SUMMARY

• Cisco Certified Network Associate (CCNA) and Cisco Certified Network Professional (CCNP) with around 8 years of working experience with Cisco products.
• Strong hands on experience on Cisco Catalyst (1900, 2900, 3550, 3750, 6500)series switches, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, PIX Firewall (506, 515, 525, 535)/ ASA (5505/5510), Load Balancers using Cisco ACE, F5, Security Device Manager (SDM), Cisco Works, HP Open View, Solar Winds, Sniffer.
• Implementation of Juniper Firewall, SSG Series, Netscreen Series ISG 1000, SRX Series.
• Worked on Juniper Netscreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG 200.
• In - depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to Point, MPLS and Frame Relay
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP
• Experience on Wide area application services
• Experience in QOS on multicast VPN
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Proficiency in configuration of VLAN setup on various CISCO Routers and Switches.
• Extensive hand on experience with complex routed LAN networks, CISCO Routers and Switches.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the client’s location.
• Aggregating switch links using LACP and PAGP protocols.
• Implementation and Troubleshooting of WAN authentication protocols- PPP, CHAP and PAP.
• IP addressing and IP address scalability by configuring NAT/PAT.
• Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
• Experience with F5 load balancers andCiscoload balancers (CSM,ACE and GSS).
• Experience on load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL certificates.
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.

TECHNICAL SKILLS

LAN technologies: Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STPRSTP, 802.1W.

WLAN technologies: Autonomous AP’s, Lightweight AP’s, WLC, WDS, WLSEStandards - 802.11A, 802.11B, 802.11G

WAN technologies: Frame Relay, ISDN, PPP, ATM, MPLS.

Cisco Equipment’s: Cisco routers (2500, 2600, 2800, 3600, 3800, 7200), Cisco

Catalyst Switches: (1900, 2900, 3550, 3750, 6500), PIX (506, 515, 525, 535)/ASA (5505/5510) Firewall, Load Balancers using Cisco ACE.

Network Security: NAT/PAT, VPN Configuration, IPSec, IDS, IPS.

Routing Protocols: IGRP, EIGRP, OSPF, ISIS, BGP, VRRP, GLBP & HSRP

Infrastructure services: DHCP, DNS, SMTP, POP3, FTP, TFTP.

Network Management: SNMP, Cisco Works, HP Open View.

IP Telephony: H.323, MGCP, SIP, QOS, voice gateways.

Platforms: Windows 98/XP/VISTA, Windows 2000/2003 Server, Linux.

Applications: MS Office, MS VISIO

Network Security: Cisco ASA, AC, IPSECLoad Balancers Cisco CSM, Cisco ACE 4710, F5 BIG-IP LTM 6900 series

PROFESSIONAL EXPERIENCE

Confidential, Cary, NC

Security Engineer

Responsibilities:

• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers.
• Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs and switches.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter. Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 7k/5k/2k.Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP, VRRP,
• UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to
• Facilitate 2/3/4G Network.
• Responsible for 6500, 3500, Nexus switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
• Knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Worked extensively onPaloAlto,JuniperNet screen and SRX Firewalls.
• Expertise in installing, configuring and troubleshootingJuniperRouters (J,M and MX-series) Expertise in configuring and troubleshooting ofPaloAlto,JuniperNetscreen& SRX Firewalls and their implementation Experience in
• Maintained the client environment which hadJuniperSSG5/SSG20/ISG1000 and SA6500.

Confidential, NYC- NY

Sr. Network Engineer

Responsibilities:

• Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor.
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Netscreen routers with Site-Site VPN, and firewalls for Confidential Retail sites.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Installing and configuring new cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company.
• 24x7 on-call escalation support as part of the security operations team.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Managing and providing support to various project teams with regards to the addition of new equipment such as routers switches and firewalls to the DMZs.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Experience in migration of VLANS.
• Handling enterprise outages effectively and driving towards the resolution. Coordination of fault escalations in conjunction with the 1st high-level technical management of high priority or technically complex calls.
• Working with Capacity management on network bandwidth utilization reporting of the sites WAN link and vendor co-ordination for new site turnovers / WAN links.
• Preparing Metrics report detailing on SLA performance of tickets and process quality report to analyze team performance & discussion on the improvement areas (By monthly).
• Providing training to new comers and effectively working towards a process quality improvement in the Team.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Extensive hands-on experience with complex routed LAN and WAN networks,routers and switches.
• Hands-on experience with Ether Channel, Spanning Tree, Trunking, ACLs, Syslog. Experience in the setup of HSRP, Access-Lists, and RIP, EIGRP, and tunnel installations.
• Proficiency in configuration of VLAN setup on variousCiscoRouters and Switches.
• Work assigned tickets to determine the point of failure and resolve problems remotely utilizing available tools and other Operation Center resources.
• Provide escalation support to L1 members ofnetworkteam.
• Worked with different ISP globally for any WAN circuit and BGP routing issues. Opening up cases for CE routers, Riverbed optimizer issues.
• Work & escalate problems effectively in order to meet customer SLA's (service level agreements).
• Perform problem management and root cause analysis for customers as required.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

Environment: Nexus 2k/5k/7k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, Juniper SRX100,LAN,WAN,OSPF,RIP,BGP,EIGRP,HSRP,PPP,VPN,Checkpoint,Cisco ASA.

Confidential, Chevy Chase - Maryland

Sr. Network Engineer

Responsibilities:

• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Implemented MPLS VPN networks to test various problem reproductions in lab
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 6500, 7500, 7200 Series routers.
• Managing and supporting large scale MPLS & Frame relay on Cisco environment for more than 5000 Retail sites, 100 Distribution centers, 100 offices and 3 datacenters.
• Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Building the VPN tunnel and VPN encryption.
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall and for NATting.
• Configuring various advanced features (Profiles, monitors, I Rules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineers instructions and troubleshooting any related issues.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

Environment: Cisco 6505/4500/3550 Switches, Cisco 6500/7500/7200 Routers,F5 Load Balancer,ASA,OSPF,BGP,EIGRP,RIP,LAN,WAN,SSL/VPN

Confidential, Chicago

Sr.Network Engineer

Responsibilities:

• Involved in Configuring and implementing of Composite Network models which consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Basic and advance F5 load balancer configurations, including migrating configurations fromCiscoACEto F5 and general troubleshooting of the F5 load balancers.
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope.
• Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and trouble shooting.
• Experience with Project data and voice documentation tools & experience with developing network design documentation and presentations using VISIO
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Configured RIP, PPP, BGP and OSPF routing.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Identify, design and implement flexible, responsive, and secure technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Creating and provisioning Juniper SRX firewall policies.
• Deployed the switches in high availability configuration with HSRP.
• Configured udld, port-fast, uplink fast and other spanning tree features.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Implemented security measures to keep networks running and secure. Configured extended ACLs to filter traffic and gave restricted access to certain users.
• Supervised call center and technician routine maintenance and up-gradation of network device.
• Provided network and workstation support.
• Interfaced with customers and senior management for problem resolution and project planning.

Environment: Cisco 2950/3500/5000/6500 switches, Cisco 7600/7200/3800 Routers, ACL, LAN, WAN, Palo Alto, RIP, OSPF, BGP, IPV4, Solar winds, Juniper SRX.

Confidential, Denver -CO

Network Support Engineer

Responsibilities:

• Upgrade Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 2950, 2960, and 3560 switch configurations
• Support 24x7 operations and answer calls from the customers on network emergencies and resolve issues broad Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic NAT
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Experience with CSM, F5 (LTM) Load balancers to provide efficient switching and routing for local and global traffic.
• Configured RIP, OSPF and Static routing on JuniperM and MX series Routers
• Configured VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches
• Designed and implemented remote dial up solution for clients
• Installed and configured workstations for IP based LAN’s
• Install and manage Cisco Catalyst 3500XL, & 2960 series Switches and Cisco 1800, 3900 series routers
• Configured VLANs, Private VLANs, VTP and Trunking on switches.
• Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic Natting
• Involved in all technical aspects of LAN and WAN projects including, short and long term planning, implementation, project management and operations support as required
• Conduct through analysis, problem solving, and infrastructure planning
• Provide assistance to Network Manager and serve as Secondary Network support.
• Troubleshoot and fix any backup and monitoring systems related issues in conjunction with Systems team and external vendors

Confidential, San Jose-CA

Network Technician

Responsibilities:

• Responsible for LAN and internet connection file and print server.
• Maintained and installed new internet connections for customers.
• Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
• Created load balancing policies using BGP attributes such as Local Preference, AS-Path, MED, Community etc.
• Validate existing infrastructure and recommend new network designs.
• Created scripts to monitor CPU/Memory on various low end routers in the network.
• Installed and maintained local printer as well as network printers.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems.
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Configured ASA 5510 appliance and VPN.
• Responsible for implementing QoS prioritizing voice traffic over a data.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.