SUMMARY

• CISCO Certified with 8+ Years of experience in networking and security, hands on experience in Design, implementation, and support.
• Routing, switching, firewall technologies, and troubleshooting of complex network systems.
• Designing, implementing and troubleshooting Cisco 3750, 3550, 3560, 2924, 6509 - V-E, 6513, 6504, 6503, 6506, 6500 series switches and ARISTA (7100, 7500) Series switches.
• Designing, implementing and troubleshooting Cisco routers (800, 2800, 2600, 3800, 7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Cisco PIX & ASA devices.
• Experience in Cisco security: Telnet, SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cisco (ASA, PIX) 5510, Cryptography, VPN, IPsec.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server.
• Troubleshooting & implementation of V lan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics,IEEE 802.11 a/b/g, RF spectrum characteristics.
• Working knowledge of frame relay, MPLS services, NATing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols.
• Upgraded windows, VMware and Citrix systems
• Network security skills include Telnet, SDM, NAT/PAT, ACLs, AAA, and ASA firewall.
• Knowledge in implementing and configuring F5 Big-IP LTM-6400 load balancers.
• Worked on T1/E1/T3 technologies and different LAN & WAN technologies
• Performed professional level documentation using Visio diagrams.
• Displayed credentials in performing Installation, Upgrade, Configuration, and support of Hardware, Software, Peripherals and Network Devices in Windows environment.

TECHNICAL SKILLS

Routing Protocols: RIP, RIPV2, IGRP, EIGRP, OSPF, BGP, TCP/IP, STP,RSTP,VLANs,VTP,PAGP,LACP,MPLS HSRP,VRRP,GLBP,TACASS+, Radius, AAA

CISCO Routers: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series) Huawei AR Series Routers

Antivirus & Endpoint protection: Cisco CSA, Symantec Enterprise Edition, MacAfee Enterprise Edition.

Security & VPN: PIX 500 Firewall, ASA 5505 Firewall, AIP SSM, CSC, SSM, FWSM, FortiGate, Cisco CSM, ACL-Access Control List, IPS/IDS, NAT, PAT, Cisco ACS, and Juniper Netscreen firewall, Windows Patch Management (WSUS).

LAN Technology: Workgroup, Domain, RSTP, VLAN, STP, VTP, Ethernet, Fast Ethernet, Gigabit Ethernet&10 Gigabit Ethernet,802.1q

WAN Infrastructure: Leased Line, ISDN/Dial-Up, and Frame Relay circuits, Metro Ethernet.

WAN Technologies: HDLC, PPP, ATM, SONET, MPLS, VPN, IPsec-VPN.

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

Operating Systems & Tools: Cisco IOS, Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 Server, Windows XP/Windows 7/8, LINUX, Solaris, Active Directory, Apache Server

Network Security: ACL, IPSec, VPN, Port-security, AAA, Zone-Based Firewalls, IOS based router security firewalls, IDS/IPS, Palo Alto firewalls.

Network Technologies: MANET, SONET, TDMA, FDMA, CDMA. DSL, POP3,IASS, Manage EMC Networker.

PROFESSIONAL EXPERIENCE

Confidential, Texas

Sr. Network Security Engineer

Responsibilities:

• Responsibilities for the installation, configuration, maintenance and troubleshooting of the company network.
• Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
• Analyze syslog generated by IDS, IPS, Firewalls, Routers, and Switch devices.
• Manage third party connections using Cisco ASA Firewalls
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, BGP and OSPF.
• Configuration, Testing, Planning, Design of Cisco routers, Cisco Catalyst 2900,3570 and 6500 switches and Cisco AirNet and wireless appliances
• Adept in installing, configuring and troubleshootingCitrixSecure Gateway, Clustering,CitrixResource Manager,CitrixPassword Manager, Edge-Sight tools and good knowledge about Net Scalar tools.
• Implementation and Configuration of F5 BIG-IP LTM-6400 Load Balancers.
• Migration for Frame-Relay/ATM network to MPLS based VPN for customer’s WAN infrastructure.
• Troubleshooting latency and throughput issues onMPLS and dedicated internet access circuits.
• Configured Cisco 7204 routers which were also connected to Cisco ASA security appliances providing perimeter based firewall security.
• Installation ofCitrixPresentation server 4.0, XenApp 6.5, XenDesktop 4/5/7.6 &CitrixClient Tools. Administration ofCitrixXenApp Farms andCitrixXenServer.
• Upgrade Cisco Routers, Switches and Firewall (ASA) IOS using TFTP.
• Resource management through deployment of network based monitoring applications to keep bandwidth & activity alongside each other.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Convert Checkpoint VPN rules over to the Cisco ASA solution, Migration with both Checkpoint and Cisco ASA VPN.
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Installed and Configured a Cisco secure ACS server for AAA authentication (RADIUS).
• Manage a very large DNS environment and manual management of DNS for DMZ/External Servers.
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Cisco ASA other security products.
• Process creation of VPN requests for remote users. Also VPN Tunneling
• Performed switching technology administration including VLAN, Inter-VLAN routing, Trucking, Port aggregation and Link negotiation.

Confidential, PA

Sr Network Engineer

Responsibilities:

• Designed perimeter security policy Implemented Firewall ACL’s; allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+
• Proficient using the F5 based profiles, monitors, VIP’s, pools, pool members, iRules for virtual IP’s
• Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers.
• Configured Cisco 7204 routers which were also connected to Cisco ASA Firewall (5505) security appliances providing perimeter based firewall security.
• Maintained, configured, and sustained the Cisco VoIP network
• Level II to Level 3 support asCitrixEngineer onCitrixand VDI administration.
• Provided Tier III troubleshooting support, in ACD, Call Recording, CTI, and SIP Trunk. Complete familiarity with Avaya CM platform products.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Installation ofCitrixPresentation server 4.0, XenApp 6.5, XenDesktop 4/5/7.6 &CitrixClient Tools. Administration ofCitrixXenApp Farms andCitrixXenServer.
• Involved in the migration of F5 3DNS to Global traffic manager (GTM) for the wide area based load balancing environment of the datacenters
• Complete Devices installations, maintenance and perform regular upgrades and patch work onF5loadbalancerdevices.
• Worked on implementation of the basicF5ASM andF5FirepassF5APM.
• Involved in updating the F5 wide ip configurations, persistence profiles, updating the SSL certificates across the F5 devices for the resources updates.
• Was responsible for designing and implementation of customer’s network infrastructure.
• Assist customers with problems involving DOS, Windows 10/7/ME/2000/XP/Vista or Mac OS X
• Promoted implementation of ITIL based non-functional Service Design requirements within RUP development
• Created, deployed and managed BigIP F5 load balancer nodes and pools
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across

Confidential, Owatonna, MN

Network Engineer

Responsibilities:

• Experience working with ASR 9000 series switches with IOS-XR
• Configuring various advanced features (Profiles, monitors, IRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Trouble shooting application issues with the firewall logs based on the requests onF5loadbalancers, firewalls, Log analysis, Network Packet trace etc
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher(RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP
• MaintainedCitrixFarm/Site which includes 70+ servers, 1000+ users and over 100 applications.
• Deployed, Installed and configuredCitrix/VMware products.
• Experience working with migration from 6500 series devices to 4500 Series switches in Campus deployments at Core, Distribution and Access Layers.
• Experience with LAN protocols like STP, RSTP, MST, VTP, VLAN and Port Channel Protocols like LACP, PAGP
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 with ACL, NAT, Object Groups, Failover, Multi-Contexts
• SetupCitrixWeb Interface 5.4 and Store front 3.x; create sites to access published applications and virtual desktops
• Worked onJuniperMX480, MX960.
• Implementation, configuration and support of Checkpoint and ASA firewalls for multiple clients
• Experience with migrating from Cisco ASA 8.2 version to Cisco ASA 8.4 Version
• Responsible for Cisco ASA firewall administration across our global networks
• Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decom of existing Data Center, which involved working with Partner Companies.
• Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
• Acting as a tier 3 technical support engineer for all Juniper Screen OS andJun OS-based SRX.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN
• Experienced withJuniper: EX-2200, EX-4200, EX-4500,MX-480 and M Series, SRX210 and SRX240.
• Implement and configured VRRP/GLBP (on distro/core switching), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA Firewalls
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, Tuning (Configuration), make standardization for the topologyConfigured, installed, &managed DHCP, DNS, & WINS servers

Confidential

Network Engineer

Responsibilities:

• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Implemented MPLS VPN networks to test various problem reproductions in lab
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 6500, 7500, 7200 Series routers.
• Extensively worked on Nexus 5k and 7k, configured and troubles hooted
• Managing and supporting large scale MPLS & Frame relay on Cisco environment for more than 5000 Retail sites, 100 Distribution centers, 100 offices and 3 datacenters.
• Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor. business lines in a data center environment
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall and for NATting.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network
• Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineer’s instructions and troubleshooting any related issues.
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

Environment: Cisco 6505/4500/3550 Switches, Cisco 6500/7500/7200 Routers, Nexus, 5K,7K, LTM, GTM, F5 Load Balancer, ASA, OSPF, BGP, EIGRP, RIP, LAN, WAN, SSL/VPN

Confidential

Network L1 Engineer

Responsibilities:

• Worked in Network building and Network infrastructure management team.
• Worked with up gradation, replacement of NICs, display cards, RAM, peripheral devices.
• Handled installation, configuration and troubleshooting of operating systems NT/2000, XP, and Solaris.
• Experience with Remedy ticketing system in resolving tickets related to routing and Switching
• Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
• Remotely testing links up to 1.5 Mbps using tools like REACTS.
• Recovered lost passwords and created standard access-lists and extended access list for new users.
• Monitoring network performance to improve the backup strategy using Netrep, Solar winds.

Environment: Cisco 2500, 2600, 3601 and 4000 series routers