SUMMARY

• Over 5+ years of experience in Network Security Products and Firewalls (Checkpoint, ASA)
• Experience in Checkpoint IP Appliances R65, R70, R75, R77 & Cisco ASA Firewalls
• Extensive experience in Checkpoint Firewalls split through multiple CMA's and administer using provider - 1
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services
• Experience on routing protocol BGP, RIP, EIGRP, OSPF
• Modification of Check Point R65, R70 & R77, Palo Alto and Cisco ASA.
• Experienced in handling and installing Palo Alto Firewalls.
• Installation and Configuration of Juniper Firewall
• Managing Security Policy in Juniper Firewall
• Experience in Configuring F5 Load Balancer
• Worked on Level 4 and Level 7 of F5 load balancer
• Migration of Juniper to Palo Alto
• Knowledge of Site-To-Site VPN for firewalls like Cisco ASA and Checkpoint
• Managing Intrusion Prevention System in Checkpoint
• Implement, manage and upgrade of Checkpoint R70 to R77
• Knowledge of Installation and Configuring F5 ASM
• Expert in interoperability issues with products like Cisco ASA and Checkpoint
• Proficiency in managing infrastructure services, site-to-site VPN, SSL, mobile access/remote access and packet switching using Checkpoint products

TECHNICAL SKILLS

Protocols: BGP, OSI, TCP/IP,DHCP, UDP, RIP, IGRP, EIGRP, OSPF, FTP, SMTP

Firewalls: Checkpoint R55 / R61 / R65 / R75 / R77, Cisco ASA, Palo Alto Cisco PIX 500 series, Juniper, F5 Load Balancing

Routers: Cisco 2811 / 3800 / 7200

Switches: Cisco Multi-layer Switch 6500, Catalyst 4500, Catalyst3750, Catalyst2900 and Catalyst 3500XL

Networking: LAN, WAN, Frame Relay, ATM, SSL VPN Switches, Routers

Operating Systems: Windows XP / 7, Linux

PROFESSIONAL EXPERIENCE

Confidential, Jersey City, NJ

Firewall Engineer

Responsibilities:

• Worked on level 4 of F5 Load Balancer
• Configured F5 on IP and TCP
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Managing Checkpoint Firewalls R65/70/75/77
• Managing more than 300 Firewalls deployed across the site primarily Checkpoint Firewall
• Managing Security Policies of Juniper firewall
• Handling calls related to Firewall Access and Site-to-Site, Remote Access VPN Issues
• Implementing and configuring new firewalls as per the client's requirement and as per the Existing WAN Structure
• Configuring, Administering and troubleshooting the Checkpoint, Palo Alto, Imperva and ASA firewall, Juniper.
• Carrying out the Change Management tasks as per client requirement
• Setting up Big-IP system in F5 load balancer
• Upgrading the existing Checkpoint R70 to Checkpoint R77
• Configuring/Managing Intrusion Prevention System in Juniper
• Configuring New Client connectivity via Site2Site / Remote / SSL VPN on Checkpoint
• Handling On-Call responsibilities for Security Incidents / Bridges
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Worked on F5 ASM
• Troubleshooting security Threats and Authentications issue
• Furnishing Security threat / Attack Analysis on monthly / weekly basis

Confidential, SFO, CA

Firewall Administrator

Responsibilities:

• Provide support for all Checkpoint and Cisco environments. Provider 1 management upgrades from R65-R75
• Performed upgrades on all Checkpoint firewalls, and support for client services
• Administration of firewalls (R65 / R70) at corporate and remote locations
• Knowledge of DNS server firewall protection
• Configuration of security policies in Checkpoint
• Installed F5 ASM
• Configured Web application, Security Policy and Real Traffic Policy monitor in F5.
• Reviewing & creating the FW rules and monitoring the logs as per the security standards in Checkpoint Firewalls
• Configured User roles and administration, ASM and iRules in F5
• Support for all migrations, upgrades, PCI and vulnerability assessments
• Deployment of Data loss prevention across the network - Data in motion, Data in Use & data at Rest servers
• Signature Updates Deployment on the Management Components and all the Individual IPS/IDS devices
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall
• Intrusion Prevention System - IDS / IPS Implementation and Upgrade for SiteProtector
• Designing, Planning and Engineering support for the IPS

Confidential

Network Executive

Responsibilities:

• Instrumental in supporting and maintenance of hardware & network infrastructure for the organization
• Involve in Planning, Designing, Implementing, Configuring, Administrating, Optimizing and troubleshooting of the IT infrastructure services
• Accountable for defining new processes & deployment of tools to continuously improve the Quality & efficiency of team
• Network Infrastructure analyzed and required modification to be recommended and implemented as per Security Practices
• Configuration & Management Cisco routers 1751, 1841, 2600, 3745, 3800 Series and Cisco 6500, 3750, 2950, 3550 switches
• Work on routing protocol BGP, RIP, EIGRP
• Responsible for creation of rules and object on firewall
• Monitoring and maintaining performance on Firewalls
• Accountable for controlling access to users on firewall, according to requirement and configuration of lease line of all remote branches
• Direct all facets of local area network/server administration, software installation, and TCP/IP configuration
• Configuration and administration of LAN/WAN environment using Cisco Routers
• Troubleshoot and corrected network problems with switches, firewall, VPN, TCP/IP networking, DHCP, WINS, and DNS servers
• Configure and secure VPN remote access for redundant users working from home
• Handle troubleshooting for all hardware problems related to workstations, servers, routers, switches, printers, cabling, and phones