Network Engineer
Resume:
Iqjot Singh
Phone: 732-***-****
Email:ac0cla@r.postjobfree.com
Summary:
Cisco Certified Network Associate (CCNA) and Cisco Certified Network Professional
(CCNP) with around 8 years of working experience with Cisco products.
Strong hands on experience on Cisco Catalyst (1900, 2900, 3550, 3750, 6500)series switches, Cisco
(2500, 2600, 2800, 3600, 3800, 7200) series Routers, PIX Firewall (506, 515, 525, 535)/ ASA
(5505/5510), Load Balancers using Cisco ACE, F5, Security Device Manager ( SDM), Cisco Works,
HP Open View, Solar Winds, Sniffer.
Implementation of Juniper Firewall, SSG Series, Netscreen Series ISG 1000, SRX Series.
Worked on Juniper Netscreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG
200.
In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to
Point, MPLS and Frame Relay
Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP
Experience on Wide area application services
Experience in QOS on multicast VPN
Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-
relay & MPLS), Routing protocol configurations ( RIP, EIGRP, OSPF, BGP)
Proficiency in configuration of VLAN setup on various CISCO Routers and Switches.
Extensive hand on experience with complex routed LAN networks, CISCO Routers and Switches.
Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access,
Distribution, and Core layers.
In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN
architecture and good experience on IP services.
Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks,
VTP Ether channel, STP, RSTP and MST.
Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and
full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the clients
location.
Aggregating switch links using LACP and PAGP protocols.
Implementation and Troubleshooting of WAN authentication protocols- PPP, CHAP and PAP.
IP addressing and IP address scalability by configuring NAT/PAT.
Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works
and RIVER BED and Wireshark.
Experience with F5 load balancers and Cisco load balancers (CSM,ACE and GSS).
Experience on load balancing strategies/techniques, expertise in application switching/traffic
management, knowledge of persistence and SSL certificates.
Basic and advance F5 load balancer configurations, including migrating configurations
from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security
appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the
design.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with both Checkpoint and Cisco ASA VPN experience.
Certification:-
Cisco Certified Network Associate (CCNA)-41455417173FLWG
Cisco Certified Network Associate (CCNP)
Implementing Cisco IP Routing (ROUTE)
Implementing Cisco IP Switched Networks (SWITCH)
Troubleshooting and Maintaining Cisco IP Networks (TSHOOT)
TECHNICAL SKILLS:
LAN technologies : Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STP,
RSTP, 802.1W.
WLAN technologies : Autonomous APs, Lightweight APs, WLC, WDS, WLSE,
Standards 802.11A, 802.11B, 802.11G
WAN technologies : Frame Relay, ISDN, PPP, ATM, MPLS.
Cisco Equipments : Cisco routers (2500, 2600, 2800, 3600, 3800, 7200), Cisco
Catalyst Switches (1900, 2900, 3550, 3750, 6500), PIX (506,
515, 525, 535)/ASA (5505/5510) Firewall, Load Balancers using
Cisco ACE.
Network Security : NAT/PAT, VPN Configuration, IPSec, IDS, IPS.
Routing Protocols : IGRP, EIGRP, OSPF, ISIS, BGP, VRRP, GLBP & HSRP
Infrastructure services : DHCP, DNS, SMTP, POP3, FTP, TFTP.
Network Management : SNMP, Cisco Works, HP Open View.
IP Telephony : H.323, MGCP, SIP, QOS, voice gateways.
Platforms : Windows 98/XP/VISTA, Windows 2000/2003 Server, Linux.
Applications : MS Office, MS VISIO
Network Security : Cisco ASA, AC, IPSEC,
Load Balancers : Cisco CSM, Cisco ACE 4710, F5 BIG-IP LTM 6900 series
PROFESSIONAL EXPERIENCE
Leidos, Cary, NC Sep 2015 - Till Date
Security Engineer
Responsibilities
Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers &
Switches, Nexus Switches, Juniper and Palo Alto Firewalls.
Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco
Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600,
2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers.
Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-
Reflector clusters, Route-maps and route policy implementation.
Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage
across multiple verticals.
Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and
Datacenter.
Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance,
Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to
GetVPN.
Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF
is used for local routing only) which involves new wan links.
Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability
Solutions for ASA.
Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers,
hubs and switches.
Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper
network routing for the B2Bnetwork connectivity.
Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and
Datacenter. Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco
Nexus 7k/5k/2k.Regular upgrade and maintenance of Infrastructure, Installing, configuring, and
maintaining Cisco Switches (2900, 3500,7600, 3700 series, 6500 series) Cisco Routers (4800, 3800,
3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and
Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead
appliances
Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination,
Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital
Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP
LTMs/EM.
Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP, VRRP,
UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to
Facilitate 2/3/4G Network.
Responsible for 6500, 3500, Nexus 5500-7009 switching, ASA, FWSM Firewalls, CSS and F5 load
balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
Knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
Expertise in installing, configuring and troubleshooting Juniper Routers (J,M and MX-series) Expertise
in configuring and troubleshooting of Palo Alto, Juniper Netscreen& SRX Firewalls and their
implementation Experience in
Maintained the client environment which had Juniper SSG5/SSG20/ISG1000 and SA6500.
PNC Bank, NYC- NY Apr 2014 Aug 2015
Sr. Network Engineer
Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and
critical network links by coordinating with the vendor.
Troubleshooting the Juniper SRX100 and 110 series, Juniper Netscreen routers with Site-Site VPN,
and firewalls for Supervalu Retail sites.
Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their
implementation.
Installing and configuring new cisco equipment including Cisco catalyst switches 6500, Nexus 7010,
Nexus 5548 and Nexus 2k as per the requirement of the company.
24x7 on-call escalation support as part of the security operations team.
Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment
to have connectivity between two different data centers.
Managing and providing support to various project teams with regards to the addition of new
equipment such as routers switches and firewalls to the DMZs.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
Experience in migration of VLANS.
Handling enterprise outages effectively and driving towards the resolution. Coordination of fault
escalations in conjunction with the 1st high-level technical management of high priority or technically
complex calls.
Working with Capacity management on network bandwidth utilization reporting of the sites WAN link
and vendor co-ordination for new site turnovers / WAN links.
Preparing Metrics report detailing on SLA performance of tickets and process quality report to analyze
team performance & discussion on the improvement areas (By monthly).
Providing training to new comers and effectively working towards a process quality improvement in
the Team.
Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams &
external customers of all locations
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and
identifying the root cause of the issues.
Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches.
Hands-on experience with Ether Channel, Spanning Tree, Trunking, ACLs, Syslog. Experience in the setup of
HSRP, Access-Lists, and RIP, EIGRP, and tunnel installations.
Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.
Work assigned tickets to determine the point of failure and resolve problems remotely utilizing available tools
and other Operation Center resources.
Provide escalation support to L1 members of network team.
Worked with different ISP globally for any WAN circuit and BGP routing issues. Opening up cases for CE
routers, Riverbed optimizer issues.
Work & escalate problems effectively in order to meet customer SLA's (service level agreements).
Perform problem management and root cause analysis for customers as required.
Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
Environment: Nexus 2k/5k/7k, Cisco6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, Juniper
SRX100,LAN,WAN,OSPF,RIP,BGP,EIGRP,HSRP,PPP,VPN,Checkpoint,Cisco ASA.
Geico, Chevy Chase - Maryland Nov 2012 Mar 2014
Sr. Network Engineer
Responsibilities:
Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
Create and test Cisco router and switching operations using OSPF routing protocol.
Configuration and troubleshooting link state protocols like OSPF in multiple areas.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring
VLANs.
Implemented MPLS VPN networks to test various problem reproductions in lab
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for
creating Access/distribution and core layer switching architecture.
Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
Configuration and troubleshooting of Cisco 6500, 7500, 7200 Series routers.
Managing and supporting large scale MPLS & Frame relay on Cisco environment for more than 5000 Retail
sites, 100 Distribution centers, 100 offices and 3 datacenters.
Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network
links by coordinating with the vendor.
Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
Building the VPN tunnel and VPN encryption.
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the
B2Bnetwork connectivity.
To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls,
and related network security measures.
Provided proactive threat defense with ASA that stops attacks before they spread through the network.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation
procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static
and default route.
Configured the Cisco router as IP Firewall and for NATting.
Configuring various advanced features (Profiles, monitors, I Rules, Redundancy, SSL Termination, Persistence,
SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed
various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineers
instructions and troubleshooting any related issues.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco
ASA VPN experience
Involved in Switching Technology Administration including creating and managing VLANSs, Port security,
Trunking, STP, Inter-VLAN routing, LAN security etc.
Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
Configured IP access filter policies.
Environment: Cisco 6505/4500/3550 Switches, Cisco 6500/7500/7200 Routers,F5 Load Balancer,
ASA,OSPF,BGP,EIGRP,RIP,LAN,WAN,SSL/VPN,
Heartland Business System, Chicago Dec 2011 Oct 2012
Sr. Network Engineer
Responsibilities:
Involved in Configuring and implementing of Composite Network models which consists of Cisco7600, 7200,
3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5
and general troubleshooting of the F5 load balancers.
Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate
adding new business partners to new and existing infrastructures.
Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost
effective network solutions to accommodate customer requirements and project scope.
Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing
protocols and trouble shooting.
Experience with Project data and voice documentation tools & experience with developing network design
documentation and presentations using VISIO
Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and
ISDN.
Configured RIP, PPP, BGP and OSPF routing.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
Configured IP access filter policies.
Identify, design and implement flexible, responsive, and secure technology services
Experience with Firewall Administration, Rule Analysis, Rule Modification
Implemented Positive Enforcement Model with the help of Palo Alto Networks.
Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a
separate (cloud-based) process that does not impact stream processing.
Creating and provisioning Juniper SRX firewall policies.
Deployed the switches in high availability configuration with HSRP.
Configured udld, port-fast, uplink fast and other spanning tree features.
Monitored network for optimum traffic distribution and load balancing using Solar winds.
Implemented security measures to keep networks running and secure. Configured extended ACLs to filter traffic
and gave restricted access to certain users.
Supervised call center and technician routine maintenance and up-gradation of network device.
Provided network and workstation support.
Interfaced with customers and senior management for problem resolution and project planning.
Environment: Cisco 2950/3500/5000/6500 switches, Cisco 7600/7200/3800 Routers, ACL, LAN, WAN,
Palo Alto, RIP, OSPF, BGP, IPV4, Solar winds, Juniper SRX.
Client: Cable Labs, Denver -CO Jan 2009 July
2011
Designation: Network Support Engineer
Responsibilities:
Upgrade Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 2950, 2960, and 3560 switch
configurations
Support 24x7 operations and answer calls from the customers on network emergencies and resolve issues
broad Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic NAT
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint
and Cisco ASA VPN experience
Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
Experience with CSM, F5 (LTM) Load balancers to provide efficient switching and routing for local and global
traffic.
Configured RIP, OSPF and Static routing on Juniper M and MX series Routers
Configured VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches
Designed and implemented remote dial up solution for clients
Installed and configured workstations for IP based LANs
Install and manage Cisco Catalyst 3500XL, & 2960 series Switches and Cisco 1800, 3900 series routers
Configured VLANs, Private VLANs, VTP and Trunking on switches.
Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic Natting
Involved in all technical aspects of LAN and WAN projects including, short and long term planning,
implementation, project management and operations support as required
Conduct through analysis, problem solving, and infrastructure planning
Provide assistance to Network Manager and serve as Secondary Network support.
Troubleshoot and fix any backup and monitoring systems related issues in conjunction with Systems team and
external vendors
GAP, San Jose-CA
May 2008 to Dec 2008
Network Technician
Responsibilities:
Responsible for LAN and internet connection file and print server.
Maintained and installed new internet connections for customers.
Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS and worked with
MPLS-VPN and TACACS configurations.
Created load balancing policies using BGP attributes such as Local Preference, AS-Path, MED, Community etc.
Validate existing infrastructure and recommend new network designs.
Created scripts to monitor CPU/Memory on various low end routers in the network.
Installed and maintained local printer as well as network printers.
Handled installation of Windows NT Server and Windows NT Workstations.
Handled Tech Support as it relates to LAN & WAN systems.
Active participation on operational support for routing/switching protocols in complex environments including
BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
Configured ASA 5510 appliance and VPN.
Responsible for implementing QoS prioritizing voice traffic over a data.
Implemented SNMP on Cisco routes to allow for network management. Completed the installation and
configuration of T1, T3 & OC3 circuits.
Contact this candidate