SUMMARY:

• CCNP Certified Professional with 7 years of experience in routing, switching, firewall technologies, system design, implementation, troubleshooting of complex network systems, enterprise network security, wireless design, data network design, capacity management and network growth.
• Have in depth knowledge and working experience on CATOS, Native IOS, Windows Client/Server OS.
• Worked on network topologies and configurations, TCP/IP, UDP, DS1/DS3 Frame Relay, Token ring, ATM, bridges, Metro Ethernet, T1/T3, routers, hubs and Switches.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting on Cisco Routers, Cisco Switches, Nexus Switches, Firewall, Proxy, VPN Concentrator.
• Strong hands on experience in installing, configuring , and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 3900, 2500, 1800 And ASR 1002series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Switching tasks including L2/L3 Protocols like VTP, STP, RSTP, PVST, RPVST, ISL, 802.1q, IPSec and GRE Tunneling, VLANs, HSRP, GLBP, Ether Channel, Trucking, Port Security.
• Well Experienced in configuring protocols, VRRP, ICMP, IGMP, PPP, PAP, CHAP, ACL SNMP, RIP,EIGRP, BGP, OSPF and tunnel Installing.
• Experience in installing and configuring DNS, DHCP server, FTP, TFTP, VOIP SIP, H.323, MGCP .
• Good knowledge of OSI Model and TCP/IP networking standards with protocols such as SNMP, FTP, ICMP and IPv6.
• Manage security with Cisco Identity Service Engine.
• Strong work experience with the following technologies MPLS, Q0S, VPN, WLAN and Multicast.
• Network security including NAT/PAT, ACL, HTTPS, Web Proxy, LDAP, VPN Concentrator, ASA/PIX Firewalls, Cisco IDS/IPS, AAA, IPsec/SSL VPN and L4 L7 protocol.
• Hands on Experience Checkpoint UTM-1, Checkpoint Smart Center R.75, Nokia Voyager IPSO-390.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
• Configured Client-to-Site VPN using SSL Client on Cisco ASA 5520 ver8.2.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate cloud-based process that does not impact stream processing.
• Extensive knowledge in implementing and configuring F5 Big-IP LTM-3900, and 6900 Load balancers.
• Deployment and Management of Bluecoat proxies in forward proxy scenario as well as for security in reverse proxy scenario.
• Hands on experience to work with Linux Server, Vblock Server, UCS and VMware Server.
• In-depth knowledge of network communication technologies and techniques.
• Experience with Change management process and Project documentation tools like Excel and VISIO.
• Finely tuned analytical/critical thinking and debugging skills with excellent verbal and written communication skills.
• Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills

TECHNICAL SKILLS:

Routers :Cisco 2600, 2800, 2900, 3800, 3900, 7200 7600 series and ASR 1002.

Switches :Cisco Catalyst 3550,3750,4500,4900, 6500, 3850, 2960, NEXUS 7K/5K/2K series.

Routing : OSPF, EIGRP, IGRP, BGP, RIP V1/V2, ISIS, PBR, Route Filtering, Redistribution, Summarization, Static routing

Switching : VLANs, Dot1Q, VTP, STP, RSTP, PVST, RPVST, HSRP, Port Channel, Ether Channel, Port Security

LAN Technologies :Ethernet IEEE 802.3 , VLAN, Gigabit Ethernet.

WAN Technologies : Frame Relay, ISDN, PPP, ATM, MPLS, Fiber Optic Circuit.

Infrastructure Services : DHCP, DNS, IP, TCP, UDP, SMTP, FTP, TFTP, VPN, IRDP, Wireshark,Solarwind,

Network Management : SNMP, SSH, Telnet, ICMP

Network Security : Cisco ASA 5500, Check Point, Palo Alto

Load Balancer : F5 Big-IP, LTM, ACE Module, GSS

IP Telephony : VOIP, T1/T3, ISDN, PRI, Unified Call Manager

WAN Optimizer : Riverbed Steelhead Appliance

AAA Architecture : TACACS , RADIUS, Cisco ACS/ISE

System Administration : Windows 2000/XP/2003/Vista/Windows 7, Linux/Unix.

Education: Master of Science in Computer Application Information Technology Certification: Cisco Certified Network Associate Cisco Certified Network Professional

PROFESSIONAL EXPERIENCE:

Confidential

Role:Sr. Network Engineer

Responsibilities:

• Design and Implementation of Disaster Recovery Co-location consisting of Nexus 7K switches, ASR 1002, Cisco ASA Firewalls, Cisco 3925 routers etc. Successfully implemented OTV for VLAN Extension.
• Design and implementation of Main Data Center Move project from one location to another location with minimal down time using traditional DCI with vPC and In-box configurations with same HSRP group for redundancy on four Nexus 7k switches, two on each side.
• Experienced in installation, configuration and maintenance of Cisco Nexus 7K, 5K switches in standalone as well as in V-BLOCK infrastructure
• Extensive knowledge and experience in vPC, ether channel, STP, VTP, and HSRP also VRRP protocols.
• Experienced in Cisco ASR 1000, 7200, 2700, 2900, 3900, 1800 Routers, , Cisco Catalyst 4500, 2900, 3700 Switches.
• Hands on Experience Checkpoint UTM-1, Checkpoint Smart Center R.75, Nokia Voyager IPSO-390.
• Applied ACLs for Internet access to the servers using Cisco 5520 ASA firewall, performed NAT.
• Deployment and Management of Bluecoat proxies in forward proxy scenario as well as for security in reverse proxy scenario.
• Implementing and troubleshooting on-call IPsec VPNs tunneling and SSL for various business lines and making sure everything is in place.
• Hand on experience in Juniper secure gateway SA-4500 7 SA-2500 for VPN and manage security with ISE.
• Hand on experience in Meru Wireless Controllers MC-1500 MC3200 access points AP-302, AP320 AP320i
• Extensive knowledge in working and deployment of Network Management systems including Riverbed, Whats Up Gold, Kiwi Sys Logs, Cisco LMS, Mazu and MRTG using SNMP trap and SNMP Polling also.
• Deployment and configuration of Sourcefire 3D Sensor 8250 and Defence Center 3500 with Port SPAN also creating IPS/IDS policies and intrusion report generation and monitoring.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local Preference, Communities.
• Create and test Cisco router and switching operations using OSPF routing protocol, and MPLS switching for stable VPNs
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like RIP,EIGRP, OSPF, ISIS and BGP.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Involved in the configuration and maintenance of IPSec Site-Site VPN.

Confidential

Role:Sr. Network Engineer

Responsibility:

• Experienced in installation, configuration and maintenance of Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500 sup 720 , Cisco Wireless LAN Controllers, Cisco Nexus 7000 Seies, 4500 SUP 6 , 3750, 2950 series Switches.
• Configuration included VLANs VTP, STP port features, Gateway redundancy using HSRP, enterprise security using Cisco Port Security and Dot1X framework.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas configuring Summarization for effective Routing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
• Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, Route maps, prefix-lists etc.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local Preference, Communities.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.
• Responsible for Configuring site to site IPSEC VPN on Cisco ASA 5500 series firewall between Head office and Branch office
• Convert Radius Proxy functionality to Cisco ISE.
• Create, validate and install security policies to meet changing network requirements. Maintain a current repository of saved configurations and document policy changes
• Configured and maintain VPN tunnels as required by the business and maintain secure firewall routing tables. Also maintained all policies pertaining to the Unified Threat Management suite.
• Provided failover method maintain the disaster recovery firewall environment with Checkpoint..
• Configuring NAT for internet access for the LAN. Implementation of name resolution using WINS and DNS for TCP/IP environment.
• Provided an IP Addressing scheme using VLSMand maintained VLAN table, and implemented DHCP server for assigning IP address to various connecting devices.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Create the NPL and implementing on the ticketing issue with lab environment. Worked extensively on network testing, ticketing and troubleshooting.
• Setup TFTP server to maintain CISCO router configurations and CISCO images. Worked on network software and hardware upgrades.
• Involved in sites cutover for Data deployment. Also involved in supporting troubleshooting site after cutovers.
• Worked on WAN connectivity between CISCO routers using T1, T3, DS1, DS3 Frame relay and troubleshooting connectivity issues.
• Planning, coordination and implementation of Branch Office reallocations. That included planning network closets, coordinating with cable vendors for structured cabling and WAN connectivity and also coordinating with Wireless Vendors for Wireless survey and deployment.
• Documentation for latest projects and updating diagrams for network changes. Performing root cause analysis and technology testing with the corresponding documentation.
• Responsible for service request tickets generated by the helpdesk such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.

Confidential

Sr. Network Support Engineer

Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
• Responsible for the Global design, engineering, and level 2/3 support of existing network technologies services and the integration of new network technologies / services.
• Key contributions include troubleshooting of complex LAN /WAN infrastructure that include routing protocols EIGRP, OSPF BGP.
• Configuration, Testing, Planning and Design of Cisco Routers, Cisco Catalyst 2900, 3570 and 6500 Switches and Cisco AirNet Wireless appliances.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Migration from Frame-Relay/ATM network to MPLS-based VPN for customer's WAN infrastructure.
• Troubleshooting latency and throughput issues on MPLS and Dedicated Internet Access circuits
• Configured Cisco 7204 routers which were also connected to Cisco ISE security appliances providing perimeter based firewall security.
• Upgrade Cisco Routers, Switches and Firewall ASA IOS using TFTP.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX/ASA Firewall, Nortel VPN Concentrators TCP/IP.
• Hands-on experience in the network management of circuits using TDM and Frame Relay network, performing configuration and provisioning management, fault management and performance monitoring
• Experience deploying managing high availability CUCM/Unity environments, SRST, voice gateways and dial plans
• Resource management through deployment of network based monitoring applications to keep bandwidth activity alongside each other.
• Configured Client VPN technologies including Cisco's VPN client via IPSEC.
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Installed and Configured a Cisco secure ACS server for AAA authentication RADIUS .
• Performed switching technology administration including Vlans, inter-Vlan routing, trucking, port aggregation and link negotiation.

Confidential

Role: Network Engineer

Responsibilities:

• Installed and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Worked on Heterogeneous networks such as Frame Relay, Ethernet, Fiber, etc.
• Prepared Check Point firewall configurations for conversion to Cisco ASA 5585-series firewalls.
• Primary Network Security Engineer for Fiserv Firewall/VPN Support and Management on Checkpoint Crossbeam and VSX , PIX, ASA.
• Involved in Configuring and implementing of Composite Network models which consists of Cisco7600, 7200, 3800 series routers.
• Configured Routing protocols such as OSPF, BGP, RIP, static routing and policy based routing.
• Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
• Deployed Cisco Nexus 5K Series to support Virtualization, SAN Infrastructure, and high performance computing environments.
• Implementation and Proactive Monitoring of MPLS MPLS-VPN , QoS Layer2 and Layer3 and BGP technology.
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and Cisco 2950, 3500, 5500, 6500 Series switches.
• Responsible for Network Support Cisco ASA 5500 firewalls.
• Analyzed and tested network protocols Ethernet, TCP/IP using Wireshark tool.
• Experience using diagnostic security and networking tools such as NMAP, WireShark etc.
• Utilize Wireshark, NMAP and Command Line Prompts on a daily basis.
• Involved in a project for a re-design of the LAN network Cisco Catalyst 2960 and Nexus 5000 switches and the virtualization of some systems
• Working with vendors such as Cisco to address any configuration issues.
• Worked with Juniper net Screen 500/5200 and also Juniper SRX 650/3600.
• Installed and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Worked on Heterogeneous networks such as Frame Relay, Ethernet, Fiber, etc.
• Prepared Check Point firewall configurations for conversion to Cisco ASA 5585-series firewalls.
• Primary Network Security Engineer for Fiserv Firewall/VPN Support and Management on Checkpoint Crossbeam and VSX , PIX, ASA
• Redesigned Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Experience with hardware load balancer administration and support, preferably with F5 and Cisco ACE load balancers.
• Experience in configuring Load balancers and Riverbed WAN optimizers.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Monitored and analyzed Intrusion Detection Systems IDS Intrusion Prevention System IPS to identify security issues for remediation.
• Configuration and troubleshooting of Cisco switches 2000, 3000, 6500, 7004, 7009, 7700 Series.

Confidential

Role: Sr. Network Engineer

Responsibilities:

• Experience working with Cisco IOS-XR on the ASR 1000 devices for MPLS deployments.
• Experience with migrating from OSPF to BGP WAN Routing protocol.
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
• Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment.
• Installation and Configuration of Cisco Catalyst switches 6500, 3750 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches.
• Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards customer.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center.
• Experience in communicating with different customers, IT teams in gathering the details for the project.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLSswitching for stable VPNs.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Experience in WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types.
• Configured Security policies including NAT, PAT, VPN, Route-maps and ACL.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network infrastructure and configured the entire network Infrastructure devices including Network Printers and Register.
• Hands-on experience in the network management of circuits using TDM and Frame Relay network, performing configuration and provisioning management, fault management and performance monitoring.

Confidential

Role: Network Specialist

Responsibilities:

• Assisted in troubleshooting LAN connectivity and hardware issues in the network.
• Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
• Involved in the troubleshooting of call center functions MACD, UCCX.
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP OSPF routing protocol administration.
• Interacted with support services to reduce the downtime on leased lines.
• Troubleshoot problems on a day to day basis provide solutions to fix the problems.
• Monitor the operability and reliability of the network.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Managed the IP address space using subnets and variable length subnet masks VLSM .
• Worked along with the team in ticketing issues responsibilities included documentation and support other teams.

Confidential

Role: Jr Network Engineer

Responsibilities:

• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP for hop redundancy and load balancing.
• Configured the Cisco router as IP Firewall and for NATing Configured RSTP, MST and used VTP with 802.1q trunk encapsulation.
• Provided port binding, port security and router redundancy through HSRP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers, Cisco Wireless Control Systems, Physical cabling, IP addressing, Wide Area Network configurations.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external.