SUMMARY

• Network Engineer with 8+ years of professional experience in Network Designing, Deployment, Configuring, Troubleshooting and Testing of the networking system.
• Strong hands on experience in installing, configuring and troubleshooting Nexus models like 9K 7K, 5K, 2K series, Cisco router models like 7200, 3800, 2800, 2600, 2500, 1800 series, Juniper SRX, MX series routers.
• Experience working on Cisco Catalyst Switches 2950, 3500XL, 3750, 4500, 4900, 6500, Juniper Ex2200, Ex3200, Ex4200, Ex8200 series switches.
• Expert level knowledge about TCP/IP and OSI models.
• Racking, stacking, installation and configuration of Catalyst 3560 POE switches in multiple enterprise networks
• Redistribution between routing protocols, IPX, QoS, 802.1q and SNMP with excellent documentation skills.
• Implementing security policies using Checkpoint Firewall, ACL, ASDM, IPsec, VPN, port security, IPS/IDS and AAA Security on different series of routers.
• Back end development for monitoring billing transactions for mobile messaging services with Python.
• Extensive experience in developing enterprise web applications using Python
• Hands - on experience on Checkpoint Firewall R77, Palo Alto Pa 3000 and Cisco ASA 5520 firewalls.
• Experience in troubleshooting both connectivity issues and hardware problems on Cisco based networks.
• Strong experience in designing and maintaining complex wireless deployment based on Aruba Networks Wireless Technology.
• Work on incidents and provide Root Cause Analysis (RCA) as and when required.
• Experience in Network monitoring tools such as Solar wind, Nagios and Wireshark.
• Working ticket related generated alarm from monitoring system (SolarWinds, Syslog).
• Experience in implementing site-to-site and remote access VPN technologies using GRE, IPSec and MPLS.
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing/switching experience, including LAN and WAN, SDN, design and implementation which includes Layer 1 to Layer 7 experience.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, VPLS, L2CC, STP, RSTP, MST.
• Implementation of HSRP, VRRP and GLBP for Default Gateway Redundancy.
• Expert knowledge in analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Excellent customer management / resolution, problem solving, debugging skills and capable of quickly learning, effectively analysis results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS

Routers: Cisco router models like 7200, 3800, 2800, 2600, 2500, 1800 series, Cisco ASR 1K, 9K, 7200, 3800, 3600, 2800, 2600, Nexus models like 7K, 5K, 2K series, Juniper SRX, MX80, MX240, MX480, MX960 series routers

Switches: Cisco Catalyst Switches 2950,3500XL, 3650, 3750, 3850, 4500, 4900, 6500, 9300, 9500, Juniper Ex2200-c, Ex3200, Ex4200, Ex4300, Ex4550, Ex8200, Ex9200, QFX5100, QFX3500, QFX10002series switches, Extreme Alpine 3800 Core, Summit x450 switches, Nexus 2232, 5596, 7009 switches

Routing Protocol: BGP, OSPF, IGRP, EIGRP, RIP, RMTP, PBR, IS-IS, Route Filtering, Redistribution, Summarization, Static & Dynamic Routing

Switching: LAN, VTP, STP, PVST, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether Channels, MPLS, VPLS, Transparent Bridging, ISL, Dot1q, HSRP, VRRP, GLBP

Load Balancer: F5 Networks (BIG-IP) LTM 6400, 1600, Cisco CSM

Security: ASA Firewall (5505/5510), Checkpoint GAIA/ SPLAT, Cisco ASA, Access-Lists, IKE, IPSEC, SSL-VPN, Layer 2 Security, Juniper SRX 240, L3VPN, NetScreen Firewall, Port Security, AAA Architecture, DHCP Snooping, IP Source Guard

Operating System: Cisco IOS, Cat-OS, NexusOS, ArubaOS Junos Fusion, Linux (Debian/Ubuntu, RedHatv6.5, Windows NT 4.0 up to 2008 SP1, Novel 5x, Slackware, SuSe, CoreOS), Solaris, Open Solaris, VMWare Server/ESX/ESXi/vSphere 3.x-6.x, Sun Xvm Virtualbox, Xen 3.x, Windows Server 2008/2012 R2IP

Software: Windows/Linux, F5TMOS/LTM/APM/ASM/iWorkFlow, Wireshark, Putty, Proteus, Splunk

Management Tools: SNMP, Syslog, Sniffer, Netflow, Splunk, Wireshark, Riverbed Modeler, HP Service Center 6.8, QIP, Solarwinds, EMC Smarts, Netflow, IPSLA

WAN Technology: Frame Relay, Channelized links E1/T1/DS1/DS3/OC3, PPP, MPLS, HDLC, Fiber Optic Circuits, ISDN, ATM, SONET

Traffic Filtering Techniques: Standard and Extended access-lists, Distribute-lists, Prefix-lists, and Route-maps

Tools: Microsoft Office, MATLAB

Network Automation and Scripting Technologies: Perl, Shell, PHP, SQL, Python Script with EEM on Nexus 6K, Python 2.7 & Python 3

PROFESSIONAL EXPERIENCE

Confidential, Plano, TX

Network Security Engineer

Responsibilities:

• Palo Alto installation, configuration, administration, monitoring and implementing the policies in Palo Alto 3020 and 5250.
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
• Deployed Palo Alto for web filtering and application control.
• Manage Palo Alto Firewalls using Panorama configuring Device Groups and Templates.
• Configured and monitored Firewall logging, DMZ's and related security policies.
• Active participation in the migration of Cisco ASA 5040 to Palo alto.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls.
• Installed different Network Architecture: VLAN, Designed and Configured LAN and WAN using RIP, IGRP, EIGRP, and BGP.
• Install and upgrade Cisco Wireless LAN equipment including but not limited to; 4400 and 5500 series Wireless LAN controllers; 6500 and 3750 Core switch routers; 2960, 3560 and 3750 series switches.
• Troubleshoot remote access services like Citrix Netscalar, Cisco VPN clients and for the users to access their enterprise network.
• Troubleshooting test plans for Juniper (M320, T640), Cisco (12000 series router, 3650, 4500, 6500 catalyst switches, 7200 vxr series router), Arista 7280SE-64 switch, ASR 9K, Ciena 5150 switch which involves troubleshooting and verifying test cases for OSPF, E/I BGP, LDP, vPE/VLAN and security cases with IXIA tool.
• Implement and configured GLBP (on core switching and for VPN redundancy), HSRP on a different location of office on the switched network and managing the entire multilayer switched network.
• Wrote Python scripts that automated server setup on services such as PRTG and phpIPAM (an IP Address Management tool).
• Configuration of ACLs in Check Point 77.30 firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.
• Helped developed the engineering documentation for ForeScout.
• Worked extensively in configuring, Monitoring and Troubleshooting Check Point R77.XX security appliance, Failover DMZ zoning & configuring VLANs / Routing / NATing with the firewalls as per the design.
• In charge of manage development, implementation, installation, and operation of information and functional systems for the organization. This includes installation of SQL software and manage SQL server.
• Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, Ether Channel, Trunking, Port Security, STP and RSTP.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.
• Maintained, installed, configured, and evaluated moderately complex network communications, including LAN, WAN, Firewalls, Routing, and telecommunications hardware and software such as Cisco (IOS and NX-OS), PaloAlto (PAN-OS), F5 BIG-IP GTM/LTM, BlueCoat (ProxySG and CAS), Riverbed Steelhead CX/EX/CMC.
• Implemented MPLS/VPN services for various customers.
• Worked on remedy ticketing tool for handling different priority level tickets.

Confidential, Plano, TX

Network Engineer

Responsibilities:

• Designed and support the consolidation of data centers utilizing Nexus 2K, 5K, 7K and Arista, Cisco Catalyst switches infrastructure.
• End to End understanding of Transport Metro Ethernet/WAN/SONET design and architecture over DWDM/OCx/Carrier Ethernet Rings interconnecting 100+ network, client and mobility nodes to support all varieties of electrical, optical and EPL circuits.
• Support Blue Coat Proxy in explicit mode for users trying to access Internet from Corp Network.
• Use HTTP forward Proxy in Blue coat Proxy server.
• Working closely with knowledge center management to investigate the information center sites for cabling necessities of assorted network instrumentation.
• Provided application level redundancy and accessibility by deploying F5 load balancers long-term memory.
• Managed Bluecoat Web Proxy and content filter.
• Sound knowledge of routing and switching concepts and MPLS design.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Involved in running the automation scripts on different builds and products and debugging the issues.
• Installed and configured Windows 2000 Server, 2003 Server, SQL Server and IIS.
• Handled Citrix Netscalar Load Balancing using F5 Networks.
• Implemented firewall auditing for effective functioning.
• Implementing firewall changes and policy pushes when necessary.
• Responsible for implementation/installation of LAN/WAN/SAN, Aruba Switches, Aruba WirelessAP's and Aruba Virtual Controllers.
• IPS weekly assessment and updates.
• Responsible for nightly maintenances including Big F5, ACS, all Cisco ASAs, Citrix Netscalar.
• Responsible for pre-deployment of MFPs (i.e. configuring SMTP, IP address, subnet mask, default gateway, LDAP configurations, user account controls, and anything requested by the client).
• Performed operational Moves/Adds/Changes in Cisco Secure Access Control System (ACS) 4.1, 4.2, 5.x. but not limited to network devices, Identity Groups, Local Hosts, Local Users, Identity Groups, DACL's, Authorization Profiles, Authorization Policies, and Access Policies.
• Performed operational Moves/Adds/Changes in Integrated Services Engine (ISE) 1.1.3 and 1.1.4 including but not limited to network devices, Identity Groups, Local Hosts, Local Users, Administrator Policies etc.
• Installation, deployment of Dell EMC VxRail solution for HyperConverge technology to support 500 VMs.
• Migration from local cloud to hybrid cloud architecture with AWS. Some exposure to Microsoft Azure.
• Installed, configured, and supported various Linux and Unix servers.
• Implemented and sustained Wide Area Networks (WANs), wired and wireless Campus Area Networks (CANs), Data Center Networks/Interfaces (DCN/DCI), Network Security (NETSEC), and Tactical/Deployable Networking Systems.
• Experience in working with Terminal Server Remote Access, ServiceNow and Wireshark.
• Leading a project of phasing out the on-premise server and implementing an MS Azure AD and Office 365 cloud environment.
• Hands on experience on network monitoring and analysis tools like, Packet sniffer, TCP DUMP, Cisco Works, Riverbed, WireShark, Gigamon.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Checkpoint and ASA firewall Business to business (B2B/VPN) design, configuration and implementation for Vendors.
• Designed and deployed Juniper SRX firewall for Security in the remote locations.
• Troubleshoot client's VPN-tunnel whenever needed to restore access between VPN end-points.
• Deployed URL filtering and IPS policy on checkpoint firewall and Cisco ASA globally.
• Extensive NAT configuration to include Dynamic/PAT/Hide/Static/NAT as applicable to user/vendor's traffic.
• Cisco ACL design and implementation.
• Maintenance of Platform Independent Code of Forwarding Element of MPLS that interacts with hardware.
• Handled IDS/IPS deployment and maintaining and troubleshooting it and an expert in IDS/IPS Security mitigation system.
• Maintaining workflow and network flow and documenting the security documentation.
• Managing health check of Network devices this is involves upgrading IOS on every quarter after checking the vulnerability of IOS and reviewing the configuration.
• Monitoring and Troubleshooting Data Center Network including devices like router, various switches and firewalls, Data Center Routers, Data Center Switches, Data Center Firewalls, Data Center Wireless devices, Load Balancers, WAAS, Riverbed SteelHead, Store Head-end Routers, Corporate Routers, and Corporate Switches.
• Installation, Configuration and Administration of VMware vSphere4.x, 5.x/vCenter Servers and Deploying HA & DRS Cluster.
• Installed and Implemented VMware ESXi 5.5 host servers with vSphere Client and Web Client. Configured HBAs and iSCSI SAN.
• Administered maintained and backup of SQL Server (Express ) also migrated SQL database from SQL 2005 to SQL 2008.
• Supported internal engineering teams with reliability baseline and validation as it pertains to the implementation of new technologies, features, and equipment through the contribution and influence of HLD/LLD designs.
• Implemented Python tool for generating detail configuration reports on distributed scale-up scale-out server Nodes for converged server systems.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.
• Configuring and administering routing protocols OSPF, BGP and Static.
• Performed VPN/VRF secure designs over BGP enabled MPLS and dedicated WANs.
• Deployed with configuring Virtual Server and Configuring Load balancing in F5 LTM.
• Configuration and troubleshooting of CSM (cisco security manager), integration with ASA devices.
• Provisions remote authentication services Cisco ISE and Cisco ACS for ACI integration.
• Management of corporate Checkpoint Firewall implementing security protocols and alleviating network attacks.
• Interacting with Solarwinds for monitoring the Network of the company.
• Designed and implemented an ITIL aligned change management process, including new policies and the establishment of a Change Advisory Board.
• Managing data center and network by using solar winds NPM, NTA, NCM and F5 load balancer.
• Worked on troubleshooting, implementing and configuring new devices and helping them to build new data center and moving devices from one data center to another by moving all devices.
• Design, implement and administer IPv4/IPv6 enterprise network infrastructure utilizing Juniper routers.
• Worked on Juniper MX 480, MX960 and Juniper Layer 3 EX4200 & EX3200 switches.
• Worked on Juniper MX 480, MX960 and Worked on Juniper MX 480, MX960, and with IOS upgrade of Juniper devices.
• Handled Citrix Netscalar Load Balancing using F5 Networks.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer's site.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Responsible for entire company network infrastructure that includes Cisco Switches, Routers, Firewalls, Access Points, Servers.

Confidential, Pittsburgh, PA

Voice Engineer

Responsibilities:

• Managing CUCM routing, call control, and media resources.
• Configure and troubleshoot line/device Class of Service using partitions and calling search spaces and translation patterns.
• Configure and troubleshoot Voice gateways and Voice Protocols: H323, MGCP, SIP.
• ISDN PRI T1/E1 circuit provisioning and working with the Telco to resolve issues on circuits.
• Configuration and remote support for installation of Cisco routers including Cisco 2800 series, 3800 series and 2900/3900 series and switches including 2960, 3550POE and 4500 Series Switches.
• Upgrading Cisco Call Managers Clusters in the North America and South America.
• Deployment and administration of Cisco unified Collaboration endpoints.
• Troubleshoot connectivity, quality of service, break/fix, voice quality, and configuration (feature, services and network) issues within the Cisco Unified Communication Manager Environment.
• Building and Recovery of Cisco Call manager, Cisco Unity Connection, and IM and Presence Servers: CIMC and IMM.
• Implementing User Voicemail Box and CUC routing.
• Working with the Network team to provision Voice VLAN and troubleshooting.

Confidential, Alpharetta, GA

Junior Network Engineer

Responsibilities:

• Configuration of Access List ACL (Standard, Extended and Named) to allow users all over the company to access different applications and blocking others.
• Preparations of Cisco Unified Communications Manager CUCM 8.x, 9.X, Cisco Unity Connection CUC 8.x, 9.x inventory, call flow documents.
• Experience in Cisco Unified Communication Manager (CUCM), Call Manager Express (CME), Cisco Unity Connection (CUC), Unified Contact Center Express (UCCX), Unified Contact Center Enterprise (UCCE), IM and Presence, SRST and Voice Gateways.
• Worked through Aruba and Cisco WLAN and Controller configuration files to help Admin with WLAN troubleshooting.
• Design and sessions, installing ICM / UCCE, developing call flows, compose technical documentation & mentoring other team members.
• Worked with Cisco UCCE, IVR, Cisco Unified Communication System.

Confidential, Alpharetta, GA

Network Engineer Intern

Responsibilities:

• Installation and Configuration of LAN.
• Worked as an operational support engineer for various WAN problems.
• Implementing fabric path, spine and leaf Data center.
• Design and implement Managed Internet Services (MIS) on Cisco CRSaccess routers.
• Routing related tasks included providing Cisco router configuration, providing technical support for Cisco Router configurations and installation for Customer.
• Switching related tasks included implementing VLAN and VPC configuring ISL trunk on Fast- Ethernet channel between switches.
• Responsible for managing a WAN network in a NOC environment with 400 NORTEL Bay Network Routersspanning in a 24x7 support center, also assisting engineers in the field with network problems ranging from the router to the infrastructure as a whole.