SUMMARY

• Network Professional with 6 years of experience in Designing and troubleshooting LAN, WAN, MPLS in Branch, Campus, and Data Center environments.
• Implemented Panorama to create policies and monitor multiple Palo Alto firewallsat different locations.
• Expert in Switching, routing, Network Security - next generation firewalls, and F5 load Balancers.
• Experience working in large-scale environments on L1/L2/L3 troubleshooting, Network designing, and implementation of data center architecture.
• Worked on projects that include deployment of new devices, life cycle projects, migration from legacy to new solutions, Engineering, Operations, and Software upgrade procedures in various client environments.
• Implementation, Configuration and Support of Checkpoint (NGX R65, R70 and R71), Juniper Firewalls (SRX5400, SRX5600, and SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585) Palo AltoNetworks Firewall models (PA-2k, PA-3k, and PA-5k).
• Experience in implementation, configuration & troubleshooting of Ether-channel, STP, RSTP, HSRP, VLAN, VTP, and Access Control Lists (ACL).
• Understanding ofLANand WAN Internetworking Devices: Functions of Internetworking, Linking Devices (Repeaters, Bridges, Routers, and Gateways. Configuring, Routing IP Addresses, Subnetting, and knowledge of Frame Relay and ATM Switches
• Do have experience with implementing layer 2 and layer 3 policies.
• Provided active support for defining policies and configuring Palo AltoPA-5020.
• Worked on F5 BIG-IP LTM 8900, Citrix and Net scalarconfigured profiles, provided and ensured high availability.
• Experience in F5 BIG IP and Cisco ACE Load balancers for load balancing and traffic management of business applications. Migration Experience from ACE to F5.
• Have experience in installing and monitoring application traffic using networkprotocol monitoring tools such as NTOP and net brain.
• Configured CISCO content switch for load balancing and Net scalarload balancing.
• Worked on F5 BIG-IP LTM 8900, Citrix and Net scalarconfigured profiles, provided and ensured high availability.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come online or that may have been altered during various planned network changes on the network.
• Experience working on Juniper based MX series router, SRX 220 firewall.
• Have experience in installing and monitoring application traffic using networkprotocol monitoring tools such as net brain.
• Knowledge of working with API's for troubleshooting Networkissues using wire sharkand NTOP.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for corporate Applications and their availability.
• Monitored Networks & Infrastructure with Cisco Prime, Wireshark, and SolarWinds for Data Center operation.

TECHNICAL SKILLS

Cisco Routers: 1600,1700,2600,2800, 2900, 3600, 3800, 7200 and 7600.

Cisco Nexus: 5020, 5548, 5596T, 2148, 2248TP, 2348UPQ, 7010, 7702.

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210SRX240, Junos IOS.

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN.

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192.

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Route FilteringRedistribution and Static Routing.

Network Monitoring Tools: IBM-Qradar, SolarWinds, Netbrain, Wireshark, HR ping and Infoblox.

Load Balancers: F5 Networks (BIG-IP) LTM 8900, BIG-IP GTM 6800 and ACE 4710.

Firewall & Security: Palo Alto, Checkpoint (R62, R65, R70, NGX), and Cisco ASA.

PROFESSIONAL EXPERIENCE

Confidential, Kansas City, MO

Sr. Network Security Engineer

Responsibilities:

• Configuring Static, BGP, EIGRP, and OSPF Routing Protocols on Cisco 1921, 891F, 3600, 4300, 4400 series Routers.
• Implemented Panorama to create policies and monitor multiple Palo Alto firewallsat different locations.
• Experience with legacy and Next-Gen Firewalls that include Cisco ASA (5500 Series), Palo Alto (5000 Series), and Check Point, Worked on Installation of firewalls from scratch, migration, and configuration of policies end to end.
• Install and manage Palo Alto firewalls, and ASR routers as part of new circuit deployment.
• Primary responsibilities include but are not limited to the design, implementation, and troubleshooting of all LAN/WAN solutions offered by LAN/WAN Professional
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Configured EBGP load balancing and ensured the stability of BGP peering interfaces.
• Configured Frame-relay and PPP encapsulation in various configurations and authentications.
• Configured and resolved various OSPF issues in an OSPF multi-area environment.
• Troubleshoot latency and throughput issues on MPLS and Dedicated Internet Access circuits.
• Involved in CiscoIOS XRcode up gradation.
• Experience with Cisco equipment (working on a variety of different platforms), as well as Sieman switches, have a good understanding on the NERC requirements.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate Applications and their availability.
• Responsible for procurement and installation of Hardware, network drives and other IT infrastructure. Documented the design, implementation, and troubleshooting procedures with Method of Procedure (MOPS).
• Deployment of Palo Altofirewall into the network. Configured the Access List Policies on protocol-based services.
• Experience with new site turn-ups, turn-up of new routers/switches, pulling access points, and converting routers.
• Do have experience in Implementing Change Management & Back out Plan documentation for all change services.
• Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP, MPLS.

Environment: Cisco ASA Firewalls, Meraki installations, F5 ADC, Cisco Routers, Dashboards, Cisco Catalyst switches, Cisco IOS, IOS-XR, IOS-XE, Aruba, Checkpoint, Palo Alto Wildfire, NetScaler, Qradar, Netbrain, infoblox, Cisco prime, Ruckus, Wire Shark, Solar winds, Nexus 9k, 7k, 5k, ASR 9k, ASR 1k, Nexus 2000 FEX, AAA (TACACS+ & RADIUS, ISE),Routing Protocols: BGP, EIGRP, OSPF.

Confidential, Chicago, IL

Network Security Engineer

Responsibilities:

• Configuring Static, BGP, EIGRP, and OSPF Routing Protocols on Cisco 1800, 2800, 3600, and 4300 series Routers.
• Manage Cisco and Juniper Firewall access lists, address translation, and Site to Site IPSec and remote connection VPNs
• Extensive knowledge of basic networking hardware (routers, switches, bridges) and protocols (UDP, TCP/IP)
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall.
• Deployment of Palo Altofirewall into the network. Configured the Access List Policies on protocol-based services.
• Validation, configuration, turn-up, and testing to ensure a successful handover to the support teams for all technical aspects related to the delivery of the client’s managed hosting network solution.
• Review technical details prior to implementation to ensure accuracy and preserve the integrity of the Century link networks.
• Design and installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Configuring BGP, OSPF, and Static routing on Cisco Routers.
• Responsible for Cisco ASA firewalladministration across our Organizational networks.
• Have experience with HA for Palo Alto Firewallwith Cisco ASA.
• Experienced firewall engineer with advanced knowledge of Checkpoint, Fortinet, Cisco ASA 5500 series, and Palo AltoPA-5200.
• Involved in the Installation and configuration of SSL certificates on Cisco ACE Appliances
• Responsible to move configurations from existing infrastructure to new routers and switches. Troubleshooting customer circuits having dynamic protocols configured such as BGP.
• Experience working on Juniper-based MX series router, SRX 220 firewall.
• Configuration of Network and Security devices such as Cisco routers and switches (Cisco 7600/3500/Nexus 7K/5K) Firewall (Checkpoint R75 and Cisco FWSM), Load Balancers, and DNS and IP Manager.
• Strong hands-on experience in Palo Alto 5K, 3K, 2K series Firewalls, Checkpoint 26000, 23000, 16000, 15000, 3000, 1500, and 8000 series firewalls.
• Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
• Performed the ACL request changes for various clients by collecting source and destination information from them.
• Troubleshoot the BIG-F5 1600 LTM through constant contact with the vendor.
• Worked with the engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.
• Implementing security Solutions using Palo Alto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Configuring, managing, and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Troubleshooting protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on-call tech as needed for the client.

Environment: Cisco ASA Firewalls, Meraki installations, F5 ADC, Cisco Routers, Dashboards, Cisco Catalyst switches, Cisco IOS, IOS-XR, IOS-XE, Aruba, Checkpoint, Palo Alto Wildfire, NetScaler, Qradar, Netbrain, Infoblox, Cisco prime, Ruckus, Wire Shark, Solar winds, Nexus 9k, 7k, 5k, ASR 9k, ASR 1k, Nexus 2000 FEX, AAA (TACACS+ & RADIUS, ISE), Routing Protocols: BGP, EIGRP, OSPF.

Confidential

Network Engineer

Responsibilities:

• Performed network implementation that includes configuration of routing protocols, leased lines, ISDN lines, VLANs, and IOS installations.
• Troubleshoot the network issues onsite and remotely, depending on the severity of the issues.
• Deployed and decommissioned the VLANs on core ASR 9K, Nexus 7K, 5K, and its downstream devices.
• Had hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, and IP addressin0g.
• Configured and deployed VPC, OTV, and FABRIC PATH between Nexus 7010 and Nexus5596, 5548 switches.
• Configured JuniperMX480s, EX8200s, EX4500s, EX4200s, and SRX5800s from scratch to match design.
• Configured OSPF and BGP on Juniper MX series Routers.
• Responsible for supporting Palo Alto using Panorama centralized management and Cisco ASDM.
• Knowledge of working with API's for troubleshooting Networkissues using Wire sharkand NTOP.
• Designed 10 gigabit networksusing Cisco Nexus7000 series switches, and Cisco 3800 series routers.
• Designed a new Datacenter Networkwith Cisco Nexus 7700, 5000, and 2000 switches to replace old 6500/4500s
• Configured policies and URL filtering according to company security policy on the Palo Altofirewall.
• Configure and manage bluecoat 510 directors in active and Standby mode.
• Worked with converting CheckpointVPN rules over to the Cisco ASA solution.
• Administering Juniper SRX and CheckpointFirewalls at various zones including DMZ, Extranet, and ASZ.
• Configured EIGRP and OSPF as interior gateway protocols with route filtering and route redistribution. Troubleshoot complex LAN/WAN infrastructure that includes routing protocols EIGRP, OSPF and BGP.
• Experience with site-to-site VPN in JuniperSRX as per customer.
• Implemented various EX, SRX & J series Juniperdevices.
• Responsible for all aspects of TCP/IP functionality across multiple enterprise environments.
• Provided active support for defining policies and configuring Palo AltoPA-5020.
• Configured ASA 5500-X Series firewalls to provide highly secure and high-performance connectivity between the site locations.
• Managing and troubleshooting of Juniper M320 routers including installation, upgrade, configuration, and network management.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.