SUMMARY:

• Network Engineer with around 7 years of experience in the industry, which includes expertise in the areas of Routing and Switching.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF and BGP and able to interpret and resolve complex route table problems.
• In - depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services to meet network requirements in Enterprise and Data Center Network.
• Implementation traffic filters on Cisco routes using Standard, dynamic and extended Access list.
• Design, configuration, and support of Cisco Nexus Platforms (Nexus 2000/5000/7000 ).
• Experienced in Configuring CISCO ASA firewalls (5525, 5540, 5585-Firepower) as Standard and Distribution deployment to have the network secure and maintained Site-to-Site VPN connection through the Firewalls.
• Deployed Cisco ASA firewalls and Configured DMZ on Cisco ASA firewalls.
• Extensively worked on Juniper models NetScreen, MX-480, M Series, SRX210 and SRX240.
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
• Worked on F5 Load Balancers to configure Load Balancing servers and applications.
• Configured LTM (Local Traffic Manager) and GTM (Global Traffic Manager) using F5 Load Balancers.
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate web-applications using SAML2.0 and SSL certifications.
• Worked on Wireless Controllers and wireless access points to setup wireless network across the organization.
• Worked on monitoring tools like Solar winds and net scout.
• Excellent communication skills to interact with team members and support personnel and also can act as a mentor to less experienced personnel.
• Captured and Monitored Packets using Wire shark for F5 and other systems.

TECHNICAL SKILLS:

Routers: Cisco 18XX, 29XX, 39XX, 4xxx &72XX series. Juniper MX series

Switches: Cisco 9k,7k/5K/2K, Cisco 3750, 38xx, 45XX, 65XX series. Arista 7k

Firewalls: Cisco ASA 5510, 5550, 5585, Palo Alto, Checkpoint, Juniper SRX series

Load Balancer: Cisco CSS, F5 Networks (Big-IP)

Routing: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization

Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN

WAN: MPLS, Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Frame Relay.

AAA Architecture: TACACS+, RADIUS.

Protocol Analyzer: Wireshark

PROFESSIONAL EXPERIENCE:

Confidential, MAPLE GROVE, MN

Network Engineer III

Responsibilities:

• Responsible for client’s network Routing, Switching and Firewall management. Worked on client’s main location network along with Data Centers and Remote Scoring sites.
• Supported and managed DRC Routers, Switches, WLCs, Firewalls and WAPs on remote and main locations.
• Worked on CISCO ASR 100x series routers to establish P2P connections between locations across various cities in Minneapolis using OSPF routing protocols.
• Deployed new P2P connections, upgraded existing circuits and configured QOS policies on WAN Routers.
• Performed Circuit upgrades and QOS configuration on ASR 1002 and 1001 routers using standard change procedure and outage window.
• Worked on Cisco 39xx and 38xx series routers to connect remote locations using MPLS and BGP protocols.
• Involved and performed Cisco switch migration from Cisco 7K and 5k to Cisco 9x series successfully.
• Supported and configured network consisting of Cisco Nexus 9K,7K, 5K series switches. Experience in working with Nexus 9318, 7010, 5548, 5020, 2148, 2248 devices.
• Prepared configurations for vPC, vPC domain, vPC peer-gateway, vPC peer-switch on CISCO Nexus 9k, 7k and 5k series pairs.
• Established AWS Cloud connectivity using L2 circuit on Cisco ASR Router and back up IPSEC VPN connection on ASA Firewall.
• Configured and managed Cisco ASA firewalls in organization. Configured FW rules, DMZ zones, NAT and IPSEC VPN on Cisco ASA Firewalls.
• Migrated to PALO ALTO 52xx Firewalls from CISCO ASA firewalls. Configured and managed Palo Alto series firewalls. Configured FW rules, DMZ and Routing on PALO ALTO firewalls.
• Prepared Firewall, F5 Load-Balancer Templates for Service-Now requests. Prepared documentation for completed projects and Tasks.
• Deployed temporary networks to accommodate testing and lab environment and decommissioned them after.
• Worked with CISCO TAC Engineers for Device issues, upgrades, bug fixes and RMA process. Worked with Monitoring and Managed Service Vendors to establish connectivity with their network to accommodate Monitoring and Network management.
• Worked on Wireshark and ORION monitoring tools to troubleshoot and manager Network and Systems environment.

Confidential, Plymouth, MN

Network Security Engineer

Responsibilities:

• Worked and supported new network deployment and migration projects to develop standard and secure network for all OPTUM and acquired sites.
• Supported network consisting of Cisco Nexus 7x, 5x and 3x series switches. Worked on routing protocols EIGRP, OSPF and BGP on Cisco ASR, 29xx and 72xx series routers along with Juniper MX series routers.
• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
• Experience in working and designing configurations for vPC, vPC domain, vPC peer-gateway, vPC peer-switch, auto-discovery, vPC single sided, vPC double sided, NX-OS, Vrf, Otv, fabric path.
• Worked on activation of MPLS circuits from AT&T, Verizon, Time-Warner and other carriers nationwide using Fiber and Copper handoffs.
• Configured NATs, ACL and routing on Cisco and Juniper routers, firewalls, and layer 2 & layer 3 switches.
• Worked on Nexus 3xxx series (3048 and 3548) switch upgrades to the gold code as per cisco and enterprise standards.
• Worked on Network Migration to migrate various acquired entity networks to OPTUM/UHG network using 37xx and 38xx series stack switches.
• Deployed Cisco Wireless controllers (Virtual and Physical) for wireless access point managements for OPTUM locations/
• Used Cisco prime infrastructure and Cisco Wireless controllers to manage and deploy Cisco Aeronet wireless access points at new and migration sites.
• Worked on Palo Alto 30xx and 50xx series Firewalls and Panorama software to analyze traffic between UHG and Clients.
• Supported UCS migration for F5 LTM and GTM devices. Upgraded F5 24xx and 42xx series devices from 10.x to 11.x versions.
• Worked on F5 LTM and GTM devices to load balance various application and weblogic servers.
• Configured USRobotics 56k Dial-In modems to establish Dial-In connectivity to remote sites.
• Deployed Raritan serial console switches to Data Centers to get console connectivity for all network devices in Data Centers via OOB (Out of Band) network.
• Worked on network troubleshooting for Routing and Switching issues
• Prepared Visio diagrams, documentation and SOPs. Worked with standard change process to apply and deploy changes to production and test environments to avoid network outages.
• Worked with Various Network monitoring tools and analyzer software during change window to avoid any Network Outages

Confidential, Redmond, WA

Sr. Network Engineer

Responsibilities:

• Developed documentation, system standards and SOPs within the organization.
• Prepared MOPs for device deployment and decommission as per Microsoft standards.
• Handled company’s network, system & security infrastructure.
• Worked on Tipping Point IPS and IDS devices.
• Extensively worked on Arista 7k Fabric switching system with 100G, 40G and 10G links for better bandwidth and to provide best performance to the Azure Customers.
• Worked on setup redundancy enabled network for better performance using Cisco Nexus 7k environment. Upgraded network from Nortel to Cisco Nexus environment using nexus 5K FEXs.
• Deployment and decommissioned F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Worked on Wireshark captures for various F5 devices to check active Virtual IP traffic to avoid any network outage. Worked on F5 APM using SSL offload on F5 hardware.
• Deployed and decommission of core network consisting of Juniper MX series and Cisco 7200 series routers running multi area OSPF and BGP.
• Worked on Juniper Netscreen and SRX firewalls using NSM (Network Security manager). Worked on Juniper MX series routers.
• Experience working with Network management software NSM (Network Security Manager) primarily to code the firewalls as well as performing changes as per the requirement.
• Worked on ASA 55xx series firewall pair deployment as Cisco AnyConnect Server gateway.
• Upgraded IOS and AnyConnect codes on old Cisco ASA 5520 models for Windows vista, 7 and 8 support for various data center locations worldwide.
• Used WAAS-CM (WAAS Central Manager) Application to manage deployed WAE devices all over US region.
• Involved in deployment of cisco WAE 512 series WAAS (Wide Area Application Engines) Appliances.
• Worked on Vlan deployment, migration and decommission process by following standard procedures.
• Monitored and analyzed Intrusion Detection Systems (IDS) & Intrusion Prevention System (IPS) to identify security issues for remediation.
• Implemented IP addressing, TCP/IP network planning, Subnetting, Route summarization and Distribution.
• Develop, plan and maintain documentation necessary for operation in support of LAN to WAN connectivity.

Confidential, Plymouth, MN

Network Security Engineer

Responsibilities:

• Hand on experience the configuration and implementation of various Cisco Routers & L2/L3 Switches.
• Supported core network consisting of Cisco 7200 series routers running EIGRP, OSPF and BGP.
• Configured and deployed Cisco ISR 4331 series router from scratch using policy based routing for different client small offices as teleworker router with high efficiency.
• Configured BDI (Bridge Domain Interface) on 4331 routers to connect Switch Module VLANs to the corp. network.
• Worked and deployed Cisco 4331 router pairs on corporate network for customers as Virtual Node Environment.
• Implemented various EIGRP features like route-summarization and route filtering
• Worked and helped troubleshooting IPSec VPN tunnel issues for call centers by matching VPN elements configurations on both side of VPN tunnel.
• Implemented site-to-site VPN tunnels on Cisco ASA 5540 using IPSec encryption for various Hospitals, Health centers and Vendors.
• Configured Static NAT and PAT for Internet and external users. Configured policy based NAT for customers.
• Responsible for Checkpoint firewall management and operations across our global networks. Worked with Checkpoint Support for resolving escalated issues.
• Created Firewall rules on Checkpoint Firewalls version R62, R65 and R71 for vendors and VPN access to citrix and other applications. Created and developed reports using Tufin/Checkpoint for requestor.
• Used CSM (Cisco Security Manager) and Cisco ASDM (Adaptive security Device Manager) for Production Firewalls and VPN devices maintenances. Provided support for Cisco AnyConnect and RSA token issues.
• Worked on Juniper Switches, Routers and Firewalls.

Confidential, Milwaukee, WI

Network Development Engineer

Responsibilities:

• Provided technical expertise for performance and/or configuration of the global networks and systems. Desktop responsibilities included software & hardware installation and configuration.
• Configuration of EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 and Juniper Series routers backbone routes with HSRP.
• Worked on Cisco VNMC (Virtual Network Management Center) for ASA 1000v Virtual (VMware) Firewall management.
• Performed configuration of SNMP, RADIUS, and TACACS along with other standard global configurations on existing client production routers and switches.
• Managed Cisco ASA firewalls and IPS systems using CSM and ASDM. Configured DMZ for clients on Cisco ASA firewalls.
• Deployed Cisco VWLC Version 5.1.1 (Virtual Wireless Controllers) for easy access-points management. Worked on migration of Cisco Access Points from Physical Controllers to Virtual controllers.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
• 24X7 network support for wireless access-points national wide consisting of all 1100+ Confidential 's departmental stores.
• Configured and maintained Wi-Fi access points (AP) for stores using Motorola Access Point Controllers.
• Implemented VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN for various Call centers and Vendors of Client.
• Used Anue-Nexthop and Gigastore Observer devices for expert traffic analysis including brief packet summary.
• Prepared and uploaded documentation for all deployment and data center details on Corporate Wiki Website. Copied and done upgrade of Cisco devices using PC as TFTP server.
• Worked on BlueCat and IPAM tools for IP and DNS management.

Confidential, St. Louis, MO

Network Specialist

Responsibilities:

• Configuration, Management, Troubleshooting of Network devices (Routers, Switches). Maintained the Telecommunication Connectivity using DSL and T1 Lines.
• Assisted in troubleshooting LAN connectivity and hardware issues in the network.
• Studied and analyzed client requirements to provide solutions for network design, configuration and administration.
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Created a backup and recovery policy for software application and verified peripherals are working properly.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP & OSPF routing protocol administration.
• Implemented stub/Totally stub areas. Implemented various OSPF features like route-summarization and SPF throttling.
• Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.
• Monitor the operability and reliability of the network.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks (VLSM).
• LAN cabling in compliance with CAT5 standards.
• Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issues.

Confidential

Network Trainee

Responsibilities:

• Job duties included to monitor, analyze, troubleshoot and/or evaluate hardware, software and other network related problems
• Worked on Cisco 2500, 2600, 2800 series routers and 1900, 2900 series switches.
• Replaced outdated Cisco switches and routers in existing data centers and installed new Cisco switches and routers including migration of 2500 to 2600 series router.
• Configured and implemented various protocols on 2800 series router for efficient performance of the network.
• Configured and maintained Cisco 2900 series switches including VLANs and Trunking protocols.
• Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Configured ether channels using PAgP and LACP.
• Provided testing for network connectivity before and after install/upgrade.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external.
• Prepare, update, and maintain technical and logistical network documentation