SUMMARY:

• Over 8 Years extensive experience as Network Engineer.
• Network Security implementation, Network design/architecture and Internet applications/technology.
• Multiple projects implementations, support and co - ordination, firewall IPS, IDS, VPN and remote access technology.
• Extensive experience in Installation, Configuration and Administration of FIREWALLS i.e. CISCO, Cisco ASA 5510, 5520, 5540, 5550, 5580, Juniper SRX,Junos, Fortinet, Checkpoint firewall.
• In-depth knowledge of and Hands-on Experience on various hardware devices.
• Working knowledge on URL filtration software like Websense in Network.
• Management of day to day operations including backup, network load balancing, account management, network monitoring via HP Open view/SNMP, Netview, IBM Netcool.
• Experience on Cisco Routers and Switches, as well as TCP/IP, Network Topologies including protocols: IP, RIPv1&v2, OSPF, IGRP, EIGRP, BGP, FDDI, ATM, VPN, SNMP, Frame Relay, ISDN and Ethernet. Experience with AAA server like RADIUS and TACACS+.
• Experience with Citrix Netscaler, F5 GTM Loadbalancer.
• Administered F5 BIG-IP,CSS load balancer.
• Worked on F5 LTM, GTM 6900, 2400 series
• Experience with VMware installation and customization.
• Good knowledge in supporting MS Office products.
• In-depth knowledge of WAN technologies including E3, E1, T1, 56K, Frame Relay and MPLS.
• Hands on experience with installing and managing IT services such as Active Directory, Site replication, Multi Domain forests architecture, DNS, WINS, DHCP, and Terminal Services.
• Experience on integrating voice, Video and data networks as well as VoIP.
• Security Products working understanding of Firewalls, IDS, IPS, as well as encryption techniques and methods.
• Experienced in Various WAN technologies such as DSL, cable, T1, and MPLS
• Experience with RFC 1918 private networks, firewalls, routers, and switches.
• Adept in Modeling Business Process using MS Visio and generating Workflows, Process Flows and other UML diagrams to refine and automate business process
• Goal-oriented individual with people management skills and strong leadership capabilities.
• Working various shifts and providing various levels of 24x7, on-call coverage.
• A self-starter with the ability to quickly recognize and resolve technical issues under pressure and ability to work in a team oriented and fast-paced environment.

TECHNICAL SKILLS:

• Cisco AGS+
• 806
• 1600
• 1700
• 2500
• 2600
• 3600
• 3700
• 4000
• 4500
• 4700
• 7000
• 7200
• 7500 Series Routers
• Cisco 1900
• 2900
• 3500
• 4500
• 5000
• 5500
• 6000
• 6500 (Native & Hybrid) Catalyst Series Switches
• Nexus 7000
• 3750
• 2950
• Cisco PIX 501
• 506
• Linksys (now Cisco)
• Bintec
• 3COM
• Netgear
• Nortel Networks Switches
• Cisco Catalyst
• Extreme Switches
• HP-Switches
• Checkpoint
• Cisco CSS
• F5 Networks (Big-IP)
• Citrix Netscaler
• 525 Series Firewalls
• Ethernet Switches
• NET IDNX 10 & 70 Multiplexors
• Ascom Timeplex Multiplexors
• NetScout RMON probes (T1
• HSSI)
• Network Associates Sniffer (stand-alone and distributed)
• Internet Advisor (LAN & WAN)
• Fluke LANMeter
• Datacom LANcat

PROFESSIONAL EXPERIENCE:

Confidential, Elmhurst, IL

Network Engineer

Responsibilities:

• Established policies and procedures related to Systems security and integrity.
• Skilled knowledge of RIP, EIGRP, BGP and OSPF.
• Configured/ administered/ deployed several Cisco 12000, 10000 and 6500 series.
• Configured channelized DS3 card on the Cisco 12000 series router for managing T1 lines.
• Implemented and maintained network performance testing software like PRTG and MRTG.
• Implemented and managed network monitoring tools like Nagios and Orion.
• Implemented Perl scripts for network monitoring tasks.
• Deployed and managed various Fujitsu switches (XG2600, XG2000, XG0448, and XG0224).
• Experience working with 5505, 5510, 5520 and 5550 model ASA's.
• Experience working with the latest ASA IOS (8.3, 8.4)
• Implemented and managed SSL VPN using Radius server (Cisco Any connect) on ASA 5550.
• Experience working with Cisco 3750, 4948, 2811, 2600, 7200, 6500, 12000, 10000 series switches and routers.
• Configure, maintain nexus 7k, 5k and 2k.
• Create Vpc, VDC and Fex on nexus 7k and 5k.
• Implement software upgrade on nexus 7k and 5k.
• Worked with AWS to setup express route connectivity between client and AWS sites.
• Migrate internal application like office 365 to AWS cloud.
• Implemented Cisco load balancers cluster for firm's proprietary analytics web application.
• Implemented and administered Websense Web Security Gateway for web content filtering and DLP.
• Managed software and hardware contracts. Audited contracts and worked with vendors to terminate unused services and reduced costs. Negotiated key contracts with vendors and reduced costs.
• Proficient with IP access list, Cisco Discovery Protocol(CDP), Static Routing, Network Address Translation(NAT), VLAN Trunking Protocol(VTP) and HSRP.
• Replaced 6500 from access layer and installed 3000 Series Switches.
• Worked on 2600, 3500, 7613 Cisco Routers and 4500 and 6500 series Cisco Switches.
• Configured and managed Cisco access layer routers and Switches and carried out route redistribution and manipulated route updates using distribute lists, route-maps and administrative distance and offset-lists.
• Configure and maintain Riverbed Stealhead CX 7055
• Upgrade Riverbed Stealhead to version 8.6.3
• Extensive experience with Check Point, Juniper and Cisco ASA firewalls.
• Protection System management and configuration.
• Experienced with Firewall administration such as Juniper, Check Point or Cisco
• Extensive experience with Check Point and CISCO Security Firewall Configurations and network configurations.
• Strong TCP/IP understanding. Knowledge of debugging Check Point Firewall.
• Configured with F5 Load balancers in Failover for Load balancing and SSL handling
• Configure F5 BiGip to provide Load Balancing for server farm
• Create self signed certificate and deployed on Loadbalancer
• Hardware migration from F5 LTM 6900 series to 2400 series Viprion
• Worked on F5 GTM
• Software Migration from version 9.0 to 10, 11.0
• Worked on F5 APM ( Access Policy Manager) iRule creation on F5 BIG-IP load balancers.
• Worked on TCP dump for troubleshooting F5 related issues
• Experienced in Network deployments and Network security designs.
• Monitor, identify, report, and mitigate security weaknesses
• Work with internal resources to ensure proper security controls are identified, implemented and tested
• Experience with configuring, supporting, and troubleshooting security products including Check Point, Juniper, Cisco, IDS solutions, and others
• Troubleshoots network access problems and implements network security policies and procedures.
• Ensures network (LAN/WAN, telecommunications, and voice) security access and protects against unauthorized access, modification, or destruction).
• Experience in Identifying and evaluating implementations of specific and general security tools (Secure Works, SharePoint, IDS, ASA, etc.)
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Provide 24/7 on call support and Document the environment.

Network Engineer

Responsibilities:

• Reviewed and approved all firewall requests (ACL, NAT, VPN, etc) based upon potential security impact. Also managed all firewalls in the test, dev, R&D labs.
• Managed and maintained various web content filtering solutions including Web Sense and Blue Coat.
• Managed and maintained an internal certificate authority (CA) request along with RSA servers for two factor VPN authentication.
• Architecture, planning and design of IPSEC VPN implementations for multiple sites on Cisco VPN appliances, routers and Checkpoint firewalls.
• Analyzed firewall performance and suggested/implemented improvements.
• Installed and maintained all security infrastructures, including IPS, IDS, log managements, and security assessment systems.
• Secure IIS Web Server Protection (Application Firewall), ISS Internet Scanner Penetration Testing, Security Access Lists, Firewall Protection, VLAN Security.
• Cisco Works and HP Openview implementation and usage forecasting. Design and implementation of Cisco TACACS+, Radius and Cisco Secure. Windows 2003, and Linux server design, hardening and implementation.
• Hardware migration from Citrix Netscaler NS 7000 to MPX 9500
• Involved in setting up new Citrix Netscaler SDX 15000
• Implemented RAID on Windows 2003 servers as a step on Fault Tolerant methods
• Design and Implementation of enterprise-level LAN and WAN infrastructures.
• Performed LAN administration and troubleshooting for Windows 2003 servers and Windows 2008 & XP workstations
• Checkpoint Firewall design and implementation and planning of rule bases
• Network refresh project that includes redesigning and relocation of ASA, Checkpoint and Fortinet firewalls.
• Perform regular vulnerability and penetrations tests utilizing NESSUS and NMAP along with recommending remediation solutions.
• Assess threats, risks, and vulnerabilities from emerging security issues.
• Publish security updates newsletter for technical groups.
• Managed process and acted in the lead role for computer security incident response team.
• Discovery of banks, hedge funds, and trading firm’s needs and providing quick, stable, low latency network solutions.
• Excellent oral, written communication skills and strong documentation..
• Troubleshoot various customer environments when issues arise, provide resolutions, and keep our customers informed as to the status of any on-going problems.
• Strong relationships with ISP’s such as AT&T, Sprint, SingTEL, MCI, etc.
• Configured and maintained all IPsec/VPN tunnels.
• Support and maintenance of Network Operation Center (NOC) including all Windows, 2008 servers and mainframes using HP Openview, Login Envision.
• Knowledge of routing protocols BGP and EIGRP.
• Maintain IOS patches and security patches (regular maintenance responsibilities)
• Deal with clients directly with troubleshooting.

Network Admin

Responsibilities:

• Configured Cisco Routers (2500, 3000, 4000),Asr 100x,7200 using RIP, IGRP, OSPF, EIGRP
• Configure Cisco Switches (5000, 3524, and 2900)
• Responsible for Network Upgrades
• Designed and implemented remote dial up solution for clients
• Installed and configured workstations for IP/IPX based LAN
• Installed and configured DHCP Client/Server
• Implemented HP-Openview for network management
• Responsible for installing connectivity software using VPN, Citrix, Telnet and Dial-up connections.
• Diagnose and solve Frame relay / T1 lines, CSU/DSU and routers connectivity problems.
• Provided Security and Network performance audits periodically using Sniffer Distributed suite
• Configuring and managing network traffic using 3COM SNMP and access list.
• Manage Cisco Router, 2900xl switches and 3Com hubs configuration for WAN and LAN interfaces.
• Responsible for determining software and hardware resolutions.
• Responsible for training the new staff on PC and Network basics.
• Managing, monitoring, and administration of servers
• Monitoring and responding to system and network alarms and alerts
• Performed LAN administration and troubleshooting for Windows 2003 servers and Windows 2008 & XP workstations.
• Administrate / supports (mfg, Lab, Office & Data Center Network)
• DNS Management (IP addressing)
• Assists in LAN Design & support
• Supports - LAN and Network engineering (mfg, Lab, Office and data Center LAN)
• Executes Campus Network Upgrades, replacements & expansions
• Onsite Support of desktops, Servers, LAN equipment and WAN links.
• First level support for network.
• Managing and monitoring the WAN setup which includes Leased Line links, ISDN and leased line connectivity.