SUMMARY

• 7+ years of network engineering experience in designing, implementing and maintaining networks that improves operational proficiency and reduce total costs of ownership.
• Engaged in design, install, configure, administration and troubleshooting complex routing, switching, VoIP, WAN/LAN, firewalls, wireless access points F5 load balancers and network security issues.
• Experience working with Cisco Routers, Nexus Switching Equipment, Catalyst Switches, PIX Firewalls and Check Point Firewalls, ASAs, Cisco Security Manager, IPsec, S2S VPN, TCP/IP, DNS, NTP, SNMP, TFTP, Windows Networking, as deployed in large complex firewalled VPN and leased line networks running, EIGRP, BGP, RIP, OSPF, H.323, and multicast.
• Experienced in implementing network security using Firewalls.
• Experienced in IP telephony and its management systems including CUCM and call manager express.
• Sound knowledge of TCP/IP protocol and OSI layers.
• Expert in configuring Routing Protocols EIGRP, BGP, OSPF, ATM, MPLS and Frame Relay.
• Expert in Configuring and Implementing VPNs and Security using IPsec.
• Implementing Voice support in an Enterprise Network, Bandwidth calculation, classification, Marking, NBAR, Congestion Management and Queuing.
• Experienced in direct support of Extranet & Internet DMZs and network security for business to business corporate connectivity.
• Have excellent ability in designing, implementation and configuring the network diagram and load Simulation using simulators like Opnet modeler, Boson, Cisco configuration maker, Gns3.
• Experienced in configuring STP, VTP and redistribution between routing protocols troubleshooting them.
• Hands on experience on project planning, implementation and its monitoring.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP, CACTI and MST.
• Provide Network Engineering, implementation and documentation of VOIP/ LAN.
• Expert in configuring NIS, NFS, DNS and DHCP, troubleshooting network problems such as TCP/IP providing support for users in solving their problems.
• Sound knowledge of Ipv4 and Ipv6.
• Designing Redundancy Gateways for Campus Network using HSRP/VRRP/GLBP.
• Strong Inter - personal skills, Team Player and fluent in communication.

TECHNICAL SKILLS

Routers: Cisco GSR, 12000, 7500, 7206, 4506, 3825, 3845, 3640, 3620, 2600, etc.

Terminal Servers: 2511, 2509, Cisco ACS server.

Switches: Cisco 6500, 5000, 3500, 2900. Nortel, Extreme Networks Switches (Black Diamonds and Summit X250e)

Firewalls: Cisco ASA 5540, PIX 525, 520, 515, 510. Sonicwall, Fortinet, Palo Alto, Checkpoint and Juniper Net Screen NS-5XP, NS-5GT, NS-500, ISA 2006, VPN Concentrator 3000 series, Fortinet FortiGate Appliances including 3200D, 1500D, 1200D running Latest 5.2 FortiOS.

LAN technologies: LAN Switching, Layer 3 Switching, IP addressing, VLAN’s, routing/switching operational concepts, network connectivity, Ether Channel, DHCP, FTP, Telnet, Ethernet 802.11, 802.3, 802.3u, 802.3ab, cabling, FDDI, Token Ring, Bridging, Tunneling, Trunking, Frame relay, VLANs, VTP, STP, MSTP, RSTP.

WAN Protocols: Frame Relay, PPP, HDLC, ATM, ISDN PRI (Voice and Data), and ISDN BRI.

Protocols: BGP, MP-BGP, GRE, OSPF, EIGRP, IGRP ICMP, ARP, RARP, IGMP, LDP, WAAS, WCCP, RSVP, RIP/RIPv2, IS-IS, Routed Protocol (TCP/IP, IPX/SPX, and AppleTalk), L2VPN, L3VPN, MVPN, IPSec VPN.

Routing Skills: Route Redistribution, Route Maps, WAAS, WAN Routing, IP address Planning/Summarization, Configuring DHCP, Configuring/Troubleshooting Multicasting IGMP, Building Scalable Networks.

IP Telephony: SIP, H.323, RTP, SDP, SBCs, MGCP, Codec and Proxy Servers.

Network Security: PIX firewall, IPSec, NAT/PAT, ACL, PKI, DES, MD5, IKE, LDAP, Remote/Site-to-site VPN, Configuring Cisco easy VPN, Implementing Cisco VPN client, implementing Firewall features, QoS, NBAR, implementing Intrusion prevention and detection system (IPS/IDS), GRE over IPsec, setup inspection rules, secured administrative access, AAA, Junos, Cisco Auto-Secure, packed filtering, etc.

Knowledge: Fundamentals of APL, RADIUS and TACACS, TCL, SHELL, PERL, C, C++, VB, Java, Hardware/Software Installations, Troubleshooting.

Operating Systems: Windows XP Professional, Windows 2000 Server, Windows 2003 Server, Windows NT Server 4.0, Cisco IOS version 11.x, 12.x.

PROFESSIONAL EXPERIENCE

Confidential, Mason, OH

Network Engineer/Administrator

Responsibilities:

• Responsible for configuring and upgrading Cisco router 3700, 3600, 7200, 3800, 2800 series.
• Involved in test and turn-ups of circuit on daily basis and worked on network design, Routing, DNS, IP Subneting, QoS, TCP/IP protocol, BGP, OSFP, RIP, and EIGRP, GRE tunnel configurations.
• Worked on cisco switches 3500, 2900, 3750 series. Configurations involved trunking, VLAN, Layer 3 Switching, etc.
• Also responsible for installing and managing cisco catalyst switches - 3850 and 3500XL series.
• Works directly with customers and vendors to identify, troubleshoot, resolve data networking related issues.
• Troubleshoot and resolve LAN/WAN connectivity issues and hardware problems as they arise.
• Experienced in managing firewall policy lifecycle process from review, approval, implementation, publishing, verification and maintenance.
• Experienced in configuring rules and Maintaining Palo Alto firewalls & Analysis of firewall logs using various tools.
• Responsible for Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
• Working knowledge and experience with VOIP (Cisco Call Manager/Unity).
• Performed Checkpoint firewall upgrade of 50 firewalls from R55 to R65.Administered Juniper 50, 200, 500, and SSG 520 firewalls.
• Implementation and support of firewalls in the environment including policy provisioning and working with users to identify connectivity related issues and troubleshoot using both Smart Utilities and CLI.
• Planning and implementation of sub netting, VLSM to conserve IP addresses.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Provided technical insight for implementing Quality-of-Service (QoS) for voice and data communications.
• Configuring VPN both B2B and remote access SSL and centralized policy administration using fortimanager, building fortigate High Availability using Fortigate Clustering Protocol (FGCP).
• Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN.
• Experienced in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server with SPLAT operating system.
• Experience in implementation, configuration & troubleshooting of 802.1q, ISL, IP Tunneling, DES/3DES, Access Control Lists (ACL), and Cisco IOS.
• Managed Checkpoint Firewalls from the command line (cpconfig and Sysconfig).
• Installing and setting up Firewall Analyzer product to facilitate consulting on an IDS deployment project, using my Cisco Nexus 7k/5k experience to place IDS devices globally.
• Responsible for creating, modifying, removing Vlan configs as per the need.
• Expert in configuring, managing and monitoring various firewalls like Cisco ASA, juniper and Palo Alto using web interface, CLI and API management interface.
• Responsible for Technical evaluation, technical troubleshooting, overall project management, problem solving and turn-up of the service with the ISP.
• Troubleshoot Gigabit Ethernet, OC-3, DS3, fractional T3, T1, MPLS and Voice Over-IP connectivity issues.
• Working knowledge and experience with Multicasting.
• Created and designed network layout and documented the network system design with detail information.
• Responsible for ASA 8.x Firewall migration and in place hardware upgrades and troubleshooting, IOS Security Configurations, IPSec VPN implementation and troubleshooting, DMZ implementation and troubleshooting.
• Provide timely and accurate progress status on all ongoing support issues, with an emphasis on problems, issues, and concerns.
• Firewall policy provisioning on Fortinet FortiGate appliances using FortiManager.
• Worked on Citrix Netscalers for accelerating performance and ensuring that applications are always available and protected.
• Used load balancing appliances like Cisco's Local Director (CLD), F5 BigIP LTM and GTM and also used Cisco secure Access Control Server (ACS) for establishing centrally manage access to network resources for a growing variety of access types, devices, and user groups.
• Experience with network redundancy, diversity and associated dynamic protocols, including HSRP, VRRP, BGP and EIGRP.
• Implementation and designing experience with Visio.
• Work and experience with Cisco Content Delivery Network.
• Used various BGP attributes and various route-filters such as prefix lists, route-maps to permit deny routes and to change various attributes.
• Experienced in implementation and troubleshooting knowledge of protocols, technologies, especially in the following: BGP4, OSPF, IPv4, Ethernet, ATM, FR and MPLS.
• Worked on Fortinet and Cisco Pix firewall.
• Manage, support and troubleshoot everyday network connectivity issues in the server data center, work through the trouble ticket system and resolve issues.

Confidential, Parsippany, NJ

Network Engineer

Responsibilities:

• Maintained Cisco LAN and MPLS WAN network/voice/wireless environments for 1150 domestic & international retail locations including 8 enterprise level supply chain distribution centers.
• Managed Cisco routers and switches - 3600, 4500 Series routers, Cisco Catalyst 6500, 3850, 3500 Series switches, etc.
• Experienced in Vlan implementation, Spanning Tree Implementation and support using rapid stp and mst avoiding loops in the network. Trunking and port channels creation.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Deployed BGP redistribution and changed AS paths for primary and backup DS3 circuits including QOS packet prioritization with service provider.
• Troubleshooting and hands on experience on security related issues on Cisco ASA/PIX, Checkpoint, IDS/IPS, Palo Alto and Juniper Net screen firewalls.
• Lead engineer for Second Level Network Operations team which was heavily involved in all network design and deployment projects.
• Involved in setup of Load Balancers like F5 BIG-IP and Nortel Alteon.
• Managed network IP access via Dynamic Host Configuration Protocol (DHCP).
• Experienced on device-based policy for application access, automatically confirm compromised hosts with Palo Alto.
• Managed Smart Center Checkpoint management server (SmartView Tracker).
• Implemented Cisco Secure Intrusion Detection Sensors, IDSM and CSPM to monitor network activities.
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation on Cisco ASA Firewalls.
• Responsible for multi-building campus network of 1300 + users including redundant data centers.
• Primary deployment engineer on Frame Relay to MPLS conversion project for entire supply chain.
• Maintained template and change management process for all 1200 + store firewalls (extended ACL’s).
• Developed and implemented testing process for all new IOS versions being considered for production use.
• Worked with Cisco ASA Firewalls as well as Fortinet FortiGate Appliances.
• Managed field engineers for all remote LAN/WAN/TELCO issues.
• Hands on experience in administration of Cisco 26XX, 28XX, 29XX, 35XX, 36XX, 37XX, 38XX, 65XX, 72XX and 76XX series equipment including from scratch configurations and deployments.
• Extensive experience with Cisco Wireless platforms including 44XX series controllers - thin access points plus standalone thick access points.
• Worked with NETSCOUT Traffic Analysis enterprise sniffer platform (Appliance based version 4.3).
• Involved with multiple distribution center network refreshes and one distribution center complete build-out and turn-up.
• Maintenance, troubleshooting and assignments of all VLAN’s and VLAN trunking with VTP and 802.1q.
• Primary Administrator of Solarwinds Network Performance Monitor (NPM) Version 9.x and Network Configuration Manager (NCM) Version 8.x.
• Testing and troubleshooting of layer 1 circuit and layer 2 devices including WAN connection establishment and protocol debugging with multiple service providers for fractional DS1’s, DS3’s, MOE and OC3 circuits.
• Experienced in virtualized environment, architecture, SAN storages and software including VMware workstation and Vsphere.
• Provided Tier II escalation support for all network related issues and projects.
• Ensured productivity in a highly SLA driven environment by assigning service level targets for each ticket priority for an international supply chain.
• Maintained Cisco Communications Manager Versions 4.2.X and 6.X.X.

Confidential, Houston, TX

Network Engineer

Responsibilities:

• Designed and implemented various network technologies in lab environment, involving LAN/WAN, VPN, VLAN, Frame Relay, EIGRP, OSPF, BGP, MPLS, VoIP and CUCM, SIP Server.
• Provided timely and accurate progress status on all ongoing support issues, with an emphasis on problems, issues, and concerns.
• Experienced in troubleshooting complex Checkpoint issues, Site-to-Site VPN related.
• Designed, developed and implemented Telephony system with skill sets of the following: Cisco Unified Communication Manager (CUCM) 6.0, H323, MGCP, SIP, SCCP and Cisco equipment.
• Experienced in configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms.
• Experienced working on LAN topologies - Ethernet, Fast Ethernet, Gigabit Ethernet, Spanning Tree Protocol (STP), VLANs, etc.
• Checkpoint firewall upgrade from R55 to R65 for remote sites.
• Migration with both Checkpoint and Cisco ASA VPN experience.
• Experienced in implementing and troubleshooting the Virtual firewalls solutions in ASA.
• Performed network security, administration, analysis, and problem resolution for networks including NT 4.0, Windows 2000, UNIX (Solaris & BSD), CISCO, TCP/IP, and Checkpoint firewalls.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Setup physical and logical topologies for different lab scenarios, configured Cisco equipment’s according to the prerequisites of the labs, installed various IOS versions on the equipment.
• Provided hands on support and network assessments to ensure operational plans aligned with strategic directions.
• Load Balancing experience with F5 LTM and GTM products.
• Hands on experience in configuring QoS on Cisco Routers/Switches.
• Maintained Cisco equipment’s, and PC workstations in Computer Networks Laboratory, recover malfunctions of equipment’s due to miss-configuration and upgrade IOS versions.
• Experienced with network traffic analyzer and monitored network using Sniffers, Ethereal, Wire shark, TCP Dump, troubleshooting, analysis and protocol analyzer.
• Support after hours cut-over/migration issues, opening trouble ticket with NOC for special support.

Confidential

Network Analyst

Responsibilities:

• Troubleshoot and resolve issues on WAN connections.
• Monitor telecommunications performance and make configuration changes to hubs, routers, switches, etc., as necessary to ensure that maximum network performance is maintained
• Extensive troubleshooting on the network in case of any failure.
• LAN and WAN support of point-to-point & point-to-multipoint wired/wireless provider network.
• Designed WAN structure to prevent single point of failure in case of link failure.
• Administered VoIP infrastructure for the company.
• Provided Technical support in terms of upgrading, improving and expanding the network.
• Configuration and troubleshooting of EIGRP, OSPF, BGP.
• Setting up Windows server 2000/2003 as domain controller & adding client machines to domain.
• Configuration of Standard and Extended ACLs for Security.
• Monitor the operability and reliability of the network.
• Extensive usage and experience with Remedy trouble ticket and change management system.
• Recommend proper hardware and work on the budget proposal.
• Responsible for all aspects of TCP/IP functionality.
• Provided hands on support and network assessments to ensure operational plans aligned with strategic directions.