SUMMARY

• Around Seven years of Experience in Designing, Security, Deployment and Operations of complex enterprise and service provider networks.
• Adept in managing service functions & streamlining the working standards operating system for project rollout, design and development of Telecom solutions.
• Expert working knowledge (including the ability to setup, configure, upgrade, manage and troubleshoot Cisco routers, switches, VPN concentrators, firewalls, 802.11 wireless access points and load balancers).
• Migrated firewall rules from Cisco ASA to Palo Alto and Checkpoint Firewalls.
• Designing and Configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Advanced knowledge in installation and configuration of Juniper Netscreen Firewall.
• Migration from Cisco firewalls to Palo Alto firewalls platforms PA 4000 and PA 500 and PA - 200 firewalls.
• Perform Palo Alto network firewall design, integration & implementation for Cyber Trap client networks.
• Experience with convert Palo Alto VPN rules over to the Cisco ASA solution. Migration with both Palo Alto and Cisco ASA VPN experience
• Designer in developing network infrastructure utilizing Cisco 7606 routers/3750 switches, Ruggedcom routers/switches, and Checkpoint firewalls.
• Strong hands on experience onCheckpointFirewalls, ASA (5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Good Understanding of Python scripts for system automation, monitoring and security reporting. Maintain existingPerlscripts and migration existingPerlscripts to Python.
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Juniper Networks specializes in routers, switches, firewalls, data center solutions, cloud services, certification programs and VPN solutions.
• Involved Knowledge on Data Center Design with Cisco Nexus in troubleshooting of DNS, DHCP and other IP conflict problems.
• Experience working with OTV & FCOE on the nexus between the datacenters.
• Experience on Check Point Firewalls NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, UTM.
• Deployed Juniper switches EX4500 and EX4200, routers M7i and M10i and Junos OS.
• Expert in design, configuration and deployment of F5 Solutions with extensive experience working with APM and ASM technologies.
• Experienced in handling and installing Palo Alto Firewalls with exposure to wild fire feature of Palo Alto Networks.
• Creating object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Working knowledge with monitoring tools like Solar Winds & network packet capture tools like Wire-shark
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools

TECHNICAL SKILLS

LAN Technologies: VLAN, VTP, Inter-Vlan routing, STP, RSTP, PVST, 802.1x

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Leased lines

Network Security: NAT/PAT, VPN, Filtering, IDS/IPS, IPSec, ACL

Routing Protocols: RIP, IGRP, EIGRP, OSPF, BGP, IS-IS, HSRP

Routed Protocols: TCP/IP, IPX/SPX

Infrastructure Services: DHCP, DNS, SMTP, MIBs, Syslog, POP3, FTP, TFTP

Network Management: SNMP, SSH, Telnet, ICMP

IP Telephony: VOIP, FXO/FXS/E&M/T1/ISDN/PRI, Call manager Express

Operating Systems: Windows Vista/XP/NT/2003, MS DOS, UNIX, Linux

Comm. Protocols: Wi-Fi, WiMax, CDMA, 3G

Protocol Analyzers: OPNET, Wireshark.

Languages/ Tools: C, C++

PROFESSIONAL EXPERIENCE

Confidential, Sanata Ana, CA

Sr. Network Engineer

Responsibilities:

• Responsible for design & management of Juniper Netscreen Firewalls, Juniper Switches, Cisco Switches.
• Advanced knowledge in installation and configuration of Juniper Netscreen Firewall.
• Experienced working with security issues related to Cisco ASR 9K, Checkpoint and Juniper Netscreen firewalls.
• Troubleshoot and configured the Juniper NetScreen firewalls (SRX).
• Design, install, configure, troubleshoot and maintain various load balancers including Citrix Netscaler, Riverbed STM.
• Configuring SRX devices and troubleshooting them, connecting them with Cisco nexus devices to test connectivity.
• Migration from Cisco toPaloAltofirewall & Cisco to Checkpoint firewall.
• Designed, implemented and maintained scalability test network using Cisco 6509 and ACEload balancer.
• Configured and maintained IPSEC and SSL VPN's onPaloAltoFirewalls
• Configure Multi-Protocol Label Switching (MPLS) on CiscoIOSXRSoftware
• Configuring VPN, clustering and ISP redundancy in Check Point Firewall.
• Asset management, keeping inventory of every device in the data center
• Migrated Firewall infrastructure from Checkpoint R65 to Netscreen ISG2000.
• Hands on experience with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Managed Check Point Firewalls from the command line using Putty sessions. (cpconfig and Sysconfig).
• Configured and maintained IPSEC tunnels on Palo Alto Firewalls.
• Configured VLANS using Cisco routers and multilayer switches and supporting STP, RSTP, PVST along with troubleshooting on inter-vlan routing and VLAN trunking protocol 802.1Q.
• Troubleshoots Different technologies problems involving to Cisco routers, Firewalls, APs, Switches, Fortinet and Meraki.
• Firewall filtering and NAT, Adding and modifying the policies in juniper SRX.
• Configuration and Administration of Palo Alto Networks Firewall to manage large scale Firewall deployments.
• Configured network services equipment Riverbed accelerators in compliance with security policy.
• Used Citrix Netscalar for VPN.
• Built and support VRRP / Cluster based HA of Checkpoint firewalls.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Creating and provisioning Juniper SRX firewall policies.
• Backup and restore of Check Point and Cisco ASA Firewall policies.

Confidential, Urbana, MD

Network Security Engineer

Responsibilities:

• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Installation ofPaloAlto(Web Application and URL filtering, Threat Prevention, Data Filtering).
• Migrated toJuniperEX series switches from Cisco 3500 series and 6500 series switches
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
• Responsible for installation, troubleshooting of Check Point Firewall and LAN/WAN protocols.
• Managing Data Center and assisting other engineers with troubleshooting from network device, storage, and blade servers.
• ConfiguringIPSECVPN on SRX series firewalls
• Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000. configuring Virtual Device Context in Nexus 9504
• Configuring F5LoadbalancerLTMs and GTMs to isolate traffic from the web servers.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Working on Juniper netscreen ISG1000, Pal Alto Networks, Infoblox Grid Manager.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Upgrading system images on Nexus 5 and 7 multi-layers switches using kick start and FTP server.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Worked on cisco Nexus 5000 series switches for data center.
• Worked on the migration project of Juniper SSG to Juniper SRX firewalls.
• Experience with working on Palo Alto Next-Generation firewalls security profiles and Cisco ASA VPN.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Using Smart Update, user management and authentication in Check Point Firewall.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Involved in Migration of Cisco firewalls to Juniper SRX firewalls.
• Worked onJuniperJ series j230, M 320 routers and EX 3200 series switch.
• Deployed new Cisco ISR routers (4300) runningIOS-XEand planned migration away from existing IOSrouters
• Experience with VLSM, STP, VTP, VLAN Trunking.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Working with Cisco Nexus 5000 series switches for data center.
• Worked on Riverbed devices for WAN bandwidth Optimization in the data centers for the sensitive
• Experience Transfer web services from Cisco CSS platform to F5 Big IP LTM platform.
• Maintenance of Cisco ASA 5580 firewall for DCA site, adding new rules or changing existing access lists if necessary.
• Maintaining Checkpoint security policies including NAT, VPN and Secure Remote access
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
• Adding Websites to the URL filtering blocklist in Bluecoat Proxies and upgrading firmware on the bluecoat proxies.
• Managing F-5 LTM, GTM, APM, ASM Administration, creating virtual servers, mapping pools, iRules and Profiles. SSL traffic offloading, also managed PCI Security Audit with F5 ASM.

Confidential

Network Engineer

Responsibilities:

• Experience withCheckpointFirewall policy provisioning.
• Configured F5 LTM and GTMloadbalanceras a sever where GTM dynamically resolve VIPs and provided to LTM server.
• Provided installation and initial user configuration of NEXUS 1K and 9K switches at the Data Center and providing IP addressing and different user session priorities on the switch.
• Installed and maintained Cisco and F5LoadBalancerdocumentation. configuration of STP and Port Security on Catalyst 2900, 4900, 6500, 6509 and 7509 switches
• Implemented Zone-Based Firewalling and Security Rules on thePaloAltoFirewall.
• Configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP,BGPv4.
• Configuring and implementingCheckpointVSX firewalls.
• Implementing, supporting and maintaining network services.
• Built and support VRRP / Cluster based HA ofCheckpointfirewalls
• Troubleshooting of DNS, DHCP and other IP conflict problems.
• Troubleshooting L2/L3environments
• Troubleshooting the issues with the MPLS VPN connectivity and Configured Virtual Routing Forwarding (VRF) on Cisco routers.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Troubleshooting of Cisco 2800, 2900, 3700, 3900, 7200, 7600 routers.
• Creating PVLANs and preventing VLAN hopping attacks and mitigating spoofing with snooping and IP source guard.

Confidential

Network Support Engineer

Responsibilities:

• Manage installations, configuration and administration of Cisco equipment including Hubs, Switches and Routers.
• Configured redundant pair setup and synchronization between pairs on F5loadbalancer.
• Installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP).
• Configured and maintained URL filtering onPaloAltoFirewalls.
• Configuring VRRP, Static route,BGP, Routing policies, ACL
• Configured Access Lists (Standard, Extended, and Named) to allow users all over the company to access different applications while blocking others.
• Provide Tier1 technical support assisting users facing network problems. Perform advanced troubleshooting, diagnostics and provide Level 1 solutions to network failures.
• Troubleshoot wiring problems and serial communication lines.
• Responsible for the up-to-date Network health (wired and wireless) including Security, Performance and Reliability.
• Coordinating with Service providers & Clients on various implementations
• Managing various activities in setting up Data Centers & Disaster recovery centers