SUMMARY

• 7+ years of experience as a Network/Systems Administrator/ Security specializing in Cisco devices, Network security, Firewalls and VPNs, Cisco Routers, LAN/WAN connectivity, TCP/IP Windows XP, Windows Vista, NT/ System administration, communications.
• Experienced in Network Security, Juniper Firewalls, SSL VPN, Checkpoint, RSA, Cisco Nexus, Cisco ACE, Cisco Wireless. Enterprise experience and knowledge of CheckPoint, & Cisco ASA.
• Experience in design, installation, configuration, administration and troubleshooting of LAN/WAN infrastructure and security using Cisco routers/Switches/ Cisco PIX, Checkpoint Firewall.
• Cisco ASA Firewalls, Palo Alto Networks Firewalls.
• Technically proficient with multiple firewall solutions, network security, and information security practices.
• Experience in design, installation, configuration, administration and troubleshooting of LAN/WAN infrastructure, wireless, voice and security using Cisco, Juniper, Nortel, Arista, Avocent, Riverbed, and CheckPoint Network equipment.
• Experience on LAN, WAN, Routing and Switching, server and storage systems, capacity planning, administration, monitoring, troubleshooting, cluster building, back - up and restore planning, operation and maintenance and project management.
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Profound knowledge on various WAN technologies like E1/T1/E3/T3, HDLC, Frame-Relay and PPP.
• Strong Knowledge in WAN technologies including T1,T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
• Experience in Configuring and implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, VTP, BPDU, STP, HSRP & GLBP.
• Designing and implementing F5 BIG-IP load balancer.
• Strong knowledge and experience in implementing, configuring VPN technologies like IPSEC, MPLS. Experience in monitoring and analysing the load balancing of network traffic using Wireshark and Solarwinds.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Hands on experience with Checkpoint Firewalls. Hands on experience with configuring firewalls and managing issues.
• Extensive knowledge of network protocols (EIGRP, OSPF, BGP, RIP, VLAN, TCP/IP, etc.)
• Configure, administer, and document firewall infrastructure, working with Checkpoint.
• Experience securing a large inter network establishing and enforcing policies and monitoring access.
• Implementation and administration of check point firewalls & network management / - implementation and maintenance of BackupExec 8.0 on departmental server.
• Designed and configuring the wan infrastructure consisting of dedicated internet connectivity, cisco 2600 series router, cisco 2900xl, cisco 3500, switches, pix firewalls, VPN 3000 concentrator / installed 512 kb internet connectivity.
• Thoroughly familiar with Checkpoint models, capabilities, and architectures.
• Engineering experience designing and deploying large scale LAN/WAN networks.

TECHNICAL SKILLS

Protocols: OSI,TCP/IP,DHCP, UDP, RIP v1, RIP v2, IGRP, EIGRP, TACACS+, RADIUS, OSPF, BGP, SSH, TFTP, FTP, SMTP, NTP, LDAP, Active Directory, Kerberos, L2F, L2TP, PPP, Frame Relay, ATM, Sonnet, Fast/Gig Ethernet, HSRP, Token Ring, ISDN, AAA, DES, 3DES, AES, and MD5, VPN (IPsec and SSL),VRRP, HSRP, DNS (BIND, DJBDNS, Infoblox), CARP, SNMP.

Operating Systems: Windows NT/200/2003, UNIX, SPLAT (Secure Platform), Linux, RedHat, Debian, Cisco IOS.

Firewalls: Checkpoint NGX (R65-R75-R77), Cisco PIX 515E, Cisco PIX 535 Firewall, Cisco ASA 5510, Cisco ASA 5520, Cisco ASA 5540, Cisco ASA 5550, Cisco ASA, Cisco FWSM, Check Point NGX R52, R54, R61, R62, R65, R 75,Nokia IP690, Nokia IP530, Checkpoint provider 1, Checkpoint Firewall 1, SPLAT.

Routers: Cisco 2811, Cisco 6509-E (Multi-layer Switch), Cisco7200, Cisco3800, Cisco 3640, and Cisco 3745.

Switches: Cisco Multi-layer Switch 6500, Catalyst 4500, Catalyst3750, Catalyst2900 and Catalyst 3500XL.

Network monitoring tools: HP OpenView, Cisco Works, Netscout, Ethereal, tcpdump, netcat, Sniffer, Snort & Snortsnarf, MRTG.

Hardware Platform: Cisco Routers, Ethernet Switches, F5 LTM, GTM

LAN/WAN technologies: T1, DS3, OC3, SONNET, MPLS, DSU/CSU

Network Equipment: CISCO 2950,3500,4500,6500 series Switches, CISCO 800, 1600, 2500, 2600,3700,3800,7200 series Routers, Cisco wireless access points.

PROFESSIONAL EXPERIENCE

Confidential, Jersey City, NJ

Network Engineer/Administrator

Responsibilities:

• Designed and Configuring the WAN infrastructure consisting of dedicated Internet connectivity 1.54 MB, Cisco 2600 series router, Cisco 2900xl, Cisco 3500, Switches, PIX firewalls, VPN 3000 Concentrator
• Configured Cisco Routers 2600 series using RIP, OSPF, and EIGRP.
• Configured Cisco Switches 2900.
• Installed and maintained web servers.
• Implementation and administration of check point firewalls & network management.
• Facilitated backup of servers, routers, switches, and firewall configurations in core network
• Developed and maintained VPN tunnels with Cisco PIX and ASA firewalls
• Build IT security infrastructure including Checkpoint, Juniper and Palo Alto firewalls.
• Installed and configured DHCP, DNS Server.
• Identifying technical problems and debugged hardware and software related to LANs/ WANs.
• Switching related tasks included implementing VLANS, VTP and configuring ISL trunk on Fast - Ethernet channel between switches.
• Troubleshot Cisco hardware: Inspected devices, Read device LEDs, loose connections, interior IOS upgrade, switch port configuration, port monitoring, and watch over Flooding Control/Network port.
• Troubleshooting experience on Cisco ASR 9K devices and also have an experience to upgrade IOS-XR software.
• Experienced on Cisco NX-OS and successfully completed IOS upgrade project for Cisco Nexus 5K and 7K.
• Participated in capacity planning to accommodate future network expansion and support customer traffic more efficiently.
• Working experience on Cisco 6509 and Cisco 7600 series routers.
• Configured switches and routers according to market needs to increase performance of networks.
• Experienced on troubleshooting of different switching technology includes VLAN, VTP, STP, RSTP and Ether channel.
• Performed real time monitoring using Cacti, NetFlow, Splunk, Netscout, and Extra-hop, Weather maps, HP Network Node manager and TORAN tools.
• Interacted with ISP for turning up new T1 circuits for new stores.
• Participated in project to move Confidential stores from T1 circuit to broadband line
• Configured and maintained Cisco switches & Routers for web traffic management and load balancing.
• Highly experienced on Open Shortage Path First (OSPF), Border Gateway Protocol (BGP) and Enhanced Interior Gateway Routing Protocol (EIGRP)
• Prepared of support documents like creating the process maps/writing the case studies & documented process.
• Network Security implementation with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol SNMP.
• Maintained devices in compliance standards and schedule monthly audit to accomplish tasks. In addition, created weekly network health report to identify current status of network and notify network issues.
• Basic knowledge and experience on Cisco ASA 5540 firewall.
• Directed the migration of core infrastructure from Windows 2000 to Windows 2003 Server, which include migrations to Exchange 2003.

Confidential, MN

Network Security/Firewall Engineer

Responsibilities:

• Configuration and Maintenance of ASA, ASA 5550, ASA 5520, ASA 5510, ASA 5505, PIX 535, PIX 515E.
• Implemented Failover on ASA and PIX firewalls.
• Expertise in VPN configuration, routing, NAT, access-list, security contexts in ASA firewalls.
• Site to site VPN implementation on ASA Firewalls
• Firewall log monitoring using Cisco MARS.
• Administration of Cisco Secure Access Control Server 3.3. (Cisco secure ACS).
• Converted CatOS to IOS of enterprise IDF Cisco switches and MDF‘s upgrades of IOS image to a new 12.2 version.
• Build ACL rules on PIX firewalls for the extranet connectivity and implementation of the rules on the corporate firewalls and monitored logs for the issues.
• Interfaced with the team to coordinate the migration of core switching gear from the Cisco 65xx chassis platform to Cisco Nexus 7000, specifically with regard to VLAN security and monitoring for passive analysis.
• Designed, implemented and maintained Cisco ASA based multiple subnet (subnets defined on member system role) firewall system.
• Point individual for all production outages and troubleshooting (Cisco switches and routers, Windows and Linux servers, application logs and packet trace analysis). Performed for OSI stack analysis for root cause determination.
• Worked with network engineering on numerous projects, including migrating from shared Ethernet to LAN Emulation 1.0 (LANE).
• Configured Cisco AGS+ and 7513 Series routers using RIP, IGRP and EIGRP as well as Catalyst 5500 series switches.
• Designing, installing, configuring, patching, upgrading, troubleshooting and administering CISCO and Juniper IP networking equipment.
• Installed, configured and implemented VLAN, STP and used ARP, HSRP and GLBP for load-balancing.
• Configured authentication of routing protocols like OSPF, EIGRP, and BGP using MD5 hash encryption. Implemented protocol, stub areas, routing redistribution issues over routers and switches.
• Replaced hubs with catalyst 1900 & 2900 series. Replaced outdate routing systems with CISCO routing solution.
• Dealt with configuration, migration of VLAN from old to new VLAN domain and worked on the allocation of ClassA IP address range to infrastructure devices.
• Worked on the Cisco devices like 6509, 6513, 7200, 2811, 5500 and worked on all line cards and port configuration for the VLAN.
• Used Avaya MSA (Multi Site Administrator) for the Avaya Phone and for the Pre and Post configuration check-ups for the IDF- IOS conversion project.
• Responsible for managing the TFTP logs for the VPN and firewall services and troubleshoot the VPN tunnel issues like SA, RSA, ISAKMP encryption and cleared/refresh VPN tunnel issues.

Confidential, Manhattan, NY

Network/Support Engineer

Responsibilities:

• Designed and Configuring the WAN infrastructure, consisting of multiple T1 and T3 lines, Cisco routers, Cisco switches, Load balancers, Dell and Sun servers.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Optimized performance of the WAN network consisting of Cisco 4500/5500 switches by configuring VLANs.
• Implementation of Checkpoint Firewall 4.1 to protect and authenticate local-net and DMZ.
• Defined policies, NAT and anti-spoofing for internal, external networks as well as Internet gateways
• Configured Web Trends for Real-time web traffic analysis and e-commerce Analysis
• Create new polices in firewalls and web filter profiles in firewalls
• Setting up user accounts, permissions and passwords.
• Create New IP phones extension and bridges for conference calls.
• Monitoring network usage in op manager.
• Managing the website and keeping internal networks running.
• Monitoring the use of the web (Fortigate firewall)
• Palo Alto Firewall support and deployment.
• Identifies, diagnoses, and resolves network problems.
• Managing cisco switches layer 2 and layer 3.
• Identify and diagnose all IP phone issues, create new IP extension and bridge for conference calls.
• Enabled remote users to access corporate LAN with VPN connectivity.
• Monitoring and managing network resources using HP OpenView by implementing policies and creating custom events.
• Worked with various ISP providers, InterNIC, providing online WAN tech support.
• Systems Management of complete MS Exchange 5.5 Infrastructure.
• Created and deployed desktop images using Symantec Ghost 5.1c.
• Documentation of all the work done using Visio, Excel and MS word.

Confidential

Network/Technical Support Administrator

Responsibilities:

• Monitored Multi-customer ISP network and troubleshooting issues in a 24 X 7 Environment
• Documented network assessment including technical and operational
• Investigated issues involving T1, DS3, ATM, Frame Relay, MPLS, IP, EIGRP, OSPF, BGP and RIP
• Worked with customer for troubleshooting, resolving LAN/WAN and DNS issues
• Escalated trouble calls: worked closely with higher Tier and other group for resolution
• Configured router from basic to advanced including ACL, SNMP, NAT/PAT roubleshooting and resolving incidents (Hardware and Software) related to desktop, Thin clients, Laptop, IP phone and Network connectivity (LAN) issues
• Worked on configuration and installation of new desktops for users using GHOST, EZ copy and Dist-to-Disk copy
• Develop and implement strategies to support the current and future needs of the company.
• Strategies include operating systems, virus protection, mail systems and Internet services.
• Updated the anti-virus, spam blockers, and other security software so that the systems are always secured
• Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures
• Managed and Maintained Windows Software including PC troubleshoot and help desk
• Optimized Windows and improved Windows Performance
• Used tools to support the OS, Task Manager, MSconfig, Service Console, Computer Management, Microsoft Management Console
• Fixed Problems caused by Hardware and Applications and Troubleshoot Startup problem and Blue Screen Errors
• Managed and Troubleshoot Cisco routers and switches up to layer 1/2/3 of OSI model
• Configured LAN/ WAN infrastructure and Troubleshoot Layer 1/2/3 of OSI model.