We provide IT Staff Augmentation Services!

Sr. Network Security Engineer Resume

0/5 (Submit Your Rating)



  • CISCO Certified with 8+ Years of experience in networking and security, hands on experience in Design, implementation, and support.
  • Routing, switching, firewall technologies, and troubleshooting of complex network systems.
  • Designing, implementing and troubleshooting Cisco 3750, 3550, 3560, 2924, 6509 - V-E, 6513, 6504, 6503, 6506, 6500 series switches and ARISTA (7100, 7500) Series switches.
  • Designing, implementing and troubleshooting Cisco routers (800, 2800, 2600, 3800, 7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Cisco PIX & ASA devices.
  • Experience in Cisco security: Telnet, SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cisco (ASA, PIX) 5510, Cryptography, VPN, IPsec.
  • Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
  • Experience in installing and configuring DNS, DHCP server.
  • Troubleshooting & implementation of V lan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
  • Knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics,IEEE 802.11 a/b/g, RF spectrum characteristics.
  • Working knowledge of frame relay, MPLS services, NATing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols.
  • Upgraded windows, VMware and Citrix systems
  • Network security skills include Telnet, SDM, NAT/PAT, ACLs, AAA, and ASA firewall.
  • Knowledge in implementing and configuring F5 Big-IP LTM-6400 load balancers.
  • Worked on T1/E1/T3 technologies and different LAN & WAN technologies
  • Performed professional level documentation using Visio diagrams.
  • Displayed credentials in performing Installation, Upgrade, Configuration, and support of Hardware, Software, Peripherals and Network Devices in Windows environment.



CISCO Routers: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series) Huawei AR Series Routers

Antivirus & Endpoint protection: Cisco CSA, Symantec Enterprise Edition, MacAfee Enterprise Edition.

Security & VPN: PIX 500 Firewall, ASA 5505 Firewall, AIP SSM, CSC, SSM, FWSM, FortiGate, Cisco CSM, ACL-Access Control List, IPS/IDS, NAT, PAT, Cisco ACS, and Juniper Netscreen firewall, Windows Patch Management (WSUS).

LAN Technology: Workgroup, Domain, RSTP, VLAN, STP, VTP, Ethernet, Fast Ethernet, Gigabit Ethernet&10 Gigabit Ethernet,802.1q

WAN Infrastructure: Leased Line, ISDN/Dial-Up, and Frame Relay circuits, Metro Ethernet.

WAN Technologies: HDLC, PPP, ATM, SONET, MPLS, VPN, IPsec-VPN.

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

Operating Systems & Tools: Cisco IOS, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Windows XP/Windows 7/8, LINUX, Solaris, Active Directory, Apache Server

Network Security: ACL, IPSec, VPN, Port-security, AAA, Zone-Based Firewalls, IOS based router security firewalls, IDS/IPS, Palo Alto firewalls.

Network Technologies: MANET, SONET, TDMA, FDMA, CDMA. DSL, POP3,IASS, Manage EMC Networker.


Confidential, Texas

Sr. Network Security Engineer


  • Responsibilities for the installation, configuration, maintenance and troubleshooting of the company network.
  • Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
  • Analyze syslog generated by IDS, IPS, Firewalls, Routers, and Switch devices.
  • Manage third party connections using Cisco ASA Firewalls
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, BGP and OSPF.
  • Configuration, Testing, Planning, Design of Cisco routers, Cisco Catalyst 2900,3570 and 6500 switches and Cisco AirNet and wireless appliances
  • Adept in installing, configuring and troubleshootingCitrixSecure Gateway, Clustering,CitrixResource Manager,CitrixPassword Manager, Edge-Sight tools and good knowledge about Net Scalar tools.
  • Implementation and Configuration of F5 BIG-IP LTM-6400 Load Balancers.
  • Migration for Frame-Relay/ATM network to MPLS based VPN for customer’s WAN infrastructure.
  • Troubleshooting latency and throughput issues onMPLS and dedicated internet access circuits.
  • Configured Cisco 7204 routers which were also connected to Cisco ASA security appliances providing perimeter based firewall security.
  • Installation ofCitrixPresentation server 4.0, XenApp 6.5, XenDesktop 4/5/7.6 &CitrixClient Tools. Administration ofCitrixXenApp Farms andCitrixXenServer.
  • Upgrade Cisco Routers, Switches and Firewall (ASA) IOS using TFTP.
  • Resource management through deployment of network based monitoring applications to keep bandwidth & activity alongside each other.
  • Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
  • Convert Checkpoint VPN rules over to the Cisco ASA solution, Migration with both Checkpoint and Cisco ASA VPN.
  • Configured Firewall logging, DMZs and related security policies and monitoring.
  • Installed and Configured a Cisco secure ACS server for AAA authentication (RADIUS).
  • Manage a very large DNS environment and manual management of DNS for DMZ/External Servers.
  • Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Cisco ASA other security products.
  • Process creation of VPN requests for remote users. Also VPN Tunneling
  • Performed switching technology administration including VLAN, Inter-VLAN routing, Trucking, Port aggregation and Link negotiation.

Confidential, PA

Sr Network Engineer


  • Designed perimeter security policy Implemented Firewall ACL’s; allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
  • Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+
  • Proficient using the F5 based profiles, monitors, VIP’s, pools, pool members, iRules for virtual IP’s
  • Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers.
  • Configured Cisco 7204 routers which were also connected to Cisco ASA Firewall (5505) security appliances providing perimeter based firewall security.
  • Maintained, configured, and sustained the Cisco VoIP network
  • Level II to Level 3 support asCitrixEngineer onCitrixand VDI administration.
  • Provided Tier III troubleshooting support, in ACD, Call Recording, CTI, and SIP Trunk. Complete familiarity with Avaya CM platform products.
  • Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
  • Installation ofCitrixPresentation server 4.0, XenApp 6.5, XenDesktop 4/5/7.6 &CitrixClient Tools. Administration ofCitrixXenApp Farms andCitrixXenServer.
  • Involved in the migration of F5 3DNS to Global traffic manager (GTM) for the wide area based load balancing environment of the datacenters
  • Complete Devices installations, maintenance and perform regular upgrades and patch work onF5loadbalancerdevices.
  • Worked on implementation of the basicF5ASM andF5FirepassF5APM.
  • Involved in updating the F5 wide ip configurations, persistence profiles, updating the SSL certificates across the F5 devices for the resources updates.
  • Was responsible for designing and implementation of customer’s network infrastructure.
  • Assist customers with problems involving DOS, Windows 10/7/ME/2000/XP/Vista or Mac OS X
  • Promoted implementation of ITIL based non-functional Service Design requirements within RUP development
  • Created, deployed and managed BigIP F5 load balancer nodes and pools
  • Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across

Confidential, Owatonna, MN

Network Engineer


  • Experience working with ASR 9000 series switches with IOS-XR
  • Configuring various advanced features (Profiles, monitors, IRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
  • Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
  • Trouble shooting application issues with the firewall logs based on the requests onF5loadbalancers, firewalls, Log analysis, Network Packet trace etc
  • Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher(RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP
  • MaintainedCitrixFarm/Site which includes 70+ servers, 1000+ users and over 100 applications.
  • Deployed, Installed and configuredCitrix/VMware products.
  • Experience working with migration from 6500 series devices to 4500 Series switches in Campus deployments at Core, Distribution and Access Layers.
  • Experience with LAN protocols like STP, RSTP, MST, VTP, VLAN and Port Channel Protocols like LACP, PAGP
  • Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 with ACL, NAT, Object Groups, Failover, Multi-Contexts
  • SetupCitrixWeb Interface 5.4 and Store front 3.x; create sites to access published applications and virtual desktops
  • Worked onJuniperMX480, MX960.
  • Implementation, configuration and support of Checkpoint and ASA firewalls for multiple clients
  • Experience with migrating from Cisco ASA 8.2 version to Cisco ASA 8.4 Version
  • Responsible for Cisco ASA firewall administration across our global networks
  • Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decom of existing Data Center, which involved working with Partner Companies.
  • Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
  • Rebuilding data centers and redundant sites for failover, F5 load balancers
  • Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
  • Acting as a tier 3 technical support engineer for all Juniper Screen OS andJun OS-based SRX.
  • Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN
  • Experienced withJuniper: EX-2200, EX-4200, EX-4500,MX-480 and M Series, SRX210 and SRX240.
  • Implement and configured VRRP/GLBP (on distro/core switching), HSRP on different location of office on the switched network and managing the entire multilayer switched network
  • Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP
  • Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
  • Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA Firewalls
  • Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, Tuning (Configuration), make standardization for the topologyConfigured, installed, &managed DHCP, DNS, & WINS servers


Network Engineer


  • Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
  • Create and testCisco router and switching operations using OSPF routing protocol.
  • Configuration and troubleshooting link state protocols like OSPF in multiple areas.
  • Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
  • Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
  • Implemented MPLS VPN networks to test various problem reproductions in lab
  • Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
  • Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
  • Configuration and troubleshooting of Cisco 6500, 7500, 7200 Series routers.
  • Extensively worked on Nexus 5k and 7k, configured and troubles hooted
  • Managing and supporting large scale MPLS & Frame relay on Cisco environment for more than 5000 Retail sites, 100 Distribution centers, 100 offices and 3 datacenters.
  • Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor. business lines in a data center environment
  • Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
  • Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
  • Provided proactive threat defense with ASA that stops attacks before they spread through the network.
  • Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
  • Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
  • Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
  • Configured the Cisco router as IP Firewall and for NATting.
  • Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network
  • Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineer’s instructions and troubleshooting any related issues.
  • Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc.
  • Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
  • Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

Environment: Cisco 6505/4500/3550 Switches, Cisco 6500/7500/7200 Routers, Nexus, 5K,7K, LTM, GTM, F5 Load Balancer, ASA, OSPF, BGP, EIGRP, RIP, LAN, WAN, SSL/VPN


Network L1 Engineer


  • Worked in Network building and Network infrastructure management team.
  • Worked with up gradation, replacement of NICs, display cards, RAM, peripheral devices.
  • Handled installation, configuration and troubleshooting of operating systems NT/2000, XP, and Solaris.
  • Experience with Remedy ticketing system in resolving tickets related to routing and Switching
  • Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
  • Remotely testing links up to 1.5 Mbps using tools like REACTS.
  • Recovered lost passwords and created standard access-lists and extended access list for new users.
  • Monitoring network performance to improve the backup strategy using Netrep, Solar winds.

Environment: Cisco 2500, 2600, 3601 and 4000 series routers

We'd love your feedback!