SUMMARY

• 8.5 years of professional experience in CISCO and Juniper firewalls, routing, switching and load balancers.
• Experience in installing, configuring and troubleshoot of CISCO Palo Alto firewall series link PA3250, PA5220, PA5420, PA5850, PA7080 security appliance.
• Hands on Troubleshoot and deployment of Juniper SRX2400, SRX4100, SRX4600, SRX5500, SRX5600, SRX5800, NS 50, SSG 550M, SSG 520M firewall policy lookups.
• Experienced in configuring of CISCO Fortigate forti 800, 1500 and 2800 series firewall devices. installation and troubleshoot of Juniper EX2200, EX2900, EX3300, EX3550, EX4500, EX6200, EX6509 EX8550 and 9250 series switches and Virtual MX (VMS) MX1600, MX2600, MX2800, MX3600, MX4400, MX6400, MX7300, MX9600, MX 10008 routers.
• Monitoring alerts related to CISCO ACI nodes and Cisco Nexus 9k, 7k, 5k, and 3k data centre downstream devices.
• Support and installation of Viptela SD - WAN of V-Manage, V-Smart, V-Bond & V-Edge network deployment infrastructure.
• Working experience in Azure cloud security appliance with 24x7 supports in Linux/Windows administration.
• Administered on Ansible automation scripting languages and Meraki Clear Pass Policy Server wireless devices.
• Worked on implementation of F5 BIG-IP 4200 LTM to 5250 VCMP guest load balancers and experienced in F5 LTM and GTM modules from v.11.4.1 to v.11.5.3 providers.

TECHNICAL SKILLS

Firewalls (CISCO & Juniper): CISCO Palo Alto PA3250, PA5220, PA5420, PA5850, PA7080 and forti 800, 1500 and 2800 & Juniper SRX2400, SRX4100, SRX4600, SRX5500, SRX5600, SRX5800, NS 50, SSG 550M, SSG 520M

Routing & Switching: Juniper EX2200, EX2900, EX3300, EX3550, EX4500, EX6200, EX6509 EX8550, EX9250 switches and MX1600, MX2600, MX2800, MX3600, MX4400, MX6400, MX7300, MX9600, MX 10008 routers

Data Center Switches: Nexus 9k, 7k, 5k, 3k with ACI fabric

SD-WAN: Viptela SD-WAN, V-Manage, V-Smart, V-Bond & V-Edge

Cloud Platform: Azure, VPC, RDS could security, Splunk

Load Balancer: F5 BIG-IP 4200 LTM to 5250 VCMP, LTM, GTM, v.11.4.1 to v.11.5.3

Modules: AAA, SSH, NTP, SNMP, ACS, TACACS+

Cisco system products: CME, AAM, AAC8, MX, MCU, Video end points EX90, EX60, E20, E20 and TMS, VCS, VCUM, VTC Platforms, 3560 POE switches

Operating System: Linux, Windows

PROFESSIONAL EXPERIENCE

Confidential, Austin, TX

Sr Network Security Engineer

Responsibilities:

• Working on Configuration, troubleshooting and installation of CISCO Palo Alto firewall PA5220, PA5850, PA7080 devices, Panorama.
• Experience in deployed Active/Standby modes of High Availability (HA) with Session and Configuration synchronization on multiple CISCO Palo Alto, Juniper SRX firewall pairs.
• Enable file forwarding to Wildfire cloud through Content-ID implementation to identify new threats in Palo Alto.
• Configuration of Juniper security appliances SRX 4100, SRX5600, SRX5800, NS 50, and SSG 550M, SSG 520M series firewalls.
• Working with identified and removed security policies that are no longer needed to reduce Juniper SRX firewall policy lookup.
• Deploying, Configuring, Testing and Troubleshooting Cisco CME, Gateways, System Manager, AAC8 (Plugins in various browsers), AAM server voicemail and Microsoft Skype for Business
• Adding Rules and Monitoring SRX Firewall traffic through smart dashboard and smart view Tracker applications.
• Hands on experience in Cabling, Testing, Installing, Video conferencing and L1, L2 and L3 and troubleshooting of Cisco Routers, Switches, Video endpoints like EX90, EX60, E20, E20 and C90 installing and troubleshoot of Juniper EX2200, EX3300, EX6200, EX8550 and 9250 series switches and Virtual MX (VMS) MX4400, MX6400, MX9600, MX 10008 routers.
• Expertise in IP technology and Cisco Telepresence deployment, Configuration and troubleshooting.
• Working with deploying and decommission of VLANs on core ASR 9K, Nexus 9k, 7K, 5K and downstream devices.
• Monitoring alerts related to CISCO ACI nodes and Cisco Nexus and providing technical feedback to fix abnormalities.
• Hands on ACI fabric (leaf, spine, APIC). Configuration of port, VLAN, switch policies, profiles
• Work for collaborate with application owners to define dependencies, map dependencies for better application workflow within ACI or public cloud use.
• With Cisco Viptela, SD-WAN fabric (V-Manage, V-Smart, V-Bond & V-Edge) deployment, tuning using best practices, site on boarding to overlay network, troubleshooting and support.
• Application in security, infrastructure security, cloud security on Azure environment, set up cloud security team globally.
• Cloud security configuration reviews (Azure) and implementation of the cloud security controls.
• Worked in architecting and configuring secure cloud VPC using private and public networks through subnets in Azure.
• Creating automated scripts using Ansible language and also manual testing to enhance hardware performance.
• Operating and maintained (O&M) the Meraki Clear Pass Policy Server and the Meraki Airwave Wireless Intrusion Detection System.
• Supporting, Monitors and manages the SIEM environment. Splunk Administration and analytics development on Information Security, Infrastructure and network, data security, Splunk Enterprise Security app, Triage events, Incident Analysis
• Work nature in configured different load balancing methods on F5 LTM & GTM and worked on one-connect profiles and HTTP compression and several persistence profiles.
• With F5 LTM sessions and manipulating session using I-Rule and configuring and maintaining WebTop’s and Portal Access
• Upgraded the F5 LTM and GTM modules from v.11.4.1 to v.11.5.3 in high-availability architecture

Confidential, Chandler, AZ

Senior Network Security Engineer

Responsibilities:

• Experienced in Configuring, Monitoring and Troubleshooting Cisco's Palo Alto PA-7k, PA-5420 and PA-3250 security appliance, Failover DMZ zoning and configuring VLANs/routing/NAT with the firewalls as per the design
• Worked in optimize existing policies to improve security and performance. Identify and remove security policies that are not no longer needed to reduce Palo Alto firewall policy lookup.
• Learning Latest Technologies of Skype for business, Cisco Spark, Cisco MX, MCU and New features supports in a pipeline
• Dealt with monitoring tools like VPN client, Putty, ASDM, Palo Alto Dashboard, Smart View Monitor, Smart View Tracker, MRTG and PRTG.
• Experience in Configure, deploy and implementation of Juniper SRX Firewalls (SRX2400, SEX4600 and SRX5500) devices.
• Various components used like System Manager, Session Managers, Scopia Management tool, TMS and Call routing Process
• Configuring Policies and Maintaining Juniper SRX Firewall & Analysis of firewall logs.
• Analysing the Policy rules, monitor logs and documented the Network/Traffic flow diagram of the SRX firewalls placed in the Data Center with MS Visio.
• Experienced with High performance data center switch like CISCO Nexus 9000, Nexus 7000 and Nexus 5000 series platform.
• Worked on client having ACI fabric environment build up at around 9 locations and it is having different APIC cluster to manage individually.
• Managing connectivity between two POD's -To provide ACI troubleshoot support to endpoint devices team having reachability issue.
• Configuring L3 out for accessing the server’s and endpoints inside the ACI from outside network.
• Ensured the registration and availability of Scopia end points (Polycom, -Cisco) in the all the regions by fixing 70-80 alarms on Scopia registered end points
• The configuring and deploying of Juniper MX series routers (1600, 2600, 2800, 3600 and 7300) and Juniper EX series switches (2900, 3550, 4500 and 6509).
• Working as a team member of Network operations WAN team. Handling incidents, VPN tunnel configuration, SD-WAN Viptela issues.
• Experience in multiple Azure zones, instances etc. for multiple vendors using the respective tools
• Interacted with teams and customers in different time zones for ensuring 24x7 support in Linux/Windows administration in Azure.
• Experience for creating, configuring, and utilizing Azure VPC to host clients computing services, virtual networking devices, database (RDS) environment and security configuration.
• Generated property list for every application dynamically and writing automated testing scripts using Ansible.
• Managed and troubleshoot Meraki access point’s wireless devices on Meraki VPN.
• Troubleshooting the issues which are related to Splunk, logger, Oracle and Conapps performances.
• Successfully migrated from F5 BIG-IP 4200 LTM to 5250 VCMP guest.
• Migrating applications from cisco ACE / CSM to F5LTM, and GSS configurations to F5 GTM wide-IP.
• Worked on configured and troubleshooting the F5 LTM and APM and providing level 2 support for the customers.

Confidential, Boston, Massachusetts

Network Engineer

Responsibilities:

• Configuring VPN and applying security policy on various platform in Palo Alto PA 1200, PA 1800, PA 2500, PA 3800 firewalls
• Worked on troubleshoot and configure of CISCO Fortigate forti 800, forti 1500 and forti 2800 series firewall devices.
• Worked at GSC (Global Service Center) Asia-Pacific, Responsible for any kind of network problem for the client.
• Responsible for management of all the WAN using the monitoring tools ITSM.
• Configuration of Juniper routers with standard features and capabilities viz. AAA, SSH, NTP, SNMP interface properties.
• Provided NTP server, provisioning server details for all Cisco end points
• Install and deploy of Juniper MX300, MX900, MX1600 and MX2900 series routers and Juniper EX500, EX1200, EX1800 and EX2800 series switches.
• Experienced in planning & Implementing Changes on Devices as Per ITIL Standard.
• Added new cabling and installation, Connecting and registered with Cisco VCS and CUCM.
• Hands on IOS up-gradation, backup of network devices on Nexus 5k and 3k switching devices.
• Knowledge in providing different kinds of reports (Uptime, Bandwidth Utilization, Availability, Reachability, Downtime)
• In performing failover activity, primitive measure activity for Router and DC/DR devices
• Worked on Juniper ACS server (AAA Server) management, User database management, configuration privilege level, and command authorizations using TACACS+.
• Experience in configuring and troubleshooting IPSEC site to site VPN solutions.
• Main focus on F5 Load Balancing and creating VIP pools, node, pool members, Monitoring in F5-LTM.
• Working in configuration and troubleshooting F5 LTM and providing level 2 for the customers.
• Experienced in sending emails and SMS to the customer to keep them updated about major incidents or outages.
• Experienced on troubleshooting of customer Router, service-related issue, in case of Router not reachable send the field engineer and coordinate with him for troubleshooting.
• Worked with troubleshooting for all the Incidents and problems to find out the root cause and keeping track of the Changes.

Confidential, Phoenix, AZ

System Administrator

Responsibilities:

• As a team responsible for maintaining SLA across Datacenter the entire physical and virtual server and network environment.
• Understanding the client problems, statement, coming up with tailor-made solutions, and ensuring that so wachieves the pre-defined objectives.
• Managed Device Expert solution and VERITAS backup & IBM Tape Library management.
• Configured and tested Cisco network equipment’s
• Working on experienced in Antivirus Console and Firewall Policy Management.
• Implemented and managed migration from decentralized to centralized infrastructure using MPLS and other P2P technologies
• Created test plan for manual and automation testing adding the new features supported in CUCM 9.0 and Cisco VCS 7.1
• Experienced on implemented up-gradation to Windows Servers and Linux Server.
• Worked on grooming junior resources on emerging technologies as well as ensuring that escalations are kept to minimum.
• Experience in Office365 Management and Active Directory management and file Server, Print Server, DHCP Server Management
• Provided inventory report and support for operation of Cisco Systems.
• Carrying out active discussion with vendor and technology partners to ensure smooth execution of the project.