SUMMARY

• 6+ years of experience in testing, troubleshooting, implementing, optimizing and maintaining enterprise data network and service provider systems
• Configured routers and switches including but not limited to IP Subnetting, VTP, VLAN, DHCP, DNS, NAT, BGP, EIGRP, OSPF, static routing, QoS, ACL, VPN, IPSec Tunneling, STP and VRRP to support UcaaS services provided by the company
• Configured and maintained IPSEC and SSL VPN's on Palo Alto, Cisco ASA Firewalls. Also responsible for administering and troubleshooting the Checkpoint, Palo Alto and ASA firewall
• Configured IPSec VPN (Site - Site to Remote Access) on Cisco ASA (5200) series firewalls. Working with the rule base and its configuration in Cisco ASA, Palo Alto, Juniper (RMA) and Checkpoint firewalls
• Implementation, Configuration and Support of Checkpoint (NGX R65, R70, R71, R75 and R77), Juniper Firewalls (SRX5400, SRX5600and SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo AltoNetworks Firewall models (PA-2k, PA-3kand PA-5 k)
• Installing new equipment to RADIUS and worked with MPLS-VPN with configurations Analyzed and resolved issues relating to MPLS networks
• Deploying of Cisco ISE on Nexus 5000/7000 routers, Cisco Nexus 9000 family of switches whose hardware is based onCisco ACIand Cisco ASA and Firepower firewalls
• Worked with F5 Load balancing, IDS/IPS, Bluecoat proxy servers and Administrating
• Involved in F5 LTM, GTM and ASM planning, designing and implementation.
• Development of network design standards for conversion of a Cisco Metro E platform to Ciena Z series SDN network to achieve OpEx cost reductions and network standardization
• Worked on F5 Local Traffic managers (LTM), Global traffic manager (GTM) of series 8900, 6400, 6800, 3400, 5100, 3600 and 3DNS migration to GTM
• Proficient using the F5 based profiles, monitors, VIP’s, pools, pool members, iRules for virtual IP’s
• Outstanding experience in designing and configuring of Layer 2 / 3 networking features such as VLAN, ISL, STP, VTP, 802.1X, Port Security, L2PT and SPAN
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS
• Proficient in Configuring Virtual Local Area Networks(VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q, VLAN Routing on Nexus 9k, 7k, 5k, and Catalyst 6500 switches
• Hands-on experience in providing network support, installation and analysis for a broad range of LAN/WAN/MAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM and Frame Relay communication systems
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP. Configured network Layer 3 routing protocols (OSPF, RIP, IGRP, EIGRP, BGP, ISIS)
• Expertise in installing, configuring, maintaining and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800) and Cisco Switches (2900, 3500, 3700 series, 6500 series)
• Working experience on tools and devices like Gigamon, Sourcefire, Fire eye, Aruba, Cisco ASA, Cisco ISE
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools

TECHNICAL SKILLS

Networking: OSI, TCP/IP, Cisco IOS, IOS-XR, LAN/WAN interconnection, Frame-Relay, ISDN, RIP, OSPF, EIGRP, IS-IS, BGP, Air Magnet, JNCIA, RMA, MPLS, STP, SDN, RSTP, MST, VTP, CAN, NAT, ACLs, VPN, IP-Sec

Network Monitor Tool: Wire Shark, SolarWinds

LAN and WAN protocols: Ethernet, TCP/IP, CDP, STP, RSTP, VTP, Fast Ethernet, Frame Relay, PPP, HDLC.

Hardware Routers: Cisco (1800/2600/3600/3800/7200/7600 series), CISCO ISR and CISCO ASR.

Routing Protocols: OSPF, EIGRP, BGP, IGRP, ISIS, HSRP, VRRP, RIP

Switches: Cisco (2900/3500/3700/5500/6500 Series, Nexus 2k,5k,7k,9k)

Switching Technologies: VLANs, Inter VLAN routing and Port Channels, VTP, SpanningTree

Protocols: PVST+, RSTP+ and Multi-Layer Switching.

Load Balancer: Citrix, F5 Load Balancer.

Security/Firewalls: Cisco ASA (5510,5540), Checkpoint R65, R70, R75, R77 Gaia, Juniper SSG, SRX, VPN, Palo Alto.

Application Layer: FTP, HTTP, DNS, DHCP, SMTP, SNMP.

Application Protocols: SNMP, Telnet, SSH, DHCP, DNS, ARP, HTTP, FTP, TFTP

Redundancy Protocols: HSRP, GLBP, VRRP.

Tunneling Protocols: L2TP, IPSec, PPP, MPLS, IEEE 802.1Q

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Other Tools: Tufin Secure Track, Forescout CounterACT, F5 Big IP (LTM/GTM/ASM), DNS, Bluecoat Proxy, Solar Wind, Wireshark, BMC Remedy, Citrix NetScaler, Cisco Prime, VM Ware

Operating Systems: Cisco IOS commands, Windows (2000, XP, Vista, Windows 7, 8, 10), Linux,Solaris, Red Hat

Documentation: MS Office, VISIO

PROFESSIONAL EXPERIENCE

Confidential, Erie, PA

Network Security Engineer

Responsibilities:

• Installing and Configuring Cisco switches 2960, 3560, 4500, 6500, 4900, 2900, 3750, Nexus 5000 & 7000, WS-C4948, Juniper EX, QFX and Alcatel 7705 SAR series
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Hands-on expertise with routers 2600, 2900, 3600, 3900, 7200, 7600, ASR-901, ASR-903, ASR 5500, ASR-9010 and Juniper ACX, E, M, MX960 series
• Working Knowledge on Devices like Juniper SRX240, Alcatel5620 SAM, 9500 MPR and Omni switch 6400
• Configuring Virtual Chassis for Juniper switches EX 4200, Firewalls SRX-210
• Extensive knowledge in implementing and configuring F5 Big-IP LTM-3900, and 6900 Load balancers
• Working knowledge of Firewall, LDAP, AAA, TACACS/RADIUS, and IPSEC
• Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010 and 5010
• Performed installation, configuring, and maintenance of Arista series routers and switches along with other Cisco devices
• Deploy and Monitor Scalable Infrastructure on AWS using Configuration Management Ansible
• Actively involved in Switching Technology Administration including creating and managing VLANS, Port security- 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst 4507R+E, 6509-E and Nexus 2232, 5596, 7009 switches
• Experience working with Cisco IOS, IOS-XR, NX-OS, JunOS for configuration and troubleshooting of routing protocols: MP-BGP, BGP v4, MPLS
• Troubleshooting connectivity issues involving VLAN's, OSPF, and QoS
• Upgrade PAN-OS from 6.1 to 7.0 in Palo Alto firewalls
• Panorma firewall management tool to administrator Palo Alto 5050 and 5250 device groups
• Worked on configuration of VLAN, VRF, VX-LAN, VTEP, VPC on Nexus devices
• Configured OSPF and Static routing on Juniper M and MX series Routers in Data Center Environment
• Strong experience in 802.11, ECDN, WEP, WAP, ATM, Frame Relay, IPv6, IPsec
• Responsible for the design, configuration and implementation of Cisco Wireless LAN Networking
• Proficient in Palo Alto Next-Generation Bluecoat web proxy, HP ArcSight, Splunk Enterprise, Wireshark, FireEye, and various internet tools to assist in analysis
• Configured NAT and SNAT in F5 12.0 LTM. Managed virtual servers in F5 12.0 LTM
• Managed successful delivery of massive securityresponse portfolio including Splunk, Cisco WSA, Cisco IPS, Sourcefire Fire Power and AMP
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs
• Deployed Riverbed WAN optimizers and F5 load balancer
• Worked on Cisco ACE load balancers. Experience with F5 load balancers- LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Experience multiple storage systems
• Troubleshooting Layer 2 issues, Spanning Tree protocol, RSTP, MST, VTP, VLAN on Cisco - 6500 series switches and Juniper EX-4200 switches
• Configuration and maintenance of routers, firewalls, and load- balancers. Included configuration of Juniper ISG 2000, Juniper EX4200, F5 BIG-IP 3600, and Cisco 6500. Includes protocols such as MPLS, BGP, OSPF, and VRRP
• Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards
• Experience working with OTV & FCOE on the Cisco Nexus 7010/5548 between the datacenters
• Monitoring networktraffic using tools like ZENOSS, CISCO NCM, NETSCOUT and QRADAR
• Working on various incident tickets using HPSM and Citrix XenApp (CLARIFY ticketing system) Experience with GUI interfaces and CLI interface
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Responsible for the analysis/troubleshooting of large-scale VoIP networks
• Installation, configuration and troubleshooting of Cisco ASR1K, ASR9K series routers and Catalyst 6500, 3500 series switches
• Worked on server-side applications using python programming
• Installing, configuring and maintaining redundant Linux based networkmonitoring solutions

Confidential, Stratford, CT

Network Engineer

Responsibilities:

• Configuration and daily management of network/securitydevices including Palo Alto Firewalls, F5 BIG-IPs, Check Point firewalls, Cisco ASA Firewalls, Cisco switches and routers
• Maintaining and trouble-shooting network operations and connectivity issues, performance or functionality
• Cisco Routers, Switches and Firewall security Features
• Cisco IOS firewall, Pix firewall and ASA firewall configuration and Troubleshooting
• Cisco VPN technologies (IPsec S2S, Remote Access SSL VPN and DMVPN)
• Cisco NEXUS OS Switches Technology (N2K, N5k N7K and N9K)
• TCP/IP services, IP Addressing and Subnetting
• Cisco Redundancy Protocol (HSRP, VRRP, GLBP, VSS and IP SLA)
• Cisco ASA Firewall Redundancy and ASA Context Firewall
• Manage project task to migrate from Cisco ASA firewalls to Check Point firewalls.
• Deploying of Cisco ISE on Nexus 5000/7000 routers, Cisco switches, and Cisco ASA and Firepower firewalls
• Worked on Cisco Nexus 9000 family of switches whose hardware is based onCisco ACI
• Configured and maintained IPSEC and SSL VPN's on Palo Alto, Cisco ASA Firewalls. Also responsible for administering and troubleshooting the Checkpoint, Palo Alto and ASA firewall
• Configured IPSec VPN (Site-Site to Remote Access) on Cisco ASA (5200) series firewalls. Working with the rule base and its configuration in Cisco ASA, Palo Alto, Juniper (RMA) and Checkpoint firewalls
• Worked with F5 Load balancing, IDS/IPS, Bluecoat proxy servers and Administrating
• Involved in F5 LTM GTM and ASM planning, designing and implementation.
• Developed a networking system that has information encryption, decryption, compression, sending and decompression features via TCP and UDP protocol using Python
• Stateful firewall, VLAN to VLAN routing, Link bonding / failover, 3G / 4G failover, Traffic shaping / prioritization, WAN optimization, Site-to-site VPN, Client VPN, MPLS to VPN Failover, Active Directory and LDAP integration
• Involved in F5 LTM GTM and ASM planning, designing and implementation. Actively involved in F5 ASM policy configuration and deployment.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls
• Configured High availability, User ID on Palo Alto firewall
• Configured and utilized many different protocols such as OSPF, ISIS, BGP/MP-BGP, OER, MPLS, LDP, Multicast, IPv4/IPv6 protocols
• Utilized knowledge of Spanning Tree Protocol, BGP, MPLS, OSI model layers 1-2 to create network layouts
• Creating Virtual IP address, Pools and Persistence profiles on F5 LTMs
• Create complex I Rules using TCL language for URL redirections, HTTP header-insertion and HTTP header modification
• Creating Wide IPs with various load balancing methods like, Global Availability, Topology and Round Robin
• Deployed LTMs and GTMs in DMZ environments with FIPS solutions
• Good knowledge on cloud-based services like AWS

Confidential, Union, NJ

Network Engineer

Responsibilities:

• Configured OSPF over frame relay networksfor NBMA and point to multipoint strategies
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) networkusing Frame Relay and Open Shortest Path First (OSPF)
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) networkby tunings AS-path
• Hand on experience the configuration and implementation of various Cisco Routers and L2 Switches
• Responsible for configuration, monitoring on security of networkinfrastructure including (LAN/(WAN), firewalls, DHCP and DNS
• Installing the Networkdevices in datacenter environment and clearly articulate complex networkdesigns and drawings through documentation (Visio) as well as verbal training sessions
• Experience in Configuring Site-to-Site and Remote Site VPNs, NAT/PAT policies
• Managing Cisco Secure ACS for TACACS+, RADIUS authentications
• Experience on designing and troubleshooting of EIGRP, OSPF routing issues
• Configured and resolved various OSPF issues in an OSPF multi area environment
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing
• Configured & maintained LAN, WAN, VPN, WLAN, and Firewalls on Cisco Routers for end users
• Configuring MPLS, VPN (IPSEC, GRE) in VPN concentrators and QOS in integrated networks(Data, Voice, and Video)
• Installed and configured of Juniper J-Series (J2350) and M-Series (M10) routers
• Installed and configured the ACE and CSM for firewall/Server Load balancing for Cisco Catalyst switches
• Configuring IPS, IDS, VLAN, STP, Port security, SPAN, Ether channel in Cisco Composite Networks
• Configured routers and modems, troubleshot issues related to broadband technologies for Residential and Business Customers
• Apache Web Server & MRTG, BIND DNS Server configuration and optimization over UNIX and Active directory implementation of Windows 2003 Server
• Configured & Maintained Cisco 2600, 2800, 3200 series routers including IOS upgrades.

Confidential

Network Engineer

Responsibilities:

• Designed, implemented and provided operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q.
• Determined cost effective network modifications, applied network and traffic engineering principles and used database analysis systems to develop network architecture plans. Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer
• Tested routers and Line Cards using Smart Bits and done Performance Analysis of both LAN/WAN infrastructure
• Interacted with business users from a service delivery and service support perspective
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing
• Implemented BGP capabilities like ORF, Route refresh and Extended communities, for various customers
• Configured, managed and worked on troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area)
• Troubleshoot MPLS issues with in the core and edge
• Planned, tested and evaluated various equipment, systems, IOS's and procedures for use within the network / security infrastructure

Confidential

Network Engineer

Responsibilities:

• Configuration of CISCO Routers (2600, 2800 Series) and 3550, 4500 series switches
• Experienced in configurations of cisco routers 2500, 3000, 4000 using RIP, OSPF, EIGRP and Cisco switches 2960, 3560
• Hands on Experience on Installation and configuration of workstations for IP based LAN’s
• Manage office network with Cisco devices with network devices including 2500, 3600 series routers and 3500, 2900, 1900 series switches
• Configured and managed networks using L3 protocols like RIPv2, EIGRP
• Configured VLANs, Private VLANs, VTP and Trunking on switches
• Configured L2 and L3 security features on devices
• Worked on various Sniffing tools like Ethereal and Packet Sniffer
• Backups of Cisco router configuration files to a TFTP server
• Gained knowledge in IP Subnetting (VLSM, FLSM) for Class A, B, and C networks
• Good knowledge on troubleshooting the routing protocols
• Documented the design, implementation and troubleshooting procedures