Engineer Manager
Resume:
Sagar C
Sr. Network Security Engineer
ac2fdj@r.postjobfree.com 908-***-****
Summary:
* ***** ** ********** ** Network/System Administration and Network Security Engineer/Information Security Analyst
In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), Switching - VLAN, STP, VTP, HSRP & GLBP, NAT.
Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series, Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches, Juniper routers E, J, M & T-Series and Juniper EX switches EX8200, EX4500, EX4200, EX3200, EX2500, EX2200 Series.
Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.
Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series).
Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800).
Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
Expertise in installing, configuring and troubleshooting Juniper Routers (E, J, M and T-series).
Configuring RIP, OSPF, EIGRP, BGP, MPLS, QOS, ATM and Frame Relay.
Experience in configuring, implementing and troubleshooting F5 load balancer and Citrix Load Balancer in the enterprise network
Experience in maintaining stable STP topology using protocols such as Port fast, BPDU guard, root guard and UDLD
Proficient using the F5 based profiles, monitors, VIP’s, pools, pool members, iRules for virtual IP’s
Deployed F5 Enterprise manager of 4000 series for the all cluster devices over the network for easier management of configurations like SSL certificates, disable and enable of nodes states
Experience on Check Point Firewalls NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, UTM
Configured Check Point clusters with Nokia box and crossbeam
Checkpoint – R75/R70/R65 with product like Nokia IP 390, 560, 690, 1280, 2450, 61000 etc.; in Provider-1 environment
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with both Checkpoint and Cisco ASA VPN experience
Worked on F5 Local Traffic managers (LTM), Global traffic manager (GTM) of series 8900, 6400, 6800, 3400, 5100, 3600.
Worked on Juniper Netscreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, ISG 200
Experience in deploying Check Point Provider-1 NGX and configured CMAs
Knowledge on Cisco’s Application Centric Infrastructure (ACI) implementation (Nexus 9K, APIC) and Cisco ACI fabric networks
Experience in deploying and maintain Cisco PIX and ASA firewalls
Designed and implemented various project with Cisco PIX firewall. Extensively worked on Cisco PIX 506/515E and 525
Migrated and implemented new solutions with Cisco ASA Firewall series 5505, 5510, 5512-X
Involved in troubleshooting network traffic and its diagnosis using tools like ping, trace route, Gigamon, Wireshark, TCP dump and Linux operating system servers.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX
Technical Skills:
Cisco & Cisco & another vendor equipment’s
Cisco Routers (7200, 3800, 3600, 2800, 2600, 2500, 1800, 1700 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 2900 series). Juniper Routers (E, J, M & T-Series). Juniper EX Switches (EX8200, EX4500, EX4200, EX2500, EX2200 Series). PIX Firewall (506/515/525/535), ASA Firewall (5505/5510). Cisco ACE Load Balancers.
Routing Protocols
RIP, RIP V2, EIGRP, OSPF, IS-IS, IGRP, BGP, MPLS
Switching Protocols
VTP, STP, RSTP, MSTP, VLANs, Ether Channel, LACP, VSS, MLS
Load Balancing Protocols
HSRP, GLBP, VRRP
IP Services Management
NAT, DHCP
LAN technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Wi-Fi, FDDI, Token Rings
WAN technologies
Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET
Firewalls
Checkpoint Nokia Firewalls IP350, IP550 & IP750, Juniper Net screen, Firewalls ISG 1000/2000, Cisco PIX 505/515E/525 & ASA 5500 Series
Security
IPsec, IPsec VPNs, GRE over IPsec
AAA Protocols
RADIUS, TACACS+
Infrastructure services
DHCP, DNS, SMTP, FTP, TFTP
Load Balancer
CISCO CSS, F5 Networks, Citrix
Administration & Troubleshooting
CDP, TELNET, SSH, ICMP, PING and TRACEROUTE, SNMP and SYSLOG, CISCO IOS software and configurations.
Network Monitoring Tools
Wireshark, TCPDUMP, Gigamon, Packet Sniffer
Professional Experience:
Alliant Energy, Madison WI May 2016 - Present
Sr. Network Security Engineer
Responsibilities:
Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches
Configuring Cisco and Juniper devices (Router & Switches)
Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
Experience working with Bluecoat WAN Accelerator, Bluecoat Packet shaper and Bluecoat Proxy.
Configured and Analyze Blue coat WAN accelerator and packet shapers.
Creating Virtual IP address, Pools and Persistence profiles on F5 LTM
Creating Wide IPs with various load balancing methods like, Global Availability, Topology and Round Robin
Level 1 & 2 Troubleshooting and resolution of Citrix session related incidents.
Working on Checkpoint Firewalls in providing access to the customers or external vendor networks in reaching the internal servers.
Designed and implemented F5 ASM layer 7 web application firewalls for DMZ network.
Worked with Juno OS and Juniper M&T series switches
Implementing and managing Checkpoint Provider 1.0 Scalable security management for multi-domain environments
Deployed Cisco Sourcefire Firewalls and Palo Alto Firewalls.
Managed Juniper SRX firewalls and IPS systems using CSM and ASDM.
Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
Worked with Host Master for shared web hosting.
Worked with Processes like RFI, RFE and RFP
Experience in working with Network automation tools and testing for network change and configuration management.
Responsible for Assigning and Reclaiming IP address using tools like IPAM as per customer request in Infoblox Grid Manager.
Responsible for Quality Engineering of all Infoblox's Network Infrastructure, DNS/DHCP, and SaaS products.
Perform packet captures and network diagnostics using Gigamon.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Worked with Cisco IOS, NX-IOS, IOS-XR
Worked with MPLS to improve quality of service (QoS) by defining LSPs that can meet specific service level agreements (SLAs) on traffic latency, jitter, packet loss and downtime.
Experienced in working with BIG-IP Edge Portal and BIG-IP Edge Client
Experience with ALG (RTP, RTSP and FTP, DNS, HTTP), DHCP
Implemented various OSPF scenarios on networks consisting of 7600 routers
Configured policy based routing for BGP for complex network systems
Worked with Nagios for monitoring of network services (SMTP, POP3, HTTP, NNTP, ICMP, SNMP, FTP, SSH).
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
Environment: Cisco ACE, Cisco Nexus, Cisco Switches, F5 Load-balancer, Cisco Sourcefire, Juniper Switches, Palo Alto Firewalls, Checkpoint Firewall, Wireshark
General Motors, Detroit MI Mar 2014 – May 2016
Sr. Network Engineer
Responsibilities:
Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices.
Involve in deployment of new F5 LTM for Datacenter and Implementation and troubleshooting F5 Load balancers.
Implementation, configuration & troubleshooting the issues related to Virtual Servers, pools, nodes & certificates on F5 Load Balancer
Opening cases with vendor F5 for any RMA or high priority issues and involve in the troubleshooting.
Used Infoblox to assign hostnames to IP addresses.
Experience with deploying the Layer 3 MPLS VPN in all the Branches and Campus locations.
Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tuning AS-path.
Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
Detect and repair potential provisioning and configuration issues on Juniper Routers.
Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
Hand on experience in configuring Juniper SRX650.
Responsible for Checkpoint firewall management and operations across our global networks.
Provided management and troubleshooting of all networks Bluecoat proxy devices.
Configuring RIP, OSPF and Static routing on Juniper M and MX series routers.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems
Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
Troubleshoot Network flow and application performance with Wireshark and Gigamon
Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment
Configuring Cisco ASA firewalls in single and multiple context mode firewalls.
Configured Cisco ASA 5510 Firewall to establish logical separation between legacy network & lab environment.
Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover, DMZ zoning, & Configuring VLANs/routing/NATing with the firewalls as per the design.
Experience on designing and troubleshooting of complex BGP and OSPF routing problems.
Involved in configuring IP Quality of service (QoS)
Environment: Nexus devices, F5 Load balancer, Cisco devices, Layer 3 issues, Checkpoint Firewall, QOS, IPSEC VPN, WAN
Wolters Kluwer, Tampa FL Oct 2012 – Feb 2014
Network Engineer
Responsibilities:
Designs, tests and deploys IT security systems and solutions.
Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s site
Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local preference.
Deploy and support Checkpoint Provider 1
Plan, design and test the application migration from F5 load balancer to new A10 load balancers.
Migrated Juniper EX series switches to Cisco 3500 series and 6500 series switches.
Authoring & scheduling the MOPs in implementing the FW rules by creating nodes/groups/networks in checkpoint’s FW management server (Smart Domain Manager).
Enabling the TCP, UDP, SMTP ports to allow the traffic between the servers.
Troubleshooting the issues by coordinating with Tier-2 deployment team and with customers.
Performing NAT for the traffic flows going from internal network to external network.
Involved in accepting trace request from developer's team which involved tools like Infinistream console, Gigamon Application Trans/OPNET and analyzing trace in Wireshark
Implementing iRules on LTMs for http traffic redirection on LTM and GTM devices.
Configuring pools, Snats, health monitors on LTM and GTM devices (F5 & A10).
Working with IP address management tools to reserve and decommission IP’s.
Troubleshooting application connectivity issues on both LTM and GTM levels.
Deployment of Palo Alto firewall into the network. Configured and wrote Access-list policies on protocol based services.
Troubleshooting of protocol based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs
Environment: Juniper EX switches, Cisco Switches, Checkpoint, NAT, Palo Alto firewalls, F5 & A10 Load balancer, NAT, Firewall IPS, Wireshark, Gigamon
Sony Corp, New York Apr 2010 – Aug 2012
Network Engineer
Responsibilities:
Handling network devices such as Switches (Cisco Catalyst 2900 and 3500 series), Routers (Cisco 2600, 2800 and 7200 series), Firewalls, Load balancers etc.
Experience configuring Virtual Device Context in Nexus 7010.
Experience in Configuring, upgrading and verifying the NX-OS operation system.
Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
Implemented Voice VLANS, UDP, SIP, and RTP and provide QOS by DSCP and IP Precedence.
Used DHCP to automatically assign reusable IP addresses to DHCP clients.
Implementation and configuration of F5 Big-IP LTM-6400 load balancers.
Configuration and extension of VLAN from one network segment to other network segment between different vendor switches (Cisco, Juniper).
Automated network implementations and tasks and designed monitoring tools using python scripting.
Experience in working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a flexible Access Solution for datacenter access architecture.
Design and implement campus switch network with Cisco Layer 3 switches (3750, 4500, and 6500) in multi VLANs environment and inter-VLAN routing, HSRP, ISL trunk, ether channel.
Designed MPLS VPN and QoS for the architecture using Cisco multilayer switches
Implement Cisco Works 2000 device to manage Cisco routers, switches, PIX and ASA firewall, Access Points, Concentrators.
Maintain Security policy by monitoring PIX firewalls (515 and 520).
Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525) & ASA 5500(5510/5540) Series.
Environment: Cisco Catalyst switches, Juniper switches, Cisco PIX, Routing Protocols
Computer Science Corporation, India Jul 2008 – Mar 2010
Network Operations Engineer
Responsibilities:
Good Experience in Troubleshooting and monitored routing protocols such OSPF, EIGRP & BGP.
Responsible for troubleshooting guidelines for MPLS VPN and also in customer escalations and troubleshooting issues related to connectivity, STP, VLAN, Trunking, VTP, Layer 2/3 switching, Ether channels, Inter-VLAN routing, log messages, high CPU utilization and parameters that can degrade performance of network.
Administered Frame-Relay and networks and also assisted in configuring ACL & NAT through CLI.
Technical support and problem solution for the LAN and its environment
Experience with protocols such as Frame Relay, IEEE 802.11 and VLAN, OSPF and BGP, DNS, DHCP, FTP, NTP, SNMP, SMTP and TELNET.
Installed configured (through CLI & SDM) and managed CISCO routers and Catalyst switches.
Set up Internet, implementing Networking products like Servers, Proxy servers, Switches, Firewalls, Routers.
Ensure standard Router and Switch Configurations are maintained and also Responsible for Capacity planning, Contingency planning & disaster recovery.
LAN Segments monitoring/Troubleshooting LAN related issues and periodic backup of Router/ Switch Configurations.
Monitoring the NMS system for different Network Alerts.
Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, Port Aggregation & link negotiation.
Environment: VLAN, TRUNKING, VTP, TELNET, SIFY TAC
Contact this candidate