SUMMARY

• 7 years of experience in Network& Security, including hands - on experience in providing network design, deployment, support, installation and analysis for a broad range of LAN / WAN using both Cisco and Juniper
• Experience in working with Cisco Nexus 7k, 5k, 2k Switches and Virtual Port Channel configuration.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Experience working with Cisco IOS, IOS-XR, NX-OS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Experience with Cisco ASA firewall administration across global networks
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• In-depth knowledge and hands-on experience in Service Provider Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Worked extensively on Cisco Firewalls, Cisco PIX 525, 535& ASA 20/5540/5550/5585 ) Series
• Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.

TECHNICAL SKILLS

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: EIGRP, OSPF, BGPv4, MP-BGP

WAN Protocols: HDLC, PPP, MLPPP

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Layer 3 Switching: CEF, MLS, Ether Channel

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Juniper SRX

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Redundancy and management: HSRP, RPR, NSF/NSR

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat), MAC

Windows Servers 2003/2008 Windows MS-Office.:

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

PROFESSIONAL EXPERIENCE

Confidential, El Segundo, CA

Network Security Analyst

Responsibilities:

• Provides consulting and level 2 / 3 operational support for Process Control networks and Security technologies.
• Monitors security and event management infrastructure systems; correlate, review, rank, and coordinate work efforts for sites to follow up on high-priority events.
• Responsible for investigating and troubleshooting incidents related to Cyber Security or Network Security.
• Assists with the development and content of team’s central SharePoint site to support standardization and procedure development.
• Develops and shares best practices with the other support teams.
• Provide administration and support for firewalls.
• Provide administration and support for network switches and routers.
• Participates and or leads risk assessments and compliance evaluations of new technologies.
• Provide subject matter Expertise in the area of network switches, routers,firewall, and security technologies within TASC.
• Responsible for network hardware like cisco routers and switches and software upgrades and installations and any related infrastructure within TASC.
• Handle Incident tickets related to the issues in thefirewall along with the connectivity issuesand provide prompt support when any issue pops up.
• Responsible for troubleshooting network, VPN andfirewall problems, specifically Palo Alto and perform other duties as assigned.
• Responsible for thePanorama firewall management tool to administer Palo Alto firewalls.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Configuring Policies and interfaces on Palo Alto Firewall.
• Configuring rules and MaintainingPalo Alto Firewall & analysis of firewall logs.
• Responsible for migrating Cisco ASA firewall to Palo Alto firewall.
• Analyze traffic behaviorsto great extent with packet capture tools like Wireshark and findout the issues and solve it.

Sr. Network Engineer

Responsibilities:

• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.
• Experience with converting 6500 to CiscoNexus in the data Centerenvironment.
• Configuring RIP, OSPF and Static routing on JuniperM and MX series Routers.
• Experience configuring Virtual Device Context in Nexus 7010.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Developed Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying the NX-OS operation system
• Experience with configuring OTV between the data centers as a layer 2 extension.
• Experience with upgrading NX-OS to version 6.1 on the cisco Nexus 7010
• Configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
• Deploying and decommissioning of Cisco Routers, Cisco switches and their respective software upgrades
• Performing the Firewall ACL requests change for various clients by collecting source and destination details
• Working with Network Design and implementation teams on various projects across North America.
• Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Identify, design and implement flexible, responsive, and secure technology services.
• Experience innetworksecurity in a telecommunications environment.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot ) .
• Converting CatOS to Cisco IOS Config Conversion on Access, distribution & Core layer switches
• Experience with converting Cisco 6500 to Cisco Nexus in the data center environment.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the ip addresses from Subnet.

Confidential, Dallas, TX.

Sr. Network Engineer

Responsibilities:

• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Worked On UNIX, Linux, and Windows Platforms and also involved in capacity planning of Network Maintenance.
• Experience with design and implementation of Data center migration at NBC Universal
• Data center migration was involved in Access, Distribution and Core layers.
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Experience working JuniperT-Series, M-Series, MX-Series, J-Series Routers.
• Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Experience in working with cisco Nexus 5000 series switches for data center.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) &ASA 5500(5510/5540) Series.
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4.
• Convert Branch WAN links from point to point circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Worked with Cisco call manger and its day -to -day setup.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418(with PRP and RPR processors).
• Plan Design and assist in deploying enterprise wide Network Security and High Availability Solutions for ASA.

Confidential

Network Deployment Engineer

Responsibilities:

• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Estimated Project costs and created documentation for project funding approvals.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Identify, design and implement flexible, responsive, and secure technology services
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Hands-on experience on VMware.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Ability to analyze, configure and troubleshoot networks
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO

Confidential

Network Support Engineer

Responsibilities:

• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers
• To existing DMZ environments to support new and existing application platforms.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching
• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Updated the HP open view map to reflect and changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Good understanding knowledge in VMware.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, Fluke and Sniffer.