SUMMARY

• CCNP Certified Professional with 7 years of experience in routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Hands on experience in Cisco IOS/IOS - XR/NX-OS, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS,, NAT, VLAN, STP, VTP, HSRP & GLBP.
• Experience with Juniper Switches, Firewalls(SRX), Juniper Netscreen.
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel.
• Experience working with High performance data center switch like Nexus 7010,7018, 7009, 5020, 2148, 2248 devices
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
• Switching tasks include VTP, ISL/802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS).
• Experience in IP address management services.
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Good knowledge in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal), HP-Open view, RSA envision, and Cisco works to support 24 x 7 Network Operation Center
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP), Quality of Service (QOS).
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools
• A highly organized individual who adopts a systematic approach to problem solving, effectively analyzes results and implements solutions.
• Strong general management, negotiation, inter-personal, communication and team building skills.

TECHNICAL SKILLS

LAN Technologies: VLAN, VTP, Inter-Vlan routing, STP, RSTP, PVST, 802.1x

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines

Network Securities: NAT/PAT, VPN, Filtering, Load Balancing using f5 and Cisco ace, Cisco ASA Firewalls, IPSEC and SSL VPNs, IPS/IDS, DMZ Setup, CBAC, Cisco NAC, ACL, IOS Firewall features, IOS Setup and Security features.

Routing Protocols: RIP, IGRP, EIGRP, OSPF, BGP, IS-IS, HSRP, IPv6

Routed Protocols: TCP/IP, IPX/SPX

Infrastructure Services: DHCP, DNS, SMTP, POP3, FTP, TFTP

Network Managements: SNMP, SSH, Telnet, ICMP

Network Peripherals: Nexus 7K, 5K, 2K & 1K, PIX Firewall (506/515/525/535 ), Cisco switches (2900, 2924, 2950, 3550, 3560, 4000, 5500, 6500, 6509, 6513) Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206 ASA Firewall (5505/5510), Cisco ACE Load Balancers

Operating System: Cisco IOS-XR, Cisco Cat OS, Cisco IOS (11.x, 12.x), PIX IOS (6.7.x), CAT-OS UNIX, LINUX, Windows XP, NT, 2000, 2003

Monitoring: Wireshark, Solar Winds, TCP Dump.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Change Management: Remedy, Service now

Package: Visual Studio 2008, OPNET, MATLAB, CAD, Flash, Dream weaver.

Languages/ Tools: C, C++, Assembly 8085 and 8951/2, MIPS, CAD, VBScript

PROFESSIONAL EXPERIENCE

Confidential, New York City, NY

Sr. Network Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Team member of Configuration ofCisco7206 router with VPN and Configuration of Catalyst switches.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Experience in Credant Encryption and decryption processes.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Providing Technical Support and solutions forNetwork Problems.
• Assure proper encryption of data wherever possible inclusive of VPN and third party encryption/decryption.
• Implementing NAT solution's on wan applications.
• Planned, tested and evaluated various equipment’s, systems, IOSs and procedures for use within the Network/ security infrastructure.
• Knowledge of encryption technologies like SSL, 3DES, MD5, PKI.
• Upgrading IOS, troubleshootingnetworkoutages.
• Continually monitor, assess and improvenetworksecurity, test and implement new security technologies.
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Worked on Juniper Netscreen and SRX firewall.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Cisco ASA, NOKIA Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel.
• Design and implemented network infrastructure and configured the entire network Infrastructure devices including Network Printers and Register.
• Configuring Voice VLANS with respect to Cisco VOIP phones 7940, 7960.
• Worked with the Call manager installation for deploying Cisco VOIP.
• Experience with working on PCI compliance.
• Hands-on experience in the network management of circuits using TDM and Frame Relay network, performing configuration and provisioning management, fault management and performance monitoring.

Confidential, SOUTH PORTLAND, ME

Sr. Network Consultant

Responsibilities:

• Designed, installed, and maintained various WAN technologies and applications connecting remote sites to corporate headquarters.
• Configured, implemented, and troubleshoot routers and switches with various account settings, permissions, and parameters including security firewalls.
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Provider-I, Nokia appliance, Cisco ASA other security products
• Installed various network hardware including concentrators, bridges, and hubs to establish communication connections with remote locations.
• Experience in supporting a complex back-end firewall infrastructure environment covering all aspects of firewall administration such as hardware, operating system,encryptiontunnels, gateway-to-gateway VPNs
• TCP port exemptions, day-to- operations of firewall rule sets, back up and restoration of management consoles, firewall OS, and rule sets.
• Configured multiple domain name services (DNS), email services (Exchange Server), web, and file transfer protocol services (FTP) for various platforms including line leasing through DHCP servers.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates
• Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Experience with creating VIP(virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Experience with Trinzic management.
• Experience with Bit Locker Enterprise Deployment/Management experience.
• Networking protocols worked with included but not limited to TCP/IP, DNS, WINS, DHCP, VPN, Terminal Services, Routing and Remote Access, Network Design, wiring and cabling.
• Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS and IOS on CAT6500 in a complex data centre environment
• Hands on experience installing Sup720 for Cisco 6509-E series and its Gigabit Ethernet port deployment in the core network.
• Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
• Configuring RIP, OSPF and Static Routing on Juniper M and MX series Routers.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning.
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Experience on a mesh 6500 and 5500 series routes and switches to support the core trading system.
• Experience working with Nexus 7010,7018, 5020, 2148, 2248 devices.
• Designed the PGP enterprise encryption solution.
• Experience working with High performance data center switch like nexus 7000 series
• Configuring IPSEC VPN on Juniper SRX series firewalls.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Configured IPSec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800.

Confidential, BOSTON

Network Engineer

Responsibilities:

• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Experience in providing advocacy during the design and development of network security focusing on firewalls, Intrusion Detection/Prevention Systems, Digital Signatures, Certificate Authorities, PKI,encryptionschemas, centralized authentication and access control.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification.
• Working on Juniper Netscreen Series.
• Design and configuring of OSPF, BGP on Juniper Routers.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Worked with Juniper Firewalls.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO.
• Estimated Project costs and created documentation for project funding approvals.

Confidential

Network Engineer

Responsibilities:

• Hands on experience with Juniper EX-Series Ethernet Switches.
• Worked on Installation of PIM modules on Juniper J-Series routers.
• Configuring and deployment of Juniper ERX310 router.
• Worked on designing, configuring & troubleshooting of routing protocols: RIP,EIGRP,OSPF,LDP,MP-BGP,BGP v4.
• Configured IP access filter policies.
• Hands on experience and good working knowledge with Checkpoint Firewall policy provisioning.
• Worked on Firewall Administration, Rule Analysis, Rule Modification..
• Resolved various OSPF issues in an OSPF multi area environment.
• Created, configured and managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core.
• Configuring RIP, OSPF and Static routing on JuniperRouters.
• Involved in configuration and troubleshooting of Cisco catalyst 6509,7613 with supervisor cards.
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Troubleshooting traffic passing managed firewalls via logs and packet captures.
• Strong working knowledge and troubleshooting of T1, T3, OC-3 and OC-12.
• Estimated Project costs and created documentation for project funding approvals.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Experience with Juniper firewalls.
• Identify, design, configuring and managing flexible, responsive, and secure technology services.
• Gathering the information on planned resources and presented the project status to higher management.
• Implementation and deployment of series 7613 as PE and CE router and configuring and troubleshooting the Edge Routers.

Confidential

Network Engineer

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fa
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+).
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark.
• Experience with Infoblox technologies.
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.