Tayyab Ali Shah

*-**** ********** ***, ******, SK, S4S 2L6

Cell: 306-***-**** E-mail: abn8vo@r.postjobfree.com

PROFILE SUMMARY:

• 10+ years of extensive professional experience in Network Administration, Level 3 Technical support,

implementation and integration techniques.

• Installation, configuration and maintenance of Cisco ACS Server, local and external database

management, RADIUS and TACACS+ protocol management

• Adaptive Security Appliance (ASA) Firewall Software Release 8.0, Cisco IPS Sensor Software Release

6.0, Cisco site-to-site & SSL VPN and Security Framework, VPN Concentrator, MPLS and layer 2/3

VPN

• Extensively experienced in network planning, implementation, and troubleshooting in multi-protocol

environments

• Implementing Security and Architecture enhancements using Microsoft Active Directory

• Ability to plan, implement, and integrate network components in a dynamic environment

• Strong knowledge of LAN/WAN infrastructure and Network Administration

• Experienced with VLAN management, switching, Vlan Trunking Protocol and Spanning Tree

• Configuration of Juniper net screen for secure routing between remote sites and data center through

secure tunnels.

• Configuration and support of HP switches for host connection on access layer.

• Excellent problem solving skills and ability to perform logical analysis of network issues.

• Worked on 1130AG, 1240AG, 1250AG, 1300, and 1400 series wireless bridges.

• Worked on design, implementation, ongoing management and troubleshooting of Cisco Unified

Communications Systems, including Call Manager / Unified Communications Manager 6.x, 7.x Unity

• Performed management and troubleshooting of Cisco Analog and Digital voice gateways and devices

• Worked on configuration and trouble shooting of Cisco Access Points and Bridges (standalone and

controller based), working on 802.11a, 802.11b, 802.11g, 802.11n standards, WLAN antennas, RF site

surveys, Cisco WLSE, Wireless, L2/L3/Fast Roaming, WLAN Security (“WEP”, WPA & WPA2 / AES,

802.1x, EAP, PEAP, LEAP, TKIP)

• Worked on Wireless Mesh Networking, Cisco Unified Wireless Networks, Wireless LAN controllers &

WiSM blades, Cisco Wireless Control System (WCS), Controller based infrastructures (LWAPP /

CAPWAP), Cisco MSE (Mobility Services Engine), RFID Technology

• Ability to work under pressure and in 24x7x365 environment

CERTIFICATION:

• Cisco Certified Network Associate (CCNA)

• Cisco Certified Network Associate-Security (CCNA-Security)

• Cisco Certified Network Professional-Routing and Switching (CCNP)

• Cisco Certified Network Professional-Security (CCNP-security)/CCSP

• Cisco Certified Firewall Specialist

• Cisco Certified IPS Specialist

• Cisco Certified Internetwork Expert (CCIE)-In Progress

Page 1 of 4

EDUCATION:

• Masters in Business Administration (MBA)

University of Toronto, Canada June 2005

SKILLS

• Network Management & Ticketing Tools:

Solar Winds, HP Openview, Net Flow, Cisco Works, Cisco LMS, Remedy, ITSM

• O/S-Software Applications:

Visio, MS Excel, MS Access, MS PowerPoint, MS Outlook, MS Word, MS Project

• Operating Systems:

Cisco - IOS10.x-12.x, CatOS, IOS-XR, Win XP/2000/2003, Vista, 2007; ASA 8.x, ASDM 7.x

• Network Protocols:

TCP/IP, RIP, EIGRP, BGP, OSPF, VLAN, LAN, WAN, VLAN (802.1q) IPSec, SNMP, HTTP, TFTP,

SMTP, SSH, SSL VPN, TLS, Firewalls, DNS, DHCP, Frame Relay, ISL, 802.1x, RADIUS and

TACACS+, etc

PROFESSIONAL EXPERIENCE:

Network Administrator Jan 2009 – To date

SSAGR IT Services Inc. Regina, SK

• Worked on a project to evaluate, re-design and implement Intrusion detection and prevention system.

• Worked on the deployment of 4200 series sensors to enhance and tighten corporate security system

• Analyzed security system to evaluate for a central management system of security network devices

including pix firewalls, ASA firewalls 5520, 5540 and IPDS 4200 series sensors.

• Completed installation of Cisco Security Manager 4.2 to manage central configuration and management

of Intrusion detection and prevention systems, PIX firewalls and ASA.

• Did analyses of firewalls rules on pix firewalls and ASAs to clean up unnecessary rules and adapt them to

new business requirements.

• Prepared change requests for implementation of new firewall rules to cope with the new business Web and

application servers subnets along with required ports.

• Configured ASAs and routers for site to site and remote access VPN connectivity

• Configuration of VLANS and access-lists on remote sites routers and LAN Switches

• Managed documentation and updating of network security diagrams and relevant spreadsheets to keep up

with the new security design and implementations.

• Provided bi-weekly and monthly reports on critical security issues to the management.

• Worked on net-flow analyzer to gauge the network traffic at different times of the 24 hours cycle and

watched for operational hours and scheduled backup timings for capacity planning.

• Utilized Cisco LMS for Network devices Inventory and troubleshooting purposes.

• Worked on remedy ticketing system for management of network operational issues.

• Handled and monitored customer WAN Support contracts, SLA monitoring and reporting, WAN related

deliverables from other departments and regions, trend analysis and capacity planning for customer

networks after understanding their business needs.

Page 2 of 4

Network Analyst July 2005 – Dec 2008

Netplus Information Technology Services, Toronto, Ontario

• Implemented change requests on multiple sites pix firewalls and ASAs for enhanced business services

• Performed analysis of Cisco Security Manager ver 5.x implemented in the client’s business environment

and suggested proper utilization and changes to get the most out of the software installed.

• Configured Juniper net screen for secure routing between remote sites and data centers

• Performed Documentation of network inventory installed and updated visio diagrams for proper

management of network environment

• Performed configuration of dynamic routing protocols OSPF and BGP and MPLS for dynamic routing

and proper path engineering for Eastern and Western Canadian Sites.

• Worked on ACS servers for monitoring Network access, authentication, authorization and accounting.

• Worked on day to day priority operational security issues along with project works.

• Performed configuration & troubleshooting of Routers, Switches, & other internetworking devices.

• Provided level-3 support to handle LAN and mostly WAN connectivity issues

• Performed Monitoring and Troubleshooting day to day network connectivity problems at remote sites

Network Specialist Sep 2002 – Aug 2003

Ntech Technologies, Markham, Ontario

• Implemented LAN/WAN and security access solution as required by business services, system changes

and data center extension.

• Ensured that security practices are in place and being used.

• Proactively monitored, recommended and implemented performance enhancements

• Ensured that all processes / procedures are documented and catalogued.

• Acted as a resource for other technical support, operations and users.

• Installation, configuration and management of redundant ACS appliances for central management of

organizational network devices for authentication authorization and accounting purposes.

• Configuration of the enterprise wise network devices to point to the new ACS appliances for

Authentication, authorization and accounting.

• Worked on Cisco Works configuration and point remote sites and data center network devices to be

configured and monitored from a central point and keep Network devices Inventory updated.

Network Associate June 1998 – July 2002

Corvite IT Inc. Peshawar Pakistan

• Installed and configured Windows XP and server operating systems

• Maintained a Windows 2000 Server environment

• Installed, configured, monitored and troubleshoot all data communications equipment

• Upgraded the systems software, monitored network performance, and suggested planning for future

needs

• Managed Directory services database, group accounts for centralized network management

• Managed user accounts, passwords, privileges, file, folder permissions using NTFS permission

• Installed, maintained network printers and plotters specifically used for engineering purposes

Page 3 of 4

REFERENCES: Available upon request

Page 4 of 4

Contact this candidate