PROFESSIONAL SUMMARY:

• Over 8 Years of experience in networking and security, hands on experience in Design, implementation, and support. Routing, switching, firewall technologies, and troubleshooting of complex  network systems
• Experience in installation, configuration, troubleshooting of CISCO routers 2800, 3750, 2900, 7301, 7600, 12410, ASR9k. Catalyst 6509, 4507 and Data center switches like 7k, 5k and 2k of nexus
• Expertise in configuring, troubleshooting  network topologies which includes OSPF, BGP, HSRP, VRRP & STP 
• Expertise in L3 Protocols: BGP, OSPF, EIGRP, IGRP, RIP, CEF, MPLS, MPLS Layer 3 VPN's, VRF - Lite, and PFR. 
• Configuring and troubleshooting IPv6 protocols: OSPFv3, EIGRPv3, Tunneling techniques (GRE, v4tov6 and v6tov4)
• Multicast: PIM, MSDP, Auto-RP, BSR, IGMP, IGMP-Snooping
• Network Services: NTP, GLBP, WCCP, NAT, DNS, DHCP, DHP snooping and Sub netting
• Redundancy Technologies: Virtual Scale (CISCO VSS), VCP, Virtual Link Trunking (VLT), VRRP, HSRP
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS)
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers
• Responsible for handling Monthly Reports and RMA for  ADVA SLA and ensures that it  is properly handled, documented and monitored 
• Deploy 802.1x authentication (both  Wireless and Wired network) for office users using Aruba Clear pass access management system
• Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches
• Configured static NAT, dynamic NAT, dynamic NAT overloading
• I intend to use the acquired   project management skills and methodologies in successfully executing   projects and educating my peers on the same methodologies for an effective functioning of the organization. 
• I constantly look for a   professional growth for my colleagues and me. I love to develop  project management programs and tools for use and share my knowledge with the organization.
• Ensure that all system in the domain have McAfee Antivirus Protection Installed 
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation
• Experience on load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL certificates
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs
• Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP 
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates  network protocols and services
• Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol)
• Responsible for installation support of   Avaya VOIP Avaya Voice products to end user customers. Current customers include Super Value
• Configured and managed Nexus 2k fabric extender, 5K and 7K switch  network at the client’s location
• In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to Point, MPLS and Frame Relay 
• Experience securing and managing remote access using various VPN technologies like IPsec, SSL
• Experience in configuring and supporting VPN on Cisco VPN concentrators and 2811routers
• Responsible for simulating network operations with the usage of packet analyzer like Wire shark, and use to resolve tickets whenever there is an issue
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen routers with Site-Site VPN, and firewalls 
• Knowledge in configuring and troubleshooting Cisco Wireless Networks : LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.

PROFESSIONAL EXPERIENCE:

Confidential, charlotte, NC

Network Engineer

Responsibilities:

• Security Device - Palo Alto/ASA Firewalls, Sourcefire IPS/IDS, Cisco Identity Services Engine (ISE), VPN
• Configured Firewall and updated rules (Palo Alto/Cisco ASA)
• Managed, operated and analyzed results from Sourcefire detection systems
• Experience setting up PCI zone (PCI compliance project)
• Configured and performed troubleshooting routers and switches. 
• Updated routes and ACL (Access Control List) 
• Experience with  network based F5 Load balancers with software module GTM & Checkpoint
• Experience with connectivity of Cisco Networking Equipment with F5 Load Balancer
• Experience with GTM F5 component to provide high availability with providing services across data centers.
• Worked on creating 3 new networks (production, preproduction, disaster recovery) using a pair of nexus 7k, 5k along with line chord modules 2ks. Used FABRIC PATH to achieve layer 2 connectivity between 7k and 5k
• Cisco routing and switching platforms for Cerner's Legacy Catalyst Network and Cisco Fabric Path  
• Developed corporate website using Net objects Fusion and various Perl scripts. 
• Configuring, Administering and troubleshooting MPLS, Solaris and ASA firewall.
• Supported   network, which are comprised of 2000+ Cisco devices. 
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513. 
• Deployed the switches in high availability configuration with HSRP. 
• Configured port-fast, uplink fast and other spanning tree features. 
• Support various Series of Cisco Routers like 7200/7600 series. 
• Support Complex 6500 /5500 Series Switches 
• Experience with Using LTM F5 component to provide 24"7 access to applications 
• Troubleshoot network   routes and ACLs (Cisco, Juniper) 
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of MPLS, DHCP and VPN networks
• Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF, VRFS, Tunnels, L2TP, and VPLS and other LAN/WAN technologies 
• Technically supported in configuring, troubleshooting and analysis of customer’s  networks related to Cisco Identity Services Engine (ISE) 
• Monitored and Optimized network   performance 
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements. 
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall. 
• Exposure to wild fire feature of Palo Alto. 
• Build Site to Site IPsec based VPN Tunnels between various client and business partner sites 
• Manage over 40 checkpoint Firewalls split through multiple CMA's and administer using provider 
• Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption 
• Administer and support Juniper Firewalls Using NSM (Net screen and ISG firewalls). 
• Troubleshooting connectivity issues with in the server zones of the Data center (between application servers, database and web servers) as well as user requests and user connectivity issues from various branch locations, office locations and third party sites to data center. 
• Actively use, smart view tracker, and Checkpoint CLI (to security gateways) for troubleshooting. 
• Perform advanced troubleshooting using Packet tracer and TCP dump on firewalls. 
• Implement Cisco Secure Access Control Server (ACS) for TACACS+

ENVIRONMENT: In Corporate office architecture with highly reliable & secured network including Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), ASA (5505, 5510), TACACS+.

Confidential, Florida

Aruba Engineer

Responsibilities:

• Responsible for configuration, maintenance, and troubleshooting of dynamic routing protocols: BGP, OSPF & EIGRP (route redistribution, distribute lists, route-maps, offset-lists, prefix lists, route summarization, route-feedback, BGP attributes) on Cisco Routers 7613, 7201, and 3945E. 
• Conceptualize and implement end-user DLP training materials, enterprise-wide encryption system, Symantec DLP   insight integration, and   Symantec DLP /Data security environments support. 
• Managed development of software solutions to enhance   HPE Storage products within VMware  environments - increasing sales. Aligned plans and coordinated efforts of four teams across three  business segments to meet common goals.
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, nating, sub-netting, also including DNS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, WISM, STP (Spanning tree Protocol), RTSP & Multicasting protocols 
• Designation and Implementation of Aruba  Wireless solution including  Aruba S3500 mobility switch, Aruba 105, 175, 225 Campus AP, Aruba 7210 & 7220 AP Controller
• Deploy 802.1x authentication (both  Wireless and Wired network) for office users using Aruba Clear pass access management system
• Setup and monitor production server using Perl Scripting
• Trace analysis and batch processing using Perl Scripting
• Worked on creating 3 new networks (production, preproduction, disaster recovery) using a pair of nexus 7k, 5k along with line chord modules 2ks. Used FABRIC PATH to achieve layer 2 connectivity between 7k and 5k
• Cisco routing and switching platforms for Cerner's Legacy Catalyst Network and Cisco Fabric Path  
• Helping them to set up point to point OSPF connection on their cisco and juniper routers, also MX, ISR, ASA, QFX devices with their current network 
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure 
• Work in groups with other engineers to solve customer network complications.
• Monitoring tools: Design, implementation, tuning and troubleshooting. Worked on to pre-configure router in data center for new connection as network design structure. 
• Managing data center and network by using solar winds NPM, NTA, NCM and F5 load balancer, load balancer also working on troubleshooting, implementing and configuring new devices and helping them to build new data center and moving devices from one data center to another by moving all devices. 
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates  network protocols and services
• Working on to set up OSPF dynamic routing on ASA by using and following their current network structure. 
• Working on as security devices ASA, juniper, Palo Alto firewalls, routers, switches. 
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools 
• Configured the Switches to add DNS, DHCP Infoblox servers to the network. 
• Experience with configuring IPAM on DNS Infoblox like adding the already existing networks and creating new networks on the Infoblox and also creating the domain names 
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs 
• Ensure that all system in the domain have McAfee Antivirus Protection Installed 
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations 
• Racking, Stacking, configuring, Nexus 5K and 2K and 7K.
• Documenting workflow process, managing and implementing standard policy and procedures.

ENVIRONMENT: Architecture with highly reliable & secured network including Cisco routers (7613, 7201, and 3945E) andNexus (7K, 5K & 2K) Routing Protocols EIGRP, OSPF, BGP, including DNS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, WISM, STP, RTSP & Multicasting protocols, ASA, juniper, Palo Alto firewalls

Confidential, Dallas, TX

Network Engineer

Responsibilities:

• Extensive implementation of firewall rules on R76 GAIA on daily basis using Smart Dashboard
• Configuration, troubleshooting Checkpoint Firewall using R76 Smart View Tracker and Monitor
• Worked on Cisco Multilayer switches such as 4500X, 6500 and 6509.
• Deploying components of Symantec Agent, HIPS,   DLP Endpoint and Site Advisor.
• Build and maintain   Symantec Endpoint Protection (AV) and management console.
• Install, configure and deploy Symantec Endpoint Security 12.x in large enterprise network environments
• Used Cisco NGIPS, Cisco Firepower,  Symantec MSS,  Symantec Deep sight Intelligence for validating Security Operations Center (SOC) incidents
• Operates loopback testing from DCS devices to  ASR9K routers using TL1 commands to ensure proper configuration of customer path
• Performs validation of customer circuit configurations on Cisco 7600 and ensured successful migration to ASR9k  with minimal customer impact
• Configuring and managing network traffic using  3 COM SNMP and access list.
• Manage Cisco Router , 2900xl switches and 3COM hubs configuration for WAN and LAN interfaces.
• Designed network architecture using MS Visio based on client requirements and implemented 3COM Router , Procurve Switches and Checkpoint firewalls
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates  network protocols and services
• Installed, configured & maintained3COM Cisco, & other vendor switches to HP, Dell, & IBM servers.  Configuration of firewalls connected through VPN 
• Strong Knowledge and extensive experience on enterprise change management process and tools.
• Create change request for configuration changes on routers, switches and firewall.
• Programming switches and routers using high level  Scripting languages like  Perl Scripting
• Scripting at the command line level for Linux with Perl
• Responsible for Juniper SRX firewall management and operation across our global networks.
• Hands on experience with handling all production and non-production issues.
• Configure IPSEC VPN (Site -Site to Remote Access) on SRX series firewall.
• Performed Troubleshooting and monitored routing protocols such Static Routing, OSPF and BGP
• Responsible for procurement and installation of Hardware, network drives and another IT infrastructure. Documented the design, implementation and troubleshooting procedures with Method of Procedure (MOPS).
• Documented all the work done by using Visio, Excel & MS word

Environment:R76 GAIA,Cisco 4500X, 6500 and 6509, JUNIPER SRX, IPSECVPN, BGP, OSPF,

Confidential

Network Security Engineer

Responsibilities:

• Establishing and configuring Site-Site and SSL VPNs on Cisco Firewalls.
• Installation, and configuration of Veritas   Data insight as well as Symantec DLP , Enforce, Network Monitor, Network Discover, Web Prevent, Email Prevent, and Endpoint Agent
• Manage   DLP events for my business unit using the Symantec DLP too
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring. 
• Also involved in designing and implementing IP / MPLS network.
• Involved in provide higher technical support to NOC and other operation teams regards to IP/MPLS infrastructure.
• Responsible for Manual testing, reporting defects and working closely with development in narrowing down issues.
• Operates loopback testing from DCS devices to  ASR9K routers using TL1 commands to ensure proper configuration of customer path
• Installed, configured & maintained3COM Cisco, & other vendor switches to HP, Dell, & IBM servers.  Configuration of firewalls connected through VPN 
• Configuring and managing network traffic using  3 COM SNMP and access list.
• Manage Cisco Router , 2900xl switches and 3COM hubs configuration for WAN and LAN interfaces.
• Performs validation of customer circuit configurations on Cisco 7600 and ensured successful migration to ASR9k  with minimal customer impact
• Developed the necessary libraries for the different to run different Network test.
• Responsible to run different kind of Network test. This includes BGP, EIGRP and Firewall. Also worked with testing with traffic generator.
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates  network protocols and services .
• Responsible for handling Monthly Reports and RMA for ADVA   SLA and ensures that it is properly handled, documented and monitored 
• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding. Worked on creating 3 new networks (production, preproduction, disaster recovery) using a pair of nexus 7k, 5k along with line chord modules 2ks. Used FABRIC PATH to achieve layer 2 connectivity between 7k and 5k
• Cisco routing and switching platforms for Cerner's Legacy Catalyst Network and Cisco Fabric Path  
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Designed network architecture using MS Visio based on client requirements and implemented 3COM Router , Pro curve Switches and Checkpoint firewalls
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Strong understanding of the Global Traffic Manager and I Query functionality between LTM and GTM for a HA design.
• This network consists of 4 Communication Manager 6.3 Media Server Primary clusters, 4 Communication Manager Media Server ESS clusters, 300+ G450 & G430 Media Gateways, 1 Modular Messaging Centralized Voicemail, 4 Session Managers (dual-pair), 2 System Managers and 2 ACME Oracle Session Border Controllers located in 2 different Data Centers and connected to BT SIP Networks,
• Utilizing both SIP & H.323 connectivity via MPLS & TDM Carrier Services. Support    Avaya Aura infrastructure and its associated software, including System Manager, Session Manger, and Session Border Controller for Enterprise, Communication Manager, Aura Messaging, Avaya Modular messaging, Aura Conferencing, Call Center Elite, Call Management System, and AES. Administration of  Avaya telephones, IP Softphone One - X clients and features. 
• Responsible for High and low level design as it pertains to load balancing infrastructure and changes.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.

Environment:SSL VPN, IP/ MPL, SBGP, EIGRP, RIP, OSPF, LSA, NBMA, GTM, Router 7600, VOIP, AVAYA,3COM

Confidential

Network Engineer

Responsibilities:

• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
• Implementing and troubleshooting Cisco firewalls.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
• Designation and Implementation of Aruba  Wireless solution including  Aruba S3500 mobility switch, Aruba 105, 175, 225 Campus AP, Aruba 7210 & 7220 AP Controller
• Deploy 802.1x authentication (both  Wireless and Wired network) for office users using Aruba Clear pass access management system
• Configuring and managing network traffic using  3 COM SNMP and access list.
• Manage Cisco Router , 2900xl switches and 3COM hubs configuration for WAN and LAN interfaces.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Installation and commissioning of DWDM, SDH and Ethernet Equipment’s like Huawei,   ADVA Ciena and Turin
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates  network protocols and services
• Trouble shooting using various command tools on CISCO routers and network segments at various OSI layers. Maintenance of Cisco 2500, 4000, 6500 series routers.
• Operates loopback testing from DCS devices to  ASR9K routers using TL1 commands to ensure proper configuration of customer path
• Performs validation of customer circuit configurations on Cisco 7600 and ensured successful migration to ASR9k  with minimal customer impact
• Designed network architecture using MS Visio based on client requirements and implemented 3COM Router , Procurve Switches and Checkpoint firewalls
• Worked on creating 3 new networks (production, preproduction, disaster recovery) using a pair of nexus 7k, 5k along with line chord modules 2ks. Used FABRIC PATH to achieve layer 2 connectivity between 7k and 5k
• Cisco routing and switching platforms for Cerner's Legacy Catalyst Network and Cisco Fabric Path  
• Implement IPsec VPN’s for different client locations and make sure the connectivity is up and running.
• Implement LAN/WAN for Market Data utilizing Cisco 6500s/4006s, (EIGRP and OSPF)
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPsec and SSL encryption.
• Manage service provider’s/vendor’s relationships from a project and technology perspective.
• Worked with the basic communication protocols like TCP/IP
• Manage Voice Communications network supporting 500+ locations (15000+ end-users) consisting of campus offices, branch offices, data centers and critical equipment rooms, and responsible for providing 3rd Level Support of all TDM Voice, Trader, Call Center & IPT/  VOIP Voice systems within the Americas Region.
• This network consists of 4 Communication Manager 6.3 Media Server Primary clusters, 4 Communication Manager Media Server ESS clusters, 300+ G450 & G430 Media Gateways, 1 Modular Messaging Centralized Voicemail, 4 Session Managers (dual-pair), 2 System Managers and 2 ACME Oracle Session Border Controllers located in 2 different Data Centers and connected to BT SIP Networks,
• Installed, configured & maintained3COM Cisco, & other vendor switches to HP, Dell, & IBM servers.  Configuration of firewalls connected through VPN 
• Operational and day to day support of current  Avaya to  Cisco and Microsoft Lync/Skype for Business conversion project. Currently in phase 1 Emea deployment.   Avaya to Cisco /Lync/ Skype for business solution includes deployment and configuration of three global CUCM 10.5 clusters,  Cisco SME
• to schedule tasks to complete both day to day and project work, importing subscribers from integrated LDAP and all migrations of users between telephone systems. Perform some moves, adds and changes on CUCM,  Cisco IP Telephones and features as necessary
• Providing remote telephone support to Enterprise and Government entities that use HPE products such as Com ware,   Pro curve and Aruba wireless switches
• Utilizing both SIP & H.323 connectivity via MPLS & TDM Carrier Services. Support    Avaya Aura infrastructure and its associated software, including System Manager, Session Manger, and Session Border Controller for Enterprise, Communication Manager, Aura Messaging, Avaya Modular messaging, Aura Conferencing, Call Center Elite, Call Management System, and AES. Administration of  Avaya telephones, IP Softphone One - X clients and features. 
• Configured and troubleshoot VLAN, VPN, VTP, STP and Trunks.
• Managed IP addressing and implemented IP Access Lists.
• Implemented and configured Cisco routers and switches in a simulated enterprise network comprised of several separate locations utilizing 10+ routers and switches. Worked on console and remote configuration of Ethernet/serial interfaces, implementation of RIP and EIGRP routing protocols, authoring access lists, configuring VLANs, and initiating Telnet sessions, and implementing password security. Provide network design of both the physical and logical network optimizing performance, scalability and cost-effectiveness.
• Interface with various vendors, technology groups to define requirements and process needed to provision networking and systems services.
• Configuration of Cisco switches (3750) for VLAN and VTP.
• Participate in design conferences, produce network diagrams and detailed network documentation including logical and physical diagrams as required. Maintain technical and vendor product information and assisting in establishing performance standards, policies and procedures for the enterprise.
• Provided support in resolving problems with Local and Wide Area Network data communication, operating system and application software and hardware. Prepared feasibility study report for installations and upgrades.

Environment: MPLS, RIP BGP, VPN 3000, Cisco 2500, 4000, 6500 Routers, OSI, EIGRP OSPF STP, VTP, VLAN, TRUNKS, Cisco switches (3750).,VOIP, AVAYA, 3COM,Aruba