Sign in

Network Security

New York, New York, United States
January 03, 2018

Contact this candidate


Email: Mobile: +1-973-***-****


Self-motivated, hardworking and creative graduate, seeking a full time position with growth oriented organizations, wherein overall hands on experience and knowledge of Network Security and Computer Networking skills learnt during course of my education in the field of Electrical Engineering get refined.


Certified Cisco Network Engineer with experience in implementing, testing, troubleshooting, and maintenance of network devices for networking and security

Experience in Cisco Routing, Switching with strong Cisco hardware/software experiences with Cisco Routers such as 7200, 7600, Cisco Multilayer Switches 4500, 6500.

Experience in configuration and management and troubleshooting of Checkpoint, Fortinet Juniper and Cisco ASA Firewall in various domain such as Internet, DMZ, and Remote-Access VPN.

Experience in IP addressing & sub netting with VLSM, configuring and supporting TCP/IP, DNS, installing, implementing and configuring proxies.

Experience in configuring Access Lists (ACLs) in Cisco, Nexus and Juniper Routers and Switches and Aruba RAP devices.

Worked extensively in Implementing & Managing LAN, WLAN & WAN solutions for different client setups. In-depth knowledge and experience in design, configuration, implementation and troubleshooting of Firewall rules for SSL VPN, Site-to- Site VPN and MPLS Circuits for internal as well as vendor connectivity

In-depth knowledge in Layer 3 Routing protocol configurations: RIP, EIGRP, OSPF, BGP, & MPLS.

Experience with different Network Management Tools, Anti-virus and SIEM tools like Wireshark and Symantec and next generation CB Defense, HP Arcsight & Splunk to support 24 x 7 Network Operation Centre and Security Incident Response Centre respectively

Strong hands on experience with security devices for malware detection and analysis and remediation using IDS/IPS like Sourcefire and Fire-eye and perform vulnerability scans using Nexpose by Rapid 7

Strong communication skills, can work overtime including in shifts and weekends whenever required, can work individually as well as team member.

Excellent Project Management and Operations Planning skills as well as creating daily reports for tracking all incidents worked by individual team members.


CCNA Routing and Switching –Licence – CSCO12821676 (Expiration- Sept 2018)

Gained training on Splunk Enterprise.


Operating Systems: Windows (Server 2003/2008, Vista, Windows 7), Basic Linux OS, MAC OS

Routers: Cisco 1900, 2900, 7200, 7600

Routing: MPLS, OSPF, EIGRP, BGP, RIP, Redistribution, Summarization, Static and Dynamic Routing.

Switches: Cisco 3750, 4507, 4510 & 6500 series switches, HP Aruba

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch.

Network Security: Firewalls, ACL, IPSEC VPN, GRE VPN, IPS/IDS, Bluecoat Proxy SG, Nexpose, Risk Fabric, Legal point.

Network Management, Antivirus and SIEM: Wireshark, Symantec, CB Defence, Arcsight, Splunk

Reports: Microsoft Visio, Microsoft Office and Excel


USAS Technologies, New Jersey, United States June 2016 -- Present

Client: Comcast: Network Security Engineer

Security Operations and Incident Response Centre

Design, implementation and troubleshooting of firewall connectivity on Checkpoint and Fortinet

Experience in implementing and troubleshooting SSL VPN, Site-to- Site VPN and MPLS Circuits for vendor connectivity on

Checkpoint, Juniper SRX and Pulse Secure.

Blocking of malicious and phishing URLs and IP addresses on Bluecoat, Sourcefire and Websense.

Monitoring alerts for all security devices within company’s environment and taking necessary actions for resolving alerts.

Configurations of Access Lists (ACLs) on Cisco, Nexus and Juniper Router and Switches.

Monitoring ticketing tools like JIRA and Remedy for handling incident and change management requests.

Performed tcpdump and firewall monitor to provide analysis of packets using checkpoint command line including tools like Wireshark.

Checking authentication logs for employees and vendors on SIEM tools like Arcsight.

Troubleshooting employee and vendor connectivity issues related to all security devices.

Implementation and troubleshooting of AAA devices.

Whitelisting and troubleshooting of Aruba RAP devices.

Responsible for analyzing threats in the general threat landscape and specific threats targeting the client's environment.

Responsible for monitoring and researching information security threats and identifying indicators of compromise (IOCs).

Responsible for assessing the client's security data from Intrusion Detection System (IDS)/Intrusion Protection System (IPS) that include Sourcefire and Fire-eye, firewall logs which include Checkpoint and Fortinet, anti-virus logs from Symantec, and Security Incident and Event Management (SIEM) from Arcsight

Analyzed security data for repeating trends, attacks, malicious Internet Protocols (IP), and anomaly type events.

Reviewed firewall rule sets, IDS and web proxy configurations, Arcsight reports, and access control lists for accuracy.

Performed forensic security investigations using Arcsight Logger Appliance

Assisted Tier 3 for installation, configuration and provided operational support for HP Arcsight

Added/modified Arcsight forwarding filters using regular expressions (regex) and unified expressions to ensure all security events were delivered from Logger Appliances to ESM.

Working on cases generated on Arcsight ESM created by various security tools logs fed into the logger appliances.

Utilized Arcsight dashboard to monitor hourly, daily, and weekly CPU utilization and EPS for all receivers and forwarders.

Perform scans, review and provide recommendations to client for SMB vulnerabilities to have them remediated within limited period of time using Nexpose by Rapid 7.

Maintaining data integrity and analysing incidents to prevent loss of sensitive data outside corporate network with help of DLP tool by Symantec & S3 Risk Fabric and providing solution to the client for any such incidents.

Attending calls from Police Departments and 911 Centres for Emergency life or death situations that involve information related to Xfinity and later releasing information only after verifying the caller thoroughly.

Listening to recorded calls of compromised subscriber accounts, analyse the data using different security tools including Splunk and later escalating the analysis to Legal team for further analysis.

Creating weekly report and maintaining documentation of standard procedures, daily reports for tracking all incidents worked by individual team members.

Environment: Checkpoint, Fortinet, Cisco and Juniper Routers and Switches, IPS/IDS Sourcefire and Fire-eye, Bluecoat Proxy SG, Arcsight, Splunk, Symantec, Risk Fabric, Cb Defense, Nexpose, Wireshark, Legal Point

Baanyan Software Services, New Jersey, United States

Client: Ondeck Capital, Inc. New York, NY

Network Support Engineer June 2015 – June 2016

Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.

Troubleshoot of DNS, DHCP and other IP conflicts and used DHCP to automatically assign reusable IP addresses to DHCP clients

Configured RIP, EIGRP and OSPF on router and installed multi-protocol multi-interface Cisco routers.

Maintenance of layer 2 switching tasks which advocate VLAN, VTP, RSTP, PVST, RPVST

Maintenance and support of Windows Server 2008/2012

Performed network monitoring and provide analysis using tools like Wireshark.

Installation and configurations of DLP Endpoints using Digital Guardian

Integrate new or update existing DLP configurations by leveraging the proven and repeatable methodology

Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL and VPN

Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.

Provide support for Anti-Virus/ Anti-Malware protection using Kaspersky

Installation, implementation and support for RSA tokens roll out and ticketing using JIRA.

Initiated installing, implementing and support for mobility device management using Good Work on android and iPhone.

Any additional Security Related Services including Mac Encryption.

Environment: Network Security, anti-virus, anti-malware, firewall, Kaspersky, RSA, DLP, Cisco Routers/Switches, DNS, DHCP, VLAN, Subnetting, Trunking

Technosoft Engineering Projects, Mumbai, India. June 2012 – July 2013

Junior Network Engineer (Intern):

Worked on Cisco Layer 2 switches (spanning tree, VLAN).

Configured VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.

Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.

Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.

Troubleshooting IOS related bugs based on past history and appropriate release notes.

In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.

Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.

Performed and technically documented various test results on the lab tests conducted.

Assisted senior engineers in planning and configuring the entire IP addressing plan for the clients' network.

Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.

Supported networks, which are comprised of 2000+ Cisco devices.

Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, TCP/UDP, Cisco ASA5510, Checkpoint, Palo Alto,Cisco Nexus7K/5K.


Awarded for Outstanding Performance with Security Operations Center team at Comcast.


New Jersey Institute of Technology: Master’s in Electrical Engineering Sept 2013 – May 2015

Mumbai University: Bachelor’s in Electronics 2008-2012

Contact this candidate