SUMMARY

• Senior Network Engineer with 6+ Years of experience in networking, security, installing, configuring & maintaining network devices.
• Implementation, Configurationand Support of Cisco Routers and switches depending on their usage and appliance.
• BGP and EIGRP were the main routing protocols running across a WAN which was dual - homed to two different ISPs.
• Worked on configuring L3VPN's in an MPLS environment. Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Provide scalable, supportable military grade TCP/IP security solutions along with TCP/IP network and with nexus 2k series that enable business functionality.
• Administration, Engineering in LAN/WAN routing, switching, application load balancing.
• Worked with Cisco switches in multi VLAN environment with the use of inter-VLAN routing, 802.1Q trunk, ether channel.
• Experience on F5 Local Traffic managers (LTM), Global traffic manager (GTM) of series 6400, 6800, 3400, 5100, 3600 and 3DNS migration to GTM.
• Extensive understanding of networking concepts, (IE. Configuration of networks, router configuration and wireless security, TCP/IP, VPN, Content Filtering, VLANs and routing in LAN/WAN, Ethernet networks.)
• Designed, implemented and supported L2, L3, and security platforms using various technologies namely static/dynamic routing protocols (RIPv2, EIGRP, OSPF, BGP, VPN, MPLS).
• Experienced with routing protocols (RIPv1/2, IGRP, EIGRP, OSPF, BGP), switching (VLANS, VTP Domains).
• Expertise in design and implementation of secure wired network using (Enterasys/Extreme, Cisco and Juniper Routers, Switches, Firewall, IDS/IPS) and policy-based networking using Cisco ISE.
• Network with Cisco Prime Infrastructure. - Worked with a group of contractors to train them on generating network management.
• Worked on project like deploying Cisco prime Infrastructure, and Cisco Identity Service Engine (ISE) for port security.
• Managed Aruba Clear pass Policy Manager, Airwave, Aruba Controller 72xx, Aruba Instant AP.
• Worked on Creating zones on Palo Alto, SRX firewalls and writing policies for URL filtering and SSL decryption.
• Ensure network operation has success through data center, server, and infrastructure monitoring and troubleshooting considering as NOC operations.
• Troubleshooting installation & configuration networks. Installing and/or expanding & data infrastructure center.

TECHNICAL SKILLS

Networking: OSI, TCP/IP, Cisco LAN/WAN interconnections, EIGRP, BGPLAN and WAN protocols: Ethernet, TCP/IP, HDLC, PPP, ATM, SONET, MPLS, VPN, IPSec-VPN

Routers / Switches: Cisco (1800/2600 series), Cisco (2k Series)

Routing Protocols: OSPF, EIGRP, BGP, RIP

Operating Tools: Cisco Prime, Live Action, ScienceLogic, Spectrum, SNOW, Command, ISE

Security/Firewalls: Cisco ASA, SRX, VPN, Palo Alto.

Operating Systems: Cisco IOS commands, Windows (2000, XP, Vista, Windows 7, 8, 10)

PROFESSIONAL EXPERIENCE:

Confidential, Saint Louis, MO

Sr. Network Engineer / Network Delivery and Voice Engineer

Responsibilities:

• Works with client engineering groups to create, document, implement, validate and manage policies, procedures and standards that ensure confidentiality, availability, integrity and privacy of information.
• Performed site refreshes on Cisco switching at several locations. Configurations, implementation and troubleshooting issues.
• Reviewed logs and reports of all security tools including Firewall, Routers, Switches, existing switching and Cisco ASA and switches.
• Worked closely with developers to find defect causes and verify defect fixes to ensure product reliability and quality. Performed customer scenario tests, measured CPU and memory usage by DDos feature enabled, reported results and analysis for development team.
• Extensive working knowledge of routing protocols including MPLS, BGP. Configured routers and switches including but not limited to IP Subnetting, VTP, VLAN, DHCP, DNS, NAT, BGP, EIGRP, OSPF, static routing.
• Responsible for configuring, supporting, and troubleshooting L2 / L3 (EIGRP, OSPF, BGP) Cisco's built in debugging utilities.
• Working experience on devices like Cisco ISE. Practice Lead for Cisco ISE Services - Develop, build and grow ISE service delivery practice.
• Monitoring the status of logged users in network using Cisco ISE. Worked on Cisco ISE to support authentication for the Wi-Fi users. Apply Cisco ISE configuration to switches.
• Migrated all enterprise network infrastructure monitoring. Created multiple views and groups to accommodate all network management tools of the enterprise to include Cisco ISE and Cisco Prime.
• Identify and help create process improvements relevant to the environment in data center. Establish connectivity in the networks and PC hardware/software configurations. Assist with process improvements in data center operations (NOC).
• Configuration, documentation, and support and troubleshooting of technology equipment. This includes, server builds and configuration, equipment of networks, storage systems, and cabling within the data environment.
• LAN/WAN level 3 support (diagnose and troubleshoot layer 1, 2 problems).
• Working with OSPF as internal routing protocol and BGP as exterior gateway routing protocol.
• Configuring static NAT, dynamic NAT, TCP overload distribution, on Cisco Devices.
• Implemented VLANS between different departments and connected them using trunk by keeping one VLAN under server mode and rest falling under client modes.
• Performed Cisco devices troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• WAN Infrastructure running OSPF & BGP as core routing protocol. Planning and configuring the routing protocols such as OSPF, BGP, and Static Routing on the routers.
• Experience in implementing and troubleshooting Switch technologies such as STP, VTP, VLAN and MPLS.
• Perform troubleshooting and resolved protocol issues involving TCP/IP, PPP, OSPF, BGP, MPLS.
• Configured, implemented, and troubleshot various Routing Protocols such as RIPv2, EIGRP, OSPF, and BGP across networks in multiple geographic locations on Cisco platform.
• Configuration and maintenance of Cisco ASR routers such as 1001-X routers.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Knowledge of network monitoring/management tools like Cisco Prime.
• Scheduled configuration archive for all managed devices (switches, routers) Cisco Prime infrastructure.
• Work closely with several teams to get incidents resolved and service requests fulfilled. Teams include Engineering, Security, Billing and Management, and other NOC team members.
• Provided Level 1 and 2 troubleshooting on resolving technical issues on networks with Windows/Linux System.
• Kept track of outages in the networks while updating customers of issues relating to their services.
• Engaged, updated, and managed TTS in cooperation with the Engineers, Administrators, and Support.
• Assisted and notified Administrator in the networks when a DDoS was present (identify what kind of attack and attacker source IPs).

Environment: CISCO routers and switches, OSPF, BGP.

Confidential, Elk Grove, CA

Sr. Network Engineer

Responsibilities:

• Responsible for design & management of Juniper Net Screen Firewalls, Juniper Switches, and Cisco Switches.
• Advanced knowledge in installation and configuration of Juniper Net Screen Firewall.
• Experienced working with security issues related to Cisco ASR 9K, Checkpoint and Juniper Net screen firewalls.
• Experience of working with F5 Load balancers and building VIP, SNAT and Migrating applications from one Data Center to another data Center.
• Troubleshoot and configured the Juniper Net Screen firewalls (SRX).
• Design, install, configure, troubleshoot and maintain varies load balancers including Citrix net scalar, Riverbed STM.
• Designed and configured the commands for QoS and Access Lists for Nexus 7K, 2Kand 5K.
• Created and Designed Cisco ISE policy for iPad, tablet and mobile phone. Making sure the business and guest devices where working within Company’s wireless network.
• Integrating Panorama with Palo Alto fireballs, managing multiple Palo Alto fireballs using Panorama.
• Implementing and configuring F5 LTM's for VIP's and Virtual sewers as per application and business requirements. F5 configuration, installation, and monitoring with F5 APM.
• Configuration and troubleshooting on HSRP, VRRP, GLBP, RSTP, MST related issues coming in network environment
• Design, configure, and administer Juniper MX routers, SRX Firewalls, Cisco routers & switches.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
• Juniper Contrail SDN deployment assistance to the senior engineering team
• Configure all Palo alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Built an accruing network via MPLS circuits to split the trusted and un-trusted traffic via a Cisco ASR Router.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Implemented MPLS/VPLS, QOS, BGP, OSPF, VRF, IPSEC, L3VPN/ASA firewall configuration changes into Cisco 6500, 2800, switches/routers
• Firewall filtering and NAT, Adding and modifying the policies in juniper SRX.
• Configuration and Administration of Palo Alto Networks Firewall to manage large scale Firewall deployments.
• Configured VSS, VPC and HSRP on Cisco Switches.
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center and provided L3 support for routers/switches/firewalls.
• Provide support and for 2Tier and 3Tier firewall architecture, which includes various Checkpoint, Cisco ASA firewalls and Palo-Alto firewalls.
• Provides updates and upgrades to the Palo Alto Firewall and Panorama devices.
• Administration of Checkpoint, Palo Alto and Juniper Firewalls at multiple properties.
• Monitoring and troubleshooting traffic on Palo Alto firewall through Panorama.
• Palo Alto user-identification implementation with KIWI server’s user Palo Alto user-id agents.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Troubleshoot, configure, and administer various technologies: BGP, OSPF, DMVPN, vDC, vPC, STP, IPv4, IPv6, unicast/multicast.
• Backup and restore of Check Point and Cisco ASA Firewall policies.
• Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health monitoring.
• Upgraded load balancers from Radware to F5 BigIP v9 which improved functionality and scalability in the enterprise. Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues. My responsibility was also to add new BGP peers for remote branch offices and business partners.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/ /3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint, Windows server 2003/2008, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP.

Confidential, Jersey City, NJ

Sr. Network Engineer

Responsibilities:

• Information security skills: Network Security (IDS/IPS, Firewall, Wireless Security, Nessus Scanner, Wireshark, Nmap), Network Traffic Analysis, IPsec VPN
• Implementing security Solutions using Cisco ASA, Checkpoint firewalls R75, R76, R77.30 Technologies: Cisco ASA firewalls, IDS/IPS, Symantec HIDS
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Leading daylight SD WAN conversion project portion of a 8 person crew on 2800 branch Viptela over VMware and Cisco network, each site served by Private MPLS / Broadband / LTE.
• Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800.
• Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 7000. Configuring VDC & VPC in Nexus 9k, 7k, 5k and 2k.
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505.
• Worked on juniper EX & QFX series switches & CISCO switches., SRX firewall environment, Worked in JUNOS 15.1x49.
• Configuration VPN (site-to-site) connectivity of Phase -1 and Phase-2 with the client requirements for the migration from CISCO router, Net screen firewall to the Next generation juniper SRX firewalls.
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers
• Configure switch ports connecting to the WAN and LAN networks with separate subnets and VLANs
• Management of the Riverbed solution will require collaboration with application holders, tier 1 and 2 groups, and other engineering offices.
• Troubleshooting of protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
• Create ACI migration plans (brownfield) create L2/L3 transitions. Map traffic flows for EPGs and BDs. Handle drivers for ML2 and GBP OpenStack integrations.
• Implemented Quality of Service (QoS), Policy Maps, ACI, SOAP, Class-maps, and Policy Routing in the network infrastructure throughout all the different sites.
• VLAN configuration, Troubleshooting and Firewall ACLs and Object-Groups configuration and support.
• Configuring High Availability using Cluster XL on Checkpoint as well as VRRP and monitor the Sync status for stateful replication of traffic between active and standby member.
• Responsible for developing traffic engineering in Meraki SDWAN to support intelligent traffic flow across the network.
• Involved in deployment of Meraki SDWAN solution across the Corporate offices.
• Provide second/third level technical support for ACI (Application Centric Infrastructure), APIC technologies
• Configuring/Managing Intrusion Prevention System (IPS): Cisco IPS/Fortinet& Checkpoint UTM.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Configuration and maintenance of PIX and ASA firewall systems.
• Supported end user network cisco ACI infrastructure and trouble shot several implementations of LTM and APM configuration.
• Configuring, maintaining and troubleshooting with Fortinet firewall and security.
• Troubleshoot local and remote VPN access to multiple EMR and billing applications residing in Data Center.
• Provided tier 3 support for Check Point Firewall-1 software to support customers.
• Conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Environment: CISCO routers and switches, LAN/WAN, F5 Load balancing, ASA Firewalls.

Confidential

Network and System Support Engineer

Responsibilities:

• Work involves configuration and implementation of various Cisco Routers & L2/L3 Switches
• Experience designing, deploying, and implementing SD-WAN core route/switch and/or data center networks.
• Responsible for day-to-day management of Cisco Devices, Traffic management and monitoring using Enterprise monitoring tools, SPLUNK, Cisco works etc.
• Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocol.
• Configuring EIGRP, OSPF and BGP routing protocols on Cisco routers.
• Handling Remedy ticketing tool for day-to-day operational activities including Incident management, Change management and Problem management.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Configuring Firewalls such as Cisco ASA and Checkpoint Firewall.
• Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds etc.
• Assisted in building a Wireless lab for New Jersey Institute of Technology
• Maintained and troubleshooting of Windows/ Linux Work Stations for NJIT Labs.

Environment: Cisco 1600,2600,2800,3600,7300 Routers, BGP, OSPF, EIGRP, RIP, IS-IS, HSRP, L2/3 VPNs in IOS, IOS XE, and IOS XR platforms) VMware ESX, Cisco Wan Routers, LAN Switches, Cisco Packet Tracer.