SUMMARY

• Over 8+ years of extensive experience in Cisco Routing, Switch, Security and load balancers, Network Architecture, Engineering, Firewalls, Systems Analysis and Design, Implementation, Deployment and Maintenance.
• Experienced in Network deployments and Network security designs.
• Experienced with Installing, Configuring and Deploying Firewalls.
• Monitor, identify, report, and mitigate security weaknesses
• Configuration of Palo Alto Firewall PA - 5k and CMS
• Utilized the Blue Coat Proxy, SIEM, SOC, Tuffin, IPS/IDS.
• Wireless controllers troubleshooting
• Perform risk assessments for clients and provide the findings and recommendations
• Communicate and manage client needs and expectations in all phases of their information security solutions
• Work with internal resources to ensure proper security controls are identified, implemented and tested.
• Having Experience in Monitoring tools: Solar winds Orion
• Develop detailed technical recommendations to solve security issues
• Enforce Information Security policies and procedures
• Troubleshoots network access problems and implements network security policies and procedures.
• Manage, Maintain Data center, assist in Migration of Data center.
• Ensures network (LAN/WAN, telecommunications, and voice) security access and protects against unauthorized access, modification, or destruction).
• Experience in Identifying and evaluating implementations of specific and general security tools (Secure Works, SharePoint, IDS, ASA, etc.)
• Expertise in F5 LTM and GTM Management.
• Manage Fixing Wireless access points
• Experience on Working in handling and installing Palo Alto Firewalls.
• Expertise in F5 BIG-IP LTM and Cisco CSS load balancers
• Experience in Citrix Netscaler MPX, VPX load balancer
• Experience in managing and Maintaining Nexus 5000 and 7000 series.
• Experience with configuring and maintaining VSX devices.
• Maintenance of network servers such as file servers, VPN gateways, intrusion detection systems, etc.
• Experience in delivery of our proposed Wireless and Route Switch solutions centered on Cisco products
• Accountable for the performance of direct reports on a daily basis.
• Assist in testing, troubleshooting and resolution efforts when systems failures occur and interface with network operation teams.
• Extensive Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols on Palo Alto firewall as well as cisco ASA and checkpoint
• Assists in the development, management, and enforcement of company's network security policy.
• Proactively monitor network utilization and gather trend data for reporting as well as capacity planning purposes.
• Managing (Managing and implementation) the Palo alto firewalls using as a Panorama management station
• Research and evaluate new networking technologies to improve existing infrastructure.
• Experience in deploying Wireless controllers, Wireless access point, Wireless Sniffer.
• Cross-train and provide backup to other Network Engineers.
• Experienced with Enterprise class data center network design and implementation.
• Experience in Configure Vlans, VTP, STP, RSTP
• Experience on Upgrade on 5k, 7K Nexus device.
• Experienced in Routing protocols (OSPF, EIGRP and BGP) and IPSEC VPN in a multi-site environment
• Experienced in Various WAN technologies such as DSL, cable, T1, and MPLS
• Experience with RFC 1918 private networks, firewalls, routers, and switches.
• Adept in Modeling Business Process using MS Visio and generating Workflows, Process Flows and other UML diagrams to refine and automate business process.
• Goal-oriented individual with people management skills and strong leadership capabilities.

TECHNICAL SKILLS

HARDWARE: Cisco 800, 1700, 2500, 2600, 2800, 3600, 7200, series routers, Cisco 500, 1900, 2960, 3560, 3750, 6500 series switches, Cisco PIX 500, VPN 3000, ASA 5500 series security appliances

PROTOCOLS: RIP, OSPF, IGRP, EIGRP, BGP, ISIS, HSRP, VRRP, RSVP, MPLS, DHCP, DNS, TCP/IP, SNMP, Frame Relay, and ISDN. Wireless protocols 802.11b & g

FIREWALLS: Palo Alto PA 500/2k/3k/5k, Checkpoint R65/R70/R77/Firewall-1, Cisco ASA

PROFESSIONAL EXPERIENCE

Confidential, Nashville TN

Senior Network Engineer

RESPONSIBILITIES:

• Architect, implement and manage LAN and WAN development leading to a scalable and flexible infrastructure that minimizes the reliance on consultants.
• Source, recommend vendors and negotiate terms for all infrastructure needs including data, voice and internet telecommunications, networking hardware and service agreements.
• Standardize network and server hardware configurations resulting in significant savings in support expenses.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances .
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Cisco Wireless, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Implementation of ISDN & FRAME-RELAY in Cisco router.
• Configure and troubleshoot Remote access and site to site-in Checkpoint & Palo alto firewall
• Proficient in design, implementation, management and troubleshooting of Check Point firewalls, Cisco PIX, NetScreen Firewalls, Check Point Provider-1 / VSX, Nokia VPN, Palo Alto IDS, Foundry / F5 Load Balancers, and Blue Coat PacketShaper systems.
• Experience in Configuring the Switch Ports for Wireless access points
• Configuring & managing around 500+ Network & Security Devices that includes Cisco Routers & Switches, Nexus Switches, Checkpoint firewalls, Cisco Wireless WLAN Controllers, Access Points (APs); Cisco, Arubaand Palo Alto Firewalls.
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth. Co-ordinate with the Data Network and Security team and come up with possible solutions. Owned and managed internal IT relationships, vendor management, IT strategic development, day-to-day Service Desk/Customer Service operations, application portfolio and the IT/High Speed Data network infrastructure along with all Managed Services.
• Experience on working with different security types WPA/WPA2, 802.1x, Static WEP & use different RADIUS SERVERS (ISE, ACS, and FR) for testing.
• Responsible for configuration and troubleshooting of Cisco 4331, 4431, 3945, 1941 and similar routers, Cisco 3650, 3560, 2960 and other switches. Configurations involved routing protocols like OSPF, BGP, and EIGRP, DMVPN, IWAN, MPLS, QoS, Static routes, Vlans, VRFs etc.
• Worked on all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Implemented Cisco IWAN at 25 sites till now. Worked on turning a site into IWAN involving provision of two circuits, one for MPLS, other for Internet, activating these circuits, forming DMVPN over MPLS and DMVPN over Internet with our IWAN-MPLS and IWAN- INET head end routers at Datacenters.
• Designed sites to have just MPLS or just Internet where DMVPN is established. Cradlepoints are designed to work alongside MPLS or Internet connections to provide offload.
• Managed Core network upgrades and unified communications and Identity Services Engine(ISE)deployment.
• Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory, RSA Secured, and Proxy Radius Services to Cisco ACS.
• Monitoring and capturing the traffic with multiple network management tools like Sniffer Infinistream, Wire shark, Net flow Analyzer, Solar winds, source fire, HP Open View, Cisco Works, Cisco ISE.
• Extensive experience in Aruba Wireless and Cisco Routing, Switch, Security and load balancers, Network Architecture, Engineering, Firewalls, Systems Analysis and Design, Implementation, Deployment and Maintenance.
• Design engineering deployment proposals for enterprise customer requests for Aruba and Cisco wired/wireless technologies & Develop Aruba Predictive RF Surveys and network design documentation, Bill of Materials and Design.
• Managing and configuring Aruba Wireless devices.
• Extensive experience in Installation, Configuration and Administration of FIREWALLS i.e. CISCO, Cisco ASA 5510, 5520, 5540, 5550, 5580, Juniper SRX, Junos, Fortinet, Checkpoint NGX-1/VPN-1 Firewall.
• Hands-on experience with Cisco equipment, Juniper equipment, CDN platforms; test platforms: Spirent
• Experienced in pertaining to security software (IOS-s) and hardware in Juniper and Cisco Routers and Switches
• Design and implementation of interfaces between FreeBSD and Juniper specific network components.
• Act as primary technical contact for all client, vendor and exchange connectivity.
• Design and implement corporate solutions for email, internet, virus protection, disaster recovery, data storage and backup, system and bandwidth monitoring, resulting in an improved level of professionalism and data integrity.
• Monitor perimeter and internal networks for intrusion and hacks (DoS, DDoS, attack signatures, etc).

Confidential, Chicago, IL

Senior Network Engineer

Responsibilities:

• Perform upgrades on existing network equipment to resolve various network problems.
• Guided several move and network infrastructure migration projects at different clients.
• Configured over 150+ Site-to-Site & Remote Access VPNs on PIXs, VPN Concentrators, IOS routers and ASAs, Fortigate Firewall.
• Performance monitoring devices using Cacti, Solarwinds.
• Implemented and administered Web sense Web Security Gateway for web content filtering and DLP.
• Provide Support to Nexus 2000/5000 switches and operating system.
• Hardware migration from Citrix Netscaler NS 7000 to MPX 9500
• Involved in setting up new Citrix Netscaler SDX 15000
• Configuring & managing Network & Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers
• Worked on all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Configure SSL certificate install and configure on loadbalancer.
• Hardware migration from Citrix Netscaler NS 7000 to MPX 9500
• Configured F5 BiGip to provide Load Balancing for server farm.
• Experience with configuring VIPs on F5 and Citrix load balancer which include creating policies and creating redirection rules.
• Experience in the PCI remediation project, which include Switches, Routers, and Firewalls.
• Experienced in Web gateways, firewall, IPS/IDS, VPN, DMZ and proxies
• Created support procedures, written documentation and Visio network diagrams
• Designed, Implemented and support several Cisco Call Manager Express solutions.
• Performed network, LAN, server and desktop support at all levels.
• Maintained and supported daily, weekly and monthly backups for servers & network configurations..
• Provided Network operations support using People Soft CRM.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Assisted with establishing Network Operations Center (NOC) to proactively monitor the network resulted in better SLA and network performance.
• Created business cases for supporting network infrastructure upgrades and changes.
• Coordinated with change management team for all changes that would likely interface with the Network.
• Designed and configured HSRP for redundancy.
• IOS upgrade and router hardening for 2600, 3600, 7200 routers and 6500, 2900, and 3500 series of switches.
• Created Visio diagrams and other documentation. Updated existing documentation.
• Investigated & resolved network issues using troubleshooting skills & network sniffers.
• Configured Cisco VPN 3000 Concentrator to allow VPN clients.

Confidential, Orlando, FL

Network Engineer

RESPONSIBILITIES:

• Configuring and install hardware and software required to conduct network penetration testing.
• Experience in infrastructure strategies, hardware/software, security and networking products
• Experienced in Advising management of options, risk vs. cost, benefits and other impacts of infrastructure solutions
• Experience in setting technical standards for network infrastructure, security baselines, policies and procedures.
• Very Good Experience with Check Point Provider - Version R62 and R65.
• Strong TCP/IP understanding. Knowledge of debugging Check Point Firewall.
• Experience with configuring, supporting, and troubleshooting security products including Check Point, Juniper, Cisco, IDS solutions, and others
• Experience with convert Cisco ASA VPN rules over to the Palo Alto solution. Migration with both Cisco ASA and Palo Alto VPN experience
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Implementation of Checkpoint Firewall 4.1 to protect and authenticate local-net and DMZ. Defined policies, NAT and anti-spoofing for internal, external networks as well as Internet gateways.
• Experienced in Providing Security solutions using Checking Point and CISCO for the network.
• Extensive experience with Check Point and CISCO Security Firewall Configurations and network configurations.
• Create self signed certificate and deployed on Loadbalancer
• Ability to access Information Security Risks, understand business needs, and apply defined information security policies and architectures in order to develop effective solutions
• Manage and configure Juniper SSG, Palo Alto, and Barracuda series firewalls/Web Filter and Blue Coat Enterprise Proxy appliances.
• Troubleshooting packet flow through firewall using command line utilities such as TCP DUMP.
• Researched, designed, and replaced aging Cisco ASA firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• In-depth knowledge of IP routing, virtual routing and forwarding (VRF) and routing protocols
• Well versed in different vendors L2/3 switch hardware architectures
• Detailed knowledge and hands-on experience of Layer 2 protocols includes Spanning Tree Protocols, VLAN Tagging (802.1Q), Link aggregation (IEEE 802.1AX)
• Hands-on experience with design and implementation of large IP networks
• Hands-on experience with design and implementation of network security infrastructure (firewalls, IPS)
• Hands-on experience in datacenter environment (LAN/WAN/security/application)
• Experience with security as a discipline, with focus on IPSec, Access Control, Firewalling, IDS/IDP
• Hands-on experience with Cisco equipment, Juniper equipment, CDN platforms; test platforms: Spirent

Confidential, Philadelphia, PA

Network Engineer

RESPONSIBILITIES:

• Hands-on experience with design and implementation of network security infrastructure (firewalls, IPS)
• Hands-on experience in datacenter environment (LAN/WAN/security/application)
• Experience with security as a discipline, with focus on IPSec, Access Control, Firewalling, IDS/IDP
• Hands-on experience with Cisco equipment, Juniper equipment, CDN platforms; test platforms: Spirent
• Experienced in pertaining to security software (IOS-s) and hardware in Juniper and Cisco Routers and Switches.
• Experienced with Firewall administration such as Juniper, Check Point or Cisco
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
• Optimized performance of the WAN network consisting of Cisco 4500/5500 switches by configuring VLANs.
• Experienced with Cisco catalyst switches 5xxx,4xxx, 29xx,19xx and RSM and Cisco Routers 7500,7200,4000,3600,2600,2500
• Experience with Provider One or Check Point's Smart Center management station Tipping Point
• Experience with common network management protocols/tools (TACACS, NTP, SNMP, SYSLOG, etc)
• Configured and maintained email spam firewalls.
• Worked on LWAP and EAP protocol.
• Designed highly redundant and fault tolerant networks for the financial industry clients.
• Provide 24/7 on call support and Document the environment
• Implementation and administration of Check Point Firewalls & network Management
• Implementation and maintenance of Backup Exec 8.0 on departmental server.
• Diagnose and solve Frame relay / T1 lines, CSU/DSU and routers connectivity problems.
• Configuring and managing network traffic using 3COM SNMP and access list.
• Manage Cisco Router, 2900xl switches and 3Com hubs configuration for WAN and LAN interfaces.

Confidential, South Portland, ME

Network Associate

RESPONSIBILITIES:

• Involved in configuring Cisco routers and switch administration, familiar with enterprise level Cisco Routers such as 7200 series, 3800 series, 3700 series, 2800series, and Cisco catalyst series switches like 6500, 3750, and 4500.
• Configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication.
• Installing & configuring firewalls like Checkpoint NG & NGX.
• Implement VLAN’s and access lists (ACL) and troubleshoot IP addressing issues and Update IOS images and other hardware installations.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Dealt with F5’s load balancing products in managing the key role issues.
• Dealt with NAT configuration and troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
• Managing and configuring Cisco Switches and Firewalls independently.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/ switches/firewalls.
• Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Coordinated with senior engineers with BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Provisioning and troubleshooting Ethernet services, Gigabit networks and Connectivity issues with WAN types (Frame relay).
• Installing and configuring the VPN’s for the clients (site to site) using IPSec and GRE.
• Monitoring Network infrastructure using SNMP tools like HP Open view.
• Involved in Configuration of Access lists (ACL) for the proper network routing for the B2B network connectivity.
• Worked with customers in troubleshooting issues related to connectivity, STP, VLANs, Inter-VLAN routing, VTP, Ether channels, Layer 2/3 switching, log messages.
• Possess excellent verbal and written communication skills and experience developing and maintaining technical procedure and documentation.