SUMMARY

• Over 8+ years of experience in design, development, implementation, trouble shooting and maintenance of complex network systems and incorporating security
• Extensive experience in Layer 3 routing and Layer 2 switching and dealt with router configurations like Cisco 7200,3800, & 2800 and switches Cisco 6500, 4500, 3750,2900 and 3500XL series
• Experience testing Cisco routers and switches in laboratory scenarios and deploy on site for production
• Experience in Network Management Tools and sniffers like SNMP, HP - Open view, Wireshark, Solarwinds and Cisco works to support 24 x 7 Network Operation Centre
• Proficient in configuration of routing protocols likeRIP, EIGRP and OSPF multiple areas BGP
• Involved in designing L2VPN services and encryption system and other VPN with IPSEC based services
• Experience in designing and troubleshooting of complex BGP and IS-IS routing problems on mock lab scenarios
• Extensive Knowledge on the implementation of Cisco ASA 5500 series firewalls
• Expertise in IP subnetting and worked on various designing and allocation various classes of IP address to the domain
• Involved in troubleshooting of IP conflict problems and worked on Gigabit Ethernet and Fast Ethernet connection and applied QoS for the bandwidth delay
• Extensive experience taking copy of Cisco IOS on TFTP server and loading itback on routers and knowledge ofHP Openview software
• Planning, Installation and configuration of Vblock in a Data Center.
• Hands on experience on NAT (Network address translation ) configurations and it’s analysis on troubleshooting issues related access lists (ACL)
• Involved in monitoring network traffic and its diagnosis using performance tools like Snort, Snortsnarf, ping tools, and packet player
• Monitored network congestion in frame relay connection using FECN and BECN and kept track of VC (Virtual circuit) status through LMI (Local management interface)
• Experience in troubleshooting of Nortel switches using SMLT protocol using IST (Inter switch trunk) Operation
• Support and Troubleshoot Cisco UCS Servers in a Data Center environment.
• Working knowledge of Remedy ticketing system for case and change management.
• Worked on Avaya Voice gateways for VOIP implementation using Cisco Catalyst switches
• Maintain technical knowledge by understanding state of the art technologies, attending alworkshops and reviewing technical publications.
• Excellent communication and documentation skills and is able to work individually and team member.

TECHNICAL SKILLS

Vendor Platforms: Cisco2851,3640,3660,7206,7513,1700,1841,2600,3600,2500 series RoutersIP Layer3/4 TCP, UDP, DHCP, FTP, ICMP, DNS, ARP, RARP, SMTP, MPLS.

IP Routing: RIP, BGP, OSPF, IGRP, EIGRP.

Traffic Analyzer Tool: Netflow version 4.0.

Networking Monitoring Tool: Solarwinds, QRadar, Trustwave

Security: VPN, NAT, PIX Firewall, ASA.

IP Telephones: Cisco 7940, 7960 and 7970.

Network Management: SNMPv3, CMIP.

Packages: MS Office (Word, PowerPoint, Excel & Outlook), MS Project, MS Visio

Platforms: Windows 7, XP, Vista, Server 2003, MAC OSX, UNIX, Linux (Ubuntu) and Cisco IOS (Internetworking Operating System).

PROFESSIONAL EXPERIENCE

Confidential, Farmington Hills, MI

Sr Network Security Engineer

Responsibilities:

• Worked on Cisco 7500, 7200, GSR 12000, series routers and Catalyst switches like 4500,6500,7600
• Planning, development and implementation of hardware and software strategies to support the evolution of the enterprise network backbone
• As a part of Enterprise monitoring project, advised on improving network performance monitoring, including traffic optimization and device alerting
• Management of BGP peering with Service Providers to ensure availability and maintain SLA with MD5 authentications and TTL security.
• Troubleshooting traffic passing managed firewalls via logs and packet captures.
• Configuring VLAN, LAG Port Channel, HSRP and VRRP onCisco devices.
• STP attack mitigation using BPDU Guard, Root Guard, and authentication for VTP, STP, disabling all unused ports by putting them in unused VLAN and ensuring DHCP attack prevention wherever needed.
• Design VPN tunnels between locations. Implement these tunnels using IPsec and GRE protocols and maintain the tunnels.
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Document all network procedures, maps, and projects, including recording diagnosis and resolution of network faults, enhancements and modifications to networks and maintenance instructions.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. ConfiguredCiscoRouters for OSPF, RIP, IGRP, RIPv2, EIGRP, Static and default route.
• Responsible for troubleshooting T1s, DS3s, connectivity issues with carrier and circuit analyzers.Configuration/Installation Troubleshooting Load balances, writing trouble reports and test reports TCP/IP protocolanalyzerssuchasSniffer,Ethereal/Wireshark.

Confidential, Detroit, MI

Sr. Network Engineer

Responsibilities:

• Deployment of monitoring systems (Solarwinds) forCisco, Juniper and Palo Alto device at client locations.
• Administering & designing LANs, WANs, Internet and voice networks.
• Optimize routing using route maps, route redistribution, route filters and fine-tuning routing protocol.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues.
• Implemented SNMP onCiscoroutes to allow for network management.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Maintaining & Analysis of LAN infrastructure, firewall logs, IP tables,Networkusage details etc.
• Identified IOS related bugs based on appropriate release notes and past history.
• Maintaining IP addressing schema for the full enterprise network with the consideration of optimal utilization of IP range & minimizing the routing table length using route aggregation.
• Maintaining IP Core Networks with the consideration of high-availability network redundancy and disaster recovery.
• Once trouble ticket has been created, kept the customer informed of status of ticket and estimated time to repair.
• Coordinating with service providers for WAN link outages.
• Configuring Vlans, VTP, and enabling trunks between switches.
• Worked with customers in troubleshooting issues related to connectivity, STP, Vlans, Trunking, VTP, Layer 2/3 switching, Ether channels, Inter-Vlan routing, log messages, high CPU utilization and parameters that can degrade performance of network.

Confidential

Network Engineer

Responsibilities:

• Installation, Configuration and management of, Cisco36xx, Cisco 3800 and Cisco 76xx series routers.
• Cisco Switches Catalyst (Cisco 6600 series, 3600 series 3550 series, 2970 series 2960G series,2950 series creating remote access with cable modems and virtual private networks.
• Maintaining centralized security in remote access network.
• MD-110 PBX Monitoring Interfaces. Enabling or Disabling Interfaces Configuring Device Connections.
• Setting Interface Thresholds MD-110 PBX. Viewing Interface Address Information. Monitoring MD110 Alarms.
• Resolving Port Connections.ModelCommunications Information.Configuring Model Redundancy .Monitoring ISDN Basic Rate Extensions .Radio Exchange Information .Configuring Computer Telephony Interfaces.
• Modems Configuration of CE-1, ISDN PRI, nx64Kbps, E1 and E3 links WAN Technologies (Leased lines: 64Kbps, nx64Kbps, 2Mbps, 34Mbps, ISDN, PPP, HDLC and Frame Relay etc.).
• Responsible for Network cabling / backup UPS setup and network cable infrastructure.
• Responsible for Install of Cisco Works for remote management of L2/L3 devices including: Cisco View (6.1.5), Essentials (4.0.5) and Campus Manager (4.0.6) using Cisco LMS 2.6.
• Maintenance of Gigabit Ethernet .FC, ST, Multicore Optical Fiber patch cords.
• TCP/IP, EIGRP, BGP, HSRP, NAT, L2/L3 switching and Spanning tree and Loop Avoidance.

Confidential

Network Support Engineer

Responsibilities:

• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, IPSec VLSM, TCP/IP, NAT, DHCP, DNS, T1 / FT3 / T3 Sonet POS OC192,GigE circuits, Firewalls
• Configured various routing protocols including EIGRP, OSPF, BGP, and analyzing throughput of WAN link
• Interoperability study between various vendor equipment and protocol implementations. Actual work involved interop testing between Cisco 7500, GSRs, and Catalyst 6500.
• Working with Corporate Customers, Tier 1 & 2 Support engineers in solving complex customer provisioning issues;
• Authentication was tested for OSPF, LDP and BGP.
• Expertise in configuring EIGRP, Frame-relay, T1 circuit, CBWFQ (QoS), NAT, BGP, LAN-to-LAN tunnel
• General routing table and per vrf routing table segregation, verified Route Distinguishers, Route Targets, Max routes per vrf.
• BGP session establishment/Authentication/Resiliency and exchange of routes and in-depth verification of required features such as Max number of prefix, Advertise interval, Prefix list AS-Override, ORF with CE as the sender and PE as the receiver, Used M320 and Cisco GSR as edge routers.
• Transparent passage of BGP community values as set by the CE, default originates, Allow-as, AS Prepend ASN, and EBGP session authentication.
• Configured a Created TCP/ IP flows for performance measurements and troubleshoot OSPF, BGP, and EIGRP.
• Used SNMP protocol for NMS configuration to detect network link failure
• Designed secure VPN architecture, including MPLS VPN (RFC2547) platforms for various customers thatinclude ISP.
• Assist the Operations team in multi area OSPF configuration.
• Configured CE routers with the team