Network Engineer Security
Resume:
Sr. Network Engineer
ANUSHA GOPAGANI 469-***-****
****************@*****.***
Professional Summary
Over 8 years of Experience Cisco, Juniper (JNCIA) and Experience with designing, architecting, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
Extensive work experience with Cisco Routers, CCNP,Cisco Switches, Load Balancers and Firewalls
Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800, 810 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)
Hands on experience in troubleshooting, Bash scripting and deploying of various IP Routing Protocols EIGRP, RIP v1/2, OSPF, IS-IS & BGP
Implemented security policies using ACL, IPSec, VPN, AAA Security TACACS+, and Radius on different series of routers and firewalls
Installation and Configuration of Cisco 6500, 4500, 2900, 3500 series switches, Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers.
Experience with Cisco Data center Switches Nexus 7000, 5000 and 2000.
Hands on experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000, 2000 for the corporate applications
Designing and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550)
Expertise in configuration of routing protocols and dep
loyment of OSPF, EIGRP, BGP and policy routing over Cisco routers.
Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS
Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
Configured Client-to-Site VPN using SSL Client on Cisco ASA 5520 ver8.2
Configured ASA 5520 Firewall to support Cisco VPN Client on Windows 7/XP/Vista.
Installation, configuration and troubleshooting of F5 load balancers.
Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP
Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.
Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
Efficient designing of IP Addressing Scenario using VLSM and Sub netting.
Configured Security policies including NAT, PAT, VPN's and Access Control Lists.
Extensive experience using Microsoft suite like Word, Visio, Excel, PowerPoint
CERTIFICATIONS:
Cisco Certified Network Associate(CCNA)
Technical Skill Matrix
Cisco Platforms
Nexus 7K, 5K, 2K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800, 810 series) Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series)
CISCO 5500 WLC, CISCO ISE, Cisco ASR
Juniper Platforms
SRX, MX, EX Series Routers and Switches
Networking Concepts
Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi, Cable Modem
Firewall
ASA Firewall (5520/5540/5585), PIX,FWSM, Checkpoint
Network Tools
Solar Winds, SNMP, InfoBlox, Wireshark, Slpunk
Load Balancers
F5 BIG IP LTM 5000, GTM C-112, VIPRION VPR 2400
WAN technologies
Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET
LAN technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q
Security Protocols
IKE, IPSEC, SSL-VPN
Networking Protocols
RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, DMVPN,TACACS+, Radius, AAA
Languages
Perl, C, C++, SQL
Operating System
Windows 7/XP, MAC OS X, Windows Server 2008/2003, Unix
Network Simulators
GNS3, Packet Tracer
Professional Experience
Client: TIAA CREF, Charlotte NC May 2016 – Till Date
Sr.Network Engineer
Responsibilities
Responsible for designing and implementation of customer's network and Security infrastructure.
Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks
Responsible for Cisco ASA firewall administration across our networks and support customer with the configuration and maintenance of the firewall systems. .
Experience with end to end migration of DMZ server, including Vendor connectivity.
Experience with designing, implementing and troubleshooting Cisco routers and switches using different routing protocols like OSPF, EIGRP, DMVPN,BGP, ISIS and MPLS L3 VPN, VRF
Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
Experience in maintenance of Vmware
Experience in working with management tools like putty
Experience in Configuring, upgrading and verifying the NX-OS operating system.
Configuration of CISCO ISE for AAA, CCNP,security access group with the use of SGT and SGACL.
Actively involved in Switching Technology Administration, Bash scripting including creating and managing VLANS, Port security- 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst 4507R+E, 6509-E and Nexus 2232, 5596, 7009 switches.
Configuring IPSEC VPN on firewalls
Worked extensively in Configuring, Monitoring, and Troubleshooting Cisco's ASA 5500 security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
Provided Load Balancing towards access layer from core layer with VIPRION Chasis.
Managed the F5 Big IP GTM/LTM appliances which include writing iRules, SSL offload and everyday task of creating WIP and VIPs
Congiured and deployed Checkpoint firewall
Working experience ACI environment with Nexus Switches 7K
Monitoring the network with Slpunk, SNMP, Wireshark.
Involved in Disaster Recovery activity, like diverting all the traffic from the production data center to Disaster Recovery data center.
Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event of core router becoming unreachable.
Experience in configuring VOIP, PBX,SIP and SRTP
Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
Implemented HSRP on the Cisco 2948G Layer 3 switches and EIGRP, OSPF on 2 Cisco 2610 routers, the Layer 3 switch, 3 Cisco 350XL Switches, Cisco 3524XL switches for load balancing and failover.
Configuring ASA Firewall and allow/deny rules for network traffic.
Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring,Fiber, copper, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
Environment: ASA firewalls, OSPF, EIGRP, BGP, ISIS, MPLS L3 VPN, VRF, VLAN, Port security, Trunking, Nexus 2232, 5596, 7009 switches, WIP, VIP, TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, ADSL Multilayer Switching, DoD standards,VoIP,SIP
Client: Tmobile, Bothell WA Sep 2014 – Mar 2016
Network Engineer
Responsibilities
Experience with Supporting both Network and Security infrastructure in the data center environment and Campus environment, which involved with devices such as routers, switches, firewalls and wireless access points.
Strong hands on experience on ASA (5525/5545/5585) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)
Experience with implementing Cisco 6500 VSS on the User distribution switches.
Upgraded IOS on the different ASA flavors like 5510, 5520 and 5585 firewalls
Working with MPLS Designs from the PE to CE and also configuring VRF on PE routers
Experience with designing and deployment of MPLS Traffic Engineering
Configured and deployed VIPRION 2400 for load balancing
Experience in working with Cisco Nexus- OS 7k
Configuring RIP, OSPF, EIGRP BGP, MPLS, QOS, ATM and Frame Relay
Strategies for the expansion of the MPLS VPN networks
Working Knowledge of Cisco IOS, CCNP, Cisco IOS-XR, Cisco Cat OS, JUNOS,Cisco ISE
Experience with configuring BGP in the data center and also using BGP as a WAN protocol and manipulating BGP attributes
Design and deployment of MPLS, QOS, MPLS Multicasting per company standards.
Implemented site to site VPN in Juniper SRX as per customer.
Implemented various EX, SRX & J series Juniper devices.
Experience in working with NOC environment for managing and administrating the network.
Experience in working with web-based applications and storage environment.
Experience with configuring VPC, VDC and OTV between the data centers as a layer 2 extension.
Maintenance and troubleshooting of LAN, WAN, IP Routing, Multilayer Switching.
Performing on-site data center support including monitoring electrical power, switch alarms, network alerts and access logs.
Configuring RIP, OSPF and Static routing, scripting on Juniper M and MX series Routers
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Dealt with monitoring tools like (Solar Winds, Cisco Works), network packet capture tools like Wire shark
Maintained a Network with more than 6000 Network devices, some 25,000 end hosts, and the other Network devices like DHCP, DNS servers, Firewall servers.
Environment: ACL, IPSEC, SSL, VPN, IPS/IDS, AAA, RIP, OSPF, EIGRP, BGP, MPLS, QOS, ATM, Frame Relay, VSTP, SNMP, DHCP DNS Servers, Firewall.
Client:American Express, Phoenix AZ Feb 2013 –Aug 2014
Network Engineer
Responsibilities
Configuration and Administration of Cisco, Java framework and Juniper Routers and Switches.
Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
Experience in migration of Frame-relay based branches to MPLS based technology using multilayer stackable switch like 6500 series and 2800 series router
Configuring VLANs and implementing inter VLAN routing.
Testing E911, voicemail, Media gateways.
Upgrading and troubleshooting Cisco IOS to the Cisco Switches and routers.
Configure and troubleshoot Juniper EX series switches and routers.
Configuring Site to Site to VPN connectivity.
Implementation of HSRP, IPsec, Static Route, IPSEC over GRE and Dynamic routing protocol
Involved in configuring Cisco Net flow for network performance and monitoring.
Involved in designing and implementation of wireless IPT devices.
Involved in configuration of Cisco 6500 ACE switches
Configuring IPSLA monitor to track the different IP route when disaster occurs.
Involved in Implementing, planning and preparing disaster recovery.
Having meetings with the application group and gathering requirements for disaster recovery.
Involved in smart view tracker to check the firewall traffic.
Troubleshooting hardware and network related problems.
Environment:NAT, PPP, ISDN, TCP/IP, 6500 series switch, 2800 series router, inter VLAN, HSRP, IPSEC, Static route, IPSLA, smart view tracker
Beach Body, Santa Monica CA Feb 2011 – Oct’ 2012
Network Engineer
Responsibilities
Responsible for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment
Configured and troubleshoot OSPF and EIGRP.
Involved in trouble shooting of DNS, DHCP and other IP conflict problems
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
WAN Infrastructure runs OSPF & BGP as core routing protocol.
Support various routers like 2600/3600/7200 series routers.
Tested authentication in OSPF and BGP.
Switching related tasks included implementing VLANS, VTP, STP and configuring on the Fast Ethernet channel between switches
Responsible for configuring a site to site VPN on VPN Concentrator series between Head office and Branch office
Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
Configured Firewall logging, DMZs & related security policies& monitoring
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
Hands on experience working with security issues like applying ACL's, configuring NAT and VPN
Responsible for Internal and external accounts, Java framework and, managing LAN/WAN and checking for security
Involved in Network Migrations
Configuring Cisco and Juniper devices (Router & Switches)
Dynamic routing protocol configuration like RIP and OSPF.
Troubleshooting level 1 network problems.
NAT and IPsec configuration on Cisco Routers.
Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
Environment: DNS, DHCP, Cisco routers 2600/3600/7200 series, VLANS, VTP, STP, site to site VPN, PIX firewall, NAT, ACL, VLAN hopping attacks, spoofing
Nevis, Pune, India July 2008 – Dec 2010
Network Engineer
Responsibilities
Experience with Cisco switches and routers: Physical cabling, IP addresses, Wide Area Network configurations (Frame-relay and ATM).
Configured the Cisco router as IP Firewall and for NATting.
Configured static NAT, dynamic NAT, dynamic NAT overloading.
Install and configure servers, desktops and networking equipment.
Used Wireshark to analyze the networks.
Recommended and implemented improved documentation, including troubleshooting checklists, escalation guidelines& phone numbers, and status report / educational emailing protocols.
Migration of RIP V2 to OSPF, BGP routing protocols.
Created VLAN and Inter-VLAN routing with Multilayer Switching.
Configured of IP Allocation and sub netting for all applications and servers and other needs throughout the company using FLSM, VLSM addressing.
Performed redistribution with OSPF, EIGRP, RIP version 1 and 2 to enable communication with backbone.
Provide assistance to Network Manager and serve as Secondary Network support.
Involved in installing and configuring PIX 515E firewall.
Used various Network sniffers like Ethereal, TCP dump etc.
Designed network connectivity and network security, between various offices and data center. Installed and configured routers, including 1800, 2600 along with Cisco switches including 3750 and 6500.
Environment: NAT, RIPV2, EIGRP, OSPF, Frame-Relay, ATM, BGP, Ethereal, Tcp dump, Cisco routers 1800, 2600, Cisco switches 3750, 6500
Contact this candidate