SUMMARY:

Solution - focused IT professional with over 10+ years of extensive experience in Designed, Installed and Maintained mission critical Data Networks; from two nodes to tens of thousands of nodes; from Home networks to Financial trading networks, using Multi-vendor devices like cisco, Palo-alto, FortiGATE 301E Firewall and . I have hands-on experience working on Routers, Switches, Firewalls, wireless devices, load-balancers, Intrusion Detection and Prevention devices (force-point and Cisco Firepower Threat Defense), Splunk SIEM, Nessus, Snort and a whole lot of Microsoft solutions like window server 2008/2012, Active Directory, SCCM, WSUS till Date.

TECHNICAL SKILLS:

Networking: Cisco Routers (1800, 1900, 2900, 3800, 3900), Cisco Switches (2900, 3500, 3750, 3800, 4500, 4900), Palo Alto Firewalls, Cisco ASA Firewalls, Juniper firewall, F5 BIG-IP LTM Load Balancers, force-point IDS/IPS and LogRhythm SIEM, TCP/IP, DNS, DHCP, IPsec VPN, SSL VPN, Cisco AnyConnect, DMVPN, palo alto global connect, Wireless LAN controllers, FortiGATE 301E Firewalls.

Technologies: Cisco ACI, MPLS, VLAN, VTP, STP, RSTP, PVST, MSTP, LAN/WAN, Wireless, TCP, UDP, IPv4, IPv6, IPsec, PPP, VRRP, HSRP, GLBP, RADIUS, TACACS, QOS and traffic shaping.

Routing Protocols: BGP, OSPF, EIGRP, and RIP.

Operating Systems: Windows server 2003, 2008, 2012, 2016, Window 7/8/10, Apple

Tools: & Management Active Directory, Group policy Object, SCCM, SCOM, Arc serve, Solar Winds, Splunk SIEM, Nessus, Snort, Wireshark, Symantec Ghost Solution, Exchange server .

PROFESSIONAL EXPERIENCE:

Confidential, Atlanta, GA

Network security Engineer

Responsibilities:

• I Prepared artifacts documenting compliance with PCI-DSS logging and monitoring standards for internal compliance audits.
• I manage monitoring, logging, or telemetry software such as: Splunk, Nagios, Solarwinds, PRTG.
• I work Direclty with vulnerability scanning tools like Nessus and Snort
• I manage the force-point IPS/IDS systems.
• I configure, manage and support Juniper 1500 SRX Firewalls for our site to site VPN with our 138 credit cards clients.
• I create, manage and support our FortiGATE 301E Firewalls and Cisco ASA 5515 Firewall Confidential VPN for our contract with state of Georgia Driver license Unit.
• I Manages Enterprise Web Application Firewalls ( WAF, ) and DDoS
• I configure, manage and support our layer 2 and 3 switches usual Cisco catalyst 2960 series, 3560 series, Cisco 9300 series, HP and Aruba switches
• I manage Cisco routers (ISR 4000 Series, ISR 1000 Series, ISR 900 Series, Meraki MX, 1800, 1900, 2800, 2900 series)
• I manage and configure our 3 different clusters load balancers F5 LTM
• I configure, manage and support Confidential dual internet link between Verizon and Windstream ISP using BGP
• I manage and support our Enterprise routing and switching WAN and LAN Networks
• Support our ACI environment
• I develop and implement IT Security strategies, policies, and procedures
• I assist with vulnerability assessments of information systems Using various tool like Nessus including regular audits
• I analyze Intrusion Detection and Intrusion Prevention logs under technical direction
• I present security status reports and project status to management and business
• I assist with patch management of all systems

Confidential, Atlanta. GA

Datacenter Network security Engineer

Responsibilities:

• I participate in PCI, SOX, and Audit standards across all system environments
• I work with Nessus and Snort for Vulnerability scanning and SIEM Splunk as Logging system
• I configure, manage and support internet links from our vendor
• I configure, manage and support Juniper 1500 SRX Firewalls for our site to site VPN with our 138 credits cards clients using NSM and Junos space security director only.
• I create, manage and support our FortiGATE 301E Firewalls and Cisco ASA 5515 Firewall Confidential VPN
• I manage and support our Palo-alto Firewall for users security and SSL VPN
• Integrated Active Directory (LDAP) into Palo Alto for identity awareness and user authentication.
• I configure, manage and support Cisco catalyst 2960 series, 3560 series and 9300 series)
• I Support our HP CHASIS serves with HP Operation Manager in the Data Center.
• I Coordinate and collaborate with production engineering, business application, and database administration functions to ensure availability, reliability, and scalability of servers to meet business demands
• I Monitor and test system performance and provide performance statistics and report.
• I Plan and implement server upgrades, maintenance fixes, and vendor-supplied patches
• I Create python scripts as required
• I Establish and implement policies, procedures, and technologies to ensure security compliance
• I assist in designing and implementing data center room security features, including HVAC control, Environmental alarms.

Confidential, Atlanta, GA

Network Engineer

Responsibilities:

• Oversaw the design and implementation of a Disaster Recovery plan and system that ensures timely and continuous system availability always.
• Performed deep packet capture and analysis for insights into the performance of all applications that flow across client IP networks.
• Managed and configured Redundancy Protocols (VRRP, HSRP, and GLBP).
• Managed and configured Cisco switches (2900, 3500, 3750, 4500, 4900), with VLAN, VTP, STP, RSTP, PVST, MSTP, and Ether Channel.
• Performed vulnerability scanning using Kali Linux.
• Migrated Cisco ASA Firewalls to Palo Alto Firewalls.
• Configured Palo Alto firewalls to authenticate users based on user identity, user group, and session and PC-User authentication.
• Configured and administered security rules and policies to either permit or deny user traffics based on company security policy with Cisco ASA Firepower and Palo Alto firewalls.
• Configured Confidential and SSL VPN with Palo Alto and Cisco ASA firepower.
• Integrated Active Directory (LDAP) into Palo Alto for identity awareness and user authentication.
• Deployed Palo Alto 5000 series into the enterprise network and sites.
• Analyzed, configured, and troubleshot LAN/WAN networks.
• Monitored Network traffic and access logs to troubleshoot network access issues.
• Used network analysis tools such as Wireshark and PRTG/Solar Winds to monitor and shape traffic for optimum performance.
• Deployed and supported F5 BIG-IP LTM load balancers.
• Managed and configured routing protocols including BGP, OSPF, EIGRP, VRF and RIP.
• Designed and implemented new QoS architecture through MQC on all routers/switches.
• Used Python scripting for network automation.
• Manage server 2012 and Active Directory.

Confidential

Network Infrastructure Lead

Responsibilities:

• Rebuilt a datacenter and a backup datacenter using Cisco and Arcserve solutions.
• Designed and implemented F5 BIG-IP load balancers, used with web and database applications.
• Ensured uptime of servers, storage, networks, and datacenter infrastructure.
• Installed, configured, and managed security technologies including Palo-alto UTM, intrusion prevention, antivirus, proxies, and user resource access management.
• Configured Palo-alto firewalls to authenticate users based on user identity, user group, session and PC-User Authentication.
• I manage and configure F5 LTM load balancers
• I manage and configure Cisco ASA firepower
• Managed network connectivity for 25 area offices using DMVPN and GRE Tunnel with Confidential .
• Implemented 214 POS Network using Pepwave VPN box with 4G LTE.
• Installed and configured Cisco routers and switches.
• Managed IP networks and connectivity infrastructure.

Confidential

IT Infrastructure Lead

Responsibilities:

• Spearheaded the network implementation for clients using Cisco routers (1800, 1900, 2800, 2900 series) and Cisco switches (2900, 3500, 3750 series).
• Managed network routing protocol including BGP, OSPF, EIGRP, and RIP as well as network control protocols (QoS, NTP, DHCP), network management protocols (CDP, FTP, TFTP, SNMP) and security protocols (SSH, HTTPS, AAA, IPsec). manage PC imaging with Microsoft System Center Configuration Manager.(SCCM) and System Center Operations Manager (SCOM)
• Install, configure and administer Microsoft Exchange Server 2013
• Install, configure and administer asterisk voice solution using D-link Hardware devices
• Active Directory Configuration and management.
• Creates users and manage users on directory using GPO
• I manage and configure F5 LTM load balancers
• Liaised with user departments/business owners to gather user requirement specifications for new IT solutions.
• Championed the administration of networks comprising of 550 workstations.
• Managed host-based security products, including antivirus and IPS.
• Created network design, documentation, and maintained backups using Symantec solutions.
• Monitored SLAs to maximize value to the business.
• Developed and made presentations that led to expanded business opportunities.
• Managed the operation, administration, maintenance, security, and provisioning of the Operations Support Center for call centers.

Confidential

Network/Systems Engineer

Responsibilities:

• Performed network analysis, design, re-engineering, implementation, and administration for new and existing clients.
• Supported all network cabling, cable termination and implementation of actual network design.
• Performed network implementation of LAN/WAN using Cisco routers and switches.
• Responsible for rollout of newly purchased networking equipment (routers, switches, wireless devices, etc.) and troubleshooting network related problems.
• Designed and implemented Wireless LAN for easy access for mobile network users to have access to network resources like wired network.
• Coordinated all technical documentation for the IT department, creating user manuals for deployed IT solutions/applications.
• Built, configured and maintained server hardware such as HP and Dell Server for clients.
• Responsible for setting up Windows Server operating systems and for the deployment of Active Directory, DNS, and DHCP.
• Performed backups of server data to ensure 100% recoverability in the effect of system failure.

Confidential

Desktop Support Engineer

Responsibilities:

• Maintained, updated, and tracked all computers, printers, monitors, data accessories, software, network, and servers.
• Provided IT support for NIIT Nigeria, supporting IT conference/meeting room equipment.
• Supported all company computers, printers and mobile devices.
• Provided SharePoint, ad-hoc, and induction to end users.
• Ensured that support tickets were resolved according to defined support processes.
• Provided feedback on areas that required improvement within the department.
• Provided required information to IT Enterprise Management team and Local Management team.
• Assisted the IT Enterprise operation team in daily operations.
• Oversaw network service operations, collaborating with IT enterprise Network team.
• Provided end user according to NIIT requirements to all supported end users.