SUMMARY

• Over 8 years' involvement in executing field data communication, designing and networking, background in security, switching, firewall and support of long - range communication systems and Nexus 9K,V7K, 5K and 2K.
• Operating Microsoft windows server 2016, 2012, 2008, 2003, 2000, NT, private company server administration windows 10, 8, 7, Vista, XP, 2000, NT, 95/98, Exchange 2010, 2003, 2000, 5.5, Terminal Services, Citrix, Novell Netware 5.x,6.x, MS Active Directory, TCP/IP, DNS, DHCP, Cisco VOIP Management.
• VMware vSphere 4, 5, Mitel VOIP
• Strong comprehension of OSI Network model and system related administrations including IP multicast, policy-based routing, ether-channel, QoS, stack adjusting, VoIP.
• Implemented H/VPN administrations for different customers. Competent in designing and troubleshooting LAN, WAN, VLAN, VXLAN, VTP, DTP, STP, RSTP, MST and PVST.
• In-depth learning on involvement in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, FT1/T1/FT3/T3 Sonnet POS OCX/GigE circuits, Firewalls.
• Expertise installing, arranging, and keeping up Cisco Switches (2900, 3500, 3700 arrangement, 6500 arrangement)
• Expertise installing, arranging, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600,1800, 1700, 800)
• Experience in the setup of Access-Lists, and RIP, EIGRP, and tunnel installations.
• Proficient in wired/remote system setup, Linux and Windows organization and system testing, Cisco IOS, Linux/Windows operating systems and VMware virtualization.
• Skilled in investigating and main driver examination. Noteworthy experience working in quick paced, due date situated conditions. Excellent relational, communication and organizational skills with the capacity to collaborate viably at all levels of the association.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: OSPF, EIGRP, RIP, IGRP, BGP, MP-BGP, MPLS, DMVPN etc.
• Proficient with Power/PowerPC assembly language, C, C++, Java, Shell scripting, Perl, Python
• Experience in Deployed Check Point Provider-1 NGX and configured CMAs
• Knowledge on Juniper SRX240, SRX220, and SRX550 series firewalls
• Expert in configuration of Virtual Local Area Networks (VLAN’S) using Cisco routers and multi-layer Switches along with trouble shooting of inter VLAN routing and VLAN trunking using 802.1q.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
• Involved in configuration setup and troubleshooting of Cisco IOS and juniper devices to perform functions at the Access, Distribution, and Core layers.
• Experience working with Nexus 7010/Nexus 7018, 5020, 2148, 2248 devices and configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010.

TECHNICAL SKILLS

Router: 1800, 2500, 2600, 2800,3600,3750,3800, 7200

Programming skills: Python, c++, ANSYS, java

Academic skills: Linear Optimization, DOE, Programming for Analytics, Random Forest, Regression models, Decision Trees, Support Vector Machines, Citrix Netscaler(ADC)

Lan protocol: VLAN, PVLAN, VTP, Inter-vLAN routing, ISL, dot1q, STP, IS-IS, RSTP, MSTP, ISL PVST, LACP, HSRP, GLBP, VPC, VDC, Ethernet, Port security.

Wan technology: VLAN, PVLAN, VTP, Inter-vLAN routing,VXLAN, ISL, dot1q, STP, IS-IS, RSTP, MSTP, ISL PVST, LACP,SD-WAN,HSRP, GLBP, VPC, VDC, Ethernet, Port security.

Networking security: Knowledge of Firewall, ASA, Cisco FWSM/PIX/ASDM, Cisco ISE, Sourcefire IPS/IDS, Cisco NAC, IPsec, Nokia Checkpoint NG, IPS/IDS(Snor), VPN

Documentation: MS Visio, MS Office Suite, MS onedrive

Platforms: Cisco IOS, Cisco NX-OS, Cisco IOS XE, LINUX, Windows 2000/2003/2008 Server

Load Balancer: Cisco ACE load balancer, F5 Networks (Big-IP)

AAA Architecture: TACACS+, RADIUS, Cisco ACS

PROFESSIONAL EXPERIENCE

Confidential - Omaha, NE

Sr. Network and Security Engineer

Responsibilities:

• Configuration of VPNs to make IPsec/GRE tunnels in the middle of branch workplaces and central command.
• Troubleshooting and settling Remote Access IPsec VPN issues.
• Responsible for turning up BGP peering and client sessions, controlling BGP characteristics and investigating BGP steering issues.
• Configuration, testing and execution system, firewall and security arrangement with apparatuses, for example, Cisco and Checkpoint firewalls and Palo Alto.
• Add, erase, and adjust governs on ASA and Fortinet firewalls for organizing activity according to arrange security strategies.
• Administration and investigating of Linux RedHat Windows 2003,2008 Servers, DNS/DHCP
• Implementation of stately and serial failover for PIX/ASA firewalls and load adjusting highlights.
• Configuring firewall lead base, door articles, and VPN people group in Checkpoint firewalls.
• Troubleshoot MPLS VPN network amongst data centers and outer accomplices and clients.
• Design and usage of an MS Active Directory/Standby answer for the association to give repetition and adaptation to internal failure utilizing Hot Standby Router Protocol (HSRP).
• Monitoring and investigating system's execution on OSI layers 1, 2, and 3 for LAN and SD-WAN utilizing SNMP, syslog, tcpdump and Wireshark.
• Configuring OSPF as the essential IGP with multi-zone OSPF which incorporates stub territories and not all that thickset zones (NSSA). Redistribution of RIP and EIGRP into OSPF.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Created and oversaw VLANs on the changes to give QoS arrangements.
• Implementing and Filtering Traffic utilizing Access control list (P) and designing NAT/PAT.
• Review and test switches and before conveying them underway system according to customer necessities.
• Updating documentation and database of client's condition according to security gauges with month to month Excel reports. Great comprehension of outlining system graph answers for customers utilizing VISIO and PowerPoint
• Setting up VLANS and arranging trunk on Fast-Ethernet channel between switches
• Preventing VLAN bouncing assaults and moderating parodying with snooping and IP source monitor
• Provided Load Balancing towards get to layer from center layer utilizing F5 Network Load Balancers.
• Involved in outlining L2VPN administrations and IPSEC VPN validation and encryption framework.
• Documenting system design utilizing instruments, for example, MS Visio, MS Excel and MS Word to portray physical and sensible affiliations and incorporations.
• Configuring, Monitoring and Troubleshooting Check point security apparatus, Failover DMZ zoning, VLANs/directing/NAT with the firewalls according to outline
• Configured BPDU Guard, port-quick, uplink quick and other crossing tree highlights.
• Configuring STP for exchanging circle avoidance and VLANs for information and voice alongside Configuring port security for clients associating with the switches.
• Troubleshooting of LAN innovations including VLANs, VTP, Spanning Tree (STP), Virtual Routing and Forwarding (VRF), Trunking and Ether channel.

Confidential, TX

Network and Security Engineer

Responsibilities:

• Designed, introduced, designed and authorized Palo Alto,Fortinet, Cisco Network
• Security Device - Palo Alto/ASA Firewalls, Sourcefire IPS/IDS, VPN
• Prepared introductions and Visio graphs
• Experience with utilizing F5 Load balancer in giving overall information and record sharing, constant web network, advanced web execution
• Firewall strategy organization and support on Checkpoint and in addition Cisco ASA Firewalls
• Day-to-day work includes changes on the Checkpoint Firewall utilizing the Smart Dashboard NGX R70 programming and interfacing through Smart Center administration. Verification is finished utilizing a RSA SecurID.
• Monitored the MPLS organize and composed new circuit establishments
• Exposed to best practice plan and Implementation system
• Identified, detached and settled system security issues
• Work on various systems administration ideas and directing conventions like BGP, EIGRP, OSPF, VRFS, Tunnels, L2TP, and VPLS and other LAN/WAN innovations.
• Managed remote access Palo Alto, Cisco VPN, webvpn and AnyConnect
• Performed interruption location and interruption avoidance utilizing Cisco Sourcefire IDS/IPS
• Experience with Problem and Change Management procedures and applications
• Extranet changes to Cisco 6513, 6509 and 7204 arrangement gadgets including FWSM firewall changes, steering exchanging changes and Juniper Net screen based SSL VPN and ISG.
• Creating object, gatherings, refreshing access-records on Check Point Firewall, apply static, shroud NAT utilizing savvy dashboard.
• Troubleshooting network issues on the firewall utilizing savvy see tracker, screen strength of the machine utilizing brilliant view screen and so on.
• Support steering conventions including BGP and OSPF directing, HSRP, stack adjusting/failover designs, GRE Tunnel Configurations, VRF setup and support on the switches.
• Active Directory in charge of PIX 7.x/8.x, ASA 8.x and Cisco FWSM 2.x/3.x overhauls and system invigorate activities and Troubleshooting, IOS Security Configurations, IPsec VPN Implementation and Troubleshooting, DMZ/ASZ Implementation and Troubleshooting.
• Hands on Experience working with security issue like applying ACL's, designing NAT and VPN
• Documenting and Log investigating the Cisco PIX arrangement firewall
• Configured BGP for CE to PE course promotion inside the lab condition
• Spearheaded gatherings and discourses with colleagues in regard to organize streamlining and in regard to BGP issues.

Confidential, Sanjose, CA

Networking Engineer

Responsibilities:

• Bandwidth investigation, activity administration and observing of Cisco Routers and Links
• Understanding and Implementation of IPSEC and GRE burrows in VPN innovation.
• Design and execute OSPF organize for dependable access conveyance and to work as the centre steering convention.
• Designing and sending L2 benefit including VLANs, STP, Trunking and Ether channel.
• Designing of SD-WAN structure to avoid single purpose of disappointment in the event of connection disappointment.
• Use of investigating instruments, for example, session follows and parcel catches to aid underlying driver.
• Configuration of access records, prefix-records and course maps for holding fast to security strategies of the association.
• Monitoring system execution, arrange disappointments and blockage issues utilizing Solar winds and Wireshark.
• Planning and Implementation of Sub netting, VLSM to ration IP addresses ACI micro segmentation
• Assisting staff with the establishment, design, and progressing ease of use of desktop PCs, fringe gear and programming inside built up norms and rules.
• Configured STP for circle counteractive action and VTP for Inter-VLAN Routing.
• Administration and investigating of Windows 2003 Servers, DNS/DHCP.
• Implementation and support of standard access-records and stretched out access rundown to new clients.
• Configuration and establishment CISCO switches 2500, 2600, 3200 and 4000 arrangements.
• Continuously evaluating hazard and prescribing answers for guarantee the uprightness and strength of the undertaking system.
• Monitoring, investigating and settling issues in EIGRP and OSPF directing.
• Create and look after quality, arrangement and upkeep documentation including composed reports, exact part naming and specialized charts.
• Monitor activity and access sign keeping in mind the end goal to investigate organize get to issues.
• Installation and operational help for Windows 2000/2003 Servers and Windows workstations.
• Technical help for LAN/WAN administration and complex client issues.

Confidential

Networking Engineer

RESPONSIBILITIES:

• Operational bolster and investigating creation issues over nature.
• Facilitate and organize with merchants, providers, and IT groups in determination of system and frameworks blames or updates under the supervision of ranking staff.
• Designing and setting up redistribution of RIP and EIGRP into OSPF.
• Defining and executing course maps, convey records, get to records for settling redistribution issues.
• Performing framework organization undertakings including reinforcements and record re-establishes, account establishment and cancellation, workstation, Server establishment, and working framework redesigns.
• Maintaining the system Security and respectability, equipment and programming issues in the setup.
• Handling programming, fix refreshes and antivirus over the endeavour.
• Monitoring the system execution, analyse organize disappointments and network issues utilizing Wireshark, tcpdump and Nmap.
• Creating and keeping up client accounts, passwords, profiles, home indexes, setting document consents.
• Document system and communication equipment and programming arrangements, forming and equipment.
• Troubleshooting of steering conventions, which in corporate RIP, BGP, EIGRP, and OSPF.
• Implementing and keeping up standard access-records and broadened get to list according to clients' security level.
• Providing technical support for complex WAN and LAN systems.
• Maintaining and routinely refreshing system documentation and system chart utilizing MS Visio.

Confidential

Networking Engineer

RESPONSIBILITIES:

• Checkpoint Firewall design and Maintenance Support of state organize firewalls and end-client Virtual Private Network (VPN).
• Evaluate Agency asks for changes to firewall arrangement to decide specialized plausibility and to figure out where to convey the strategies in the state's firewall framework.
• Configuration and Installation of Cisco firewalls PIX 501 and ASA 5520.
• Configuration and Installation of Cisco Routers 3845.
• Configuration and Installation of Cisco Switches 3560G and 2960G.
• VLANS, STP setup in Cisco 2960G
• HSRP Configuration executed in Cisco 3560G.
• MPLS setup in Cisco 3845 for L3 Circuits.
• Create end-client VPN account with fitting access after proper endorsement has been issued.
• Monitor movement and access sign so as to investigate arrange get to issues.
• Cisco IOS Architecture for Cisco 3845 switch, Cisco 3560 and ASA 5520.
• Gather data for particular innovations as to capacity and arrangement designs.
• Write specialized records portraying actualized innovations and design.
• Provides interview to business region administration and staff at the most elevated specialized level for all parts of LAN/WAN plan and design in multi-server condition.
• VPN Configuration between Site-to-Site and Site-to-Remote.
• Implemented firewall arrangement changes after the fitting survey and endorsement process has been finished.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Monitoring Network foundation utilizing Cisco Network Assistant.