SUMMARY

• Around 7 years of diversified experience in LAN/WAN, routing, switching, firewall technologies, administration and troubleshooting as a Network/System Engineer
• Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with VOIP and QOS implements and support
• Configuring and maintaining Site to Site and client to site VPN connectivity
• Configured and maintained Cisco ASA firewalls. working experience onEther Channels and Spanning tree Protocol,HSRPandVRRP.
• Hands - on experience with 5 of the following:vulnerability scanning, firewall, antivirus& malware analysis, proxy, IDS/IPS, log correlation tools, SIEM, DLP, NAC, and application firewall solutions
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series)
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and trouble shooting on LTMs and GTMs.
• Switching (MPLS)network using OSPF and BGP Configuring VLANs and implementing inter VLAN routing.
• Experience in TCP/IP protocol suite and OSI Model
• Outstanding experience in designing and configuring of Layer 2 / 3 networking features such as VLAN, ISL, STP, VTP, 802.1X, Port Security, L2PT and SPAN
• Testing and migrating locations from hub and spoke topology to MPLS
• Worked on IP QOS, in a MPLS VPN environment
• Experience with implementation of DNS and DHCP protocols
• Configuring firewall devices and configuring Access Control Lists (ACL)
• Excellent technical and project management skills combined with strong communication skills

TECHNICAL SKILLS

Routing: Static, Dynamic - RIP, IGRP, EIGRP, OSPF, IS-IS, BGP-V4

Routers: Cisco (7600,7200, 3800, 3600, 2800, 2600, 2500, 1800 series)

LAN Switching: VLAN, VTP, STP, RSTP, MST, ETHERCHANNEL, HSRP, VRRP, GLBP, Port Security

Switches: Cisco (6500, 4500, 3750, 3500, 2900, series), Nexus 5500

Networking Concepts: Firewall 506/515/525/535 , Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Protocols: FTP, TFTP, STP, MSTP, VTP, HSRP, VRRP, DHCP, SNMP, NAT, RIP, EIGRP, OSPF, BGP, MPLS.

TCP/IP Services: DNS, DHCP, SNMP, NAT, FTP, TFTP

F5 Load Balancers Security: VIPRION 4400, 2400Checkpoint, Juniper, Nortel, Cisco PIX & ASA Firewalls, Access lists and Policy based routing, Firewall Design, VPN Configuration, Internet Content Filtering, Load Balancing, IDS/IPS,HIDS,HIPS,NAC,DLP.

Firewall: Checkpoint Console R75.40 & R77.10, Cisco PIX - 506, 515, 525 Series,Cisco ASA - 5510 5540 5550 Series, Juniper SSG

Juniper Firewalls: Cisco 4400, 5500

Wireless Controllers: Access Points,DHCP, DNS, SMTP, FTP, TFTP

Infrastructure services: Cisco 1242, 2400 & 3500.

Platforms: LINUX, UNIX, Windows,Mac

Languages: Perl, C, C++, SQL, HTML/DHTML

PROFESSIONAL EXPERIENCE

Confidential, OH

Senior Network Engineer

Responsibilities:

• Configuration and Administration of Cisco and Juniper Routers and Switches.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts.
• Maintain, configure, and analyze network and host-based security platforms
• Network-based Intrusion Detection/Prevention Systems (IDS/IPS)
• Host-based Intrusion Detection/Prevention Systems (HIDS/HIPS)
• Application (Layer 7) Firewall
• Network Access Control (NAC)
• Data Loss Prevention (DLP)
• Experience indeploying EIGRP/BGPredistribution and the changing the metrics for the primary and backup paths for the packet prioritization andEIGRPtuning
• Planning, designing, Installing and Configuring of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800 and 7200, 7609) & Cisco L2 & L3 Switches (2900, 3560, 4500 & 6500)
• Configuring VLANs and implementing inter VLAN routing.
• Upgrading and troubleshooting Cisco IOS to the Cisco Switches and routers.
• Configuring STP, RSTP, VLAN, VTP, SPAN port and Port binding Configuring Site to Site to VPN connectivity.
• Implementation of HSRP, IPSec, Static Route, IPSEC over GRE, Dynamic routing, DHCP,DNS,FTP.TFTP,RAS
• Involved in configuring Cisco pix firewall.
• Involved smart view tracker to check the firewall traffic.
• Troubleshooting hardware and network related problems.
• Creating, Managing and maintaining rules to adhere corporate security standards using checkpoint Firewall
• Migration to virtual servers in F5 Load balancer as part of web
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Configuration and Management of Cisco Nexus 7K and 5K Series Switches, Cisco 6500, 4500, 3750 series Switches, Cisco 2800, 2900, 7200, ASR 1000 Series Routers, ASA, Check Point Firewalls, F5 Load Balancers
• Performed Nexus-OS ISSU and EPLD upgrade.
• Maintain, configure, and analyze network and host-based security platforms
• Network-based Intrusion Detection/Prevention Systems (IDS/IPS)
• Configured policy statements, routing instances, route manipulation on RIP, OSPF and BGP.
• Performing and Generating quarterly audit reports for firewalls
• Migrated Sites From EIGRP to OSPF.
• Migrated Data Center Backend Firewalls from PIX to the ASA
• Deployed Checkpoint GAIA Firewalls at the Data Centers.
• Coordinating with Store technician for switch addition, movement and replacement
• Creating, Managing and maintaining rules to adhere corporate security standards using checkpoint Firewall
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN
• Worked on Extensively onCisco Firewalls, Cisco ACE, Cisco PIX (506E/515E/525/), Cisco IPS 4200, 4300, 4500 series & ASA 5500(5520/5540) Series, Palo Alto Firewalls, Fortinet Firewalls
• Configuring switch ports (VLAN tagging, switch port mode, Port Channel) at distribution and Access layers for new server builds and critical server movement as per requirement
• Infrastructure trouble shooting and TCP/IP Protocols Experience
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Worked on Cisco PIX 500 series and ASA 5500 series Firewall providing support and configuring for NAT, PAT & advanced Firewall rules implementation. IPS on ASA’s with Botnet protection
• Maintained a Network with more than 600 Network devices, some 25,000 end hosts, and the other Network devices like DHCP, DNS servers, Firewall servers
• Co-ordination with Hardware vendors, software vendors and service Providers
• Helped the Network team to install New switches and routers and configure the IOS according to the requirement
• Included Vlan, OSPF, Subnetting, EIGRP, BGP, VTP, spanning tree, IP Subnetting, Wireless Access points
• Assisted in backup, restoring and upgrading the Router and switch IOS
• Attended Team meetings and provided comments on existing network and the recommendations to improve the current network Performance
• Identifying technical problems and debugging hardware and software related to LAN’s/ WAN’s.

Confidential

Network Engineer

Responsibilities:

• Implement and Manage network security equipment’s across 13 Centers in Chennai
• Involved in managing and maintaining around 100 + firewall of CISCO PIX, ASA and Checkpoint, Netscreen firewalls and Cisco VPN concentrators
• Log Management and audit Co-ordination for Network security equipment’s
• Configuring Firewalls and giving necessary access for the ODC users’ access to onsite and TCS resources
• Configured and maintained Cisco 2900 series switches including VLANs and Trunking protocols.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Implemented dedicated VLAN ID for all trunk ports, set user ports to non-Trunking, and deployed port security when possible for user ports for layer 2 security.
• Extensively worked on redistribution from RIP to OSPF and OSPF to RIP by implementing Hub and Spoke topology with a Frame Relay Switch.
• Monitored, evaluated and made report on WAN/LAN Networks.
• Used various scanning and sniffing tools like packet sniffer.
• Maintained whole network and troubleshot the network and hardware issues for efficient performance.
• Maintaining OSPF, EIGRP, RIP and static routing protocol on CISCO routers and catalyst switches.
• Setup TFTP server to maintain CISCO router configurations and CISCO images. Worked on network software and hardware upgrades.
• Configuring and maintaining VLANS and the VLAN database, managing VTP servers for updated VLAN information.
• Worked with Project Managers to determine networking requirements and provide the Enterprise users with the best solutions to their networking problems from an institutional perspective.
• Monitoring all the network security devices using IBM Tivoli tool.
• Day to day activity includes Change Implementation on firewalls, log analysis and troubleshooting of network access issues.
• Implementing new configurations like site to site VPN, client to site VPN and new project requirement access as per client request for various location on PIX, ASA, Checkpoint, Juniper and VPN concentrators.
• Taken care of all types of Change approvals, planning and Implementations pertaining to Networks.
• Escalating the high priority issues to Tier-3 Network team.
• Monitoring and Maintaining inventory reports of Network devices.
• Responsible for network availability, network redundancy, bandwidth planning, routing issues.