SUMMARY

• Over 9+ years of experience in Networking, including hands - on experience in providing network support, installation and analysis for broad range of LAN/WAN/MAN communication systems.
• Network: - Hands on experience in installing, configuring, maintaining and troubleshooting Nexus 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series, Cisco switches 6500, 4500, 3750, 3500, 2900 series switches & HP Modular and blade switches.
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
• Firewall: - Hands on experience in Design, configuration and management of all series of Palo Alto 200, 500, 3020, 5020, Juniper Net screen, FortiGate 800D, 1500D, Check Point & Cisco ASA firewall administration across global networks.
• Load balancer: -Hands on experience in implementation and deploying BIG-IP F5 LTM, Citrix NetScaler & Barracuda load balancers for load balancing and network traffic management for business applications.
• Cloud: -Hands on experience with Design, configuration 7 management of network topology on AWS cloud following cost optimization.
• Experience with Installation, configuration, and management of WAN optimizer, Riverbed Steelhead& SteelApp
• Wireless:-Experience with Aruba and Cisco WLC along with their APs & ClearPass integration.
• Network Management Tools: PRTG, OP Manager, Solar winds, Kiwi Syslog, NetFlow & ACS for AAA logs.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• Extensively Hands-on experience on AWS and its Networking component like VPC, Endpoint Gateway, Elastic IP, Network Interface, VPN gateway, Route 53 and all supported VPX of NetScaler and Palo Alto.
• Basic knowledge of Azure.
• Active Directory, DNS Installation, Group Policy Hardening, Ability to work on Win2k3, QLC Mail server, Windows 7, 10 & UBUNTU (Linux Flavor): Troubleshooting knowledge of windows OS related issues, MS Office 2000, 2003, 2007 & 2010, Visio drawings.
• Have Knowledge of various programming languages, like C, C++, C#, VB, SQL, ASP & EEM scripting.

PROFESSIONAL EXPERIENCE

Confidential - Rolling Meadow, IL

Senior Network & Security Engineer

Responsibilities:

• Handling Network day-today Operation and Management involving various Network & Security related Project, Changes and incident resulting in configuration and management of various Cisco Nexus 7K, 5K, 2K, 6500, 4500, ASA, ASASM, Palo Alto, Juniper ISG, Juniper SSL VPN, HP Tipping point, Bluecoat proxy SG 900, NetScaler, F5 LTM, GTM & ASM modules
• Configuration and management of Palo Alto 3020 internet edge firewall in HA pair, Successfully upgraded Palo Alto OS from 6.x to 7.1.1 with zero downtime.
• Configuration and management of F5 LTM 1600 and 3600, deployed various VIPs for hosting public facing sites.
• Contributing as team in successfully design & migration of new remote sites Design, Configuration and management of IP architecture, hands on experience on Nexus 7K, 5K and 2K hardware models and line cards.
• Implemented HA for Bluecoat Director and for F5 LTM 1600 in active standby scenario.
• Successfully accomplished Shellshock & Poodle vulnerability mitigation project which involves Upgrading
• Bluecoat Director, Juniper SSL VPN box F5 LTM & GTM hotfix upgrade.
• Troubleshooting website access issues on Palo alto and HP Tipping point IPS along with packet capture.
• Performed upgrades on various Cisco 4500,6500 series switches and ASR1001 series routers upgrades.
• Successfully replaced multiple faulty line cards and supervisor of Cisco 6500 & E-series switches.
• Installation and configuration Cisco Secure ACS, integration of all Network devices under it.
• Being On-call supported priority incidents on timely manner and resolved tickets.
• Created various SOPs for Line card replacement, IOS upgrades for routers and firewalls for team members.

Confidential, Chicago, IL

Senior Network Engineer

Responsibilities:

• Designed and implemented Various Tier 1 application environment on AWS by choosing cloud VPC concept, spinning PA, NetScaler LB, and established both end vpn connectivity to create reachability for developers to do POC for various applications.
• Build HA setup for Palo Alto firewall & Netscaler VPX models and tested failover successfully in AWS cloud using elastic Nic concepts and attach/detach policies in single Availability Zone to achieve compute fault tolerance.
• Created multiple VPCs to separate various environments, On Demands: leaking routes between VPCs to achieve connectivity with additional configuration of subnet groups & stateless Network ACLs.
• Configuration and management of AWS Route53 to achieve Availability Zone, multiple datacenter-based DNS load balancing and seamless failover to have 100% uptime in cloud infrastructure
• Hosting public facing sites in AWS with the help of Elastic IP concept along with instance capacity planning.
• Configuration and troubleshooting of HA setup for Palo Alto firewall and Netscaler Load balancer.
• Implemented VPN Connections and Direct connect to AWS from on-prem datacenter with redundancy.
• Implemented system-level security through IAM roles, credentials, encryption, MFA and RBAC.
• Analyzing Cloud trail Log and log analysis for forensic purpose during incidents.
• Configuration, management of cloud WAF by Imperva (Incapsula). This also involves fine tuning of sites for caching/bypass-caching of various URI under same site.
• On Prem
• Having SDN experience while working on Cisco ACI deployments (Nexus 9K). Configured various contracts to achieve L4 filtering on ACI, Commissioning and configuration of physical connectivity of Servers to ACI switches.
• Designed and implemented BGP Multihoming Internet setup which involve configuration of 3 ASR 1001 series router to achieve 100% service uptime in a year.
• Successfully implemented various Network projects on physical DC which involve application hosting design followed by implementation with quarterly DR Drills.
• Successfully upgraded IOS of various Cisco ASR Routers, 2900 ISR, 3550 switches, 3750 stack, HP 2960 switches, FortiGate 1500D, 800D, Palo Alto 5020, 3060, 3020, 500, VPX series on AWS, Citrix Netscaler 11515, F5 1600, 2400 & VPX series on AWS infrastructure.
• Design and configuration of Citrix NetScaler, F5 LTM ADC (as network proxy, SSL offload) and Log rhythm (for system log collection) in a Highly Available manner.
• Created various Load balancer configuration for hosting Web/App & DB services along with writing web traffic related policies on Netscaler & F5 load balancers like URL redirection, compression, URL rewriting, Active standby setup, access control on VIP etc. in assisting application deployment.
• As part of Infra team, assisting Application Team by providing network and security design consideration for Web, App and DB models applications adhering security and scalability.
• Troubleshooting network issues related with various multi-platform application like ASP, VB, Sql, web caching & SQL, Oracle, DB performances.
• Implemented Network Security measures by deploying Palo Alto (for packet inspection, monitoring internet traffic) and configured new boxes from scratch as Edge firewall as well remote site WAN entry firewall.
• Build HA setup for Palo Alto firewall for 5020, 3020, 500 models and tested failover successfully
• Upgraded code from 6.x to 7.x on on-prem devices and 8.x on VPX model in AWS cloud successfully.
• Configured & Managed standard policies for threat detection, Antivirus, Antispyware and Vulnerability protection and applied on internet inbound & outbound policies respectively.
• Configured wildfire for Mail-Exchange traffic so that malicious emails attachment can be filtered and examined.
• Configured URL filtering for Corporate users by blocking social sites and allowing it for specific HR groups.
• Established iBGP connectivity with 3 Internet Routers with Palo alto as well as enabled failover monitoring and VPN tunnel failover.
• Configured Equal cost multi path (ECMP feature) routes and load sharing of internet traffic between ISPs.
• Configuration and troubleshooting of Palo Alto wrt Policy based routing, Site to site VPN, Remote access VPN using Global-Protect, URL access, high CPU & HA part.
• Responsible for taking escalation calls for Tier 1 & Tier 2 incidents by providing immediate workaround or permanent fix and assisting team for creation of RCA details.
• As part of Operation, leading team which includes 3 junior network engineers & 3 interns, responsible for their trainings, growths along with escalation support.
• Created various SOPs for day today task and incidents to accomplish knowledge management.
• Daily review of incidents and problem ticket to address ITIL process.

Confidential, New York, NY

Network Engineer

Responsibilities:

• Installation and Configuration of Composite Network models consists of Cisco7600, 7200, 3800 series routers and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Installation, Configuration and troubleshooting Cisco switches and Firewall on multi-mode context based environments
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy-based routing for BGP for complex network systems.
• Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Upgrading system images on Nexus 5K and 7K multi-layers’ switches using kick start and FTP server.
• Designed Core System architecture for Voice and Data networks
• Deployment and Management of Cisco call Manager 4.x, 6.x, 7.x and hands on experience on call admission control
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Hands on Experience with Cisco Wireless Controllers 5500’s and 2500’s and coming to access points, worked on 3700’s, 3500’s and 1142 access points.
• Daily communications with local onsite support contacts for assistance with troubleshooting Telepresence LAN circuits and endpoint hardware.
• Installed and configured PIX 525 and ASA 5505 in customer locations. In addition to that, PIX firewall configured for the Guest access.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
• Configuring and implementing F5 BIG-IP, LTM, and GTM load balancers to maintain global and local traffic.
• Worked as Telecommunications technician with broad experience in both business and consumer lines
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Implemented and upgraded very large Cisco Wireless Network(50,000 nodes) utilizing WISM, WLC 5500, WLC 4400, AP 1140, AP 1260, AP 3500, Cisco3300 Context Aware appliance, ACS and NCS (Cisco Prime Appliance).
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Working on shell and tcl scripting for automation testing of client roaming with WPA2, Dot1x, EAPFAST with PEAP, LEAP authentication techniques with client burst joining and clients' access point flapping scenarios.
• Used Tcpdump to analyze packets on the TCP/IP and also provides brief display of packet.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
• Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the ip addresses from Subnet.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Developed deployment solutions for network technologies including Optical VoIP, VPN, SAN switching and routing.
• Configured and installed VOIP devices and IP Phones such as 7940, 7942, and 7960.
• Efficient in maintaining Avaya PBX products such as media servers, gateways and its related circuit packs such as IPSI, CLAN, MEDPRO, VAL and DS1 Manage data backup and restore
• Configuring and troubleshooting Juniper Netscreen Firewalls using NSM.
• Experience in working with cisco Nexus 5000 series switches for data center.
• Conversions to BGP WAN routing, which converts WAN routing from OSPF to BGP (OSPF is used for local routing only) that involves new wan links.
• Configuring various load balancing advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates,
• Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches.
• Configuring VLAN’s, VTP’s, enabling trunks between switches.
• Worked as a customer support Engineer involved in WI-FI set-up implementation.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces.
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418 (with PRP and RPR processors).
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Created MOPS and get approval from peers to perform configuration add/ remove changes.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Responsible for Installing and troubleshoot VMware.

Confidential

Network Engineer

Responsibilities:

• Responsible for the configuration of Cisco Routers (7000, 5300, 4000, 2500, 3000, 2600) using RIP, IGRP, OSPF, EIGRP, BGP
• Managed office network with Cisco devices with network devices including 2500 and 3600 series routers and 3500, 2900, 1900 series switches
• Analyzed and resolved a high percentage of initial customer contact in the areas of PC/LAN.
• Dealt with customer problems to management and support groups utilizing standard escalation model.
• Extensive experience in configuring and implementing OSPF and BGP.
• Supported core network consisting of Cisco 7200 series routers running multi area OSPF.
• Configured EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP
• Implemented stub/Totally stub areas and various OSPF features like route-summarization and SPF throttling.
• Hands-on experience with WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types
• Implemented Cisco Secure Access Control Server (ACS 3.0) for TACACS+/RADIUS
• Knowledge with redistribution of routing protocols and Frame-Relay configuration
• Configured, maintained and troubleshot routing protocols such as OSPF, EIGRP and BGP.
• Designed IP Telephony solutions for 200 users using Cisco Call manager 4.x and Unity 4.x. Demonstrated teamwork by working with others on the design implementation of VoIP projects.
• Design and implement a Cisco wireless solution for different hospital sites to accommodate data and VOIP.
• Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring
• Performed troubleshooting, while maintaining trouble ticket tracking, following both internal/external routes.
• Assisted with escalation procedures and customer notifications.
• Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Provided project management for data center cabling, documented all network drawings using Visio
• Design, test, and implement global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols.
• Implementing traffic policy changes with Cisco PIX Firewall appliance switch WAP configuration and installations.