM, APM, ASM modules, and Netscaler. Worked on Virtual servers, Pools, SNAT, persistence, Profiles, iRule Scripting, DNS, Topology-based load balancing on F5. Migration experience from ACE to F5.
• Deployed51 Different ASA and FirepowerNext Generation Firepower Threat Defence with IPS, I,DS, AMP and URL filtering such as 5508-X,5516-X,5525-X,5545-X, 2100 and 4100 series as well in FMC.
• Performing the software upgrade from version 9.0 to 9.1 on panorama and PA-7000 series Palo Alto firewalls.
• Proficiency in the configuration of VLAN setup on various CISCO Routers and Switches.
• Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2Kseries, router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800, series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Expertise in Migration of Firewalls from Nortel Captivity to ASA, ASA to Checkpoint, Checkpoint to Palo alto and Vice Versa.
• Excellent understanding of TCP/IP fundamentals, OSI reference model and networking protocols.
• Design and deployment of MPL and QSOS, MPLS Multicasting per company standards.
• Troubleshoot and worked with security related issue of /PIX, Checkpoint, IDS/IPS and Juniper Net-screen firewalls.
• Handled tickets for troubleshooting, Call Manager, F5/NetScaler load balancers, Routers, Switches, FortiGate Firewalls, Aruba wireless equipment as well as some server issues.
• Hands-on experience on PIX Firewalls, Palo Alto, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, Confidential, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
• Worked on Panorama firewall management tool to administer Palo Alto 5050, & 5250 device groups.
• Troubleshoot network issues, including knowledge of firewalls, switches
• Deep knowledge of Significant experience with, and deep expertise in many of the following: Ethernet, 802.2/3, 802.1d, IP, TCP, VLAN, VTP, STP, BGP, OSPF, HSRP/VRRP/GLBP, PIM, IGMP, MSDP, MPLS, LDP, DNS, HTTP, SSL, NetFlow, 10G, 40/100G Futures, Linux/Unix.
• Working experience on the Arista 7150S series, 7160 series, and 7260QX series switches; 7508R routers.
• Designed and architected a global MPLS Network for network stability.
• Migrated from various vendors' routers, switches, and firewalls in various parts of the network to equip hands-on on experience on Amazon Web Services (AWS) in implementing groups.

TECHNICAL SKILLS

Routers and Switches: Cisco Switches (2900, 2924, 2950, 3550, 5500, 6500, 6509, 6513), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206 Arista, Brocade & Juniper devices)

Protocols: RIP, RIP2, PPP, Confidential, Confidential, IS-IS, BGP, SNMP, HTTP, FTP, TFTP, HTTP, DHCP, SMTP, ICMP

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines

LAN Technologies: Ethernet, TCP/IP, CDP, STP, RSTP, VTP, Confidential, Trunks, Ethernet channel, MPLS.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Wireless: Cisco Meraki wireless Access points (MR66, MR74, MR84), Aruba Access points 200, 207,300,320, Wireless controllers 7280, 7240, Wireless control,er 5508 and Cisco Aironet 3700 series.Juniper Contrail

Routed Protocols: TCP/IP, IPX/SPX

Firewalls: ASA, PIX, SRX, Watch guard, ASDM, CSM, Checkpoint, Firewalls/VPNs ASA, Palo Alto, Cisco VPN, Zscaler VPN

Operating Systems: Windows 2000/2003Windowswindows XP/7, Linux, Unix, Macintosh

Servers: Domain servers, DNS servers, WINS servers, Mail Servers, Proxy Servers, Print Servers, Application servers, FTP Servers

Load balancer: F5 Load Balancer, ACE, LTM & GTM series.

Monitoring Tools: Wireshark, Fiddler, Microsoft Network Monitor, sola,r winds and some sniffers

Cloud: AWS S3, EC2, IAM, RDS, VPC, Kubernetes, Terraform, Elastic Load balancers, Azure, GCP.

PROFESSIONAL EXPERIENCE

Confidential, Denver, CO

Sr. Network Engineer

Responsibilities:

• Configured & Deployed Cisco ASA firewalls,Next-Gen Firepower Threat Defence (FTD),Firepower Chassis Manager (FCM),Firepower Management Center and (FMC), Cisco Security Manager.
• Reviewing, analyzing, approving, and executing all changes in the network. All Configurations of Cisco Routers and Switches.
• Experience with migration toAWS/GCP from Data center using Velostrata.
• Worked on Arista Cloud Vision (CVP) & Cloud Vision Exchange (CVX) Deployed on VMs.
• Worked on Routing protocols Eigrp and BGP. Working on Infoblox for IPA,M, DHCP and DNS. Working on Linksys, SG500, Cisco, Arista, switches and Cisco routers.
• Very confident with Apache, Postfix, MySQL, DNS, DHCP, and Samba on Linux.
• Experience working with Layer 3 Routing Protocols OSPF and BGP.
• Designed and support the consolidation of data centers utilizingBroadcom, Nexus 2K,, 5K, 7K, and juniper ( EX, QFX)switch infrastructure.
• Implemented EBGP peering between all the branch offices.
• Used AWS Cloud platform with features EC2, VPC, ELB, Auto-Scaling, Load Balancing, Security Groups, IAM, EBS, AMI, RDS, S3, SNS, SQS, Cloud Watch, Cloud Formation.
• Customer escalations associated with network infrastructure. IPv4/IPv6, TCP, OSPF, BGP, VPNISIS Routing. AWS VPC creation and provisioning cloud networks.
• Installed FortiGate’s 100E, 600E & 60E Forti manager & Forti analyzer and Implemented layer seven capabilities.
• Experience in working withNexus7010, 9396, 5548, 5020, 2148, and 2248 devices.
• Experience with F5 load balancers to provide Land Balancing towards Access layer from core layer and configuring F5 LTM both by GUI and TMSH/CLI and Cisco load balancers (C,SM, ACE and GSS).
• Experience in configuring VDC, fex pinning, fex port-channel, port-channel, peer keep alive, and peer link.
• Experience consisting of Global load balancing, Local load balancing, SSL acceleration, and HTTP compression.
• Involved in the modification and removal (wherever necessary) of BGP from theMPLSrouters.
• Configure and Install Cisco NGFW Firepower firewalls at multiple customers.
• Involved in complete LAN, and WAN development (including IP address planning, designing, installation, configuration, testing, and maintenance).
• Involved in Switching Technology Administration including creating and managing VLANs, Port security, Trunking, Inter-VLAN routing, LAN security, etc.
• Installing and configuring all the Linux servers in the network per specifications of clients.
• Designed, developed, and tested scalable cloud-based solution architectures and infrastructure AWS and Azure, Such as Route 53, ELB, Security group, VPC, VPN, NaCl, NSG, and VNET)
• Experience onAWSservices,VPCcreation, Security rule configuration ion,DR, AWS DWHplatforms.
• Implementing and Maintaining Network Management tools (Solar Winds,Zenoss,Infoblox,IPAM)
• Thorough knowledge of CLI for both Confidential C4 and Cisco TenK to sCMTS CMcompany-wide wide.
• Designed, validated, and implemented LAN, WLAN & WAN solutions to suit clients’ needs.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, and 4507 switches.
• Responsible for turning up BGP peering and customer sessions, as well asdebugging BGP routing problems.
• Proficient in SolarWinds network management tools like network performance monitor, Netflow traffic Analyzer NCM and cisco prime.
• Worked on Packer filtering and Analyzation using Wireshark in the Corporate Network
• Configured and maintainedMeraki-Merakito manage Remote Branch office networks and security cameras.
• Worked24X7network supports forON-CALL& maintained 99.98% uptime of the system.
• Documented all the work done by using Visio, Excel & MS word.

Environment: Cisco 2k, 3k, 5k, 7k series; Catalyst 2960, 3650, 3850 series switches, Broadcom switches, ISR 800/1000 series, ASR 1000 series, 3600/2800 routers, Alcatel-lucent, F5 Load Balancer, BIG-IP, LTM, GTM, Red Hat Enterprise Linux, SDN, Aruba ClearPass, EIGRP, BGP, DMVPN, SSL VPN, Cisco ASA Firepower, Cisco Meraki, Cisco ACI, Ether Channels, VMware ESXi.

Confidential, Denver, CO

Sr Network Engineer

Responsibilities:

• Responsible for designing and implementing of network and Security infrastructure.
• Experience in working withNexus7010, 9396, 5548, 5020, and 2148, 2248 devices.
• Experience in working and designing configurations for vPC, vPC domain, vpc peer-gateway, vPC peer-switch, auto-discovery, vPC single-sided, vPC double sided, NX-OS, Vfr, Otv, fabric path.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products
• Installed, configured, and maintained DNS, NFS, and mail servers on Linux server
• Currently working in the Cloud migrations team to move infrastructure from the data center to AWS/GCP.
• Worked with different models of Cisco/Juniper/Arista switches, routers, firewalls, load balancers, VPNs and wireless systems.
• Configuration7609, 7606withOSPF, Broadcom (PEX) Switches,juniper (EX, QFX, QFabric) switches with VLANs VLAN’s.
• Extensive hand on experience with complex routed LAN networks, CISCO, Routers and Switches.
• Configured and maintainedVPCswith 7010/7018 and 5548 in the network and maintained VDCs in 7k switches, maintained VRFs in those separate VDCs.
• Worked and nACE,A10 load balancers. Experience withF5 load balancers- LTM, GTM series like 6 and 400, 6800, 8800 for the corporate applications and their availability.
• Implemented over 250 Arista switches for new data center deployment in a CoLo facility utilizing Python scripts I built.
• Created detailed AWS Security Groups which behaved as virtual firewalls that controlled the traffic allowed to reach one or more AWS EC2 instance.
• Worked in updating theCiphers Suitsto the VIP’s in A10 and worked on enabling and disabling the Backend servers.
• Experience consisting of Global load balancing, Local load balancing, SSL acceleration, and HTTP compression.
• Involved in the modification and removal (wherever necessary) of BGP from theMPLSrouters.
• Experience in searching possible anomaly using Splunk, Elasticsearch, Websense DLP, Device Lock DLP, Adallom, Okta MFA, SiteMinder SSO, Sky fence, Netscape, Sumo Logic, Device Lock DLP, CyberEdge Risk Tool, KALI, NetCat, NMap, Wireshark, Suricata for IPS/IDS, SmoothWall Web Filtering.
• Experience in installing, upgrading, and configuring Red Hat Linux 4.x, 5.x, 6.x us
• Involved in complete LAN, and WAN development (including IP address planning, designing, installation, configuration, testing, and maintenance).
• Comfortable using GCP console and cloud shell.
• Experience in configuring firewalls such as Palo Alto PA-5200, Checkpoint 6500T, 15600, Cisco Firepower, and SRX 6500.
• Experience on AWS cloud services like EC2, S3, RDS, ELB, EBS, VPC, Route53, Auto scaling groups, Cloud watch, Cloud Front, IAM for installing configuring and troubleshooting on various Amazon images for server migration from physical into cloud.
• Configured and deployed Cisco catalyst6506,4948E,4510switches, Broadcom(PEX), Cisco3660,3845, and7609series Routers.
• Configured HSRP and VLAN trunking 802.1Q, and VLAN routing on catalyst 6500 switches.
• Implementing and Maintaining Network Management tools (Solar Winds,Zenoss,Infoblox,IPAM)
• Experienced in assigning theIP addressdynamically to the end devices and involved in the migration ofthe DHCPserver.
• Responsible forPalo Alto,Checkpointfirewall management, and operations across our global networks.
• Working withPalo Alto,CheckpointSupport for resolving escalated issues.
• Designed, validated, and implemented LAN, WLAN & WAN solutions to suit clients’ needs.
• Participated in on-call rotation to provide 24/7 technical support for Linux infrastructure.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, and 4507 switches.
• Responsible for turning up BGP peering and customer sessions, as well asdebugging BGP routing problems.
• Worked on Packer filtering and Analyzation using Wireshark and Riverbed in the Corporate Network
• Configured and maintainedCisco-Merakito manage Remote Branch office networks and Internet connectivity.
• Worked24X7network supports forON-CALL& maintained 99.98% uptime of the system.
• Documented all the work done by using Visio, Excel & MS word.

Environment: Cisco Router 7613, Cisco Switch 6500, Nexus 2K, 5K, 7K, OSPF, BGP, VLAN, MPLS, 802.1x, Cisco ASA 5550, 5585, Infoblox, Broadcom, SDN, Blue Coat Proxy, PIX Firewall, F5 Load Balancer 6400, 6800, Nokia 7210 switch, 7750 routers.

Confidential, Lauderdale, FL

Network Engineer

Responsibilities:

• Responsible for three open source projects like Elasticsearch, Logstash, and Kibana.
• Hands-on experience on taking care of server-side data processing pipeline and sending it to ‘stash’.
• Played a key role ithe n documentation of Root Cause Analysis (RCA).
• Worked on the implementation of InfobloxDNS,DHCP,andIPAM (DDI)for the network.
• Experienced in creating Python apps to automate the daily networking tasks like configuring devices, network information collection, and testing by client simulations.
• Assisted the networking team on the installation of 7800, 6900, and 3900 series IP phones.
• Configured LACP, and OSPF protocols on Arista 7250qx-64 switches monitored and Created trafPatternstern on Arista 7250 switches using Open flow.
• Installed and configured Apache, and Tomcat application servers on Linux systems.
• Expertise with Installation of Arista 7250QX series switches on Spine Platform.
• Hands-on experience with data center technologies that includspine-leafaf, CISCO ACI, Aand rasta cloud vision.
• Assisted the team in the configuration of Cisco Unified Communications Manager (CUCM).
• Configured and Deployed 18FirepowerThreat defense withIPS, IDS, AMP, and URL filtering and integrated with Firepower Management Center FMC for 5516-X,5545-X,2100, and 4100 series.
• Hands-on experience with networking experience including configuring Cisco, Arista, Juniper Networks switch including 10/40/100Gb. Experience designing and configuring Arista and Cisco Switches and Routers, review technical requirements for deployment.
• Used Python for capturing, decoding, and analyzing the network packets.
• Played a key role in providing support for the organization for service improvement.
• Hands-on experience withITILprocesses like knowledge management, service validation, and testing, and release and deployment management.
• Experienced in queryingSNMPobjects on network devices.
• Functional Knowledge and hands on experience with the Citrix infrastructure components such as Web interfaces, PNA Server, NetScaler setup and administration, License Server management, and EdgeSight. Management and configuration of RSA SecurID Server.
• Participated in on-call rotation to provide 24/7 technical support for Linux infrastructure.
• Experience working with migration from 4500 series devices to 6500 Series switches in Campus deployments at Core and Distribution Layers.
• Experience in the deployment & troubleshooting of F5 Load Balancincludingdes BIGIP Series 5050V, 10000V, 8900, 6900, and 3900.
• Worked on 2600, 3500, and 7613 Routers, implemented OSPF and, BGP, and performed route filtering and route manipulation by applying distributed lists, route maps & offset lists.
• Translating Cisco IOS Route maps to Cisco IOS XR Routing policies.
• Worked on the migration from Cisco ASA to the Palo Alto firewall and the configuration of User-ID, App-ID’s, SSL Decryption, URL Filtering, Policies, Zone Protection, High Availability, and Certification Management.
• Worked on the URL filtering and upgradation of the Palo Alto firewall from PAN-OS 7.1 to PAN-OS 8.0.
• Worked on the implementation of Cisco Meraki wireless solutions and the deployment of wireless access points.
• Working knowledge and hands-on experience with the PA-200, 500 Series firewalls.
• Resolving issues in the Network Operations Center (NOC) through the ticketing system and escalating the issues if necessary.
• Created Linux virtual machines using VMware virtual center.
• Worked on the implementation of Cisco Meraki Enterprise Cloud Wireless Bridge/Repeater to extend the LAN for multiple buildings
• Installed and configured Meraki (MX80, MX60) Appliance via Meraki MX400 Cloud.
• Installed and configured Cisco Meraki (MR66, MR18) wireless Access points in the warehouses from scratch.
• Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.
• Upgrading the IOS on the ASA 5550, and 5585 and have done IOS upgrades on Cisco routers and switches.
• Involved in Configuring and implementing of Composite Network models consisting of Cisco 7300, 7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 3550, 3750, 5000, 6500 Series switches.
• Mutual redistribution of OSPF and BGP routes using route maps for WAN optimization.
• Configuring VLAN, STP, VSTP, and SNMP on EX series switches from the scratch.
• Hands-onon experience in Design, Installation and configuration of Checkpoint Provider Environment.
• Managed the Checkpoint firewalls and provided Level 3 support for the Checkpoint Firewall administration.
• Performed upgrades on all Checkpoint firewalls and managed security policies for the firewall from scratch.
• Deploying and decommissioning of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and configuration of 2k, 3k, 7k series Routers.
• Moved Core switches and several non-Cisco devices under strict deadlines to maintain network functionality.
• Upgrading system images on Nexus 5 and 7 multi-layer switches using kick start and FTP server.
• Implemented SmartKey for cloud scalability, secure key / secret generation, storage, life-cycle management, encryption, and tokenization for PII.
• Implemented strong authentication protocol, and user access management solutions.
• Familiar with setting up the network connections with multiple cloud providers such as AWS, Azure, Oracle, etc.
• Worked on the configuration of BGP and advertisement of routes to the ISP network.
• Experience in creating and monitoring high availability, scalable, networks in AWS using EC2, Lambda, VPC, and other AWS services.

Environment: Cisco Router 7613, Cisco Switch 6500, Nexus 2K, 5K, 7K, OSPF, BGP, VLAN, MPLS, 802.1x, Cisco ASA 5550, 5585, Infoblox, SDN, PIX Firewall, F5 Load Balancer 6400, 6800, Nokia 7210 switch, 7750 routers.

Confidential, Bismarck, ND

Network Engineer

Responsibilities:

• Configured HSRP between VLANs, configuring Ether Channels, and Port Channel on 6500 catalyst switches.
• Performed data center migration in Access, Distribution and Core layers.
• Experience working with ASR 9000 series switches with IOS-XR.
• Configured Routing protocols such as RIP, OSPF, EIGRP, MPLS, static routing, and policy-based routing.
• Configured and troubleshot link state routing protocols like OSPF in single area and multiple areas.
• Configured BPDU Guard, port-fast, uplink fast, and other spanning tree features.
• Worked on the installation of softphones on the client’s end devices through Cisco IP Communicator.
• Upgraded Cisco ASA 5510 firewalls using 6500/7600 catalyst modules for enhanced performance, security, and reliability.
• Provides second-level support for cloud customer complaints, especially for network infrastructure-related problems.
• Strong understanding of cloud computing architectures and implementations.
• Administrated DHCP, DNS, and NFS services in Linux.
• Provided Technical support for improvement, upgradation, and expansion of the existing network architecture
• Done troubleshooting of TCP/IP problems and connectivity issues in a multi-protocol Ethernet environment.
• IOS upgrade 1900, 2900, 3500 series Cisco Catalyst switches and 2500, 2600, and 3600 series Cisco routers using TFTP.
• Migrated IPv4 addresses to IPv6 addresses using mechanisms like Tunnel Broker, Transport Relay Translation (TRT), NAT64, DS-Lite, and DNS64.
• Configuration and installation of IP phones and Session Initiation Protocol (SIP) implementation to enable communication.
• Performed Binding of LUNS onto the RAID Groups in the Clarion Boxes.
• Worked on the VMware ESXi, and Microsoft Hyper-V by running several operating systems.
• Configured ACLs (Standard, Extended, and Named) to allow users all over the company to access different applications and block others.

Environment: Cisco 3750/3550/3500/2960 Switches and Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco Nexus7K/5K, 2248/3560/5020/6509 , Cisco ASA5510, Checkpoint, SolarWinds, Blue Coat Proxy, Controllers 6000, 3600, 3400, 650, Juniper SRX, Microsoft Lync, MPLS, VOIP, SIP, Cisco Unified Video Conferencing, Unix commands, IPV6, Cisco IP phones, Cisco 5500, 6500 series controllers, Avaya3000, 6000, 7200 series Controllers, Cisco IOS CLI.

Confidential, Madison, WI

Network Engineer / Administrator

Responsibilities:

• Configured STP for switching loop prevention and VLANs for data along with configuring port security for users connecting to the switches.
• Worked on issues related to static and dynamic routing protocols like RIP, EIGRP (Variance and unequal cost load balancing), and OSPF.
• Configured VLANs with IEEE 802.1q tagging, private VLANs, and VTP on Cisco 4500 and 6500 series switches.
• Configured trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture. trouble tickets, both hardware and software related.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving Customer reported issues.
• Worked on issues related to VLAN, VTP, and HSRP failovers.
• Created network diagrams and proper documentation for the network architecture.

Environment: Cisco 6509/3750/3550/3500/2950 switches, Cisco 7200/3845/3600/2800 routers, Checkpoint firewalls (SPLAT), Cisco IOS CLI, Net Flow, TACACS, EIGRP, RIP, OSPF, CSM, Ether Channels.