SUMMARY

• 7 years of professional experience in Planning, Implementing, Configuring, Troubleshooting of networking system on both Cisco and Juniper Networks.
• Extensive experience working on Cisco and Juniper routers/switches in complex environments with multiple ISPs.
• Experience working on Cisco Catalyst Series3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000 and 7000 series switches. Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Routers and Cisco 2900, 3500, 4500, 5500, 6500 and Nexus 5K series switches and Sound knowledge of Routing and Switching concepts and MPLS design.
• Expert in dealing with Networking Protocols and Standards such as TCP/IP, OSI, UDP, Layer 2 (VLANs, STP, VTP), Routing Protocols (RIP, EIGRP, OSPF, BGP), WAN technologies (Frame relay, IPSec, VPNs, MPLS), QoS.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• In - depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP servers. Experience in installing and configuring DNS, DHCP server.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Installed and implemented & troubleshoot the Network Virtualization through VM Ware and NSX.
• Experience on Network Monitoring & Testing tools such as Wireshark/Ethereal, Cisco Works, and IXIA.
• Working Experience on web content filter and gateways like Blue Coat, Websense.
• Extensive working experience in AAA protocols such as RADIUS, TACACS+ and Cisco ACS.
• Implemented VSS on Cisco catalyst 6509 and 6513 switches.
• Experience on Monitoring and Management tools such as HP Open view, Splunk, TCP dump, Solar Winds and Wireshark, Cisco Prime, NetFlow, Riverbed. Configure and administer network devices consisting of F5 load balancers, Bluecoat proxies, Juniper SRX's, PaloAlto Network Firewalls.
• Working experience performing Incident, change management using ticketing tools such as ServiceNow, Remedy. Utilize Remedy ticket system to update network status. Exposure to Cisco WAAS, WCS.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Responsible for Configuration and administration of firewalls, which includes Checkpoint,Juniper, and Cisco ASA firewalls.
• Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Designed security policies on Palo Alto network firewall for controlling what traffic needs to be allowed or blocked based on customer requirements.
• Experience in configuration of Juniper security appliances SRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M. Established VPN tunnels between Cisco routers and Cisco Firewalls and Palo Alto Firewalls.
• Familiar with products such as Cisco ISE, Cisco ASA 5500 series firewalls and Cisco ACE 4710 Load balancers.
• Used Cisco ACI Fabric which is based on Cisco Nexus 9000 series switches and Cisco Application Virtual Switch (AVS). Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.
• Cisco ASA and FWSM, Fortinet FortiGate; F5 AFM, A10 WAF, IDS/IPS systems, and general knowledge of security features and protocols. Experience in F5 Load balancers such a BIG-IP LTM and GTM modules.
• Experienced with cloud deliveredWANsolutions, specifically with Velocloud NSXSD-WAN.
• Perform technical problem resolution including analysis, trouble isolation, and repair onSDWANdevices.
• Customer Advocate in a 24x7x365 Operation Center, supportingSDWANcustomers and all related services.
• Configuration and maintenance ofnetworkhardware and software, managingnetwork monitoring for WAN, LAN, DATA andvoice.
• Implemented Cisco ISE 1.2 for Wireless 802.1x Authentication and Authorization with Flex Connect.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 2504, 4404, 5508 for Wireless Network Access Control integration with Cisco ISE.
• Upgrading Cisco ISE Appliances Company wide. Recently rolled out OpenDNS including onsite VM appliances. Experienced on Cisco ISE and advanced technologies like QOS, Multicasting, MPLS and MPLS-VPN and Bluecoat proxy server SG.

TECHNICAL SKILLS

Routing Protocols: RIPv1, RIPv2, BGP, OSPF, IS-IS, IGRP, EIGRP

Security: Cisco ASA, Check point, Juniper SRX, Palo Alto

Switches: Cisco Catalyst 2960, 3500, 3750, 3850, 4500, 4900, 6500, Nexus 2000, 5000 and 7000 series

Routers: Cisco 2800, 2900, 3800, 3900, 7200 and 7600 series routersJuniper M & T Series

L2 Switching: VLAN, VTP, STP, Dot1Q, RSTP, DTP, PVST and MST

L3 Switching: Ether channels, HSRP, GLBP

Communication Protocols: TCP/IP, UDP, DHCP, DNP, ICMP, SNMP, ARP, RARP, PPP

WAN: Frame Relay, ATM, T1, T3, OC3, OCX, OC48, MPLS VPN

Physical: Ethernet, Fast Ethernet, Gigabit Ethernet, Serial

Network Management Tools: MRTG, HP Open view, Cisco WAN manager and Cisco works

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Tools: Wire shark, VM Ware, tcpdump

Operating System: DOS, Windows XP, Vista/7/8/10, Cisco IOS, Linux, Mac OS, Cisco IOS

PROFESSIONAL EXPERIENCE

Confidential, Cincinnati, Ohio

Sr.Network Security Engineer

Responsibilities:

• Installing and configuring new Cisco equipment including Cisco catalyst switches 3850, 3750, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel on CISCO Catalyst Switches 3500, 3650, 7600.
• Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NAT with the firewalls as per the design.
• Established IPSEC-VPN tunnels with ASA 5500 series Firewall between some branch offices & headquarters.
• Successfully Design and installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/ switches/ firewalls.
• Work experience on Bluecoat Proxy SG for Content filtering and URL filtering design.
• Blacklisting and Whitelisting of web URL on Bluecoat Proxy servers.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools. Experience with working on Palo Alto Next-Generation Firewalls Security profiles
• Worked with the installation of Palo Alto firewall, migrated with a team from predominantly checkpoint environment to Palo Alto global solution.
• Modified and reconfigured two factor authentication BIG-IP APM authentication.
• Created Access policies on APM module using AD and LDAP authentication for external clients.
• Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
• Hands on Experience configuring and testing F5 I Rules using Browser (IE), HTTP watch.
• Worked on F5 LTM series like 1600, 6400 and Viprions for the corporate applications and their availability.
• Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
• Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
• Involved in iRule management like loading rules, writing iRule syntax using TCL language.
• Worked with Blue coat and handled the Trouble Tickets on F5 Load Balancers.
• Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240 and Juniper J series j230, M 320 and MX960 routers. Worked on Juniper EX4200 & EX4550 switches.
• Responsible for installing and configuring Juniper QFX3500 switch.Rebuilt old HQ with core and distribution with new Juniper QFX core switches and EX4300 distribution switches.
• Worked on Juniper SRX 5800 firewalls to create policies using J-Web User Interface.
• Dealt with implementation of Cisco ASA 5585 devices and Juniper SRX 550 devices to apply security policies on it. Configuring routers, switches, WLC, Access Points, Bluecoat Proxy Server, Cisco ASAs, etc.
• Worked with the installation of Palo Alto firewall, migrated with a team from predominantly checkpoint environment to Palo Alto global solution.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience. Perform networking solution at data center for Bluecoat Proxies.
• Migration from Cisco firewalls to Palo Alto firewalls platforms PA 4000 and PA 500 and PA- 200 firewalls network technologies including Optical VoIP VPN SAN switching and routing.
• I UpgradedASA5505S to 5525X withFirepower. Setup high availabilityASApair withFirepower.
• Assisting with the design and deployment of a Cisco Firepower cluster in the core.
• Implemented Cisco Application Centric Infrastructure (Cisco ACI) as a solution for data centers using a Spine and Leaf architecture.
• Whitelisting URL, Blacklisting URL, Re-Categorizing URL, SSL Inspection and bypassing the proxy for issues
• Configuration and maintenance ofnetworkhardware and software, managingnetwork monitoring for WAN, LAN, DATA andvoice. Troubleshot complex routing and switching issues in a HSRP and GLBP environment. Performed Troubleshooting and monitored routing protocols such RIP, OSPF, EIGRP & BGP.
• Configuration and Monitoring of Citrix NetScaler (Both MPX and VPX).
• Coordinate with multiple vendors (Cisco,Juniper, etc.) to troubleshoot network outages and issues
• Configuration and troubleshooting of CSM, integration with ASA devices.
• Working on security levels with RADIUS, TACACS+.
• Create a Virtual Network on Windows Azure to connect all the servers. Configured inside ACL, outside ACL, inside, outside interfaces. Configuring Static, BGP and OSPF Routing Protocols on Cisco Routers.
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls. Implementing and troubleshooting Blue Coat Proxy SG-x appliances.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Configured and troubleshooting Aruba Wireless products like Access Points and Mobility Access Switches
• Designed & Deployed Cisco ISE and Provided comprehensive guest access management for Cisco ISE administrators. Configured Cisco ISE for Domain Integration and Active Directory Integration.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Implemented Cisco ISE 1.2 for Wireless 802.1x Authentication and Authorization with Flex Connect.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 2504, 4404, 5508 for Wireless Network Access Control integration with Cisco ISE.
• Upgrading Cisco ISE Appliances Company wide. Recently rolled out OpenDNS including onsite VM appliances.
• Experienced on Cisco ISE and advanced technologies like QOS, Multicasting, MPLS and MPLS-VPN and Bluecoat proxy server SG.

Environment: Cisco 3850/3750/3500/3650/6500/7600 switches, SÁ 5500 firewall, Palo Alto PA-3060 firewall, ASR router 1002/1006, juniper EX-2200, EX-4200, M-320 router, juniper SRX 5800 Fire wall, F5 LTM 1600/6400, OSPF, BGP, EIGRP, VLANS, LAN, WAN

Confidential, Alpharetta, GA

Network Engineer

Responsibilities:

• Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture
• Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
• Worked on upgrading Cisco ISE 3300 Appliances and 1.0.4 Cisco ISE software on VM ware's.
• Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525) & ASA 5500(5510/5540) Series.
• Experience with converting PIX rules over to the Cisco ASA solution.
• Configuring VPN, clustering and ISP redundancy in Checkpoint firewall. Worked on configuring, managing and supporting Checkpoint Gateways
• Experienced with Checkpoint VPN rules over Cisco ASA VPN. Which filters traffic by inspecting the application layer. Implementation configuration and troubleshooting of Checkpoint Firewall R 77.
• Involved in Configuration of Access lists (ACL) on checkpoint firewall for the proper network routing for the B2B network connectivity.
• Creating process documents for various security tools like Source Fire, Fortinet Firewall, Pulse VPN appliance and Blue Coat proxy
• Worked with Host Master for shared web hosting and managed Web Application firewall (WAF), DNS and DHCP management using Infoblox and Analyzed networks using Wireshark.
• Dealt with creating VIP pools, nodes and created custom iRules for the virtual servers like cookie persistency and redirection of URL on F5 ASM cookies issues and configures ASM policies.
• Experience in Deploying and decommissioning Cisco switches, CiscoMerakiProducts and their respective software upgrades. Implemented site to site VPN on CiscoMerakiMX64, MX65, MC84, and MX400.
• Deployed and managed Cisco Meraki products SD-WAN including Cisco Meraki Security Appliances (MX25, MX450, MX400, MX600 and MX100), Cisco Meraki switches and Cisco Meraki Wireless Aps (MR84, MR74, MR52). Working with BGP, OSPF protocols in MPLS Cloud.
• Establishing VPN Tunnels using IPSec encryption standards and configuring and implementing site-to-site VPN, Remote VPN. Experience in white listing webpages and blocking webpages with Blue Coat Proxy SG and Blue Coat reporter.
• Configured and resolved various OSPF issues in an OSPF multi area environment between multiple branch routers. Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site. Configuring BGP, MPLS in Cisco IOS XR.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter VLANS Routing, LAN security.

Environment: Cisco ASR 1002X/ 3945/3845/2800/3600 Routers, Cisco ISE, Nexus 7010/5596/2248 , ASA 5500/5510/5540 , checkpoint fire wall R77, Juniper JUNOUS M & MX routers, VLAN, LAN, STP, BGP, MPLS, OSPF.

Confidential

Network Engineer

Responsibilities:

• Performed network engineering, design, planning (WAN & LAN) & implementation. Studied single point failures & designed WAN structure in such a way that there are no failures in network in case of any device or link failure.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Configured VLANs on a switch for inter-VLAN communication. Configured VLAN Trucking Protocol (VTP) on Core Switches. Configured various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches for STP, VTP Domain, VLAN, Trucking, Fast Ether Channel configuration.
• Worked on Extensively on Cisco Firewalls, Cisco (506E/515E/525/) & ASA 5500(5510/5540) Series
• Responsible for Checkpoint firewall management and operations across our global networks.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between Switches.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
• Designed and implemented security policies using ACL, firewall.
• Configured routing policy for BGP. Switching related tasks included implementing VLANs and configuring ISL trunk and 802.1Q on Fast-Ethernet channel between switches.
• Done troubleshooting ofTCP/IPproblems and connectivity issues in multi-protocol Ethernet environment.
• Troubleshooting on network problems with Wire shark, identify problem and fix.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network
• Performed the maintenance of Active Directory and replication scheme, DNS/DHCP services and time services; wrote step-by-step procedures for implementing upgrades.

Environment: Cisco 4510/4948/4507 switches, Juniper switches EX-4200 switches, Cisco CAT 2900,3550,4500,6509 switches, DNS/DHCP server, Firewalls SRX-210, BGP, VLAN, WAN& LAN, ACl.

Confidential

Jr. Network Engineer

Responsibilities:

• Perform responsibilities of supporting the daily operations of the network, telecom and troubleshooting network issues.
• Responsible for upgrading the IOS and configuring the new Router and Catalyst Switches.
• Designed and installed small Windows XP based LANs for business clients
• Troubleshot and resolved many user issues Performed network testing and base lining
• Designed ACLs, VLANs, troubleshooting IP addressing issues and backing up of the configurations on switches and routers.
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
• Troubleshoot and Worked with Security issues related to PIX firewalls
• Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
• Provided testing for network connectivity before and after install/upgrade
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Responsible for creating and maintaining diagrams and documentation of network systems.

Environment: Cisco 2950 switches and Cisco 3825 Routers, EIGRP, BGP, MPLS, VLAN, QOS, DHCP, Trunk protocols, DNS, Spanning tree.