SUMMARY

• Over Seven years of experience as network engineer in testing, troubleshooting, implementing, optimizing and maintaining enterprise data networks
• Experience in configuration of routing protocols such as RIP, OSPF, EIGRP and BGP over Cisco routers
• Experience in configuring BGP as well as eBGP/iBGP .
• Experience in configuration and troubleshooting of layer 2 protocols such as STP, RST, MSTP, and VTP
• Experience on switching protocols Virtual Trunking Protocol, Ether Channel.
• Experience establishing IPsec - VPN tunnels with ASA firewall
• Extensive work experience with Cisco Routers, Cisco Switches, Cisco Firewalls and Load Balancers
• Experience in upgrading IOS in routers, switches and installation of SDM
• Configuration and Implementation of F5 BIG-IP Load Balancer
• Deployed F5 LTM load balancer and experience in virtual server configuration, high availability, load balancing, irules, iApps, and SSL profiles
• Experience in different VPN platforms, IPsec, SSL & Web VPN
• Worked on network monitoring tools like Solarwinds and traffic analyzing tool Wireshark
• Experience in implementing redundancy with HSRP, GLBP and Ether Channel technology
• Experience in troubleshooting of DNS and DHCP IP conflict problems.
• Working knowledge of IDS and IPS, policy routing, private VLANs, ACLs and NAT
• Knowledge and experience with IP addressing, sub netting, VLSM, ARP and ping concepts
• Maintaining and updating inventory of all network hardware, managing and monitoring of devices with SNMP
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Experience with AAA server usingRADIUS and TACACS+.
• Experience with wireless technology 802.11x and configuration of wireless access points.
• Experience with data network design, plus extensive experience network design and architecture.
• Experience on Data center implementation and Data center migration.
• Experience of MPLS (Multiple Label switching ) of data-carrying technique for high-performance telecommunicationsnetworks
• Experience in Cisco ASA Firewalls, Palo Alto Networks Firewalls
• Experience of Cisco ISE (identity services engine) platform.
• Experience to setting websense safeguarding for users, data and network against insider threats and outside attackers in the cloud and in the office.
• Working knowledge on two-way authentication securities like RSA securities.
• Knowledge of Juniper environment including SRX/Junos Space.
• Knowledge on Juniper SRX240, SRX220, and SRX550 series firewalls
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.)
• Advanced knowledge in Linux and Unix Operating Systems, web security devices or proxy - Cisco WSA/CWS and Bluecoat, understanding of globalsecuritypolicies
• Experience of Blue Coat’s proxy architecture for the high level of web security
• Experience in configuration of Cisco switches 3850, 3650, 4500, 2900 and Nexus switches 7000, 5000, 2000
• Experience in configuration of Cisco routers 3900, 3800, 2900, 2800
• Experience in Configuration of Nexus 7000, Nexus 5000 and Nexus 2000 switches.
• Experience in configuration of Juniper security appliances SRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M
• Efficient in preparing technical documentation using Microsoft office and Visio
• Excellent problem solving, troubleshooting skills, effective analyzing skills and capable of quickly learning, and delivering solutions as an individual and as part of team
• Self-motivated, hardworking and can handle multiple demands and competing priorities

TECHNICAL SKILLS

Routers: Cisco 26XX, 28XX, 37XX, 38XX, 39XX &72XX series with IOS, IOS-XE & IOS XR.

Switches: Cisco Catalyst 3550, 3750, 45XX, 65XX series, Nexus 7000, 5000, 2000 & NX-OS, Cat-OS, IOS.

Load Balancers: Cisco CSS, ACE Module, GSS, F5 Networks (Big-IP), A10.

IPS: Cisco IPS 4240, Cisco IDS 4250, Snort.

Routing Competencies: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing.

Switching Competencies: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging, Data Center Switching, VPC, VDC, OTV, RBAC.

URL Filtration: Websense.

Firewall Tools: Checkpoint (NGX, NG AI), Cisco ASA, PIX, FWSM, Palo Alto Networks (PA 2000 series).

Services: IOS and Features, Jun OS and Features, HSRP, GLBP, VRRP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management.

AAA Architecture: TACACS+, RADIUS, Cisco ACS, LDAP.

Monitoring Tools: Wire shark, TCP dump, Fiddler, Microsoft Network Monitor, Solar Winds, and Cisco Works, IT360.

Microsoft Softwares: Microsoft Office, Visio.

Operating Systems: Windows 9X, XP, Vista, Windows 2000, 2003(Active Directory), Linux (Red hat 9.0, Ubuntu), UNIX.

PROFESSIONAL EXPERIENCE

Confidential, Stamford, CT

Sr. Network/ Data Center Engineer

Responsibilities:

• Involved in configuring Cisco routers and switches with enterprise level Cisco Routers
• Established IPsec -VPN tunnels with ASA firewall between some branch offices and the headquarters
• Worked on F5 Local Traffic Managers (LTM) 5000, 7000 series
• Design, build, and implement various solutions on Check Point 4000 series Firewalls and F5 Load balancers
• Implementing F5 BIG-IP application delivery controllers for load balancing using Virtual servers, irules and iApps
• Worked on MPLS between Data center and offices.
• Worked to implement new data center as well as migrated old Switches Nexus 5000 to new Switch Nexus 7000.
• Worked on Blue Coat’s proxy architecture for the high level of web security.
• Configuring and troubleshooting of routing protocols such as OSPF and EIGRP for effective communication on Cisco 3900, 3800 series routers.
• Configuration of VLANs on cisco switches 3850, 3650 and troubleshooting IP addressing issues, updating IOS images and other hardware installations
• Worked on Cisco ASA 5500 series firewalls, Nexus 7000, 5000 series switches
• Experience in troubleshooting Nexus switches
• Configured Juniper SRX series firewalls for policy management, and Juniper SSL VPNs
• Administer and support Juniper Firewalls Using NSM (Netscreen and ISG firewalls).
• Dealt with NAT configuration and troubleshooting issues related to access lists and DNS/DHCP issues within the LAN network
• Troubleshooting VLAN, Spanning Tree Protocol, Switch trunks and IP conflict issues
• Coordinated with senior engineers in BGP routing policies and designs
• Installing and configuring VPNs for the clients (site to site)
• Implemented traffic filters using Standard and Extended Access-lists, Distribute-Lists, and Route-Maps
• Monitoring Network infrastructure using SNMP tools
• Implemented firewall policy changes after the appropriate review and approval process has been completed
• Worked with customers in troubleshooting issues related to connectivity, STP, VLANs, Inter-VLAN routing, VTP, Ether channels, Layer 2/3 switching and log messages
• Design, install and support Cisco wireless LWAPP environment, supporting both 802.11ac (5GHz) and 802.11b/g (2.4GHz) environments
• Maintaining mission-critical networks and ensuring the IT operations of the customers to be uninterrupted
• Implement Cisco Secure Access Control Server (ACS) for TACACS+/ RADIUS

Confidential, Waltham, MA

Sr. Network / Data Center Engineer

Responsibilities:

• Tested and implemented various BGP attributes such as Local Preference, MED, AS-PATH, Community and extended community
• Redesigned BGP Multi-homed site for redundancy.
• Worked to implement new data center as well as migrated old Switches Nexus 2000 to new Switch Nexus 5000
• Setting up ASA firewall between some branch offices.
• Implementation and verification of GLBP protocol for default Gateway Redundancy.
• Establishing VPN Tunnels using IPsec encryption standards, configuring and implementing site-to-site VPN and remote VPNs
• Responsible for implementing and monitoring traffic patterns using F5 BIG IP LTM load balancers
• Configuration of extranets and modifying Route-Maps for onboarding new clients on to the company’s network.
• Responsible for configuration of Checkpoint firewalls
• Configured Access List (Standard, Extended and Named) to allow users all over the company to access different applications and blocking others
• Configured and set up of Juniper SRX firewalls for policy mgmt. and Juniper SSL VPN's
• Configuring and troubleshooting VLANS and Inter VLAN routing for improving LAN performance. Subnetting networks and troubleshooting DHCP and DNS issues
• Configured network access servers for AAA Security
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention.
• Implemented Port Security - MAC limiting, DHCP Snoopingand IP source guard on switches to make the network secure against vulnerabilities.
• Configuration of Juniper security appliances SRX 240 and SRX 220
• Played a lead role to plan out the strategy and roadmap for IPv6 conversation, planning, design and implementation
• Configuration of Nexus 7000 and Nexus 5000 switches
• Configuring BGP eBGP/iBGP on routers .
• Configured and implemented centralized Syslog server on both production and corporate network and enable SNMP traps for monitoring traffic and check the health of servers and network devices
• Performed an analysis of source host and destination path by tracing it through the network router and switches as well as the firewalls it passes.
• Monitored and supported all aspects of network connectivity using SolarWinds.

Confidential, Basking Ridge, NJ

Sr. Network Engineer

Responsibilities:

• Responsible for implementing, engineering, and support of existing network technologies / services and integration of new network technologies / services.
• Troubleshooting of complex LAN /WAN infrastructure that include routing protocols EIGRP, and OSPF.
• Configured and managed Cisco access layer routers and switches.
• Participated in 24 x 7 incident & problem support.
• Migration of existing IPsec VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
• Configuring switch for 802.1x port based authentication.
• Implemented QOS using queuing, policing, shaping, compression, and congestion avoidance techniques.
• Maintenance and troubleshooting of connectivity problems using Ping, Trace route.
• Planning and Implementation of Sub netting, VLSM to conserve IP addresses.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Troubleshooting issues and outages on trunks and router interfaces extensively.
• Technical assistance for LAN/WAN management and complex customer issues.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance.
• Creating & applying different types of access-lists for these effects to take place

Confidential, New York, NY

Network Administrator

Responsibilities:

• Deployed Cisco ACS using TACACS+ for Authentication, Authorization and Accounting of access to network devices
• Resolve customer WAN/LAN/wireless/load balancing networking issues
• Installed and configured Solarwinds server.
• Configuring IPsec VPN Site-site, GRE Tunneling and SDM along with troubleshooting.
• Firewall and router configuration changes as per the business requirement.
• Provide technical assistance and support for incoming queries and issues related to Networks, computers systems, software’s, and equipment’s hardware.
• Evaluating network performance, including availability, utilization, throughput, and latency
• Optimized OSPF and EIGRP network reducing network multicast traffic
• Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds
• Performed configuration and management of network and circuits. Documented and updated network physical and logical layout
• Extensive day to day work with Spanning tree Protocol and multiple VLANs
• Responsible for configuring various models of Cisco routers

Confidential

Network Administrator

Responsibilities:

• Design, manage and troubleshoot OSPF, EIGRP and BGP
• Installation and Configuration of Cisco Switches and Nortel Switches
• Converted LAN from one flat scope of 600 nodes to a multi-VLAN network, segregating traffic into different classifications using access control lists to limit the traffic access to other VLANs
• Implemented VLANs with Spanning tree
• Cisco IOS Architecture for Cisco routers and switches
• Project managing complex network implementations, including Cisco PIX firewall and Cisco Intrusion Detection System installation, Cisco VPN and Layer 3 implementations.
• Installation and Configuration of Cisco firewalls and VPN Concentrators.
• Monitor, improve, and support all aspects of network connectivity using Solarwinds.
• Support and Administration of Windows Systems.
• Maintenance of general networking objectives of system/network operations.
• Coordinating with vendors in ordering new products.

Confidential

Jr. Network Engineer

Responsibilities:

• Setup and configuration for new workstations using ghost imaging software
• Configuring various printers using TCP/IP
• Monitored network performance and conferred network users how to solve existing system problems
• Solved most of the computers problems (hardware and software)
• Dealt with third-party vendors for parts and service orders on all equipment including fax machines, printers, PC's, and phone lines
• Worked on Bugzilla ticketing system for monitoring and solving various network issues
• Perform maintenance tasks on systems and printers such as changing cartridges and check for computer problems
• Troubleshoot network, Internet and email problems for users
• Troubleshoot hardware problems with network cards, video cards, sound cards, motherboards, modems etc.,
• Provided comprehensive desktop and network support, resolving technical issues for over 50 end-users
• Assisted with installation, maintenance and troubleshooting of network support equipment