Active Directory Network Engineer
Resume:
JADHAV
ac01ap@r.postjobfree.com
SUMMARY
8+ years' experience configuring, administrating and troubleshooting infrastructure with Cisco/Juniper platform Routing, Switching and Security.
Experience working on Cisco Catalyst Series 3750, 3500, 4500, 4900, 6500, 2950; Nexus 7010,5010, 5020,4507,2K, 5K, 6K and 7K series switches.
Dealt with Cisco router models (7600, 7200, 3800, 3600, 2800, 2600, 2500, and 1800) series.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a flexible Access Solution for Data Center access architecture.
Expertise in installing, configuring and troubleshooting Juniper Routers (M and T-series).
Worked on ASR 901, 920, 903 and 9000 series Cisco routers
Expertise with Juniper M 120 Multi service edge router and also MX 10 and MX 40 series routers inside datacenter.
Experience working on Palo Alto Firewall.
Experience with convert PIX rules over to the Cisco ASA solution.
Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
Configured all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
Experienced working with security issues related to Cisco ASR 9K, Checkpoint and Juniper Netscreen firewalls.
Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience.
Implemented many number of security policy rules and NAT policy rules on Palo Alto, created Zones, Implemented Palo Alto Firewall interface, Palo Alto IDS and VLAN.
Experience in risk analysis, security policy, rules creation and modification of Checkpoint, Cisco ASA, Palo Alto Firewall networks.
Worked with Palo Alto firewalls PA250, PA4050, PA3020 using Panorama servers, performing changes to monitor/block/allow the traffic on the firewall.
Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's, ASR (9k, 901,903).
Experience in configuring, deploying and deployment of Cisco Security Manager (CSM) for management of ASA Firewall series.
Plan for 1G fiber links and Install and configure Cisco ASR 901, Cisco ASR 920 Routers for 1G fiber links connectivity.
Implementing security policies using Cryptography, ACL, SDM, PIX Firewall, IPsec, VPN, and AAA Security on different series of routers.
Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
Experience with F5 load balancers (6400, 6800, and 8800) and Cisco load balancers (CSM, ACE and GSS), also migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
Managing restricted Internet access as per organizational security policy using URL filtering tool, Surf control.
Provided Load Balancing towards Access layer from Core layer using F5 network Load balancers.
Experience forming a network diagram with MS Visio and cacti.
Install/upgrade/configure/troubleshoot Juniper firewalls (Netscreen/SRX), ASA firewalls (6.x, 7.x,8.x, 9.x versions) and Palo Alto firewalls with panorama with VPN tunnels and URL filtering and SSL inspection.
Migrated NT 4.0 Servers to Windows 2000 Servers. Maintained Microsoft Servers and managed Active Directory.
Manage and maintain Active Directory, Exchange 2010/Office365/Rackspace, Windows Servers 2003, 2008 and 2012, Cisco Catalyst L3 switches and Cisco routers as well as related network hardware and software..
Excellent problem solving and debugging skills with good verbal/written communication and presentation skills.
IT System Administrator skilled in multiplatform VMware, UNIX, Windows environments with hands-on expertise in networking and system integration.
Expertise in administration of VMware Workstation, ESX/ESXi Servers, VMware vSphere and Windows Servers 2008/ 2008R2 / 2012/ 2012R2.
Provide customer assistance using Active Directory services and remote access tools.
Resolved system errors and crashes, disk space problems, huge file sizes, file system full errors, and Root password recover for in the UNIX servers.
Installed and Configured Red hat Linux Kickstart and booting from SAN/NAS.
Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control (NAC) integration with Cisco ISE.
Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
Performed network/systems administration functions, set up network user accounts/permissions, reset passwords, and administered group policies via Active Directory.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Experience in Configuring routing protocols troubleshooting BGP,IGRP, OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4 .
Expertise in Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Excellent in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
Experienced Tech Support as it relates to LAN & WAN systems.
Implemented ISL and 802.1Q for communicating through VTP.
Technical skills
Cisco routers
Cisco 7200, 2800, 2600, 3800, 3600(ISO -Version 12.0, 12.2)
Cisco Switches
Cisco Catalyst 6509, 6513, 3500, 5500, 5000, 2900(IOS- Version 12.4)
Cisco nexus data center switches
7000, 5000 (NX- OS version 5.1, 5.2)
Load Balancer
Cisco CSS, F5 Networks (Big-IP) LTM and GTM
WAN Optimization
Cisco WAAS, PPP Multilink
Routing
OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing
Switching
VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging
Firewalls
Checkpoint, Cisco ASA, Cisco PIX, Juniper SRX
Juniper
EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240
Network monitoring tool
Solar winds, Netbrain, Wire shark.
Operating system
Windows NT 4.0 (Desktop/Server), Windows 2000/2003/2008 server, Windows XP/7, Solaris, Red Hat, Active Directory,linux/unix.VMware,Microsoft office365
CERTIFICATIONS
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
PROFESSIONAL EXPERIENCE
PineBridge Investments, New York, NY 03/2016 - Present
Sr. Network Engineer
Responsibilities:
Experience with design and implementation of Data center migration.
Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4 .
Worked on the Cisco ASR 9010 and Cisco ASR 9912 Routers at CORE level.
Provided Technical Support to customers and partners on Palo Alto security appliances.
Hands on experience on Cisco PIX ASA Firewalls, Juniper SRX series, Palo Alto, VPN, Troubleshooting Skills.
Experience in working with designing, installing and troubleshooting of Palo Alto firewalls.
Worked with Palo Alto firewalls PA250, PA4050, PA3020 using Panorama servers, performing changes to monitor/block/allow the traffic on the firewall.
Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
Managing URL Content Filtering Surfcontrol v5.5 to restrict the unauthorized access.
Managing restricted Internet access as per organizational security policy using URL filtering tool, Surf control.
Sound understanding of firewall technologies like L3VPN, NAT, Packet filtering.
Palo Alto firewall URL and Application filtering based on LADP user ID and ContentID.
Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls. Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
Hand on Experience in Migrating the policy from Cisco ASA firewall into Palo Alto firewall.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Installing, configuring Cisco Routers 3640, 2000, 7200, 3845, 3600, 2800 and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
Installing and configuring new Cisco equipment including Cisco 3750/3550/3500/2960, Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the company.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
Manually configure NAT, BGP, Static Routes, HSRP, EIGRP, OSPF, QOS, Multicast, VLANs and DHCP for Cisco routers.
Administer Checkpoint firewalls with cluster gateways including pushing policies and processing user requests to allow access through the firewall using Smart Dashboard and identify unused rules and schedule change to mark it for permanent deletion at later point of time.
Configuring and troubleshooting Cisco routers asr-1000, 2901, 7000, 9000 l3 protocol EIGRP, BGP, OSPF, RIP and Static route & switches cat 4948, 2960 -L3 vlans and L2 vlans.
Configuring RIP, OSPF and Static routing on Juniper M 120 series router and MX 10, MX 40 series Routers.
Configuring & managing Security Devices that includes Juniper (NetScreen) Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Plug Proxies.
Extensive experience in SRDF, Time Finder, SAN Copy, Mirror View, for replication and migration support.
Configured ACLs in Cisco 5500 ASA firewall for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT control using Object NAT.
Responsible for Cisco ASA firewall administration across our global networks.
Used OnCommand System Manager and CLI for creation of new Qtree, quota, exports policies, export rule and UID/GID & user mapping and decommission of CIFS shares, NFS and mixed (CIFS/NFS) mounts.
Aruba Access Points 65/92/93/12X/13X/105/175, Instant AP- 9X/105/13X, Remote AP-2wg, 5w, 5wn Providing asset auditing on pre and post migration activities.
Deployed WAN emulation tool to allow developers to perform product and performance testing across routed networks.
Handled migration of user home drives and CIFS files shares from windows servers (Local site/regional DC) to centralized NAS.
Designed, configured, implemented site-site VPN on cisco ASA 5500 firewall.
Implement the firewall rules using Netscreen manager (NSM).
Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
Experience with F5 load balancers to provide Land Balancing towards Access layer from core layer and configuring F5 LTM both by GUI and TMSH/CLI and Cisco load balancers (CSM, ACE and GSS).
Other responsibilities included documentation and supporting other teams.
LochBridge, Lancing, MI 10/2014 – 02/2016
Sr Network Engineer
Responsibilities:
Configuring Static, IGRP, EIGRP, BGP and OSPF routing protocols on Cisco 1600,2600,2800, 3600, 7300 series routers.
Installed and Powered F5, Palo-Alto Firewall.
Migrated with a team from a predominantly Checkpoint environment to a Palo Alto global solution.
Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention & URL filtering. PANDB migration and code upgrades for Palo Alto Firewall.
Set up and troubleshoot secured wireless access points (WAP) and wireless LAN controller (WLC) across the Corporate Network.
Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
Checkpoint SmartEvent, SmartReporter, Threat Prevention, Data Loss prevention (DLP), Application Control and URL filtering, and Compliance software blades configuration and reporting.
Used troubleshooting skills to fix Multicast routing issues and used WireShark to source packet level issues.
Working experience with bluecoat proxy and web/ssl filtering on Palo Alto firewalls.
Install/upgrade/configure/troubleshoot Juniper firewalls (Netscreen/SRX), ASA firewalls (6.x, 7.x,8.x, 9.x versions) and Palo Alto firewalls with panorama with VPN tunnels and URL filtering and SSL inspection.
Worked extensively on Network Traffic SPANS and TAPS for monitoring network traffic, and virtual firewall ACL rules and policies in Counteract NAC Appliances for Network Access Controls.
Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
Experience with convert PIX rules over to the Cisco ASA solution.
Implemented many number of security policy rules and NAT policy rules on Palo Alto, created Zones, Implemented Palo Alto Firewall interface, Palo Alto IDS and VLAN.
Collapsing the existing firewall rules and fine-tuning the firewall policies for better performance.
Configured various LAN switches such as CISCO CAT 2900,3550,4500,6509 switches and Access layer switches such as CISCO 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
Configuring VLANs/routing/Nating with the firewalls as per the network design.
Configured and performed software upgrades on Cisco WirelessLAN Controllers 5508 for WirelessNetwork Access Control (NAC) integration with Cisco ISE.
Configured EBGP load balancing and ensured stability of BGP peering interfaces.
Experience with converting 6500 to Cisco Nexus in the data Center environment.
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
Experience configuring Virtual Device Context in Nexus 7010.
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
Planned for the implementation of a new architecture at legacy Web Hosting Data Centers.
Support a large client base consisting Windows 2000/2003/2008 multi domain/forest Active Directory enterprise infrastructure.
Installation, Administration & Troubleshooting of Windows 2003/2008 active directory domain controllers, sites, AD replication, DNS, WINS on physical & or on VM's in a multi - Domain environment.
Experience with converting Cisco 6500 to Cisco Nexus in the data center environment.
Experience with configuration and troubleshooting of F5 load balancer.
Maintaining and load balancing: web server traffic for customers using F5 load balancers and deals with creating Irules, pools, virtual servers.
IT System Administrator skilled in multiplatform VMware, UNIX, Windows environments with hands-on expertise in networking and system integration.
Increased NAS volumes according to the requirement at the time of data (CIFS/NFS) migration.
Worked on Wireless connectivity issues and configured and replaced Aruba controllers.
Analyzed and developed test plans with NAS Integration, NAS Operations, System Administrators (Application, Database, Network, UNIX and Windows Administrators) for data replication and migration from standalone DC to Centralized DC using Snap Mirror and aggregate copy.
Implemented and maintained Active Directory, Microsoft Exchange and Blackberry implementations.
Expertise in administration of VMware Workstation, ESX/ESXi Servers, VMware vSphere and Windows Servers 2008/ 2008R2 / 2012/ 2012R2.
Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
Worked on Checkpoint NGX R65 firewalls for building the ACL rules for the extranet connectivity and implementation of the rules on the corporate firewalls and monitored logs for the issues.
Troubleshooting Clustering issues on Check Point and Sync issues monitoring and fix.
Involved in Installation, Configuration, Integration, Tuning, Backup, Crash recovery, Upgrades, Patching, Monitoring System Performance, System and Network Security and Troubleshooting of Linux and Unix Servers.
Resolved system errors and crashes, disk space problems, huge file sizes, file system full errors, and Root password recover for in the UNIX servers.
Familiarity of installing and configuring file servers like NTFS and FTP remote sites, Installing and configuring all the Linux servers in the network as per specifications.
Lowe’s Home Improvement, Mooresville, NC 11/2012 – 09/2014
Sr. Network Engineer
Responsibilities:
Installation and management of overall administration of LAN, WAN, systems involving design of network layouts, configuration and maintenance, Commissioning Routers & Switches, firewalls, IPS and ensuring maximum uptime during site deployment to VoIP.
Packet capturing/ Packet sniffers, troubleshooting on network problems with Wireshark, identifying and fixing problems.
Adding and removing checkpoint firewall policies based on the requirements of various project requirements.
Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
Experience working with Cisco ASA 5585-X firewalls with Firewall rules, IPSEC VPN, NAT, Active-Standby Failover, OSPF and Any Connect VPN technologies.
Perform Security-approved directory services investigations /audits as needed.
Consolidated & migrated a large distributed Enterprise NT 4, Windows 2000 servers to Windows 2003 Active Directory.
Support URL filtering and SSL decryption and inspection using Palo Alto Firewall
Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration on Cisco ASA and Checkpoint.
Managed and troubleshooting web site filtering devices web sense.
Proficient in design, implementation, management and troubleshooting of Check Point firewalls, Check Point Provider-1 / VSX, Palo Alto IDS/IPS modules, Data Center Migration, F5 Load Balancers, Blue coat URL filtering.
Expert in maintaining Business Continuity and performing Disaster Recovery (DR) using VMware Site Recovery Manager (SRM).
Manage VMware Distributed Resource Scheduler (DRS), vMotion and High Availability (HA) Clusters.
Resource Management- Configuring VMware HA, VMware DRS Clusters for load balancing.
Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
Performing network monitoring, providing analysis using various tools like Wireshark and Solar winds.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Responsible for Cisco ASA firewall administration across our global networks.
Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP.
Scripting in multiple languages on UNIX, LINUX using Python, Shell script.
Managing UNIX Infrastructure and EMC storage involving maintenance of the servers and troubleshooting problems in the environment.
Installing operating systems Solaris, Linux and HP according to business requirements.
Hands on experience with clustering of Palo Alto Firewalls.
Migration of Cisco ASA Firewalls to Palo Alto Firewalls.
Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
Identify, design and implement flexible, responsive, and secure technology services.
Modified internal infrastructure by adding switches to support server farms and added servers to existing. .
Validate existing infrastructure and recommend new network designs.
Experienced Tech Support as it relates to LAN & WAN systems.
Accenture India 04/2010 – 10/2012
Network Engineer
Responsibilities:
Configured EIGRP for Lab Environment.
Implemented ISL and 802.1Q for communicating through VTP.
Working with Client teams to find out requirements for their Network Requirements.
Designing solutions for frozen requirements using Cisco Routers and Switches.
Deploying the network infrastructure to meet the requirements.
Created VLAN and Inter-Vlan routing with Multilayer Switching.
Monitor performance of network and servers to identify potential problems and bottleneck.
Performed administrative support for RIP, OSPF routing protocol.
Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
Real time monitoring and network management using Cisco Works LMS.
Provided technical support on hardware and software related issues to remote production sites.
Responsible for LAN and internet connection file and print server.
Maintained and installed new internet connections for customers.
Handled installation of Windows NT Server and Windows NT Workstations.
Handled Tech Support as it relates to LAN & WAN systems.
3M India Limited 07/2008 – 03/2010
Network Engineer
Responsibilities:
Assisting Network Architect for designing the Secure Local Area Network.
Supervising the installation of Conduits, Ethernet Cables, Optical Fiber, Patch Panels, IP Cameras, Network Video Recorder Servers, Switches, Media Converters, Client Workstations, etc…
Commissioning, Configuring and Testing NVR Servers, IP Cameras, Switches, Media Converters and Client Workstations.
Familiar with tools like Remote Desktop Protocol, Telnet, SSH for remote Network and Server Administration.
Configuring systems as per client requirements from time to time.
Maintaining project documentation from Drawings to Maintenance manuals.
Designing Local Area Network for IP CCTV, Access Control and their Servers.
Preparing Network Drawings for the Installation team and also supervising.
Attending project meetings with clients and consultants to discuss project progress and also making sure everything in going on as planned.
Mediating between end Clients and Project Manager.
Commissioning and Testing Access Control Readers, CEM Systems AC2000 Access Control Servers, D-Link Switches and Dell Workstations.
Administration of Access Control System by enrolling new users, granting or revoking access permissions to highly secure premises day to day.
Interfacing IP CCTV, Access Control System with Fire Alarm Systems and Fire Suppression Systems for Fast Evacuation and Compliance.
Quarterly Testing of the systems and also assisted in conducting Fire Drills.
Contact this candidate