SUMMARY

• Highly accomplished Network Engineer with over all 8+ years of experience in installation, configuration, management, and administration and troubleshooting of LAN/WAN infrastructure and security using Cisco routers/Switches/Firewalls. Designed, installed, configured and maintained complex routed LAN and WAN networks. Detail oriented with a track record of delivering infrastructure enhancements on time and with minimal impacts to production.
• Experience in Network Cabling, IP addressing and Subnetting with Variable Length Subnet Masking (VLSM), Route Summarization and Route Redistribution.
• Extensive experience in JUNOS - OS which includes configuring and troubleshooting Juniper routers and switches.
• Proficiency in configuring different layer 2 technologies which includes Virtual Local Area Network (VLANS), inter-vlan routing, Trunk, STP, RSTP, VTP, MST, Ether channel and Port Security.
• Working experience on Cisco Nexus 2k, 5k and 7k series switches and Cisco ASR 1000 series devices.
• Experience in configuring VDC, VPC and FCOE, upgrading NX-OS for Nexus Family Switches.
• Experience in implementing redundancy gateway protocols which includes HSRP, VRRP and GLBP.
• Good knowledge in the usage of ether channels for effective usage of bandwidth with aggregation protocols LACP and PAGP.
• Deployed Cisco Nexus 2k&5k devices and ASR routers.
• Expertise in configuring IP routing protocols which includes EIGRP, OSPF and BGP over Cisco routers in production environment.
• Experience in using different area types in OSPF which includes SA, TSA, NSSA and Virtual Links.
• Working experience with 2600/2800/3600/3800/7200 series routers, juniper MX, T series routers.
• Experience in configuring Multicast protocol such as PIM and worked on different versions if IGMP.
• Implemented MPLS over OSPF, BGP and VPN for secured connection.
• Hands on experience in configuring NAT/PAT, VPN, and ACL’s on Cisco ASA 5500 series firewalls.
• Experience in VPN technologies such as GRE Tunneling, DMVPN, Remote Access VPN, Site-to-Site VPN and Secure Socket Layer (SSL) VPN.
• Experience in Juniper SRX240, SRX220 and SRX550 /Checkpoint Firewalls.
• Hands on experience in configuring Cisco router as ZBF, Intrusion Prevention System (IPS) and Authentication, Authorization &Accounting (Radius, TACACS+).
• Experience in configuring Palo Alto firewalls which includes PA5200, PA5000 and PA 3000 series.
• Migrated access policies from Cisco ASA to Palo Alto using Palo Alto Migration Tool.
• Experience in deploying and configuring Cisco ISE and hands on Cisco Firepower firewalls and Cisco Prime.
• Experience in Configuring F5 BIG-IP 3600, 3900 LTM, GTM for new applications.
• Created iRules on 2400 viprions according to the requirements.
• Hands-on-experience in using Cisco's Adaptive Security Device Manager (ASDM) to manage the Cisco ASA security appliances and Smart dashboard for checkpoint firewalls.
• Good working knowledge on Cisco Security Manger (CSM) and Cisco Firepower Management Center (FMC).
• Good experience in using NetScaler to provide level 4 load balancing.
• Improved network capabilities and reliability by evaluating, testing, purchasing and implementing new SONET, SDH, DWDM, IP/MPLS, Ethernet and Wireless technologies.
• Experience with SONET over optical fiber and Alarms monitored for SONET circuits including T1’s and T3’s.
• Riverbed installation of 550H, 1050L and Ex1160M, License upgradation, RiOS upgradation Policy pushing from CMC. Bypassing the traffic for particular host
• Management, installation and upgrades of core networking systems relating to a WAN and 4 data centers.
• Maintaining and updating inventory of all network hardware, Management and monitoring by use of SSH, SYSLOG, SNMP.
• Good experience on Change Management tools such as BMC Remedy and Service Now
• Monitored performance of network devices using Spectrum and analyzed traffic using Wireshark.
• Experience using Microsoft Visio to create and update network diagrams.
• Possess strong network troubleshooting, interpersonal and communication skills.

TECHNICAL SKILLS

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, LWAPs.

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, Route redistribution, Route filtering, Route Maps, Summarization, Static route.

Routers dealt with: Cisco 2600, 2800, 3600, 3800, 7200 series, Juniper MX series and T series routers.

Switching Technologies: VLANs, Inter VLAN routing and Port Channels, VTP, Spanning Tree

Protocols like: PVST+, RSTP+, Multi-Layer Switching, and Port security.

Switches dealt: Nexus 2000, 5000, 7000 series; Cisco catalyst 2960, 3560, 3750, 4500 and 6500 series.

Network Security Technologies: Cisco ASA Firewalls 5505, 5540 and 5580, Juniper SRX Firewall, Palo Alto firewall PA 5000, 3000, Access Control Lists, IPsec, SSL, IDS, and IPS.

Load Balancers & Redundancy: F5 Network (Big-IP) LTM 3600 & HSRP, VRRP, GLBPJuniperMX10, MX80, MX240, MX480, MX960, EX4200, EX4300, EX4500, QFX3500, QfFX5100 SRX100, SRX110, SRX210, SRX240, SRX650

WAN Optimizer: Cisco WAAS, Riverbed-installation of 550H, 1050L and Ex1160M, Riverbed-license/Rios upgradation, Policy pushing from CMC, MPLS

DNS Tool& Mgmt protocols: Infoblox, FTP, TFTP, SNMP

Wireless Controller & Access Points: Cisco 5500 series, Cisco 1242, 2400 and 3500

VPN Technologies: GRE Tunneling, Remote Access VPN, Site-to-Site VPN, SSL VPNDMVPN & MPLS VPN

Tools: Used: Security Analytics, AppviewX, Spectrum, Cisco’s ASDM, Dashboard, Wireshark, Syslog, Net Brain, Solar winds, Real time log viewer and Putty.

Scripting: Python

Operating Systems: Cisco CATOS, Cisco IOS, NX-OS, JUNOS, RIOS, Windows, UNIX

PROFESSIONAL EXPERIENCE

Confidential, Weehawken, NJ

Sr Network Engineer

Responsibilities:

• Expert experience in configuring Cisco Routers (7200, 4000, 3800, 3700, 3200, 3000, 2800, 2600, 2500, and 1700) and Cisco Switches (3500, 2900), Layer 3 switches (6500).
• Extensive knowledge and experience in dealing with various Networking related Protocols and Standards: TCP/IP, UDP, SIP, Switching (VLANs, STP, VTP), Routing, Routing Protocols (EIGRP, OSPF, RIP, BGP), WAN (Frame Relay, IPSec VPNs, MPLS).
• Switching tasks include VTP, Trunking, ISL and 802.1q, VLAN, Ether Channel, STP, PVST, RSTP and MST.
• Taking Regular backups & testing the backups by restoring in test lab frequently
• Managing a TACACS server for VPN user authentication and network devices authentication
• Handled Corporate and Review Audits from the perspective of IT Security for Network Devices and Servers under our control.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Worked on new 2400 Viprions from the scratch, installing the device, making physical connections as applicable, creating Vcmp guests and applying redundancy in the network.
• Hands on Experience testing iRules using Browser(IE), HTTP watch
• Making configuration changes on Nexus 7K switches to assign physical ports to new F5 devices and creating Vpc for the same.
• Creating Interfaces, VLAN and Trunks on the new 2400 Viprion according to the network.
• Making configuration changes on 3750 MGT switches for installing new F5 devices
• Worked on BIGIP iHelath tool to analyze and troubleshoot the Vcmp guest’s health and 2400 chassis by creating Qkview on F5.
• Migrating the applications from the old version of 3900 LTM to 2400 Viprion on version 13.0.0.
• Configuring IPSEC VPN on SRX series firewalls
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked on Juniper SRX series devices.
• Created engineering configuration, Security Standards, documenting processes and Network documentation using Microsoft Visio
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Installation, Configuration and Administration of ADS,DNS,DHCP and Web proxy(ISA)server
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Extensive knowledge/experience in implementing, maintaining and troubleshooting LAN/WAN, Network security including NAT/PAT configuration, ACL, VPN Concentrator and Cisco Firewalls.
• Sound knowledge and experience in WAN/LAN protocols such as Ethernet, IP services.
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing voice over data.
• Hands on experience in installing and upgrading of Cisco IOS and firmware of different Cisco devices and modules.
• Experience with Infoblox to work on DDI DHCP, DNS, & IP Address Management in large enterprise organizations.
• Planning network installation and/or upgrade projects, assign milestone tasks to support personnel and meet company deadlines for full implementation, installation of all software and end-user security.
• Good organizational and project management skills including ability to organize time and work on multiple tasks and following to completion of a task or project.
• Ability to make technical documentation of systems and procedures.

Confidential, Atlanta, GA

Network Engineer

Responsibilities:

• Designed and implemented various routing protocols such as EIGRP, OSPF and BGP across networks in multiple locations.
• Technologies supported include ISDN, Frame Relay, ATM, MPLS, HSRP, NAT, QOS, WLAN and Redistribution.
• Worked on different layer 2 technologies includes Trunking, STP, RSTP, PAgP, LACP.
• Configured vPC, Fabric path and OTV on Data center Nexus 2k, 5k and 7k devices.
• Created VDC’s and vPC‘s and ensured that those vPC’s are formed between VDC’s.
• Worked on troubleshooting the connectivity to servers with fabric extenders on Nexus platform.
• Performed Port channeling and LACP between downstream devices for vPC configuration.
• Designed and implemented Cisco Nexus Platform, Cisco UCS and worked on F5 LTM & GTM.
• Worked on Cisco Switches for LAN requirements that includes managing VLANs, Port security and troubleshooting LAN issues.
• Configured Priority Group Activation, Health Monitors and Traffic Persistence on F5 LTM.
• Assisted to redesign and implement campus LAN with 6500 platform on Core/Distribution/Access perimeter model on 10G backbone.
• Gained knowledge in MPLS VPN and Virtual Routing and Forwarding (VRF) and worked on ACI.
• Configured ACL’s, NAT and Routes on Cisco ASA 5505, 5540 and 5580 Firewalls.
• Configured Access rules on Palo Alto 3000 and 5200 series Firewalls as well as centralized management system (Panorama) to manage large scale firewall deployments.
• Firewall deployment, rules migration, firewall administration and converting existing rules based on to new Palo Alto next generation firewall platforms.
• Managing Cisco ASA and Palo Alto firewalls and fail over firewalls for redundancy purposes.
• Implement and troubleshoot the virtual firewall (Contexts) solution in ASA.
• Troubleshooting VPN related firewall issues and involving layer 2 and layer 3 related issues and resolving them.
• Performed Migration from Cisco ASA to Palo Alto Firewall.
• Designing, Planning and Engineering support for IPS.
• Good knowledge on Cisco Security Manager and Cisco Firepower Management Center.
• Implemented Firewall Security in compliance with PCI on Cisco ASA.
• Creating new subnets and configuring routes to reach them and upgrading IOS on Cisco ASA Firewalls.
• Experience in RADIUS and TACACS+.
• Maintained corporate firewalls and Analysis of firewall logs using Security Analytics.
• Knowledge of McAfee web gateways and other web filtering technologies and giving access to personal email accounts based on Organization’s security policy standard.
• Providing technical support for service request issues, customer engagement and internal projects.
• Implementing Proxy requests, maintaining Proxy incidents and troubleshooting proxy issues using McAfee web gateway.
• Adding external websites to the McAfee Web gateway and blocking them when they categorized as an uncategorized URL.
• Monitored performance of network devices using Spectrum.
• Analyzed, designed and deployed new servers and storage systems including MS clusters and Active Directory.
• Performed daily maintenance and troubleshooting for windows clustered applications and services.
• Experience in Network Automation using Python
• Checking Internet F5 VIP’s security policy using AppviewX.
• Worked on Service Now incident tickets and updated the solutions to resolve the issue on Jira.
• Documentation and reporting of security policies, process and procedures.
• Involving troubleshooting network problems using Cisco ASA packet-capture, tracert and Syslog.
• Troubleshooting and resolved computerhardwareand software issuesescalated from customer support and other departments with a 100%success rate.

Environment: s: Cisco ASA firewalls 5505, 5540 and 5580; Palo Alto Firewalls 3000 and 5000 series; Cisco router 7200 and 3600; Catalyst switches 6500, 3750 and 3550; Nexus 7010, 5020 and 2148 switches; ISE, Proxy McAfee Web Gateway, Security Analytics, AppviewX, Spectrum

Confidential, Phoenix, AZ

Network Engineer

Responsibilities:

• Configuration and management of Cisco Nexus 2k, 5k and 7k series switches and Cisco 3560, 3750, 6500 series and 2800, 3600, 7200 routers, ASA, Checkpoint firewall, Palo Alto and F5 load balancer.
• Redistributed sites from OSPF to BGP.
• Worked on load balancer and provided solutions for many network related issues.
• Worked with other teams to design and implement the data center network.
• Deployed, configured and maintained network equipment that support LAN/WAN activities.
• Configured and implemented prefix-lists, route maps and ether channels.
• Performed Data Center Asset Management.
• Created vPC domain, designed single sided vPC, double sided vPC, vPC peer-keepalive, and vPC peer-link and configured Fex.
• Configured F5 load balancer LTM & GTM and Cisco ASR 1000 series devices
• Involved in installing and configuring PIX 515E, 506E firewalls.
• Performed the configuration and troubleshooting of routing protocols such as OSPF and BGP.
• Configuration and administration of cisco and juniper routers and switches.
• Configured redundancy protocols such as HSRP and GLBP.
• Deployment of enterprise firewalls (Palo Alto network, Cisco ASA, Checkpoint) in production environment.
• Configured inter-vlan routing, redistribution, access-control lists and Network Address Translation (NAT).
• Configured Multi-Protocol Layer Switching (MPLS).
• Configured client VPN technologies which includes Cisco VPN client via IPSEC.
• Installation, maintenance and troubleshooting LAN/WAN (Frame Relay, NAT, NTP, PoE, DHCP, TCP/IP).
• Modified OSPF link costs to route traffic in different direction and to reduce delay, bandwidth across the links.
• Involved in configuration of access-control lists on juniper and Palo Alto firewalls for proper network routing and B2B connectivity.
• Configured different OSPF area types which includes stub area, TSA, NSSA and virtual links.
• Secured network using AAA (Authentication, Authorization and Accounting)
• Configured Juniper SRX series firewalls such as SRX240, SRX220 and SRX550
• Worked on Palo Alto Firewalls including PA 5000 and PA 3000 series.
• Configured BPDU guard, Port fast, Uplink fast and other spanning tree features.
• Negotiate VPN tunnels using IPSEC encryption standards and also configured and implemented site-to-site and remote-to-site VPN.
• Worked in Wireless technologies: 802.11 a/b/g/n
• Experience in troubleshooting with complex LAN/ WAN issues and resolved the issues with minimal supervision.
• Installed and configured all the Linux servers in the network per specifications of clients.
• Monitored the servers and Linux scripts regularly and performed troubleshooting steps. Tested and installed the latest software on server for end-users.
• Performed routine checks on the Linux servers of the firm.
• Monitored and reported on system and database backups to ensure they appropriately configures, implemented and verified to enable recovery from failure.
• Contributed to team activities and completed assigned tasks within prescribed deadlines.
• Provided network troubleshooting and support
• Good experience in using NetScaler to provide level 4 load balancing
• Maintained server and serve clusters.
• Experience with Remedy ticketing system.
• Monitored network traffic and solved performance issues in applications using Solar winds.

Environment: Cisco Routers: 7200, 3600, 2800; Cisco catalyst switches: 3560, 3750, 6500; Nexus: 2000, 5000, 7000 series switches, vdc, peer keep-alive, peer link, vPC domain, vPc single sided, vPC double sided, fabric path; Redundancy protocols: HSRP, GLBP; Inter-vlan routing, Port-fast, STP, VTP, RSTP, ACL’s; Routing protocols: OSPF, BGP; Cisco ASA, Checkpoint firewalls, Juniper SRX 240, SRX220, SRX550, Palo Alto Firewalls PA5200, PA5000, PA3000; Network Security: NAT, PAT, IPSEC, GRE, VPN; Load balancer: BIG-IP F5; Ethernet, Fast Ethernet, Gigabit Ethernet, Fiber optic; solar winds, Citrix NetScaler

Confidential

Network Engineer

Responsibilities:

• Configured routing protocols such as EIGRP and BGP on 3600, 3800 and 7200 cisco routers.
• Configured VLAN’s and implemented inter-vlan routing for users in different departments.
• Maintained redundancy on Cisco 2600, 2800, 3600 and 3800 routers by using redundancy protocol HSRP.
• Worked on Checkpoint firewalls and configured access-policies.
• Involved in configuring security policies including NAT, PAT, VPN, Route-maps and Access-control lists.
• Configured Virtual Private Networks between Site-to-Site and Remote-Site VPN.
• Hands on experience on Juniper EX switches which includes EX2200, EX2500, EX3200 and EX4200
• Series.
• Performed IOS upgrades on Catalyst switches 3560, 3750, 4500, 6500 and 2500, 2800, 3600, 3800, 7200 routers.
• Worked on Nexus switches such as 2000, 5000 and 7000 series
• Coordinating with vendors for creating, modifying firewall and NAT rules and maintaining Site-to-Site and Secure Socket Layer (SSL) VPN.
• Designed WAN structure to prevent single point of failure in case of link failure.
• Been involved in providing technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving customer reported issues.
• Provided support for global network including T1/T3, ATM connections using HDLC, Frame Relay on Cisco 2600 series routers.
• Involved in configuring F5 BIG-IP LTM 3600 load balancers.
• Experience in configuring Access points using wireless controllers and troubleshooting AP’s
• Experience in maintenance and troubleshooting of connectivity problems using PING, Traceroute.
• Hands on experience in configuring Cisco ASA by using Cisco’s Adaptive Security Device Manager (ASDM).
• Worked on Cisco ASA Firewalls and monitored flow traffic, troubleshooting hardware and network related problems using Smart View tracker.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Monitored remote sites using network management tools, helped LAN administrator with backbone connection and connectivity issues and other responsibilities included documentation and support other teams.

Environment: Cisco Routers: 7200, 3800, 3600, 2800, 2500; Cisco Catalyst switches: 3560, 3750, 4500, 6500; Nexus: 2000, 5000, 7000 series switches; Juniper switches: EX2200, EX2500, EX3200 and EX4200; Routing protocols: EIGRP, OSPF, BGP; Redundancy protocol: HSRP; Vlans, inter-vlan routing, STP, VTP, RSTP, PVST, NAT, PAT, ACL, Route-maps, Route redistribution, Cisco ASA, Checkpoint firewall; Load balancer: BIG-IP F5; VPN: IPSEC, SSL VPN; Tools: Cisco’s ASDM, Wireshark, MS Visio.

Confidential

Junior Network Engineer

Responsibilities:

• Configured IP routing protocols such as RIPv2 and OSPF on 2600, 2900, 3600 and 3800 series Cisco routers.
• Configured VLANs and supported STP, RSTP, PVST along with troubleshooting on inter-vlan routing and VLAN trunking protocol 802.1Q.
• Implemented traffic rules on cisco routers using Standard and Extended Access-Control Lists.
• Worked on installation, maintenance and troubleshooting of LAN/WAN (Frame Relay, NAT, DHCP, TCP/IP).
• Configured HSRP on gateway routers for redundancy.
• Worked in configuring CSU/DSU devices and also helped troubleshooting CSU/DSU devices.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Worked on IPv4 addressing and divided a network into different sizes using Variable Length Subnet Masks (VLSM).
• Involved in troubleshooting Ip addressing problems and updating IOS images using TFTP.
• Involved in troubleshooting network problems using Ping, CiscoCLI, tracert and telnet.
• Performed and technically documented various test results on lab tests conducted.
• Involved in troubleshooting and resolved problems related to the networking and server environments.
• Used Network monitoring tool to manage, monitor, and troubleshoot the network.
• Documented customer database which includes ip address, password, interface and network diagrams.

Environment: Cisco routers: 3800, 3600, 2900, 2600; cisco catalyst switches: 3560, 3750; Routing protocols: RIPv2, OSPF; Inter-vlan routing, 802.1Q, ACL, STP, RSTP, PVST, VLSM, HSRP.