SUMMARY:

• Dynamic, accomplished Network Engineer highly regarded for 8+ years of progressive experience in driving and supporting network engineering and administration efforts for industry leaders like Confidential and Confidential . Respected as a motivational, influential leader and collaborator who ensures top - tier systems support in fast-paced workplaces. Builds and maintains lasting relationships, driving organizational coordination and superb user support through a people-focused approach. Exemplary training includes CCNP and CCNA designations. Out-of-the-box, analytic thinker committed to making continuous improvements in support management to deliver on all goals.

TECHNICAL SKILLS:

Networking Skills: TCP/IP, RIPv1/v2, OSPF, EIGRP, BGP, VRRP, HSRP, IPSEC, SSL

Security: Palo Alto Firewalls PA-200, PA-500, PA-5020, PA-7050, Checkpoint R80.10, R77 (GAIA), R75, Checkpoint Provider-1, Cluster XL, VSX, Juniper SSL VPN, Juniper SRX Firewalls, Netscreen SSG & RSA Server, Cisco ASA 5520, 5540, 5545, 5585 with firepower, PIX 515, 525, FWSM, ASDM, CSM, Multiple Security Context, NAT (Static, Dynamic, PAT, Policy), IPS Sensor Configuration, Promiscuous and Inline Monitoring, VPN, Security Protocols including RADIUS and TACAS+, Sourcefire IPS

Switching: Cat OS and IOS based Switches, VTP, STP, RSTP, Trunking, VLANs, Layer 3 Switches, Nexus 5k,7k series, VRF, Ether channels

Other tools: F5 LTM and GTM, Bluecoat Proxy SG, Tufin, Firemon, Algosec, Splunk, Tufin SecureTrack, Cisco works, AWS Cloud environment, Microsoft Azure, Redhat Linux and VMware ESX/ESXi server, Shell Scripting, IT Services Management (ITSM), PCI & SOX compliance, Service NOW, Remedy and ITIL.

PROFESSIONAL EXPERIENCE:

Confidential, Plano, TX

Sr. Network Security Engineer

Responsibilities:

• Configuring, Administering and troubleshooting the Palo Alto, ASA and Juniper firewall.
• Extensive implementation of firewall rules on Juniper SRX 3600, SRX 650 and SRX 220 on a daily basis, using NSM as well as CLI when needed.
• Investigate security incidents, troubleshoot, resolve and recommend actions needed to resolve vulnerability issues.
• Managing Cisco ASA 5585, 5555, 5545 series, upgrade and maintain security policies
• Responsible for installation, configuration of Palo Alto 5k,7k series firewalls using Panorama
• Performing migration from one datacenter to another data center which supports millions of users.
• Provide on call support with network operations teams resolving incidents
• Deployed Paloalto-7000 series device to the production environment, managed them via Panorama.
• Worked on the migration of ASA firewalls to Palo Alto firewalls in cloud environments.
• Performed code upgrades on the ASA 5585, 5555 series
• Worked on Splunk SIEM to gather generated logs for the firewalls, to maintain application flow on firewalls
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Block listing and White listing of web URL on Blue Coat Proxy Servers.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server as well as configuration of F5 Big-IP LTM 6400 load balancers and experience working with F5 devices (LTM, GTM, APM, V11, V12)
• Packet capture on firewalls and analyzing the traffic using Wireshark utilities.
• Deployed and decommissioned the VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Implemented Active/ Standby HA configuration on Cisco ASA Firewalls.
• Configuring Cisco ASA firewalls in Single and Multiple Context Mode firewalls.
• Worked on Infoblox for creating the DNS entries, A records and CNAMEs
• Installing and configuring new cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company.
• Design and deployment experience with Juniper and Palo Alto firewalls
• Completed core refresh projects involving Cisco 3850, 6509, and 3750x switches.
• Replaced old 6500 and WAN routers from DR testing site and configured Nexus 7K and ASR 1006 routers.
• Experience with Juniper SRX 240 Firewalls.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems
• Implementing and maintaining security systems: Firewalls, IPS and VPN solutions (Palo-Alto, Cisco, Juniper)

Confidential - Plano, TX

Sr. Network security engineer

Responsibilities:

• Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
• Managing Checkpoint Multi-Domain manager (Provider-1), R77.30 Gaia, Checkpoint VSX clusters and cluster XL solutions.
• Managing Cisco ASA 5540, 5580 and Firepower modules via CLI and Cisco Security Manager (CSM).
• Maintaining virtual firewalls and creating new bongs for the checkpoint VSX cluster firewalls.
• Responsible for installation, configuration of Checkpoint 12400, 12600, 21400 Appliances.
• Performing creation and deletion user accounts and global group’s creation in global policy in Provider-1.
• Participating on weekly diamond call with checkpoint associative to upgrade R7 Version in Lab write SOW.
• Deployed Paloalto-500 series device to the both Lab and production environment, managed them via Panorama.
• Worked on the migration of Juniper Net screen and Cisco ASA firewalls to Palo Alto firewalls, in cloud environments.
• Performed code upgrades on the checkpoint R77.20 Gaia to R77.30 Gaia version and applied hotfixes as well.
• Worked on IBM Qradar SIEM tool to monitor the traffic and analyze the traffic.
• Trouble shooting Layer 3 issues, also assist layer 2 team with the troubleshooting issues with BGP, OSPF.
• Creating ACLs as per user’s requirement to getting access for different servers like internal firewalls, DMZ firewalls and Internet firewalls and also worked on Splunk for troubleshooting.
• Worked on emergency changes as per user’s requirements and creating ACL’s in cisco ASA firewalls in cisco CSM and checkpoint firewalls.
• Worked on and implemented Tufin Firewall optimization tool for firewall cleanup project by running reports and deleting unused rules.
• Involved in migration of Cisco ASA and checkpoint firewalls to Paloalto firewalls.
• Creating many ACL’s in both CISCO ASA 5540 and Checkpoint firewalls R75.40 and R77.30.
• Configured Cisco ASA firewall to use multiple security levels and interfaces.
• Managed Cisco firewalls from both the Command line, ASDM and Cisco CSM.
• Configured and deployed VPC, OTV, FABRIC PATH between Nexus 7k and Nexus 5k, 5548 switches along with FEX2248
• Created documents for various platforms including Nexus 7k,5k ASR enabling successful deployment of new devices in the network
• Performed code upgrade on Cisco ASA firewalls, also converted Legacy Cisco PIX to Cisco ASA firewalls with firepower.
• Product implement, enhance, and integrate the Bluecoat products and functions as a liaison between the client and Symantec product Support
• Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and decryption protocols, focusing on bluecoat proxies.
• Preparing design documentation using VISIO for ORB meeting.
• Worked on TUFIN optimization tool to clean up firewall rule base and also monitored unauthorized changes.
• Designed VLAN’s and set up both L2 and L3 logical to have it communicate to the Enterprise network.

Confidential - Houston, TX

Sr. Network engineer

Responsibilities:

• Managing Juniper Firewall (SRX) configuration, VPN configuration, configuring NAT’s and Routing.
• Hands on Experience working with LAN and WAN topologies, TCP/IP protocol, routers, switches, and firewalls in Internet, Intranet and Extranet environments.
• Configuration, installation and troubleshooting of Juniper SRX 650s and SSG-550Ms
• Extensive implementation of firewall rules on Juniper SRX 3600, SRX 650 and SRX 220 on a daily basis, using NSM as well as CLI when needed.
• Working on Azure for highly available B2b and C2C experience, deploy services based on cloud services.
• Configured and Deployed Nexus 5k and 7K switches as per client requirement.
• Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, irules) and GTM’s for managing the traffic and tuning the load on the network servers.
• Configuration and Administration of Palo Alto Firewalls, perform migration in cloud environments.
• Migrated and implemented new ACL solutions with Cisco ASA Firewall series 5505, 5510, 5540 series.
• Configure Bluecoat proxies using Symantec’s bluecoat director for content and URL filtering
• Upgrading multiple firewalls and Network devices under planned maintenance window.
• Performed firewall migration from Juniper SSG to Juniper SRX firewalls.
• Implement and troubleshoot Site to Site as well as Remote Access VPNs using Cisco ASA firewalls.
• Configuring Virtual Chassis for Juniper Firewalls SRX-650.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring IPSEC VPN on Juniper SRX 650 series firewalls.
• Involved in Information Technology Service requests, install IOS patching in shell scripting using management server.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Configuration and set up of Juniper SRX firewalls for policy mgmt. and VPN's
• Experience in implementing and troubleshooting highly available firewall cluster.
• Working closely with problem owners, SMEs and other stakeholders to identify problem scope and escalate IT service outages to specialize engineering. Creating statistical reports and performing analysis on a weekly basis for areas of responsibility.
• Worked on Splunk and IBM Qradar SIEM tool to monitor the traffic and analyze the traffic.
• Configuring VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches.
• Attend weekly meeting with client to understand new requirements and implement them with change requests.
• Create policies and procedures for the VMware servers for entire organization.
• Strong ability to communicate clearly and appropriately with executive and management level business partners,

Confidential

Sr. Network Support Engineer

Responsibilities:

• Provided web-based and network solutions in addition to bespoke strategic planning and project leadership covering systems migration, configuration, administration, upgrades and troubleshooting initiatives; maintained constant focus on superlative team performance in a high-stress environment, leading to a best-in-class network support function. Maintained IT infrastructure and produced actionable reports to senior management.
• Spearheaded implementation and performance tuning of Windows 2008, 2016 Server environment for global operations, in addition to helming improvement that drastically enhanced productivity of remote sales force; techniques and methods used were later considered gold standard throughout the company.
• Resolved chronic network failure as a resident specialist with LAN/WAN.
• Achieved robust security for an industry-leading client by integrating joint architecture of firewall and DHCP with no negative impacts on network performance.
• Renovated client network and PC environment, including the creation of new file servers impacting 2K end users.
• Provided technical support to more than 500 users and guided upgrade of legacy ticketing system.