Employer: Jason

Ph. # 832-***-****

acticx@r.postjobfree.com

Ranajeet Soman

Contact details: 908-***-****, acticx@r.postjobfree.com

SUMMARY:

Over 6+ years of experience in Network Security Products and Firewalls (Checkpoint, ASA).

Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Check Point R65, R70 & R77, Palo Alto and Cisco ASA.

Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.

Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.

Hands on experience on all software blades of checkpoint firewall

Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols.

SIEM IT Security with vulnerability management and compliance policy

Hands on experience working with Cisco Nexus 7K, 5K & 2K Switches

Using SmartUpdate, User Management and Authentication in Checkpoint Firewall.

Monitoring and troubleshooting traffic through Smart View Tracker.

Expert in interoperability issues with products like Cisco ASA, Checkpoint and F5 load balancers.

Seasoned professional in Checkpoint firewall policy administration and support between various zones

Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN and Juniper SA remote access VPN.

Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.

Strong written and verbal communication skills, self-motivated, self-managed, result oriented, practical, always looking to learn and contribute.

Beam Suntory HQ, Chicago, IL March 2014 -Present

Network Security Administrator

Responsibilities:

Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering)

Successfully installed Palo Alto PA-3060 firewalls to protect Data Center.

Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.

Worked on IBM QRadar Secure Intelligence Platform

Experience in deployment of Nexus 7010, 5548, 2148T, 2248 devices.

Configuring New Client connectivity via Site2Site / Remote / SSL VPN on Checkpoint.

Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall

Worked extensively on checkpoint R77.20 on GAiA and SPLAT, Cisco ASA.

Managing Security Policies of firewall through Checkpoint Provider-1, other tasks include license management

Experience configuring Virtual Device Context in Nexus 7010.

Handling calls related to Firewall Access and Site-to-Site, Remote Access VPN Issues.

Built and support VRRP / Cluster based HA of Checkpoint firewalls.

Implemented and maintained Big-IP F5 load balancing solution (LTM and GTM) across multiple data centers using OTV.

Implementing and configuring new firewalls as per the client's requirement and as per the Existing WAN Structure.

Prepared technical documentation of configurations, processes, procedures, systems and locations.

Troubleshooting security Threats and Authentications issue.

Esurance, San Francisco, CA Oct 2011 to Feb 2014

Network Security Engineer

Responsibilities:

Implementation, support and administration of multiple security products running Checkpoint Provider-1.

Strong knowledge and understanding with IPsec, Juniper SA Remote Access VPN, and Source Fire intrusion prevention systems

Strong knowledge in configuration and troubleshooting Juniper SA SSL VPN in a dual-factor integration environment.

Configuration and management of firewalls (Cisco ASA, Juniper net screen, SRX) and VPN services (Cisco ASA; Juniper SA).

Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools

Adding security rules and pushing the security policy on Checkpoint.

Worked on configuring, managing and supporting Checkpoint Gateways

Troubleshooting Various Cisco Technologies including VPN's, Routers and Switches.

Working and commenting on global firewall polices.

Migrated juniper firewalls (net screen to srx) and also configured new srx firewalls.

Worked on migration tools and has migrated around 100 juniper firewalls.

Signature Updates Deployment on the Management Components and all the Individual IPS/IDS devices

Providing input on day-to-day security architecture policies and procedures.

Responsible for implementing Data Center Security best practice, audit and compliance (PCI/SOX/DOD) requirements.

Angies List, Indianapolis, IN Oct 10 to Sep 2011

Network Security Consultant

Responsibilities:

Assisted in troubleshooting complex layer 1, 2 and 3 connectivity using WireShark protocol analyzer and recommended solution for better performance

Monitor devices in Netcool and Event Manager

Implemented Windows NT domain, domain name services, e-mail, Web, and FTP services

Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures

Perform Firewall OS upgrades using CLI, Splat and Voyager GUI

Built and support VRRP / Cluster based HA of Checkpoint firewalls

ASA, Checkpoint UTM, Fort iGATE and Juniper SSG and SRX Firewalls.

Worked with several network engineers for the understanding of Juniper SRX firewalls along with the changeover to Palo Alto (5060s) needs.

Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.

Solving Interoperability issues with other products like Cisco ASA and Checkpoint.

Replicating the issues, researching on issues and provide with fixes and work-around.

TechnNut Technologies, India Dec 2009– Sep 2010

Network and Security Engineer

Responsibilities:

Performed network troubleshooting, technical support, and recording of backup operations.

Coordinated with higher-level support and external vendors for resolution

Maintained all servers & network equipment with current stable firmware, IOS images & access control lists

Worked on network-based IT systems such as racking, stacking, and cabling

Network cabling, dressing, labeling and troubleshooting network drops onsite.

Implemented strategies for operating systems, virus protection, mail systems and Internet services

Performed scheduled Virus Checks & Updates on all Servers & Desktops.

Updated the anti-virus, spam blockers, and other security software

Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures.

TECHNICAL SKILLS

Protocols: BGP, OSI, TCP/IP, DHCP, RIP, IGRP, EIGRP, FTP, SMTP OSPF

Firewalls: Checkpoint R55 / R61 / R65 / R75 / R77, Cisco ASA, Palo alto PA-5000, Panorama

Routers: Cisco 2811 / 3800 / 7200

Switches: Cisco Multi-layer Switch 6500, Catalyst 4500, Catalyst3750, Catalyst2900 and Catalyst 3500XL, Nexus 7k, 5k, 2k

Networking: LAN, WAN, Frame Relay, SSL VPN Switches, Routers

Operating Systems: Windows XP / 7, Linux

Contact this candidate