Employer: Jason
Ph. # 832-***-****
acticx@r.postjobfree.com
Ranajeet Soman
Contact details: 908-***-****, acticx@r.postjobfree.com
SUMMARY:
Over 6+ years of experience in Network Security Products and Firewalls (Checkpoint, ASA).
Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point R65, R70 & R77, Palo Alto and Cisco ASA.
Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.
Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
Hands on experience on all software blades of checkpoint firewall
Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.
SIEM IT Security with vulnerability management and compliance policy
Hands on experience working with Cisco Nexus 7K, 5K & 2K Switches
Using SmartUpdate, User Management and Authentication in Checkpoint Firewall.
Monitoring and troubleshooting traffic through Smart View Tracker.
Expert in interoperability issues with products like Cisco ASA, Checkpoint and F5 load balancers.
Seasoned professional in Checkpoint firewall policy administration and support between various zones
Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN and Juniper SA remote access VPN.
Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
Strong written and verbal communication skills, self-motivated, self-managed, result oriented, practical, always looking to learn and contribute.
Beam Suntory HQ, Chicago, IL March 2014 -Present
Network Security Administrator
Responsibilities:
Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering)
Successfully installed Palo Alto PA-3060 firewalls to protect Data Center.
Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
Worked on IBM QRadar Secure Intelligence Platform
Experience in deployment of Nexus 7010, 5548, 2148T, 2248 devices.
Configuring New Client connectivity via Site2Site / Remote / SSL VPN on Checkpoint.
Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall
Worked extensively on checkpoint R77.20 on GAiA and SPLAT, Cisco ASA.
Managing Security Policies of firewall through Checkpoint Provider-1, other tasks include license management
Experience configuring Virtual Device Context in Nexus 7010.
Handling calls related to Firewall Access and Site-to-Site, Remote Access VPN Issues.
Built and support VRRP / Cluster based HA of Checkpoint firewalls.
Implemented and maintained Big-IP F5 load balancing solution (LTM and GTM) across multiple data centers using OTV.
Implementing and configuring new firewalls as per the client's requirement and as per the Existing WAN Structure.
Prepared technical documentation of configurations, processes, procedures, systems and locations.
Troubleshooting security Threats and Authentications issue.
Esurance, San Francisco, CA Oct 2011 to Feb 2014
Network Security Engineer
Responsibilities:
Implementation, support and administration of multiple security products running Checkpoint Provider-1.
Strong knowledge and understanding with IPsec, Juniper SA Remote Access VPN, and Source Fire intrusion prevention systems
Strong knowledge in configuration and troubleshooting Juniper SA SSL VPN in a dual-factor integration environment.
Configuration and management of firewalls (Cisco ASA, Juniper net screen, SRX) and VPN services (Cisco ASA; Juniper SA).
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
Adding security rules and pushing the security policy on Checkpoint.
Worked on configuring, managing and supporting Checkpoint Gateways
Troubleshooting Various Cisco Technologies including VPN's, Routers and Switches.
Working and commenting on global firewall polices.
Migrated juniper firewalls (net screen to srx) and also configured new srx firewalls.
Worked on migration tools and has migrated around 100 juniper firewalls.
Signature Updates Deployment on the Management Components and all the Individual IPS/IDS devices
Providing input on day-to-day security architecture policies and procedures.
Responsible for implementing Data Center Security best practice, audit and compliance (PCI/SOX/DOD) requirements.
Angies List, Indianapolis, IN Oct 10 to Sep 2011
Network Security Consultant
Responsibilities:
Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using WireShark protocol analyzer and recommended solution for better performance
Monitor devices in Netcool and Event Manager
Implemented Windows NT domain, domain name services, e-mail, Web, and FTP services
Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures
Perform Firewall OS upgrades using CLI, Splat and Voyager GUI
Built and support VRRP / Cluster based HA of Checkpoint firewalls
ASA, Checkpoint UTM, Fort iGATE and Juniper SSG and SRX Firewalls.
Worked with several network engineers for the understanding of Juniper SRX firewalls along with the changeover to Palo Alto (5060s) needs.
Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Solving Interoperability issues with other products like Cisco ASA and Checkpoint.
Replicating the issues, researching on issues and provide with fixes and work-around.
TechnNut Technologies, India Dec 2009– Sep 2010
Network and Security Engineer
Responsibilities:
Performed network troubleshooting, technical support, and recording of backup operations.
Coordinated with higher-level support and external vendors for resolution
Maintained all servers & network equipment with current stable firmware, IOS images & access control lists
Worked on network-based IT systems such as racking, stacking, and cabling
Network cabling, dressing, labeling and troubleshooting network drops onsite.
Implemented strategies for operating systems, virus protection, mail systems and Internet services
Performed scheduled Virus Checks & Updates on all Servers & Desktops.
Updated the anti-virus, spam blockers, and other security software
Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures.
TECHNICAL SKILLS
Protocols: BGP, OSI, TCP/IP, DHCP, RIP, IGRP, EIGRP, FTP, SMTP OSPF
Firewalls: Checkpoint R55 / R61 / R65 / R75 / R77, Cisco ASA, Palo alto PA-5000, Panorama
Routers: Cisco 2811 / 3800 / 7200
Switches: Cisco Multi-layer Switch 6500, Catalyst 4500, Catalyst3750, Catalyst2900 and Catalyst 3500XL, Nexus 7k, 5k, 2k
Networking: LAN, WAN, Frame Relay, SSL VPN Switches, Routers
Operating Systems: Windows XP / 7, Linux