SUMMARY

• 7 years of experience in Cisco Networking, Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
• Configuring Virtual Chassis for Juniper switches EX - 4200,Firewalls SRX-210
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Hands On experience Cisco IOS/IOS-XR/NX-OS, Cisco CRS 1, CRS 3, Cisco NCS6K, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Led the system integration test effort for CRS X in its multi chassis
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 7018,5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• In depth understanding of IPV4, implementation of Subletting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.

TECHNICAL SKILLS

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Redundancy and management: HSRP, RPR, NSF/NSR

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Juniper SRX

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Layer 3 Switching: CEF, MLS, Ether Channel

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, OpenSuse, Fedora)

Windows Servers: 2003/2008 Windows MS-Office.

PROFESSIONAL EXPERIENCE

Confidential, Trumbull, CT

Network Engineer

Responsibilities:

• Working with Network Design and implementation projects Across North America and South America.
• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
• Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the IP addresses from Subnet.
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Familiar with various MSIT Tools to check Networking Connectivity, Testing, Configuration and Adding or Removal of IP address blocks, Decoming or Adding the Devices.
• Deploying and decommissioning the VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Experience with migrating from IOS to IOS-XR on ASR 9K
• Led the system integration test effort for CRS 1 and CRS 3 in its multi chassis
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
• Experience in configuring vdc, fex pinning, fex port-channel, port-channel, peer keep alive,peer link.
• Experience in working and designing configurations for vPC, vPC domian, vpc peer-gateway, vPCpeer-switch, auto-discovery, vPC singlesided, vPC double sided, NX-OS, Vfr, Otv, fabric path.
• Deploying and decommissioning the TOR switches and their respective software upgrades.
• Performing the ACL requests changes for various clients by collecting source and destination information from them.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot ) .
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.

Confidential, Bellevue, WA

Network Implementation Engineer

Responsibilities:

• Responsible for Designing, configuring, and implementing EIGRP
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Upgrading VOIP Call Manager and by implementing Cisco WAAS
• Negotiate VPN tunnels using IPSec encryption standards as well as configured and implemented site-to-site VPN, Remote VPN.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Designed implemented and supported Cisco Nexus Switching Platforms (Nexus 2000/5000/7000 ).
• Load balanced the HTTP traffic by installing the F5 load balancer and the ACE load balancer
• Load balanced the HTTP traffic by installing the Cisco CSS 11000.
• Experience with advanced applications like (prompt and collect “screen pops”, Skill based routing, expected wait time, priority queuing, IVR, XML parsing, HTTP triggers, eNotification services, TTS, vXML and ASR
• Configured STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Worked on ASAfirewallsfor building the ACL rules for the extranet connectivity and implementation of the rules on the corporate firewalls and monitored logs for the issues
• Worked as Network Engineer for Client projects, by providing support for Network deployments
• Worked on commissioning and decommissioning of the IMS circuits for various field offices.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.
• Developed documentation, system standards and SOPs within the organization.
• Supported and lead implementation of Joint Task Force (JTF) growing network infrastructure.
• Worked as Network Engineer for Client projects, with hands on experience on Solarwinds, Netscout, Infinsteam
• Hand on experience the configuration and implementation of various Cisco Routers & L2/L3 Switches.
• Supported core network consisting of Cisco 7200 series routers running multi area OSPF.
• Configured EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP
• Implemented stub/Totally stub areas. Implemented various OSPF features like route-summarization and SPF throttling
• Experience on IP packet capture tools such as Network Physics, Ethereal, etc
• Used DHCP to automatically assign reusable IP addresses to DHCP clients
• Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers
• Demonstrated the migration benefits from HSRP to GLBP. Successfully upgraded the existing network to GLBP for high availability and load balancing between distribution layer switches.
• Performed configuration of SNMP, RADIUS, and TACACS along with other standard global configurations on existing client production routers and switches.
• Design, configure, and implement SSO for sup720 redundancy within the core

Confidential, Bloomington Indiana

Network Analyst

Responsibilities:

• Working with Network Design and implementation projects Across North America and South America.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot ) .
• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Deploying and decommissioning the VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Experience in C & C++ programing, able to write program and understanding.
• Experience with migrating from IOS to IOS-XR on ASR 9K
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, BundleEthernet implementation on ASR 9K redundant pair.
• Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the ip addresses from Subnet.
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
• Experience in configuring vdc, fex pinning, fex port-channel, port-channel, peer keep alive,peer link.
• Experience in working and designing configurations for vPC, vPC domian, vpc peer-gateway, vPCpeer-switch, auto-discovery, vPC singlesided, vPC double sided, NX-OS, Vfr, Otv, fabric path.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal(wherever necessary) of BGP from the MPLS routers.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Familiar with various MSIT Tools to check Networking Connectivity, Testing, Configuration and Adding or Removal of IP address blocks, Decoming or Adding the Devices.
• Deploying and decommissioning the TOR switches and their respective software upgrades.
• Performing the ACL requests changes for various clients by collecting source and destination information from them.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers .
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.

Confidential, Littleton, CO

Network Engineer

Responsibilities:

• Experience with migrating all the Partner IPSEC VPN tunnels from one data center to another data center.
• Experience with deploying the Layer 3 MPLS VPN in all the Branches and Campus locations.
• Replace Campus Cisco 6509 End of Life hardware with new 4507/4510 devices.
• Experience with layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
• Provide consultancy services to customers on a variety of network security products including firewalls, VPNs, authentication, load-balancing, data loss prevention, security information and event management
• IOS upgrade in Nexus 7010 through ISSU (In service software upgrade)
• Configuring numerous LAN/WAN technologies including leased point-to-point circuits,MPLS, ISDN, various Ethernet speeds/media
• Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover, DMZ zoning, & Configuring VLANs/routing/NATing with the firewalls as per the design.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tuning AS-path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Designing, configuring, implementing and troubleshooting (LAN) VLAN’s, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Configuring, testing, and troubleshooting routing and switching issues and related protocols associated with packet networks including MPLS and traffic engineering (QoS).
• Designing and configuring IP address schemes.
• Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System
• Configured and supported Cisco firewall PIX 500 series.
• Configuring AAA using Tacacs+ and ACS server.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal(wherever necessary) of BGP from the MPLS routers.
• Worked on Solar winds Orion for analysis and monitoring purposes

Confidential

Network Support Engineer

Responsibilities:

• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Updated the HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-V LAN routing, LAN security.
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Configured FTP server for inside/outside users & vendors
• Used various scanning and sniffing tools like Wire-shark
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco ASA 5500 series firewall
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.