PROFESSIONAL SUMMARY:

• CCNA, CCNP CERTIFIED professional with 8+ years of experience in routing, switching, firewall technologies, systems design, administration and troubleshooting.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting.
• Experience of routing protocols like EIGRP, OSPF, RIP, BGP and IP addressing.
• Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.
• Strong experience in Network security using ASA Firewall, Checkpoint, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN and implementing security rules.
• Knowledge and experience on F5 load balancers and Cisco load balancers (CSS and ACE) strategies/techniques
• Experience in working with Cisco Catalyst series 2900, 3560, 3750, 4500, 4900, 6500.
• Hands on experience in configuring Cisco Nexus 2232, 2248, 5548, 6001 and 7018(Sup 2E) and worked on nexus protocols VPC, VRF, VDC and FEX Links.
• IOS/JUNOS upgrade for Cisco & Juniper routers cum switches
• Implementing, maintaining and troubleshooting switching tasks such as VLANs, VTP, VLAN Trunking using ISL & 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAGP, Inter - Vlan routing, CEF and DCEF
• Good knowledge in WAN Technologies like ACL, NAT/ PAT, Ether Channel, IPSec and VPNs.
• Enhanced level of knowledge with, PPP, PAP, CHAP, ATM, T1 /T3 Frame-Relay, MPLS
• Worked with Cisco, Palo Alto, ASA, Juniper SRX, Checkpoint, Fortinet, Zscaler and other vendors to provide a stable, high-speed, securenetwork
• Experience in working with Cisco 2800, 3600, 3800, 3900, 4300, 4400, 4500, 7200, 7600 series Routers
• Experience with Enterprise Data Center: Cisco ACI, Virtualization, SDN. Software Defined Network (SDN) experience (Cisco ACI).
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP)
• Extensive experience with Cisco IOS, IOS-XR, IOS-XE, Nex-OS Windows client/server operating systems, Linux, Networking technologies, Firewalls.
• Experience in Cisco Unified Communication Manager (CUCM), VCS, Call Manager Express (CME), Cisco Unity Connection (CUC), Unified Contact Center Express (UCCX), Unified Contact Center Enterprise (UCCE), IM and Presence, SRST andVoiceGateways.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Experience working with Nexus 7K, 5K and 2K.
• Experience with virtualized ISE deployment across two network enclaves.
• Hand-on experience in developing scripts using Perl scripting language.
• Configured syslog-ng forSplunkimplementation, Familiar with monitoring tools such as Nagios,Splunk, Solar winds.
• Unix/Linux Shell scripting skills as well as Python and analyzing logs using Perl.
• Worked on large scale implementation and maintenance for SSH (Secure Shell), PKI/SSH, VPN, IPSEC Satan, ISS, TCP/IP Monitoring.
• Efficient at use of Microsoft VISIO/Office as technical documentation for diagram and presentation tools.
• Demonstrated success record in Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
• Highly enthusiastic, creative team player, project implementation, analytical/critical thinking and debugging skills with excellent verbal and written communication skills.

TECHNICAL SKILLS:

Network Protocols: MPLS, VRF, VRRP, Policy Based Routing, Route RedistributionStatic Routing, WCCP, VDC, LDP, MAN, ISDN, PPP, VoIP, SIP, VTP, STP, RSTP, VLANs, 802.1q/ISL, CDP, LACP, OSPF, BGPv4, EIGRP, HSRP, RIP, VPC

Cisco Router platforms: 1841, 2611, 2621, 2800, 3600, 3845, 3900,4300, 4400, 4500, ASR 1000X, 7206VXR

Cisco Switch Platforms: 2900XL, 2950, 2960, 3500, 3550, 3560, 3760, 3850, 4500, 6500, 6880, Nexus 7k, 5k, 4k, 2k, 1k

Firewalls: Juniper (Netscreen 5200,5400), Palo Alto (3020, 5060), ASA (5510,5520,5540,5550,5580)FWSM, PIX (515,525,535), Checkpoint NGX R-55, R-60, R-65

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, Port Channel, TCP/IPVLSM, Cisco/Catalyst L2/L3 Switches, Wireless (802.11 a/b/g/n), Checkpoint, Juniper/Net screen/Cisco Firewalls

WAN Equipment: Cisco/Juniper Routers, Silver Peak NX-7xxx WAN AcceleratorsOC-192, OC-48, FRAME RELAY, PPP, T1/E1, HDLC, MPLS, DS3, Leased Lines, DSL Modems, ISDN(PRI/BRI)

Network Management Tools: Cisco Works, Silver peak GMS, RSA Security & operations Console, VMware vSphere Client, SNMP, NTP, TFTP, FTP, SSH, IXIA, Spirent

Security Access Control/Policy: Cisco Secure ACS for Windows, RSA, AAA, TACACS+, RadiusIPsec, GRE, NAT/PAT, ACLs, Juniper SA SSLVPN w/DUO, SSLVPN

Operating Systems: Windows 2003, Windows 2008, Linux, Unix

Network Operating Systems: Cisco IOS-XE, IOS-XR, NX-OS, CATOS, Aruba, JUNOS

Documentation Tools: Microsoft Office, Visio, Project, SharePoint

EXPERIENCE:

Confidential - New Brunswick, NJ

Sr. Network Engineer

Key Responsibilities:

• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance, troubleshooting etc.)
• Configured network using routing protocols such as BGP, EIGRP, OSPF and troubleshooting L2/L3 issues. Configuring Switches with: VLANs, Trunking, VTP, TCP/IP, SNMP, FTP, TFTP.
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering). Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Worked on Juniper devices like M, MX, T routers on advanced technologies like, MPLS VPNs, TE and other service provider technologies.
• Managed AD Domain Controller, DNS and DHCP Servers and configurations
• Design, configuration, and maintenance of Cisco and Aruba wireless hardware.
• Expertise in configuring and troubleshooting of ASA, Palo Alto, Juniper NetScreen, Fortinet & SRX Firewalls and their implementation. Experience in site-to-site and remote access VPN solutions.
• Involved in configuring IP, IPsec, mGRE/GRE tunnels, Multicast, NAT overload, VRF, VDC, Policy Based Routing (PBR), Dynamic Multipoint Virtual Private Network(DMVPN) and MPLS.
• Maintaining SSL on citrix netscalar load balancer and managing the virtual servers
• Configuring VPN, GRE tunneling, Checkpoint, Frame Relay, ATM, MPLS, IDS/IPS for threat management.
• Configuration, Troubleshooting and Maintenance of ASA Firewalls 5505, 5510, 5520, 5540, 5585.
• Designing, configuring and troubleshooting QoS, SIP, H.323, RTP, SCCP, Session Border Controllers, Voice Gateways, Voice circuits IP/TDM, Cisco Telepresence Infrastructure, QoS, NAT, PAT, and multicast.
• Experienced provisioning SD-WAN service as automated failover solution for MPLS VPN by Cisco Meraki MX 80 Firewall
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700, 3850 series, 6500 series) Cisco Routers (4300, 4400, 4500,4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800), Juniper Routers and Firewalls, Nexus 7k, 5k & 2k, f5 BIG IP, ASA, Palo Alto Firewalls, Bluecoat Proxy and IWAN, ITIL Framework, Silver Peak, Solar Winds, Infoblox, Riverbed Steelhead appliances. Working on Cisco IOS, NX-OS check point firewalls.
• Designed, built, and deployed F5 Big IP load balancers (8900’s, Viprions, Blades), F5 Big IP LTM Local Traffic Manager, F5 DNS Domain Name Services
• Automate task for system performance, networking monitoring, and configuration management using Perl, Python, and Shell Scripting.

Confidential - New York

Sr. Network Engineer

Key Responsibilities:

• Installed and configured LAN/WAN Networks, Hardware, Software, and Telecommunication services- Cisco Routers and Switches. Implemented IPv4 and IPv6 on PTX platforms.
• Worked on Cisco wireless LAN technologies and Switching.
• Routing protocol configuration such as OSPF, IS-IS, EIGRP and BGP, Router redundancy configuration (HSRP, VRRP and GLBP) and Wireless LAN (Access point, LWAPP).
• Experience with network management protocols/tools (TACACS, NTP, SNMP, SYSLOG, etc.)
• Working experience on complex Checkpoint, Cisco ASA & Palo Alto Firewalls Environment.
• Experienced on working with Palo Alto Next Generation firewall with security, networking, and management features such as URL filtering, Anti-virus, IPsec VPN, SSL VPN, IPS, Log Management.
• Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240 and Juniper J series j230, M 320 and MX960 routers.
• Resolved Customers request to create firewall policies for Cisco ASA, juniper SRX, Fortinet and NX-OS.
• Responsible for supporting the Citrix NetScaler F5 platform, configuring, implementing, and troubleshooting Citrix NetScaler VIP configuration with health check, policy configurations Access Gateway, and content switching configuration solutions.
• Infrastructure configuration and troubleshooting forWindows Azure environments.
• Monitoring and troubleshooting traffic on Palo Alto firewall through Panoroma.Creating and modifying rules and objects on Palo Alto firewall through panoroma.
• Riverbed Steelhead 550H WAN optimization installation and configuration
• Designed perimeter security policy, Implemented Firewall ACL's, allowed access to specified services, Configured Client VPN technologies including Cisco's VPN client via IPSEC
• Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
• Install and maintain the wireless infrastructure (Aruba, HP controllers) Configuration of SSID, VLAN binding, security management
• Configured network access servers and routers for AAA security (RADIUS/ TACACS+)
• Built alert & monitoring scripts for applications & servers using Python & Shell Script

Confidential - lake success, NY

Network Security Engineer

Key Responsibilities:

• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration
• Worked on configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication. Maintain LAN communication between Servers/Workstations.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls, installing and configuring new juniper EX, MX, SRX series firewalls to meet day to day work.
• Worked on load balancers like F5 10050s, 10250v to troubleshoot and monitor DNS issues and traffic related to DNS and avoid DDoS
• Worked with Aruba Access point as a Public Wi-Fi and successfully implemented Wireless Access Point (WAP).
• Installed and configured SSH (Secure Shell) encryption to access securely on Ubuntu and Red hat Linux.
• Deployment of Palo Alto firewall into the network. Configured and wrote Access-list policies on Protocol based services.
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place
• Installing and configuring new cisco equipment including Cisco 1900, 2900, 3900 series routers, Cisco catalyst switches 6807, 7010, Nexus 5500 and Nexus 2k as per the requirement of the company.
• Problem Solving and maintain documentation throughout the project life cycle.

Confidential - Bowie, Maryland

Network Engineer

Key Responsibilities:

• Installing and configuring juniper M series router along with juniper switches QFX series
• Working Knowledge of frame relay, MPLS services, IPSec VPN's, OSPF, BGP and EIGRP routing protocols, NATing, sub-netting, also including DNS, WINS, LDAP, DHCP, TCP/IP, UDP, SNMP, OSPF, IPSEC, PPP, VLAN, VTP, STP (Spanning tree Protocol), RSTP & Multicasting protocols.
• Installed, configured and maintained several Cisco DMVPN routers servicing smaller sites, several Edge router running BGP and MPLS to Internet service providers.
• Experience on F5 load balancer to maintain balance in the network system with application specific usage.
• Firewall policy administration and support on Palo Alto as well as Cisco ASA Firewalls.
• Experience with Firewall administration, Rule analysis, Rule modification.
• Troubleshoot traffic passing managed via logs and packet captures
• Deployed 7613 as PE and CE router and configured and troubleshoot the edge routers
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems

Confidential - Minneapolis, MN

Network Engineer

Key Responsibilities:

• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, DNS, DNAT, NTP, IPAM, DHCP and SNMP, as well as assisting with customer LAN /WAN
• Hands-on experience with WAN (ATM/Frame Relay), routers, switches, TCP/IP, routing Protocols (BGP/OSPF), and IP addressing
• Configured firewall logging, DMZs, related security policies and monitoring.
• Creating private VLANs & preventing VLAN hopping attacks and mitigating spoofing with snooping & IP source guard
• Provided port binding, port security and router redundancy through HSRP
• Hands on experience working with security issue like applying ACL’s, configuring NAT and VPN.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems

Confidential

Jr. Network Engineer

Key Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the companynetwork. Duties included monitoringnetworkperformance using variousnetworktools to ensure the availability, integrity and confidentiality of application and equipment.
• Experience in Cisco switches and routers, Physical cabling, IP addressing, WAN configurations.
• Involved in configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4.
• Switching related tasks included implementing VLANS, VTP, STP & Trunking protocols (802.1q and ISL) and configuring on the Fast Ethernet channel between switches.
• Performed troubleshooting of connectivity problems using PING, and Trace route.
• Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment. IOS upgrade 1900, 2900, 3500 series Cisco Catalyst switches and 2500, 2600, 3600 series Cisco routers using TFTP.