SUMMARY

• CISCO Certified Professional with 7 years of experience in network design, implementation, troubleshooting, engineering, managing & migration of large - scale enterprise networks.
• Experienced Cisco/Juniper Firewall, Security and Network Administrator as well as a Certified Network Professional, routing and switching.
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Expertise in Configuration of Virtual Local Area Networks (VLANS) using Nexus 7Ks, Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST Port Channels, VPC, VDC, Fabric path & port security along with trouble- shooting of inter-VLAN routing and VLAN trunking using 802.1Q.
• Experience with NX-OS on Nexus Switches.
• Excellent experience in working with Cisco 1800, 2500, 2600, 2620, 2800, 2900, 3600, 3800, 3900, 7200, 7600 and ASR 1000, 9000 series Cisco Routers.
• Experience working on Juniper series of devices like MX-960, MX-480, MX-104, M10i, M7i, SRX-550, SRX-240, SRX210 and EX, QFX series of switches.
• Experienced in working with Cisco 2900, 3500, 3700, 4500, 6500 series Cisco Catalyst Switches and Nexus Switches 2200, 5500 and 7000.
• Adept at configuring and troubleshooting of VPC on Nexus 7Ks, 5Ks and VDC on NX7Ks.
• Hardware knowledge of various line cards in Nexus 7Ks and 5Ks.
• Implemented redundancy with HSRP, VRRP, GLBP, and Ether channel technology (LACP, PAgP).
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000, 2000, Viprion for the corporate applications and their availabilities.
• Expertise in OSI layer model and TCP/IP model.
• Exposed to handling and troubleshooting issues on NAT.
• Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
• Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain.
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCPdump and Linux operating system servers.
• Sound knowledge of Routing and Switching concepts and MPLS design.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Strong experience onJuniper SSG series Firewalls and Checkpoint R75, 76 Firewalls.
• Worked extensively on Cisco FirewallsCisco PIX (506E/515E/525) & ASA 5500(5510/5540)Series.
• Knowledge in planning, design, implementing and troubleshooting complex networks and advanced technologies.
• Advanced knowledge in Cisco ASA 5000 series and Juniper SRX installation, configuration and maintenance.
• Identify, design and implement flexible, responsive, and secure technology services.
• Experience with Firewall Administration, Rule Analysis and Rule Modification, project implementations.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Working knowledge of networking devices such as Routers, Switches, Firewalls, VoIP, WAN Optimizers and Wireless Devices (Controllers and Access Points).
• Deploying Intrusion Detection System (IDS), Intrusion Prevention System (IPS) devices in the network.
• Worked on Migration projects involving the refresh of devices from Cisco to Juniper in the network infrastructure.
• Worked on Migration projects involving the refresh of devices from Cisco Catalyst environment to Nexus environment.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products
• Router configuration for L2/L3 LAN and WAN networks and Intra company networks.
• Experience in Configuring Client-to- Site VPN using SSL Client on Cisco ASA 5520. Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
• Knowledge of Solar winds Orion, Net MRI, SNMP network monitoring tools.
• Experience with Aruba Wireless technologies including Aruba Airwave, Clear Pass with QoS,
• Experience with Cisco Meraki wireless managed network infrastructure.
• Experience with Cisco VoIP, CUCM call manager.
• Telecommunications circuits for both WAN and PSTN/Dial-Tone (PRI, SIP)
• Experience in Network connectivity to Cloud Providers (AWS, Azure)
• Configured Routers and switches to interconnect Controllers and Access points.
• Maintaining and updating inventory of all network hardware, Management and Monitoring by use of Orion, SSH, Syslog, SNMP, MySQL, Splunk, QRadar, Connection Records database, InfoBlox, Asset management tools, AlgosecNTP.
• Experience in technical documentation of MOPS, Project handoff documents and Visio Drawings.
• Aware of procedures in change management and implementation of changes in accordance to the procedures.
• Hands on experience in using Network Monitoring and Packet Sniffing tools.
• Strong interpersonal, organizational communication, customer service & presentation skills.

TECHNICAL SKILLS

Routers: Cisco 1800,2500,2600, 2900,3200, 3600,3700, 3800, 7200 and 7600 and ASR 1000. Juniper Mx-960, MX-480,M10i,M7i

L2 & L3 Switches: Cisco Catalyst 2900, 3560, 3750, 4500, 4900, 6500 Nexus 2200,5500,7000. EX-4300, EX-4200,QFX-5100

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, VXLAN Inter-VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC, DOT1Q.

WAN Technologies: Frame Relay, ISDN, HDLC, (E1/T1/E3T3), OC192, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET Packet Switched WAN - ATM, FRAME RELAY, MPLS VPNs.

WAN optimization technology: Riverbed, and WAAS.

Network Security: Cisco ASA, ACL, IPSEC, NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Internet Content Filtering, Load Balancing,IDS/IPS, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS)

OS products/Services: DNS, DHCP, Windows (XP, 7, 8), UNIX, LINUX, MS Excel, MS Visio, MS power point, Linux Red hat

Routing Protocols: Routing Protocols (RIP v1 & v2, OSPF, EIGRP, BGP), QoS, VRRP & GLBP, HSRP, TCP/IP, UDP, ESP IPsec, MPLS, PPP, PPTP, IPSEC, IKE, SSL, SSH

Gateway Load Balancing: HSRP, VRRP, GLBP

Various Features / Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP.

Network Management Tools: Wireshark, Net flow Analyzer, Cisco Works, Ethereal, SNMP, Fluke, Cable Analyzers, Sniffer., Infoblox, NetMRI, Solar winds, Nagios, Net Scout, Kiwi-cat, What's-Up Gold, Ethereal, BERT

Security Server Protocols: TACACS+, RADIUS, Cisco ACS

Facilities: DS0, DS1, DS3, OCX, T1/T3

Load Balancers: Cisco CSM, F5 Networks (Big-IP) LTM 8900, Cisco ACE 4710.

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7/8/10), Linux, UNIX, WINTEL

Firewall & Security & Scripting: Checkpoint, Cisco ASA, Palo Alto, SRXPython

PROFESSIONAL EXPERIENCE

Confidential, Richardson, TX

Sr. Network Engineer

Responsibilities:

• Installing and configuring new Cisco equipment including Cisco catalyst switches 3850, 3750, 4500 and 6500 as per the requirement of the organization.
• Worked on design and implementation of WAN redundancy by adding new WAN router ISR 4351 into existing network.
• Working with 1000 series ASR routers by creating VRFs for several remote sites and injecting routes to MPLS cloud for internet connectivity.
• Creating BGP multi-homed network using BGP attributes like AS-PATH, MED and local-preference as per the environment.
• Creating IP-prefix-list, route-map, offset-list and distribution list for performing route manipulations.
• Configuring and troubleshooting layer-3 routing protocols like OSPF, EIGRP & BGP.
• Providing gateway redundancy using HSRP & creating ACL for layer-3 security.
• Worked on Enterprise application load balancing using F5 BIG-IP LTM 6400.
• Worked on Firewall rule management as part of network operations to take care of Firewall ACL requests.
• Maintained ASA 5580 to ensure high end security on the network with ACLs and Firewall. I also performed firewall troubleshooting to resolve application issues in DMZ and server farm.
• Involved in Switching Technology Administration including creating and managing VLANS's, Port security, Trunking, STP, VXLAN routing, LAN security etc.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution.
• Downloaded and upgraded IOS-XR versions on Cisco devices.
• Analyzing traffic behaviors using Wireshark, SolarWinds, Net Scout, and OPNET tools to resolve performances issues.
• Working on different connection medium like Fiber and Copper Connectivity.
• Configuring QoS for VOIP deployments and troubleshooting voice related issues.
• Orion Network analyzers and Net QOS to manage the network, bandwidth and analysis network performance
• Worked on network-based IT systems such as racking, stacking, and cabling.
• Network Deployments during weekends and afterhours.
• Install and upgrade iOS-XR on Cisco 2k FEX, 5/7K Nexus, ToR, MoR, and layer 2/3 switches/firewalls in all sites.
• Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 7000. Configuring VDC & VPC in Nexus 9k, 7k, 5k and 2k
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Installed the Cisco Prime Data Center Network Manager (DCNM) tool to allow centralized management of all Cisco Nexus 9k switches and Cisco UCS C-Series servers.
• Solve complex Routing and Switch problem to facilitate network Migration from Cisco catalyst environment to nexus environment.
• Cisco Switches (6500-E, 6500, 5500, 4500, 3750, 3550, 2900), Series (OSPF, EIGRP, BGP).
• Solve issues Relating to IPSec tunnels, VPNs, Routing Issues and whatever other problem that occurs.
• Troubleshoot issues with Wireless Access points (Cisco 3502) and configure SSID’s on 5520 Wireless LAN Controllers.
• Experience with Aruba wireless LAN controllers, Airwave, Clearpass and Amigo Products Access points and/or Cisco Wireless LAN Controllers.
• Delivering high quality technical collateral for the Aruba WLAN product line for customer, partner and SEs.
• Performed installation, configuration and testing of Aruba's wireless Access points.
• Configuring and maintaining the Network connectivity to Cloud Providers such as AWS, Azure using AWS VPC, AWS Direct
• Performed Network Security Assessment and implemented security features such as network filtering, SSH, AAA, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Configuring SNMP on Switches and adding them to Solar Winds for monitoring the health status of the Network devices.
• Installed CUCM 8.x Publisher, joined new Subscribers to the Cluster and integrated with existing cluster using SIP trunks for intercluster calling.
• Worked with team of 4 engineers to design, implement, manage, and maintain 85+ Cisco ASA and Palo Alto firewalls across the enterprise network.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Mapped, Network Diagrams and physical identification in MS Visio.
• Hands on in deployment of Site-Site IPSEC VPN and DMVPN.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently. Administration of ASA and Juniper SRX firewalls in the DMZ and FWSM in the Server Farm to provide security and controlled/restricted access.
• Responsible for monitoring alerts through tools like Solar winds Orion, xenoss, scrutinizer in the Production environment as a part of first response for the service desk.
• Implemented changes in projects in accordance with the change management process and responsible for MOPS, Post-Implementation handoff documents and Visio drawings.

Confidential, NYC, NY

Sr. Network Engineer

Responsibilities:

• Performed network engineering, planning (WAN & LAN) & implementation, Studied single point failures & implemented WAN structure in such a way that there are no failures in network in case of any device or link failure.
• Configured LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Performed network monitoring and packet tracing using tools like Wireshark, OPNET.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between Switches.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Worked with F5 load balancer and Cisco ACE 4710 Load balancers
• Configuring and implementing, Citrix Net scalar F5 BIG-IP, LTM, GTM load balancers to maintain local and global traffic.
• Responsible for the conversion of the existing environment from an EIGRP to OSPF setup to facilitate the migration of Core from Cisco to Juniper.
• Implemented MX-960 router and configured virtual chassis in the core to enable interchassis redundancy.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems during the conversion of existing point-to-point circuits to MPLS.
• Configuring and implementing of Juniper series routers MX480, MX960.
• Configuring and implementing of Juniper Series Switches EX4200& EX3200 for LAN/WAN connectivity
• Configuring Virtual Chassis for Juniper switches EX-4200, QFX-5100,Firewalls SRX-210.
• Responsible for Juniper SRX firewall management and operations across our corporate networks.
• Responsible for Working with JTAC/CISCO TAC for resolving escalated issues and bug fixes.
• Worked on a project to migrate vendor DMZ's from a disaggregated cisco environment to a unified SRX 550 firewall cluster leveraging UHG's services.
• Installation and administration of VMware ESX, ESXi Servers using vCenter Server
• Configured DHCP scope in Infoblox.
• Plan, survey, deploy, implement Cisco Meraki wireless managed network infrastructure
• Provide support in identifying root causes of technical issues, making best practice recommendations for technical issues involving the entire Meraki product line, including security appliances, switches, wireless access points, and VoIP devices
• Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices
• Configured OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configured routing policy for BGP. Switching related tasks included implementing VLANs and configuring ISL trunk and 802.1Q on Fast-Ethernet channel between switches
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Troubleshooting on network problems with Wire shark, identify problem and fix.
• Managed configuration of DMVPN Architecture and identified problems regarding the use of DMVPN and layer 3 switches and their inability to terminate IP NHRP on Cisco devices, allowing for successful traffic monitoring services to be applied seamlessly.
• Experience with configuring Nexus 2000 Fabric Extender (FEX)which acts as a remote line card Redistribution of routing protocols and Frame-Relay configurations.
• Configuring and troubleshooting type of routing to route traffic flow per customer requirement as primary, backup/load balanced and load splitting.
• Performed the maintenance of Active Directory and replication scheme, DNS/DHCP services and time services; wrote step-by-step procedures for implementing upgrades.
• Configuring SNMP on Switches and adding them to Solar Winds for monitoring the health status of the Network devices.
• Dealt with creating VIP(virtual servers), pools, nodes and applying rules for the virtual servers like cookie persistency, redirection of the URL
• Configured VLANs on a switch for inter-VLAN communication. Configured VLAN Trucking Protocol (VTP) on Core Switches. Configured various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches for STP, VTP Domain, VLAN, Trunking, Fast Ether Channel configuration.
• Configured Wireless Lan Controller 2500, 5500, 7500 and provisioned Access points.
• Configured Routers and switches to interconnect Controllers and Access point
• Implemented access policy in ISE and deployed through WLC to wireless clients
• Successfully installed Palo Alto Next-Generation PA-3060, PA-5060 firewalls to protect Data Center with the use of IPS feature
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series. ss
• Implemented security policies using ACL, PIX firewall.
• Monitored usage of network resources with Cisco works, and using sidewinder in PIX Firewall.
• Implemented Cisco IOS Firewall IDS using 2600 series router.

Confidential, Memphis, TN

Network Engineer

Responsibilities:

• ProvidedTechnical supportin terms ofupgrading, improving and expanding the network.
• Maintain effective communications with vendors, peers and clients in resolution of trouble-tickets, equipment failures.
• Troubleshoot Hardware,CiscoIOS, and install/configureCiscorouters and switches.
• Manage and coordinate all infrastructures related to moves,ads, and changes.
• Configuring ACLto allow only authorized users to access the servers on ASA firewalls.
• Participated in on call support in troubleshooting the configuration and installation issues.
• Experience in configuring Site-to-site VPN and remote access VPN solutions.
• Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
• Configured EIGRP, OSPF and BGP on Cisco 7200, 2800, 3800 series of routers.
• Worked in Configuration and extension of VLAN from one network segment to other segment between different vendor switches (Cisco, Juniper).
• Key contributions includetroubleshooting complex LAN/WAN infrastructureincludingrouting protocolsEIGRP, OSPF & BGP.
• Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external.
• Responsible for monitoring alerts through tools like Solar winds.
• Actively involved introubleshooting on network problems with Wire shark, identifying and fixing problems.
• Documenting workflow process, managing and implementing standard policy and procedures.

Confidential

Junior Network Engineer

Responsibilities:

• Implemented support and administration of Cisco routers (3640, 3650, 3550, 2960, 2950, 7200, 2811), Cisco switches (2950, 3725, 3550, 3524 ), Cisco Access Servers (2016, 2024)
• Migrated, troubleshoot, and deployed various current and legacy networking devices into the production environment including core and peripheral devices in a Linux based environment
• Evaluated, and made subsequent recommendations to identify root cause and/or work-around to meet the required deadlines set by the client.
• Analyzed, tested, and troubleshot the local and wide-area network utilizing root cause analysis techniques and resolved any Layer 1, 2, or 3 related issues.
• Utilized various Cisco enterprise applications; Cisco Call Manager, Cisco Unity, and Cisco Works to manage, monitor, and configure devices.
• Experience with Cisco CUCM & CUC Infrastructure, troubleshooting with Cisco TAC.
• Telecommunications circuits for both WAN and PSTN/Dial-Tone (PRI, SIP)
• Assessed, evaluated, and identified customer needs and requirements of various hardware and software technologies within a desktop and local area network (LAN) environments.
• Maintained, updated, and administrated all documentation accurately and effectively within the company database.
• Sustained various hardware, software, and logical technologies used included but are not limited to OSPF, EIGRP, BGP, MPLS, Frame-Relay, VPN, Layer-2/3 hardware, firewalls, routers, switches, and access servers.