SUMMARY

• Having 8.1 years of IT experience with Network Security, Network and IT Support Domain.
• Worked on configured, installed and migration for Palo Alto 7k, 5k, 4k, 3k series firewalls.
• Worked on migration and configured of Checkpoint R76/R77 75+ 15000, 21400, 23000 series firewalls.
• Experienced in Nexus 9k, Nexus 7k, Nexus 5k, Nexus 3k series and Arista 7050SX3 data center switches using tier3/tier4 architecture.
• Experience with configuring, Managing and maintenance of the Cisco ACI (Application Centric Infrastructure) Fabric.
• Worked on CISCO Meraki wireless access points and Aruba Clear Pass 500, 5K, and 25K series wireless devices.
• Working experienced with configured and installed Viptela SD - WAN deployment.
• Experience foe installed and configured Juniper security appliances SRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M series.
• Experienced with Cisco 2900, 3600, 3800, 3945, 4500, 7200, 7600 and ASR 1002, 1006 series routers.
• Experienced with Cisco Catalyst 2900, 2960, 3570, 3750, 4500 and 6500 series switches.
• Worked on AWS cloud platform and increase & decrease of existing disk using EBS, EC2, ELB, RDS, 53, SNS to store object like data.
• Worked in configured and installed F5 BIG-IP LTM 8900, F5 BIG-IP 3900 and 6900 series load balancer platforms.
• Worked on Python Scripting to deploy and automation testing purpose and managing Linux-based operating systems.

TECHNICAL SKILLS

CISCO Routing: CISCO 2900, 3600, 3800, 3945, 4500, 7200, 7600 and ASR 1002, 1006

CISCO Switching: CISCO 2900, 2960, 3570, 3750, 4500 and 6500Juniper securitySRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M.

Data Center: Nexus-9K, 7K, 5K, 3K & Arista 7050SX3, Clear Pass 500, 5K, and 25K

Firewall: Palo Alto 7k (7050, 7080), 5k (5060/5050/5020 ), 4k (40 60/4050/4020 ) and 3k Checkpoint R76/R77 75+ 15000, 21400, 23000

AWS Cloud: EC2, S3, ELB, EBS, RDS, IAM, Cloud Formation, Cloud Watch, Cloud Front, Cloud Trail

F5 Load Balancers: F5 LTM & GTM, F5 BIG-IP LTM 8900, F5 BIG-IP 3900 and 6900

SD WAN Technology: Viptela SD-WAN Technology

PROFESSIONAL EXPERIENCE:

Confidential

Sr Network Security Engineer

Responsibilities:

• Worked on migration from Cisco firewalls to Palo Alto firewalls platforms PA 50, 7080), PA - 5000 series (5060/5050/5020 ), PA 60/4050/4020 ) and PA 500 and PA- 200 firewalls.
• Experienced in provided daily Palo Alto Network firewalls administration such as security NAT, Threat prevention, URL filtering, IPSEC and SSL VPN's, security rules, zone based integration, and analyzing syslogs, and utilizing wild fire feature in Panorama 6.7.
• Working with implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Worked on Assisted in the design, and deployment of Checkpoint R76/R77 75+ 15000, 21400, 23000.
• Experience in optimize existing policies to improve security and performance. Identify and remove security policies dat are not no longer needed to reduce Checkpoint firewall policy lookup.
• Worked on Configure IPSec, SSL - VPN (Mobile Access) on Checkpoint Gaia and troubleshoot VPN tunnel connectivity issues.
• Worked on Nexus family for (ToR) Top of Rack and tier3/tier4 architecture using Nexus 9k, N7k, N5K and N2K.
• Experienced for improve scalability and ease of deployments of the OpenStack underlay network by migrating from Standalone Nexus to Cisco ACI platform.
• Experience in Configuring, Managing and maintenance of the Cisco ACI Fabric.
• Worked on provide second/third level technical support for ACI (Application Centric Infrastructure), APIC technologies.
• Experienced in configuration of Juniper security appliances SRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M.
• Working experienced with design and deploy VIptela SD-WAN & Network migration from legacy WAN. also optimize and troubleshoot the SD-WAN networks for our users.
• Experienced in proactively monitor resources and applications using AWS Cloud Watch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, 53, SNS and configured notifications for the alarms generated based on events defined.
• Worked in monitored related task like creating alarms in CloudWatch for real time alerting.
• Experienced for enabled access logging for Cloud Trail S3 bucket so dat you can track access requests and identify potentially unauthorized or unwarranted access attempts.
• Experience in using and managing Linux-based operating systems and developing Python scripts.
• Worked on actively monitored and responded to activity impacting various enterprise endpoints facilitating network communication and data handling McAfee End Point Security, DLP, Splunk.
• Experienced in configuring Cisco and Meraki wireless access points and managing guest internet infrastructure.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Experienced on implemented ADC F5 LTM and GTM hardware platforms design and deployment implementation guidelines, DMZ Network infrastructure policies, LTM Inbound SNAT configurations and outbound NAT server to IP mapping processes
• Working experience with configured F5 Load balancers and monitored the Packet Flow in the Load balancers.

Confidential, Beaverton, OR

Senior Network Security Engineer

Responsibilities:

• Experienced in planned and implemented new infrastructure in Data Center Implementing Security Solutions using Palo Alto Pa-5000/3000, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Working with configure Security Profiles on Palo Alto / Checkpoint for URL filtering, Anti-Virus, Anti-Spyware, Vulnerability Protection, Threat Prevention, File Blocking.
• Worked in configuring rules and maintaining PaloAlto firewalls and analysis of firewall logs using various tools
• Experienced on identified and removed security policies those are no longer needed to reduce Checkpoint firewall policy lookup.
• Worked in Configure DirectFlow on Arista 7050SX3 to offload the traffic from the Palo Alto/Checkpoint firewalls and use Arista EOS DirectFlow extension for applying the security policies on the network based out of band monitoring, deep packet inspection and other platform analysis.
• Experienced in migrate the conventional remote sites with ISR routers with Viptela SD WAN and achieved elastic network connection through MPLS and internet.
• Worked on experienced in Cisco Routers 3600, 3800 and 7200 ASR 1002, 1006, Cisco Catalyst 2900, 3570, 4500 and 6500 Switches.
• Experienced in Created several AWS Data Migration jobs ordering AwS Snowball edge and moving data from data center of customer into AWS leveraging AWS S3 bucket in a secured manner, data encrypted in transit and at rest.
• Worked on Database related task like changing instance type of RDS, monitoring, and backing up of RDS, storage task such as disk addition, increase & decrease of existing disk using EBS volume and, S3 bucket to store object like data.
• Experienced in Enabled Cloud Trail across all geographic regions and AWS services to prevent activity monitoring gaps.
• Experienced in developed test scripts using Python and assorted proprietary software tools.
• Worked on Assisted in the Aruba Wireless Clear Pass 500, 5K, and 25K virtual appliance deployment, configuration, and implementation project, including; Aruba Mobility Controller, Policy Manager for (Active Directory) Clear Pass Clustering, LDAP, Radius, TACACS, 802.1X, MAC autantication, and Web autantication, Single Sign On (SSO), Network Access Control (NAC), Network Access Protection (NAP) posture and health checks, and Mobile Device Management (MDM) integration for enterprise environment.
• Worked on Utilized Netscout and Wireshark for implementing enterprise monitoring and configuring F5 Big-IQ, BIG-IP Application Security Manager, Advanced Firewall Manager and BIG-IP DNS, GTM/LTM, ASM, AFM, and HTTPS for the F5 BIG-IP 3900 and 6900 platforms.
• Experienced for supporting the Citrix NetScaler F5 platform, configuring, implementing, and troubleshooting Citrix NetScaler VIP configuration with health check, policy configurations Access Gateway, and content switching configuration solutions.
• Worked on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.

Confidential

Network Data center Engineer

Responsibilities:

• Experienced on implementing networking technologies to facilitate market data feeds; MPLS, BGP, OSPF, Multicast, Layer 2 protocols.
• Worked on Configuring & troubleshooting of LAN & WAN TCP/IP Networks for customer links.
• Experience on Cisco Nexus 7K, 5K, 2K, Cisco ASA firewalls, Catalyst switches (2960,3750,4500,6500), Cisco ASR & ISR routers (1900,2900,3945,4500,7200,7600).
• Experienced in managing customer wireless network through Cisco Prime and Cisco Wireless Controllers.
• Experience on working in Arista (7150S), Huawei (NE40E) and Juniper devices.
• Working in deployed specialized Multicast feeds to POP, MPLS and LL customers.
• Worked on Configuration of routing policies and ACL as per the customer requirements.
• Experience for Make Changes on VLAN database as per requirements.
• Experience with VTP mode configuration, trunking, port channel, ether channel configuration
• Worked on VRRP, HSRP configuration for redundancy, IPSLA configuration for redundancy.
• Experienced on VSS configuration and using stack solution in our network.
• Worked on Ensure End to End IP connectivity from various ISPs at project Location.
• Working experienced in even handles Regional Office Network Connectivity.
• Experienced in Preparation of reports like Link Utilization, RFOs etc.
• Coordinating with ISP to rectify problems like latency issues, routing, multicast or other issues.
• Experienced in Keep eye on various ISP links through monitoring tools like Watsupglod, multiping, SolarWinds.
• Worked on Daily, weekly as well as monthly log of all devices in network design has been review by us.

Confidential

IT Support Engineer

Responsibilities:

• Experienced in managing user issue with respective desktop & laptop.
• Worked on Resolving the user issue within the SLA time.
• Worked in Configuration of new PC as per the organization standard.
• Experienced on interacting with clients, understanding their needs & providing technical support to clients by remotely accessing their networks & troubleshooting the issues raised.
• Experienced on providing investigation, diagnosis, resolution and recovery for hardware/software problems through phone chat and Email.
• Working experienced in familiarity with windows 7 at the user level, including user and application installation.
• Experienced in worked on troubleshooting Network related & outlook issues.
• Experienced in coordinated with Client IT & Network Team whenever required for troubleshooting of critical issues like Citrix, VPN.
• Worked on Dealt with Domain joining issues of computers from work group to Domain.
• Experienced in satisfactorily complete a minimum number of tickets/period based upon SLA.
• Worked on Troubleshooting Wi-Fi, Hardware & NAP (Network Access Protection) Issues.
• Experienced on Installing & administering network printer and handling technical problems in networks.
• Experienced in Reconfiguring domain accounts if the login profile is corrupted in Desktop/Laptop
• Working experience in Configuring Enterprise Mailbox for Android and iPhone Users.