SUMMARY

• 7 Years of extensive hands on experience in Network and Security engineering and Network Infrastructure.
• Strong understanding and experience of Firewall on various platforms.
• Managing and implementing remote firewall for State agencies using NSM, SPACE, SmartDashboard and CSM.
• Configuration of new juniper SRX firewall for remote site implementation.
• Worked closely with the customer to suggest the need of firewall rules, help them design the request.
• Configuration remote access VPN and site - site VPN on Juniper platforms.
• Configuration and troubleshooting on Juniper SRX via Juno space JA2500.
• Configuration VPN, Firewall rules on SRX series firewalls.
• Configuration, troubleshooting Checkpoint Firewall using R77.
• Configuring Site-Site VPN on Checkpoint Firewall with R77 GAIA.
• Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA SmartDashboard.
• Implement & troubleshooting of Juniper switches, routers and Firewalls.
• Responsible for service request tickets generated by the helpdesk in all phase such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Deep understanding of TCP/IP and OSI Model.
• Configuration and implementation of Cisco Firewall PIX/ASA
• Efficient in Routing Protocols and Understanding of OSI model.
• Good concept on subnetting of IPV4 addresses.
• Experienced with various dynamic and static network protocols RIP, OSPF, EIGRP, HSRP, VRRP, BGP, VLAN, Spanning Tree, Frame-relay, MPLS, and IPsec VPN.
• Worked extensively on Cisco Router and Switches.
• Worked closely with application team on troubleshooting the issues.
• Good understanding of security infrastructure including Antivirus, Encryption, DLP, SIM, IDS and IPS
• Hands on experience with packet sniffer, TCP DUMP and wireshark for packet monitoring.
• Configuring & Managing LAN, WAN, VPN and Firewall of Juniper MX Routers for End Users
• Basic knowledge of CISCO ACE and F5 Load Balancers.
• Basic knowledge of VMware NSX.
• Basic knowledge of PlaoAlto firewalls and Panorama centralized management.
• Communicating and managing relationship with external & internal customers and ensuring customer satisfaction of service delivery in accordance to their quality & consistency of State of Work & Service Level Agreements.
• Knowledge in Documenting and preparing the Process related Operational Manuals.
• Ensuring network availability, vendor management, fault management
• Strong general management, negotiation, inter-personal, communication and team building skills.

PROFESSIONAL EXPERIENCE

Confidential, Greensboro, NC

Network Security Engineer

Responsibilities:

• Involved in Migration of Nortel Contivity 1800 VPN routers to Juniper SRX firewalls.
• Involving in VPN (IPSEC, Site to Site) migrations and new designs for State government agencies such as State Police, Doc, HQ and etc..
• Configuring and troubleshooting issues with VPNs
• Configuring and troubleshooting the Secure Tunnels (St.0) to primary data center and secondary data center to remote agencies.
• Managing and implementation of remote firewalls for State agencies using SPACE and SamrtDashboard
• Responsible for planning, documenting and implementation of complex Firewall and VPN solutions
• Determining root causes of network problems and delivering solutions, while maintaining a high level of customer satisfaction
• Performed Troubleshooting and monitored routing protocols such Static Routing and OSPF
• Daily technical hands on experience in the configuration, troubleshooting of Juniper SRX firewalls as well as experience working directly with customer in a service/support environment.
• Daily exposure to IP based network security protocols with Juniper SRX firewalls, Operating Systems and security configurations LAN/WAN/Security solutions.
• Implemented Checkpoint FW Interface, NAT and VLAN using R76 GAIA SmartDashboard.
• Extensive implementation of firewall rules on R77 GAIA on daily basis using SmartDashboard
• Configuration,troubleshooting Checkpoint Firewall using R77 SmartView Tracker and Monitor
• Also provide “Tier 2” support least twice weekly, and work on tickets for the Network Team, provide support withtroubleshootingand resolving Networking issues with protocolsStatic Routing and OSPF

Environment: SRX220,SRX650, SRX3600 and Checkpoint R77

Confidential, Reston, VA

Network Security Engineer

Responsibilities:

• Implementation of VPN’s for Virginia state government using Juniper NSM, SPACE and SmartDashboard
• Involved in Migration of Cisco firewalls to Juniper SRX firewalls.
• Involving in VPN (IPSEC, Site to Site) migrations and new designs for State government agencies.
• Configuring and troubleshooting issues with VPNs
• Managing and implementation of remote firewalls for State agencies using NSM, SPACE,CSM and SamrtDashboard
• Responsible for planning, documenting and implementation of complex Firewall and VPN solutions
• Determining root causes of network problems and delivering solutions, while maintaining a high level of customer satisfaction
• Daily technical hands on experience in the configuration, troubleshooting of Juniper and Cisco firewalls as well as experience working directly with customer in a service/support environment.
• Daily exposure to IP based network security protocols with Juniper and Cisco firewalls, Operating Systems and security configurations LAN/WAN/Security solutions.
• Daily experience with using SmartDashboard NSM, SPACEand CSM.
• Extensive implementation of firewall rules onISG2000,Juniper SRX 5400, Juniper SRX 3600,SRX3400,SRXand SSG5on a daily basis, using NSM, SPACEas well as CLI when needed.
• Implementation of firewall rules onCisco ASA 5500and5500-X Serieson a regular basis.
• Manage as well as remotely implement, all remote firewalls for stateagencyusing check point SmartDashboard Juniper NSM, SPACE and CSM.
• Configuration of new Juniper SRX firewalls for remote site implementation.
• Implemented Juniper SRX FW Interface, MIP, DIP and VLAN using NSM and SPACE.
• Configuring Site-Site VPN on Checkpoint Firewall with R76 GAIA.
• Implemented Checkpoint FW Interface, NAT and VLAN using R76 GAIA SmartDashboard.
• Extensive implementation of firewall rules on R76 GAIA on daily basis using SmartDashboard
• Configuration,troubleshooting Checkpoint Firewall using R76 SmartView Tracker and Monitor
• Firewall Engineer for all new Server implementations at Chester location.
• Monitoring, maintaining, and implementing security policies on Cisco firewalls
• Designing, configuring and troubleshooting network problems related to security
• Documenting network problems and resolution for future reference
• Involved in data center migrations from one data center to other.
• Also provide “Tier 2” support least twice weekly, and work on tickets for the Network Team, provide support withtroubleshootingand resolving Networking issues with protocolsStatic Routing and OSPF
• Proficient in the use of Northrop Grumman “Change Management” system.

Environment: SRX100- SRX240, SRX5400, SRX3600 SRX 3400, ISG2000,SSG5,ASA 5500, 5500-X Series.

Confidential, Dallas, TX

Sr, Security Engineer

Responsibilities:

• Implementation of Site to Site VPN’s for Citibank using Juniper NSM.
• Configuring and troubleshooting issues with VPNs
• Involved in Migration of SSG firewalls to Juniper SRX firewalls.
• Migrated Check Point 680 to juniper SRX 650
• Worked on Oscillator cards and changed on SRX 3600 Firewall
• Daily technical hands on experience in the configuration, troubleshooting of Juniper SRX and SSG firewalls as well as experience working directly with customer in a service/support environment.
• Managing and implementation of remote firewalls for Citibank using NSM.
• Daily experience with using NSM.
• Extensive implementation of firewall rules onJuniper SRX 3600,SRX 3400, 650 SRX and SSG140on a daily basis, using NSM.
• Implemented Juniper SRX FW Interface, MIP and VLAN using NSM
• Configuration of new Juniper SRX firewalls for remote site implementation
• Daily exposure to IP based network security protocols with Juniper SRX and SSG firewalls, Operating Systems and security configurations LAN/WAN/Security solutions.
• Manage as well as remotely implement, all remote firewalls for Confidential bank’s branchesusing checkpoint SmartDashboard
• Implemented Checkpoint GAIA R76 Interface, NAT and VLAN using SmartDashboard
• Extensive implementation of firewall rules on R76 GAIA on daily basis using SmartDashboard
• Configuration, troubleshooting Checkpoint Firewall using R76 SmartView Tracker and Monitor
• Worked on Cisco Multilayer switches such as 4500X, 6500 and 6509.
• Strong Knowledge and extensive experience on enterprise change management process and tools.
• Create change request for configuration changes on routers, switches and firewall.
• Responsible for Juniper SRX firewall management and operation across our global networks.
• Hands on experience with handling all production and non-production issues.
• Configure IPSEC VPN (Site -Site to Remote Access) on SRX series firewall.
• Performed Troubleshooting and monitored routing protocols such Static Routing, OSPF and BGP
• Responsible for procurement and installation of Hardware, network drives and other IT infrastructure. Documented the design, implementation and troubleshooting procedures with Method of Procedure (MOPS).
• Documented all the work done by using Visio, Excel & MS word

Confidential

Network Engineer

Responsibilities:

• Trouble shooting using various command tools on CISCO routers and network segments at various OSI layers. Maintenance of Cisco 2500, 4000, 6500 series routers.
• Configuration of HSRP for hot standby routing, on dual redundant CISCO 7206 routers.
• Installing & Configuring Serial Link, Frame Relay and ISDN. Working Hands on Cisco 800, 1700, 1800, 2500, 2600, 2800, 3800 series Routers, Cisco 1900, 2900, 3500, 3700 and 4500 Catalysts.
• Implement IPsec VPN’s for different client locations and make sure the connectivity is up and running.
• Implement LAN/WAN for Market Data utilizing Cisco 6500s/4006s, (EIGRP and OSPF)
• Administration of CISCO IOS (11.0, 12.0 and 12.1) on routers (2500, 4000, 4700, 6500,). Configuration of interfaces for T3, T1, Ethernet and NAT, Access Lists, RIP, OSPF.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPsec and SSL encryption.
• Manage service providers/vendors relationships from a project and technology perspective.
• Worked with the basic communication protocols like TCP/IP
• Configured and troubleshoot VLAN, VPN, VTP, STP and Trunks.
• Managed IP addressing and implemented IP Access Lists.
• Implemented and configured Cisco routers and switches in a simulated enterprise network comprised of several separate locations utilizing 10+ routers and switches. Worked on console and remote configuration of Ethernet/serial interfaces, implementation of RIP and EIGRP routing protocols, authoring access lists, configuring VLANs, and initiating Telnet sessions, and implementing password security. Provide network design of both the physical and logical network optimizing performance, scalability and cost-effectiveness.
• Interface with various vendors, technology groups to define requirements and process needed to provision networking and systems services.
• Configuration of Cisco switches (3750) for VLAN and VTP.
• Participate in design conferences, produce network diagrams and detailed network documentation including logical and physical diagrams as required. Maintain technical and vendor product information and assisting in establishing performance standards, policies and procedures for the enterprise.
• Provided support in resolving problems with Local and Wide Area Network data communication, operating system and application software and hardware.
• Prepared feasibility study report for installations and upgrades