CAREER HIGHLIGHT

• 7 years of experience in design, implementation, trouble shooting, development and maintaining enterprise date network systems and Implementation of enterprise networks by dealing with Cisco routers, Cisco Catalyst switches, Cisco Firewalls, Load balancers.
• Experience in Windows network administration, Cisco products, systems design, implementation and troubleshooting with strong knowledge of network security at desktop, server and internet levels.
• Expertise in Designing, Implementing and troubleshooting various Network Technologies. Background includes hands-on experience, specializing in Cisco Environment in Data Center, LAN / WAN and Security.
• Experience with Cisco/Juniper Networking, SSL Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.

AREAS OF STRENGTH INCLUDE

TECHNICAL

• Experience to run independently with Checkpoint and Network Engineering like Routing/Switching and Protocols VPN along with ASA Firewall.
• In depth knowledge of networking requirements VLANs, trucking, multicast, VRFs, OSPF BGP routing
• Real world experience with firewalls from both Cisco and Check Point.
• Designed and Implemented Cisco Nexus Platform, Cisco UCS HP Virtual Connect Flex10
• Expert in Data Center Technologies such as vPC, VDC, VSS, STP, FCoE, OTV FabricPath
• Highly Experienced in Cisco Catalyst 6500 Platform and its Service Modules
• Implemented Load Balancing solutions on F5 BIG-IP LTM, Cisco CSM Array APV/TMX
• Implemented Firewall Security in compliance with PCI on Cisco ASA,FWSM Checkpoint
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Experience in successfully executing all technical components include architecting complex solutions, providing demonstrations and presentations, leading technical discussions, developing product customizations, planning and executing customer proof of concepts, providing product training and support, and leading rapid deployment efforts.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Proficient in Cisco IOS for configuration troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience in testing cisco routers and switches in laboratory and deploy them on site production.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Responsible for CheckPoint and Cisco ASA firewall administration across global networks.
• Extensive experience in Configuration and deployment of network security devices, including firewalls, Intrusion, Detection Systems, VPN, Identity Gateways.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX SSL Security appliance, Failover DMZ zoning configuring VLANs/routing/NAT with the firewalls as per the design.

PROFESSIONAL SKILLS

ORGANIZATIONAL EXPERIENCE

Confidential

Role: Network Security Engineer

Responsibilities:

• Design and implementation of the LAN IP infrastructure using layer2 / layer3 switching, VLAN, VTP, Spanning tree, Gigabit Ethernet and trunking / channeling technologies.
• Configuring, maintaining and troubleshooting Cisco layer 3/ layer 2 switches.
• Configuring IP, RIP, EIGRP, OSPF and BGP in routers. Routing related tasks includes, providing Cisco router configuration and troubleshooting the configuration and installation issues.
• Designing rules ACL, security policies to ensure better security.
• Hands on experience in configuring QoS on Cisco Routers/Switches.
• Monitoring and maintaining LAN/WAN networks using Snort and sniffer trace.
• Configuring VLAN and enabling IP routing in order to allow restricted connections from some resources.
• Working knowledge of SONET/SDH protocols and MPLS.
• Installing and configuring Checkpoint and ASA firewalls, VPN networks and redesigning customer security architectures.
• Design and Implement Remote access VPN server using Cisco ASA.
• Creating a rule on the checkpoint firewall for a NAT used ACLs to block unauthorized users to the VLAN IP and allowing the IPsec traffic.
• Recommend designs to ensure consistency within networks.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Experience in Organizing and directing network installations and changes.
• Troubleshooting connectivity issues and application problems during 'on call' support.
• Created extensive architecture and design documents such as site network diagrams, logical LAN/WAN diagram, network device list servers/routers/switches , server information sheets that will be used in the handoff from engineering to operations.
• Configuring failover and working on SSL-vpn when in active/standby failover on ASA.
• Creating Virtual IP address, Pools and Persistence profiles on F5 LTMs.
• Create complex iRules using TCL language for URL redirections, HTTP header-insertion and HTTP header modification.
• Creating Wide IPs with various load balancing methods like, Global Availability, Topology and Round Robin.
• Deployed LTMs and GTMs in DMZ environments with FIPS solutions.
• Migrated Firewall infrastructure from Check Point R65 to Netscreen ISG2000.
• Implement the firewall rules using Netscreen manager NSM .
• Push the firewall rules on various versions of Nokia boxes and cross beam from Provider -1 NGX CMAs.
• Gathering details from customers and providing best security infrastructure solutions with F5 load balancers, Check Point/Netscreen firewalls and Blue Coat proxies

Confidential

Role: Network Security Engineer

Responsibilities:

• Proactively implements, updates, maintains, manages, monitors, and supports enterprise network and systems security operations infrastructure throughout the shared services environment
• Deploying, configuring, and administering CheckPoint EndPoint firewalls and hands on experience with network protocols.
• Supporting a complex back-end firewall infrastructure environment covering all aspects of firewall administration such as hardware, operating system, encryption tunnels, gateway-to-gateway VPNs, TCP port exemptions, day-to- operations of firewall rule sets, backup and restoration of management consoles, firewall OS, and rule sets.
• Performs change control and device configuration management activities on all security hardware
• Provides management level reporting of firewall activities on a periodic basis
• Best practice implemented on Cisco Routers and Switches.
• Responsible configuring firewalls Watchguard, SonicWALL, Fortigate, Sophos
• VMware Junior Support Admin- Test domain server setup, networking, and VPN tunneling
• Responsible for providing all network Engineering and security engineering
• Developed initiatives to ensure the accurate and timely documentation and tracking of troubleshooting methods and procedures.
• Configured and administered Windows server 2008 R2 Active Directory
• Responsible for the setup of user accounts, Organizational Units, security groups and created users. Setup group policy for users OS Windows XP, 7, and 8
• Handled all in house help desk including the diagnosis and troubleshooting of user issues.
• Fine tuning of Firewall policies based on Information security policy.
• Network documentation using Microsoft Visio 2007.
• Building, configuring, maintaining, troubleshooting the firewalls. Develop and implement the company's security policies, and rules implementation. Coordinate lab testing of new software to ensure stable implementation.
• Provide support to help desk for complex/major network problems. Build the rules for the application access across the IPSEC VPN tunnel.
• Implemented enterprise wide network infrastructure and ecommerce support solutions including, network intrusion detection, encryption and monitoring.
• Works with other firewall team members to review security architecture and design documents to ensure consistency, accuracy and compliance with the articulated security posture and industry requirements
• Provides vulnerability and threat management monitoring and mitigation response
• Participates in tactical and operational planning of vulnerability assessment activities
• Contributes to team effectiveness by accomplishing additional security related results as needed

Confidential

Role: Network Engineer

Responsibilities:

• Firewall Policy Implementation on Checkpoint R62 and R65 using Provider 1.
• Migrated Nokia IP 300 to Checkpoint NGX R65 SPLAT
• Site to site VPN implementation on Checkpoint Firewall R62 with 3DES encryption over IPsec.
• Monitor and analysis of Firewall logs for HQ and Branch office.
• Configuration and Maintenance of ASA 5550, ASA 5510, PIX 535, PIX 515E, FWSM Firewalls and IPS 4240 using Cisco Security Manager CSM .
• Programmed all the switches and firewalls for all the 30 Remote Locations, Configured QOS for VOICE and Data for Branch office with the Edge Routers.
• Expertise in VPN configuration, routing, NAT, access-list, security contexts, and failover in ASA firewalls.
• Upgraded company Checkpoint firewall to ASA 5520.
• Configured day to day rules on the company main firewall for public access of the different apps configuring different access lists as per company needs. Trained helpdesk staff for day to day jobs such as backup, desktop installations, desktop and server imaging.
• Worked on VMware VCenter for creating virtual servers and virtual desktops.
• Configuring Primary and Backup Servers
• Upgraded , supported, troubleshooted, Windows NT ,Windows 2000/2003/2008 R2/2012 operating systems
• Configured Windows Group Policy for the Desktop security.
• Designed implemented MacAfee EGPO for virus protection

Confidential

Role: Network Administrator

Responsibilities:

• Monitoring servers like domain controllers, exchange servers and connectivity.
• Responsible for client PCs troubleshooting and network connectivity.
• Troubleshooting problems pertaining to Performance Tuning, Network Administration and Application Conflicts.
• Installing, configuring and maintaining Application Software Hardware.
• Installing and monitoring web proxy.
• Configured EBGP peering with other providers and implemented security policies at the peering points.
• Monitored network for optimum distribution and load.
• Configured AAA, RADIUS authentication on Juniper M320 routers.
• Responsible for testing and evaluation of new network technologies and hardware.
• Maintained route Summarization, OSPF authentication using Juniper Netscreen.
• Configuring BGP, OSPF and RIP routing protocols.
• Design and Implement Remote access VPN server using Checkpoint NGX R60 and NG R55.
• Installing and configuring Checkpoint NG R55 NGX R60
• Configured resolved various OSPF issues in OSPF multi area environments, Controlled SPF throttling.
• Used BGP for verifying various traffic policies towards customers using BGP attributes such as Local Pref, MED, Extended Communities.
• Design, implement and manage policy routed, three tier ASP network and security architecture using Checkpoint NGX R60.
• Configured VLANs with 802.1q tagging.
• Troubleshooted network problems with TCP/IP.
• Managed corporate IP addressing, aggregation and sub-netting.
• Configuration and Troubleshooting of T1, Fractional T1 and T3, OC-3 and OC-12.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, etc.