SUMMARY

• Extensive 8+ experience with complex routed LAN, WAN networks, routers and switches.
• Over 6+ years of IT experience in which includes Solid experience in Configuration Management, Change/Build Management, Support and Maintenance under Unix/Linux/NT/2000 platforms.
• Have certificate on CCNA.
• Experience designing and deploying a DMVPN dual hub network,Designed a Cisco iWAN deployment.
• Advanced knowledge, design, installation, configuration, maintenance and administration of Palo Alto Firewalls, Checkpoint Firewall R75 up to R77 version, VPN.
• Hands on experience with Nexus Switches 2K, 5K and 7K.
• Experience with migrating all the Cisco LAN to juniper LAN.
• Working Experience on web content filter and gateways like Blue Coat, Websense.
• Extensive experience in Hyperion Essbase, Hyperion Planning, Hyperion Financial Reporting.
• Experience in certification of Nexus and Juniper routers.
• Hands on experience of data center environment and implementation of VPC, VDC and Fabric path on Nexus 9K, 7K, 6K, & 2K Switches.
• Writing Shell scripts and Python Scripting to automate business process.
• Experienced with Linux family (Red Hat Enterprise Server, CentOS, VMware).
• Experience in Cisco Routing, to include iBGP and eBGP Nexus switching, to include vPC (and TrustSec would be helpful), ASA firewalls, to include IPsec tunnels and User VPNs.
• Experience in routing protocols like EIGRP, OSPF, RIP, and BGP.
• Substantial knowledge, including the configuration, of Spanning Tree Protocol (STP), Per VLAN Spanning Tree (PVST), Rapid STP (RSTP) and Rapid per VLAN Spanning Tree (PVST+).
• Experienced in implementation and troubleshooting knowledge of protocols and technologies, especially in the following: BGP4, OSPF, IPv4, and Ethernet.
• Experience working with enterprise class switches - router management (Cisco 6509, Nexus 5000, 2800, 2900, 3800, 3900, 7200, and 7300 series).
• Extensive knowledge of deploying & troubleshooting L2/L3 TCP/IP, Multilayer Switching, IPSec, UDP, WLAN, MPLS, Multicasting, Ethernet, IP Routing Protocols RIP, OSPF, EIGRP, GRE & BGP Cisco routers, switches, ASA and PIX firewall deployment.
• Experienced in implementing and maintaining an Apache Tomcat /MySQL/PHP, LDAP, LAMP web service environment.
• Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP,Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
• Good understanding of Palo Alto firewalls which includes PA 5000 and PA 3000 series.
• Good experience on complete SDLC /Agile scrum methodology.
• Experience in ITIL, COBIT, HIPAA, PCI DSS Security or Compliance.
• Experience supporting a wide variety of networking components including Cisco Routers, Switches, Wireless Access Points, MPLS, Frame-Relay, ATM, ISDN, BGP, EIGRP, OSPF and RIPv2.
• Understanding the JUNOS platform and worked with JUNOS upgrade of Juniper devices.
• Working experience with 2600, 2800, 3600, 3800 and 7200 series routers and juniper MX and T series routers.
• Experience in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, PVST+, Etherchannel using LACP and PAgP, Inter-VLAN routing, CEF and DCEF.
• Strong knowledge in implementing and maintaining security controls such as firewalls, physical controls, IPsec, VLAN, VPN, encryption, SSL, vulnerability scanning and remediation, and security monitoring.
• Development of complex SQL queries against multiple DataWarehouse (Netezza, Oracle, MySql, SQL server, etc.)
• Advanced knowledge, design, installation, configuration, maintenance and administration of Palo Alto Firewalls, Checkpoint Firewall R75 up to R77 version, VPN.
• Routing Protocol (BGP4, OSPF, EIGRP, IGRP, RIP, NLSP), Routed Protocol (TCP/IP, IPX/SPX).
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for data centre access architecture.
• Cisco ACE, Juniper Firewall SRX Series Services Gateway, BigIP F5 LTM GTM, Checkpoint hardware installations.
• Analyze, troubleshoot and upgrade Citrix Netscalers and A10 load balancers.
• Experience with spanning tree and VLAN Setup.
• Extensive experience with setting up Web Security Gateway including configuration of exceptions, tunneling and SSL decrypt bypass. Data Security module for DLP including rules and policy setup.
• Work with existing Group systems and identifying key systems for integration (Solarwinds, Nagios, Syslog-NG Server HP SIM, Level 3 SMC, INX, BT alarms).
• Experience administration and development with Hudson, Jenkins, and Bamboo.
• Experience on working with build pipelines, ANT scripts, MAVEN, GRUNT and Shell.
• Knowledge of protocols such as OSPF, ISIS,DNS,BGP, MPLS and LDP.
• Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
• Experience with deploying and upgrading Cisco Wireless LAN controllers 4400, 5500, 8500 Series OS version 7.6
• In addition, a working knowledge of network management tools (Cisco Works, Infoblox).
• Experience in IPSEC VPN/SSL-VPN/ DMVPN/OPENVPN /NAT/GRE.
• Knowledge of the following: Cisco Nexus switching (Nexus OS), Cisco 00 routers with 15.x IOS, Cisco ASR routers with Cisco IOS XE Software.
• In depth understanding of IPV4, implementation of Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Installing and Powering F5, Palo-Alto Firewall, Juniper SSL VPN, and Isilon server equipments.
• Extensive knowledge of secure network design, configuration, implementation, deployment and troubleshooting.
• Server 2003/2007/2010, VPN, Windows 2000/XP/2003, Antivirus, Firewalls, DNS, DHCP, IP Networking, HTTP, IMAP, SMTP, SPAM Filtering and SharePoint.
• Experience working with JUNOS OS on Juniper Routers and Switches.
• Hands-on experience of Python scripting, automation using Python, string parsing, libraries, API's, regexp and more.
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel along with troubleshooting of inter-VLAN routing.
• Experienced with writing and troubleshooting Access Control Lists (ACLs) on Cisco routers, switches and firewalls.
• Hands on experience on up-gradation of Cisco IOS & Firmware of different Cisco devices & modules.
• Troubleshoot and hands on experience on security related issues on Cisco ASA/PIX, Checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls.
• Knowledge of VMware Virtual Infrastructure using NSX and Automation using Puppet and Chef.
• Implemented SNMP on Cisco routers for network management.
• Hands on experience with Nexus Switches 2K, 5K and 7K.
• Installed and configured DNS, DHCP Client/Server.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Experience on L2 protocols such as STP, VTP, RSTP and MST and also worked on VLAN trouble shooting issues.
• Hands-on experience of Python scripting, automation using Python, string parsing, libraries, API's, regexp.
• Excellent knowledge of shell scripting, and intermediate knowledge of other various interpreted languages including Perl, Python, Java, etc.
• Cisco, Riverbed, Radware, Infoblox, and Blue Coat Trained. I work with Routers, Firewalls, Switches, VPN Switches, WAN Optimizers, Load Balancers, virtualization, and other network related equipment on a daily basis.
• Trained & provided documentation to the help-desk, and my backup person on network LAN & WAN trouble shooting & repair procedures.
• Experience working in a large infrastructure migration project.
• Commensurate knowledge and understanding of MPLS, Wireless & Controller, Ethernet, Cisco HW and SW (IOS/CATOS/NX-OS), WAN Acceleration technologies, Firewalls, IPS, Load Balancer, Security protocols (IPSEC/TLS/EAP), QoS and IP Multicast.Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter VLAN routing, LAN security.
• Experience in the utilization of data communications test equipment and network management systems (e.g., sniffers, Wireshark, OPNET, NetScout, ReliaTel, NAGIOS, and software based management systems such as OpenView, SevOne, Smarts, Riverbed CMC, JunOS Space, NetBrain, NetCool, etc.

PROFESSIONAL EXPERIENCE

Confidential -Conyers, GA

Sr.Network Technical Consultant

Responsibilities:

• Automated network implementations and tasks and designed monitoring tools using python scripting.
• Replaced outdated Cisco switches and routers in existing data centers and installed new Cisco.
• Responsible for the network environment including firewalls, switches, load balancer and NAC.
• Configuring and troubleshooting VPC, VLAN, STP, Trunking, Ether/port-channel, Inter-Vlan routing, HSRP, LACP on various switches.
• Configure and install various network devices and services (OS, services, systems, etc).
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE.
• Installed redundant Citrix Netscalers load balancers to provide uninterrupted service to the clients.
• Python scripting to automate testing.
• Worked with demonstrated success in network administration, data communication, wireless communication installations, design, maintain and troubleshooting Cisco routers and switches, Juniper Routers and Firewalls, F5 load balancer.
• Troubleshooting L2/ L3 device (cisco routers/ catalyst switches).
• Cisco Security: Telnet, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cisco (ASA, PIX) 5510, Cryptography, VPN, Ipsec.
• Worked on WAN Accelerator "River Bed "for optimization of the bandwidth and file sharing on the WAN Circuit.
• Installed, configured and troubleshot Cisco wireless network, Wireless LAN controllers.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PagP).
• Working on configuring routing protocols (OSPF, BGP4, RIP, IGRP and EIGRP) and enterprise class switches-router management (Cisco 6509, 2800, 2900, 3750, 3800, 3900).
• Worked on configuring and troubleshooting Cisco ASA firewalls (5540) and juniper SRX firewalls.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PagP).
• Implement Thales HSM devices (FIPS140-2 Level3) compliant device.
• Manage Anti-Virus and Anti Malware systems - Eset, AVG, Symantec, Microsoft, Malwarebytes.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Implemented security measures to keep networks running and secure. Configured extended ACLs to filter traffic and gave restricted access to certain users.
• Deployed Cisco and Juniper LANs, WANs, and wireless solutions.
• Working on as security devices ASA, juniper, Palo Alto firewalls, routers, switches.
• Provided third tier support to end users and onsite support to Hedge Funds group including EIGRP, BGP and MPLS routing, internet/intranet access, remote access, and unified communications.
• Implementing and Managing Palo alto Firewalls.
• Design, implement, and troubleshoot many wireless LAN (point to point, full-mesh and point to multipoint).
• Working with Juniper JUNOS operating system and working on M and MX series routers.
• Troubleshooting issues related to L2 protocols - VLAN, STP, RSTP and IGMP Snooping. L3 protocols - RIP, OSPF, BGP, Ipv4, Blue Coat, IPv6, TCP/IP, DHCP, DNS, Multicast, 1/10 GB, Ethernet & SNMP.
• Pre-Deployment of OnGuard (NAC Solution).
• Performed applying DCR's (Database Change Request) to different environments using SQL server Management studio.
• Manage and support Remote Access VPN setup for users and field locations with Nortel VPN Contivity Switch, RSA Secure IDS two-factor authentication and Juniper SSL VPN.
• Responsible for designing, implementing and administering SonarQube server and its possible integration with other tools such as Jenkins, JIRA, SVN, Eclipse etc.
• Monitored performance and ensure system availability throughout the network.
• Designed the traceability matrix which tracks down design against business requirement and creating the Hyperion Planning (EPMA) P&L, Capital Expenditure, Workforce, Facility and Management Reporting application.
• Implementing and troubleshooting 3cx and Linux (freePBX) Elastix PBX systems.
• Configurations and fine-tuning of custom application like Business objects Enterprise and Informatica Powercenter as ETL tool for extracting data from source database
• Provide Level 2 support for daily assistance and troubleshooting.
• Participate, review and recommend network related tasks to ensure data security configuration and management.
• Troubleshoot and resolve Level 2/Level 3 network issues. worked in an environment that is closely managed/maintained with change control policies.
• Monitor and Analyze system resource utilization Communicate with vendors and other departments for problem resolution.
• Performed and deployed Builds for various Environments like QA, Integration, UAT and Productions Environments.
• Implemented NAT solutions in Cisco IOS routers and VTP on core switches.
• Worked in support environment of Cisco ISE, RADIUS, TACACS, enabling network access.
• Configured HSRP and VLAN trunking 802.1Q, VLAN routing on catalyst 6500 switches.
• Implementation of TCP/IP and related services - DHCP/DNS and configuration of VPN tunnels.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+).
• Responsible for building/deploying consistently repeatable build/deployments to company production and non-production environments using JENKINS & BUILD Pipelines, ANT, MAVEN, XCODE, Shell.
• Configuration of Juniper M320s as PE's, Cisco CRS-1 as Core, Cisco Catalyst 6500/7500 and Nexus 7010 as CE's
• Configured Cisco 7200, Juniper M10i Routers as Route-Reflectors in the IP Core Back Bone.
• Troubleshoot and hands on experience on security related issues on Checkpoint IDS/IPS.
• Mapped out MPLS network or DIA connectivity with Tier 3 carriers (Level 3, XO) and Global Project Manager in ensuring timely delivery and optimal configuration.
• Reviewed and researched various TCP ports to support access control into IRS Data communication infrastructure.
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
• Configured IP helpers on the VLAN's as requested by the customers as per their DHCP settings on Infoblox.
• Installed and configured CISCO ASA, and Checkpoint firewall.
• Deployed VXLAN on the Nexus 9000 to map the physical VLANs to the Virtual Overlay VLANs.
• Replacing Checkpoint firewall with Cisco ASA firewall.
• Scripting for automation of processes for Windows Servers. Familiarity with main script languages like Power Shell, PHP, Shell, Perl, Python.
• Configured VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches.
• Configured OSPF routing protocol and policy based routing.
• Design OSPF Areas for reliable Access Distribution and for Core IP Routing.
• Configured and troubleshot issues with Auto Attendant, Automatic Call Distribution, and call hunting.
• Support the One to One proxy migration project from legacy, end of life proxies to Blue Coat Proxy SG units.
• Routing configurations included OSPF, static/default routes, HSRP, ACL, and NAT on Cisco routers.
• Configure and manage Cisco IPS/IDS and Cisco SourceFire.
• Managed Linux production servers using VMWARE vSphere client like monitoring performance of the servers, accessing console, troubleshooting server, accessing booting parameters etc.
• Deployed VXLAN on the Nexus 9000 to map the physical VLANs to the Virtual Overlay VLANs.
• Configured voice gateways, incoming and outgoing call routings, dial plans, dial-peers.
• Worked on Cisco and SonicWALL firewalls.
• Build out telecommunication rooms with racks, ladder, cable tray, wire management. Grounding and bonding equipment and racks.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.

Confidential -Herndon, VA

Network Engineer

Responsibilities:

• Configured routers out of the box with security specifications, shipped devices to sites and provided implementation support.
• As a team player contribute in deployment of Cisco IWAN Infrastructure environment.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter VLAN routing, LAN security.
• Designed corporate security infrastructure using Cisco VPN concentrators, Pix and ASA firewalls, IDS and FWSM.
• Manage Silver Springs IP address deployment using Infoblox DHCP tool.
• Optimized the multi-vendor network integration. Current environment is composed of Extreme, Cisco, Juniper LAN electronics.
• Work directly with multiple vendors to build DR Data Center located in Volo, IL. (Cisco, VCE, EMC).
• Based on network requirements defined a detail capability requirements for access equipment, Wireless LAN Controllers, Access Points and services management platforms Like Aruba Airwave and Prime.
• Black listing and White listing of web URL on Blue Coat Proxy servers.
• Administer TLS Domain Encryption with Iron Port encryption, RSA Endpoint DLP and Postini inbound spam filtering.
• Managed network changes, created or managed level 3 support tickets through HP service manager, received calls and tickets from operation and level 2 network engineers, and worked on trouble tickets to resolve customer network issues.
• Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall.
• Maintain records of daily data communication transactions, problems and remedial actions taken, or installation activities.
• Actively work on automating networking process by writing scripts and tools in Python/Shell.
• Implemented security policies using ACL, Firewall, IP Sec, VPN, AAA Security TACACS+, and Radius on different series of routers.
• Configured HSRP and VLAN trunking 802.1Q, VLAN routing on catalyst 6500 switches.
• Deployed Juniper switches EX4500 and EX4200, routers M7i and M10i and Junos OS.
• Implemented Spanning Tree Protocol (STP) to avoid looping in switching environment.
• Deployed QoS on LAN/WAN. Strong knowledge of various routing protocols including RIPV2, EIGRP, OSPF and BGP4.
• Configured and set up of Juniper SRX firewalls for policy mgmt. and Juniper SSL VPN's.
• Automated the cloud deployments using chef, python (boto & fabric) and AWS Cloud Formation Templates. Implementing a Continuous Delivery framework using Jenkins, Chef, Maven & Nexus in Linux environment and worked on Managing the Private Cloud Environment using Chef.
• Designed, installed, and configured Cisco wireless system with wireless LAN controller.
• Performed Network Security Assessment and implemented security features such as network filtering, SSH, AAA, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's, ARS(9k,901,903).
• Working with networking and storage protocol standards like UDP, STP, RSTP, MSTP, PVST+, OSPFv2, BGP Peering, NAT, DNS, TCP/IP EIGRP, MPLS WAN optimization, RIPv2, IPv4, IPv6, Checkpoint VPN, GRE tunneling, VMWare NSX, Firewall, SCSI, FC, FCoE, iSCSI, DCB/X, TRILL, Frame Relay, ATM, MPLS.
• Provide application upgrades. Perform data migrations and database conversions using Informatica Powermart tools.
• Provided SME support on AWS Cloud Formation, PaaS, LaaS and other services for Linux Red Hat Enterprise systems.
• Development of methodologies and frameworks for identifying, designing, building, fielding, and assessing the effectiveness of new capabilities intended to increase mission assurance.
• Worked on Juniper MX 480, MX960.
• Writing shell scripting for several jobs to clean up disks and bad files on server.
• Planning and Implementing Subnet and VLSM to conserve IP addresses.
• Configuration of Standard and Extended ACLs for Security.
• Network Security implementation with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol.
• Used ACLs (Access Control Lists) for authentication of EIGRP, BGP and to ensure high security on the network.
• Provided support for troubleshooting and resolving Customer reported issues.
• Managing, troubleshooting and monitoring the network using Network Monitoring tool.
• Routing Protocols (RIP, RIP V2, IGRP, EIGRP, OSPF), Virtual LANs, WAN and Ethernet.
• Monitoring and keeping track of the Network traffic analysis through the routers using MRTG.
• Frame Relay, ISDN, PPP, HDLC, Network Troubleshooting using CLI Show commands, PING, Trace route, telnet.
• Worked on FTP, HTTP, DNS, DHCP server in Windows Server-Client environment with resource allocation to desired VLANs of Network.
• Installed and managed different software on the server to maintain network devices including Switches and Routers and also responsible for day to day management of Cisco devices and monitoring of network traffic.
• Included the ability to store users' credentials and other information locally on the device in a SQLite database with FIPS140-2 compliant.
• Involved in troubleshooting IP addressing issues and updating Routers and Switches IOS images and configuration files on TFTP Server.
• Monitor performance of network and servers to identify potential problems and bottleneck and responsible for day to day management of Cisco Devices, traffic management and monitoring.
• Worked on FTP, HTTP, DNS, DHCP server in Windows Server-Client environment with resource allocation to desired VLANs of Network.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Work with remote enabled tools to remote access individual Workstations.
• Managerd ESXI servers with DNS Virtual Server, Active Directory Server, Antivirus and Remote Management Server. And also backup server.
• Troubleshoot Level 3 Network issues, Early resolution of Critical Cases (Sev1), Expert in Root Cause Analysis.
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network.
• Ensures LAN/WAN environment are secure and appropriate recovery and redundancy issues are addressed.
• Participates in planning, designing, installing and configuring local and wide area networks.
• Responsible for ensuring appropriate security controls are in place to ensure the highest level of security for the infrastructure.
• Responsible for supporting the architecture, design and assurance of information security mechanisms and services throughout the cloud services division.

Confidential - Norwalk, Connecticut

Network Engineer

Responsibilities:

• Involved in gathering Documenting and communicating technical details to team members via design documents, training packages, standard operating procedures, etc.
• Program network routers to correct discrepancies in protocol type, manage IP addresses, isolate outages, and resolve issues with network connectivity.
• Managed relationship & support experience for RES Linux after-hour customers.
• Manage, configure, maintain, monitor and troubleshoot Aerohive wireless network. Manage over many Access Points and a variety of wireless network policies.
• Manage and perform WAN installations and network performance improvements and enhancements.
• Providing Level 3 support to customers, resolving issues by attending to conference calls.
• Install and maintain voice, video and data communications infrastructure systems and cabling.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Monitor and scale network bandwidth as needed
• Involved in to Plan and execute complex network upgrades and migration activities
• Managed all aspects of network security (load balancers, firewalls. router ACLs) and Remote Access for users and clients.
• Performed network hardware/software maintenance and Update/standardize device firmware as needed.
• Managed all bid negotiations and associated contractors that performed services for Level 3 internal and external customers alike; processed and maintained all billing and invoicing for the Denver Gateway.
• Coordinated the installation efforts of Hyperion planning suite.
• Assisted operations personnel with networking system trouble-shooting and recovery.
• Performed IOS upgrades on Catalyst 3550, 2950, 1900 switches, and 3600, 2600 and 2500 routers.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Planning and Implementing Subnet and VLSM to conserve IP addresses.
• Configuration of Standard and Extended ACLs for Security.
• Network Security implementation with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol.
• Maintained good Customer Relation Skills & Troubleshooting skills in a production based environment.
• Involved in group & individual presentations to corporate clients about the company's internet based products like leased lines and modular routers.
• Establish LAN & WAN connectivity for different client hosting networks and ensure connectivity for all web & email services.
• Monitor traffic and access logs in order to troubleshoot network access issues.
• Gather information for specific technologies as to function and deployment configurations.
• Prevented asymmetric routing issues by redistributing routes from BGP to OSPF with right metric values.
• Troubleshoot intra-net and internet connectivity issues using PING, Traceroute.
• Configuring and maintaining Spanning tree topologies (RSTP) and testing the network response to link failure.
• Configured VLANs with 802.1q tagging, Ethernet port-channels using LACP for redundancy and load-balanced access to servers.