SUMMARY:

• Firewall security policy implementation and monitoring.
• Installation, deployment, Analysis and troubleshooting of Firewall Technologies i.e. Checkpoint, Fortinet, Palo - alto, Cisco ASA, F5 (LTM).
• Checkpoint, Cisco ASA, Fortinet and Palo Alto installation, upgrade, Monitoring and patch management.
• Checkpoint ClusterXL for HA and fail-over for network reliability.
• F5 Network LTM, Designed and implemented iRule to block and redirect certain IP and resources.
• Managed Checkpoint Clusters in Provider1 environment.
• Migrate, Upgrade and Patch Management of Cisco ASA, Checkpoint, Palo alto and Fortinet Firewalls.
• Setup site-to-site IPSEC VPN tunnel and Remote VPN (SSL) within and across platforms like Checkpoint, Cisco ASA, Palo alto and Fortigate Firewalls and Cisco Router devices.

PROFESSIONAL EXPERIENCE:

Confidential, ATLANTA, GA

FIREWALL ENGINEER

Responsibilities:

• Install, configure and maintain Check Point R77.3 on GAIA.
• Utilize FortiManager, Forticlient and FortiAnalyzer to maintain and optimize FortiGate firewalls.
• Configure and administer security rules and policies to permit and/or deny user traffics based on company. security policy with F5 BIGIP, Fortigate 1500D, Checkpoint, Cisco ASA, and Palo alto firewalls
• Manage Palo alto, Checkpoint, Cisco ASA and Fortinet policy and network
• Configure and troubleshoot HA Cluster Backup, Upgrade, Patch and Migrate Firewalls and Systems
• Use CLI to configure Cisco ASA Firewall, F5, Symantec, IPS and Cisco Meraki
• Design and implement F5 BigIP Load Balancers for use with web and database applications with Team
• Performed system upgrades, regular product updates, emergency patch applications, and maintenances.
• Troubleshoot BIG-IP with TCPDUMP, log files, KQview file and modifying irule
• Migrate Palo alto to Cisco ASA Firewalls
• Upgrade and patch management of Firewalls like Palo-alto, Cisco ASA, Fortinet, Checkpoint
• Deploy Symantec Endpoint security, WAF and DLP for every network devices
• Configure and manage LDAP User management with Checkpoint Smart Directory
• Integrate Microsoft active directory (LDAP) into checkpoint for identity awareness and user authentication.
• Back up, Restore and upgrade of CheckPoint and Fortigate firewall appliances.
• Analyze logs and make necessary network report using smart reporter console application.
• Configure checkpoint and fortigate firewall to authenticate users based on user identity, user group, session and PC-User Authentication.
• Configure IPSEC and SSL VPN with Palo-alto, Cisco ASA, Fortinet, Checkpoint and Router.
• Troubleshoot firewall issues using CLI and GUI.

Confidential, DOWNERS GROVE, IL

NETWORK SECURITY ENGINEER

Responsibilities:

• Managed firewalls like Palo-alto and Cisco ASA policy and configuration.
• Planned, designed and Configuration of various Policy, Profile Authorizations, End device Profiling, User Identities and AD mapping with various attributes and levels of authorizations and Network Access.
• Implemented traffic filters using Standard and Extended Access-lists. Handled Route-map, Re-distribution list & access-list configurations.
• Participated in disaster recovery testing, maintaining system documentation logs and assisting in troubleshooting and diagnosis of system problems

Confidential

NETWORK SECURITY ENGINEER

Responsibilities:

• Worked extensively on Checkpoint R75.47 and R77.10, R77.20, R77.30 Firewalls.
• Successfully achieved main goal of project: Played an Integral role in migrating company’s security firewall environment from FortiOS 5.4 firewall platform to Fortigate 1500D and FG 100D and Checkpoint firewall
• Implemented the policy rules and DMZ for multiple clients of the state on the Checkpoint firewall.
• Created and modified rules, diagnose and resolve LAN/WAN problems.
• Change implementation on firewalls, log analysis and troubleshooting of network access issues.
• Provided network Installation and firewall support to various internal groups for upgrades and migrations.
• Configured of firewalls, routers & switches to meet business needs.
• IP Addressing, NAT, Basic and Advanced Filtering and Routing
• Performed filtering based on user identity, URL and device.
• Created and Managed Site VPN (IPSEC) and Client VPN (IPSEC, SSL) on FGT 60D and Checkpoint R77.

Confidential

NETWORK ENGINEER

Responsibilities:

• Local Area Network (LAN) Protocols and Configuration.
• Provided end-user support and network administration services.
• Designed, developing, maintaining, and supporting new LAN, WAN and wireless network with active components such as routers, switches, modems
• Configured, Troubleshooting and management routing protocol (OSPF and EIGRP)
• Configured, and troubleshooting STP and Virtual VLANS
• Setting up of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during implementation
• User and group administration in Active Directory Server.

Confidential

QUALITY CONTROL PERSONNEL

Responsibilities:

• General treatment/supervision of the equipment during and before operations.
• Tested the reagents/components to retain products required standard (7UP, Pepsi, and Mountain Dew).
• Provided verification before dispatching products to the store.
• Adjusted and maintained automated machine operations.
• Designed, Implemented and maintained Network Equipments and Office Computers.