SUMMARY

• Over 8 years of hands on experience in network engineering, designing, integrating, deploying, maintaining and supporting broad range of communication systems.4
• Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches includes (5548, 7010) including CISCO NEXUS Fabric Extender (223, 2248).
• Experienced configuring Virtual Local Area Network (VLAN), VLAN Trunking Protocol (VTP), Dynamic Trunking Protocol (DTP), Spanning Tree Protocol (STP), RSTP, MST and Per VLAN Spanning Tree (PVST), Virtual routing and Forwarding (VRF).
• Implemented MPLS/VPN services for various customers.
• Experience in Layer 3 Routing Protocol configurations: RIP, OSPF, BGP, EIGRP and MPLS.
• Experience in Layer 2 routing Protocol Configurations: ARP, RARP, ATM/FRAME RELAY and VPN technologies: IPSec & SSL.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience in designing, implementing and Managing LAN, WAN solutions for different client setups.
• Checkpoint - R60/R65/R70/R75 software version with hardware Checkpoint 11000, 21000 series with VSX environment.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Extensive work experience with Cisco Routers, Cisco Switches, Juniper routers, Nexus and, Load Balancers, Zone Based firewalls and implementing different failover mechanisms on Palo Alto (PA 5030), Juniper, ASA 55XX & Checkpoint R77 firewalls.
• Supporting and troubleshooting Checkpoint/Cisco site-to-site VPN/IP Sec functionality.
• Experience on working, implementing, configuration and managing Juniper SA 2500/4500/6500 SA devices with secure access services 7.1/8.0.
• Implemented traffic filters on CISCO routes using Standard Access List and Extended Access list.
• Familiarity with WAAS, VoIP, wireless, security, next-gen datacenter networking (SDN, Cisco ACI).
• Experience with installing and managing IT services such as Active directory, site replication, DNS, SSH, DHCP, DNS, NAT and Terminal service.
• Strong knowledge on mitigation of DDoS attack's & SSL implementation on Cisco and Palo Alto firewalls
• Handled Load Balancing using F5 Networks.
• Experience in configuring Virtual Local Area Network (VLAN), spanning tree protocol (STP), VLAN Trunking Protocol (VTP), Dynamic Trunking Protocol (DTP), Per VLAN spanning Tree (PVST) and 802.1x authentication in access layer switches.
• Strong knowledge in HSRP, VRRP redundancy Protocols.
• Experience Microsoft visio for network design.
• Worked on high end cisco devices like ASR 1k, 5K, ASR 9000, Cisco 7200 series, Juniper Routers
• Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Access control server configuration for RADIUS & TACAS+.
• Experience with 802.11x wireless technology.
• Sound knowledge of virtual firewalls like checkpoint VSX, IDS, IPS as well as encryption techniques.
• Excellent communication skills with ability to interact effectively with employees at all level of the organization.

TECHNICAL SKILLS

Hardware: Nexus 7000, 5000,3000 Cisco Switches (3850,4500x, 6500, 7609, 5500), Cisco routers (ISR 4331, ASR 100x) Juniper EX4200,4300, MX480, Arista, F5 BIG-IP LTM, IXIA Flex TAP & Vision E40

Firewalls and Sniffers: Palo Alto, ASA, Juniper SRX, Check Point Gaia R77.20

Protocols: RIP, RIP2, PPP, OSPF, EIGRP, BGP, SNMP, HTTP, HTTP, DHCP, SMTP, ICMP

LAN Technologies: Ethernet, TCP/IP, CDP, STP, RSTP, VTP, VLAN, Trunks, Ethernet channel, MPLS, VRF, NAT

Software: Netbrain, solarwinds, HPNA, Cisco Packet Tracer, Putty, secure CRT Microsoft Visio, Wireshark, Cisco Firepower Management Console

PROFESSIONAL EXPERIENCE

Confidential, Cumberland, RI

Network Build Engineer

Responsibilities:

• This position has overall responsibilities for network infrastructure deployment, design, configuration and support.
• Actively working on CVS and Aetna’s Network services and branches and data centers integration project and worked on Nexus 7K and 5K heavily.
• Worked on new site migration project connection new site into company’ MPLS cloud and migrate successfully.
• Gain knowledge on Cisco ACI infrastructure.
• Worked on onboarding new call recording vendor for CVS Worked on their primary, backup and Disaster Recovery network setup and successfully activate MPLS circuits, Routing configs, DNS changes as well as worked on cisco ASA firewall during the setup.
• Migrating from a Juniper SRX Firewall environment a Cisco FirePower FTD.
• Managed, provided and supported end-to-end global satellite communications network including routing, switching, provisioned and reviewed any rule sets in Cisco ASA firewalls , firepower sensors , Palo Alto firewalls to block or allow any traffic to come in.
• Determine specific network hardware or software requirements created visio diagram based upon that for documentation purpose and to be able to implement all the changes successfully.
• Prepare detailed network specifications, including diagrams, charts, equipment, configurations, or recommended technologies.
• Working on Infoblox for new DNS reservation, modification and deletion as well as DHCP reservation.
• Experience with Cisco Firepower 9300 and 4120 Fire Sight
• Worked on Migrating/Replacing End-of-life cisco 4500 and 6500 series core switches to new switches across all the Distribution centers of Confidential .
• F5 LTM : Configuration, Solution Designing and Managing F5 BIG IP LTM Load Balancer,
• Creating VIPs, Creating Pools, and Associating Pools with VIPs, Creating Persistence Profile, SSL Profile, SSL Offloading, creating iRules, designing with High Availability solution with Network Failover.
• Worked on F5 BIG-IP LTM, GTM, 8900 , configured profiles, provided and ensured high availability from scratch and successfully installed.
• Deployed IXIA TAPs as well as IXIA Vision E-40 to monitor inbound and outbound traffic through DLP sensor.

Environment: Router cisco ISR4331; Cisco Catalyst Switch 3850, 3750, 4500x, 6509,4507, Nexus 7018, 5000,9K, IXIA VISION E-40, F5 BIG-IP LTM,GTM, Cisco ASA, Cisco FMC(Firepower), INFOBLOX

Confidential, Charlotte, NC

Senior Network Engineer

Responsibilities:

• responsible for the day to day support for over 3500 internal devices of access network of company and another store location.
• Extensive experience working with Cisco routers and switches (3850 and 4500) and Juniper (4200 and 4300) Configuration, installation, troubleshooting, and support, Racking and stacking.
• Deploying cisco and juniper switches, loading configuration, Troubleshooting in production environment.
• Responsible for designing the network from scratch, work with vendors to get quotes on hardware, and also for purchasing the hardware.
• Upgrading OS of cisco (3850) and juniper (EX4300) of devices.
• I also have Experience in Installation and Configuration of Nexus 2k, 5k, 7k series switches.
• Responsible to resolve day to day troubleshoot tickets in service now.
• Extensive experience working with Cisco routers and switches ( set up, configuration, troubleshooting , etc.)
• Extensive experience designing networks from scratch.
• Worked on network security design and installation using Palo Alto Firewall (Application and URL filtering, Threat Prevention, Data Filtering).
• Highly skilled with using Visio for network design.
• Building access network design from scratch by using command line interface in microsoft visio.
• Installation and configuration of the wireless intrusion prevention system Mojo devices .
• Detection of Rouge wireless devices that are trying to connect to the network and disable.
• Configuration of cisco switches and routers.
• Troubleshoot and configured the Juniper NetScreen firewalls ( SRX )
• Troubleshooting layer 2 protocols VLAN, VTP, PPP, STP etc.

Environment: Router cisco ISR4331; Cisco Catalyst Switch 3850, 3750, 4500x, Juniper EX4300, 4200. Palo Alto firewall, Mojo Sensors, Racking & Stacking.

Confidential, Milwaukee, WI

Senior Network Engineer

Responsibilities:

• Worked on Converting the Partner IPSEC VPN from one Data Center to Another Data Center.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices
• Suppoted the project of Migration of ACS product line onto Cisco ISE as well as Integration of ISE with client AD, LDAP, RSA, and Token Servers.
• Troubleshooting network issues relating to Authentication, Policies, Routing and Switching, AAA configuration, Dot1X & MAB Authentication on Geographically distributed Network Multilayer Switches, Routers and Firewalls and monitoring their status using Cisco ISE
• Coordinated precise scheduling for all migration events including all equipment and resources for the data center migration on an extremely accelerated schedule with for a high profile client.
• Experience with Checkpoint Firewall policy provisioning.
• Designed and configured Distributed Cisco ISE Deployment ( 12 Nodes).
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Working experience on upgrading Checkpoint old devices/Software to new platforms like R70 to R75.20.
• Worked on network security design and installation using Palo Alto Firewall (Application and URL filtering, Threat Prevention, Data Filtering).
• Worked extensively in Configuring, Monitoring and Troubleshooting Palo Alto with ACL, NAT, Object Groups, Failover, Multi-Contexts
• Responsible for Palo Alto and Cisco ASA firewall administration across our global networks
• Worked with Aruba Access point as a Public Wi-Fi and successfully implemented Wireless Access Point (WAP).
• Using Aruba’s clear policy Manager generate report of all valid users and valid authentication.
• Experience managing Datacenter technologies such as Nexus switches or ACI.
• Deploying and commission of core ASR 1K, Nexus 7K, 5K and its downstream devices
• Design and implement Cisco ACI fabric networks with Nexus 9000 switches and APIC controller in a VMware envi using Cisco network and data center routers/switches Nexus 9000, 7000, 5000, 2000, and 1000v switches in VMware and Hyper-V environments.
• Experience configuring, installing and supporting SDN technologies like Cisco ACI a plus.
• Working on smart view monitor get statistics for the checkpoint hardware/software CPU’s, memories and overall health of the devices.
• Migrating Cisco ASA firewalls policy to new Checkpoint appliance with support of vendor specific tool.
• Managing URL Content Filtering on Websense Proxy.
• Adding exemption, editing policy groups on Websense Management Server.
• Implemented Site-to-Site VPNs over the internet utilizing Palo Alto Firewalls
• Perform Firewall OS upgrades using CLI
• Experience on designing and troubleshooting of complex BGP and OSPF routing problems,
• Convert Branch WAN links from TDM circuits to MPLS
• Experience with Network Redesign of branch and Campus Networks. This includes changes to both the voice and data environment.
• Performed Cisco ASR/router/switch/firewall deployments, maintenance, and code upgrades (1800 - 7600 router's, 2000/5000/7000 series Nexus, FWSM/PIX 515 - ASA 5585 pre-8.3 and post 8.3 deployments including NAT configuration/Packet Tracer/ASDM
• Configured application load balancing using F5 LTM.
• Experience with configuring VIP, Pools on F5 LTM and working with irule management on LTM
• Assisted campus for VOIP network management and troubleshoot
• Set up network connectivity for Cisco training. This involved connecting the routers, switches and firewall physically and loading them with a base configuration. It also involved connecting the PCs to the network and providing Internet connectivity
• Worked on Data, VoIP, security as well as wireless installations and technologies
• Complete understanding of feature testing of switches (RFC 2889 and RFC 2554) using IXIA's IP testing system.
• Replace branch hardware with new 2851 routers and 2960 switches.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Experience configuring Virtual Device Context in Nexus 7010
• Administering and troubleshooting Cisco 4948 series, 6500 devices ASR 9000s, Nexus 3k, 7k series Arista DCS7300, 7010, MX960s
• Experience in Configuring, upgrading and verifying the NX-OS operation system.
• Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches troubleshooting issues and configuring switches from scratch and deployment
• Involved in configuring IP Quality of service (QoS)
• Involved in Datacenter build and support, Implementation, migrations network support, Interconnectivity between an old Datacenter and new Datacenter.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Installed new purchased Hardware to the new DC, Migrate data over WAN connection, also greatly involved in virtualization of physical servers.
• Contact determining a list of application for the migration, Stakeholder management, vendor management, and change management.

Environment: Router 2900, 3900; Cisco Catalyst Switch 3550, 2960., Juniper J series, Checkpoint R70 to R75.20, Cisco ASA, Palo Alto, Fiber and Ethernet cabling.