OBJECTIVE

• To obtain a network engineering position in a progressive environment where my knowledge, skills and experience of 8 years are aptly utilized and challenged to meet the needs of a growing technology company.

SUMMARY

• Eight plus years of experience in the field of Network Engineering Lifecycle that include designing, planning, implementation & troubleshooting small, medium and large - scale enterprise networks.
• Extensive work experiences on Cisco Switches, Cisco Routers, Load Balancers & Cisco Firewalls.
• Worked on Cisco Catalyst series 2900, 3560, 3750, 4500, 4900, 6500 and Cisco 1800, 2600, 3600, 7200, 7600, ASR 9k routers.
• Troubleshooting and installing of CSRs, ISR, GSR and Nexus devices.
• Worked on Nexus platform 7010, 5K series (5548, 5020 and 5010) and FEX (2248, and 2232) and deployed VPC, VDC and OTV and successfully implemented VSS on the cisco catalyst switches.
• In-depth knowledge of TCP/IP protocol suite and proficiency in configuring and troubleshooting various routing protocols like BGP, OSPF, EIGRP, RIP, Static routing and management of routes using manual summarization, default-routes and redistribution.
• Extensive experience in configuring and troubleshooting various Switching protocols which includes VTP, STP, RSTP, PVST, MSTP, creating VLANS and Ether Channel (PAgP, LACP) and implemented inter-VLAN routing besides creating SVI’s and VLAN Trunking using 802.1q.
• Experience with setting up Cisco ASA firewalls Cisco ASA 5510, Cisco ASA 5512 & Cisco ASA 5505 with restricted security policies, NAT implantation, configured DMZ interfaces to restrict traffic flow.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP).
• Experience in implementation of offset-list for route manipulation and Access Control Lists, Route-maps, Distribute lists & Prefix- lists for route filtering.
• Expertise in implementing Security policies like NAT, PAT, IDS, IPS and Access lists.
• Cisco ios and os-xr.
• Worked with MPLS in establishing peer ship with BGP protocol.
• Good experience in physical infrastructure like Structured cabling, IP address management, Racking, Stacking, UCS management.
• Implemented traffic filters using Access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Experience in T1/E1/T3 technologies and different LAN & WAN technologies.
• Proficient in using MS Visio for documentation.
• Strong educational and working background in Telecom networks, experience’s working on Samsung, Lucent and Confidential switch translations.
• Expertise in troubleshooting switch translations and to communicate with various groups that are involved in the process.
• Excellent communicator, with emphasis on building strong client relationships.

TECHNICAL SKILLS

Cisco Routers: 2600, 2900, 3600, 3800, 7200 and 7600

Cisco L2 & L3 Switches: 2900, 3560, 3750, 4500, 4900 and 6500

LAN Technologies: Ethernet, Fast Ethernet and Gigabit Ethernet, VLAN, Inter-VLAN Routing, VTP, STP, RSTP

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3)

Network Security: Cisco ASA (5512/5550/5585 ),ACL,IPSEC,Sonic Firewall,WatchGuard Firewall

Server Operating System: Windows Server 2008, 2012

Desktop Operating System: Windows 7, Mac OSX

Routing Protocols: RIP v1/v2, OSPF, EIGRP, BGP, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.

Gateway Load Balancing: HSRP, VRRP, GLBP

Network Mgmt. Tools: Wire shark, Net flow Analyzer, Cisco Prime Infrastrucuture, SNMP, SYSLOG

Security Server Protocols: TACACS+, LDAP, RADIUS

Load balancer: F5 load balancer

VPN: IPSec & SSL VPN both Site-to-site and Remote VPN

PROFESSIONAL EXPERIENCE

Confidential, Overland Park, KS

Senior Network Engineer

Responsibilities:

• In the process of Data center fabric migration, performed migration from legacy Catalyst 6513 Switches to Nexus 7010 switches adhering to ITIL change Management Procedure.
• Configured and maintained VPCs with 7010 and 5548 in the network. Also configured and maintained VDCs in 7010 switches, maintained VRFs in those separate VDCs.
• Worked with Sup 2E for 7010 switch, F cards for L2 switching and few M cards for L3 proxy routing purposes for F cards.
• Used Fabric Extenders like 2248TP GE series for the top of the rack solution and used 5548P for the end of the row solution.
• Scheduled maintenance of Nexus (2248, 5548, and 7010) switches so that there are no Orphan ports in the network, and all Users to be dual homed, so that they have sufficient redundancy.
• Worked on OTV to extend L2 VLANs between data centers over IP on Nexus 7010 switches.
• Worked on 3600, 7200, 7600 series Cisco routers.
• Provided Network support and maintained Riverbed Steelhead 2050 Series.
• Configured and maintained EIGRP, OSPF and BGP on Cisco Routers.
• Maintained TACACS+ and RADIUS servers for AAA authentication and user authentication.
• Used Cisco ASA 5540 firewall for Enterprise security, configured ACL’s for Internet requests to Server Farm in LAN and DMZ.
• Provided VPN services to site-to-site and, Remote access VPNs using IPsec and GRE tunneling mechanisms.
• Performed network administration tasks such as creation and management of VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, and LAN security.
• Configured policy statements, and routing instances.
• Performed Network Security Assessment and implemented security features such as network filtering, SSH, AAA, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Maintained F5 BIG-IP LTM 6900 for providing application redundancy, load balancing and policies.
• Used internal network monitoring tools (Solar Winds & Opmanager) to ensure network connectivity and Protocol analysis tools to assess the network issues causing service disruption.
• Created and designed network layout and documented network system design with detail information using Visio software.
• Experience with Cisco Prime Infrastructure for both wired & wireless network, managing wireless implementation using Prime such as importing maps, site survey, setting up AVC (Application Visibility & Control). Also integrated MSE (Mobility service Engine) to perform historical data collection of the RF spectrum and service such as heat map.
• Experience working on Sonicwall Firewall and Sonicwall access points.
• Implemented Symantec Security cloud based solution for all PCs in the company, experience with managing Symantec cloud platform.

Confidential, Des Moines, IA

Sr. Network Engineer

Responsibilities:

• Cisco Router ASR 1000 and 9000 series. Integrated Services 4000, 3900, 2900. 7600, 7300 and 7200 Series- configuration, implementation, maintenance
• Cisco Firewall ASA 5500 - x series configuration, implementation, maintenance
• Cisco Switch - Nexus 7k, 6k, 5k and 2k. and Catalyst 4500, 3700, 3500, 4900 and 6500 - configuration, implementation, maintenance
• Cisco VPN configuration, implementation, maintenance Cisco Meraki Wireless and ACS configuration, implementation, maintenance Remote access maintenance and configuration. IP Camera and Server configuration, implementation, maintenance
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience.
• Design/Implementation/Operational support for Citrix Netscaler Load balancers.
• Managed IP addressing and subneting using INFOBLOX.
• Managed and Configured DHCP Scope in INFOBLOX.
• DNS administration like adding/modifying/deleting IP and DNS assignments using INFOBLOX
• Strong experience in Network security using ASA Firewall, Checkpoint, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN. Work with process teams to test and refine network configurations.
• Regularly interact with management, technical support, development support and Client Support.
• Supported low latency networks and Financial industry network architecture.
• Work with technical and business analysts within the organization to define and build required network profiles.
• Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard. Advanced knowledge, design, installation, configuration, maintenance, migration and administration of Checkpoint Firewall R55 up to R77.
• Performed traffic analysis for the rules on the old proxy devices. This included a joint effort with the firewall and load balancing teams to analyze all proxy traffic logs and rules and an analysis for the firewall rules the proxies had used. Once analyzed, and end to end traffic flow was determined, each rule was engineered to ensure proper access and minimal downtime to the line of business. Created numerous eConnects to ensure the bank had administrative access to the new Bluecoat proxies.
• Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
• Implemented port aggregation & link negotiation using LACP and PAGP.
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network.
• Configured and deployed BIG-IP LTM 6900 for providing application redundancy and load balancing.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Troubleshot issues and outages on Trunks and Router interfaces and firewalls extensively.
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Provided technical assistance for LAN/WAN management & troubleshooting and complex customer issues using Network monitoring tool’s such as Solar winds.
• Installed and configured CISCO ASA and Checkpoint firewall.
• Leveraged two Nexus 2232 Fabric Extenders and two 2248 Fabric Extenders, making them ‘dual-homed’ to both N5Ks and implementing Enhanced Virtual Port-Channel (EvPC).
• Involved smart view tracker to check the firewall traffic.
• Documented all the work done by using MOPS, Visio, Excel and MS word.

Confidential

Network Engineer

Responsibilities:

• Configured RIP and EIGRP on 2600, 2900 and 3600 series Cisco routers.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
• Provided on-call support for installation and troubleshooting of the configuration issues.
• Configured Standard, Extended, and Named Access Lists to allow users all over the company to access different applications and blocking others.
• Planned and implemented Subnetting, VLSM to conserve IP addresses.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Performed troubleshooting of connectivity problems using PING, and Trace route.
• Provided Technical support for improvement, up gradation, and expansion of the existing network architecture.
• Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
• IOS upgradation 1900, 2900, 3500 series Cisco Catalyst switches and 2500, 2600, 3600 series Cisco routers using TFTP.