Name : Prasad Tipimeni

Role : Sr. Network Engineer

Email : ac50iy@r.postjobfree.com

Phone : 732-***-****

PROFESSIONAL SUMMARY:

Around 8 years of experience as Network Engineer in Routing, Switching and Firewall Security, including hands-on experience in providing network support, installation and analysis for a broad range of LAN / WAN/Data Center communication systems.

Working knowledge of installing, configuring, and maintaining Cisco Switches (2900, 3500,3700 series, 6500 series)

Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)

Expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VXLAN, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, MST, PVST+, Ether channel using LACP and PAgP, Inter-VLAN routing.

Protocols working experience/Awareness: OSPF, EIGRP, RIP, BGP, HSRP, ACL, VTP, NAT/PAT, CDP, SSH, HTTP, HTTPS, NTP, SNMP, ARP, STP (802.1D), SNMP, DNS & DHCP.

Work experience on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.

Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.

Extensive Knowledge on IP Multicast, IGMP, IGMP version 2 and 3, CGMP, IGMP Snooping.

Administration and Diagnostics of LAN/WAN setup, installation, configuration and troubleshooting with in-deep knowledge of TCP/IP, NAT, PPP, ISDN, ATM and Frame Relay.

Extensive Knowledge on the implementation of Cisco ASA firewalls.

Performed security operations on Cisco ASA firewalls such as IPsec VPN’S, NAT, configuring Active/Standby Stateful failover, and any connect Web VPN

Strong experience in Network security using ASA Firewall, Checkpoint, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN, F5 Load Balancer..

Experience with Cisco ISE platform and Cisco FWSM

Managed successful delivery of massive security response portfolio including Splunk, Cisco ISE, Infoblox..

Manage, operate, and analyze data from corporate security systems including Sourcefire IDS.

Good Understanding of ASR and CRS routers and the configuration of MPLS, VRF's and BGP.

Working knowledge and experience supporting CRS, ASR 9k, 7600,1002 and 6500.

Hands on experience working with Cisco Nexus 7K, 5K & 2K Switches.

Experienced in configuring Gateway Redundancy Protocol HSRP and redistribution between routing protocols and troubleshooting them.

In-depth knowledge of implementing, configuring and troubleshooting Routing Protocols Static Routing, EIGRP, OSPF, BGP.

Extensive knowledge of deploying and troubleshooting L2/L3, TCP/IP, Multilayer Switches

Hands on expertise in implementation and troubleshooting of protocols such as STP, RSTP, PVST, HSRP and VRRP.

Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS)

Experience working with Juniper EX, MX, QFX, PTX and SRX series

Good Knowledge in configuring Cisco Prime 2.1 and WCS wireless platforms.

Design & administer public wireless using Cisco 5500 WLC and Cisco Prime for network monitoring.

Experience working on Aruba wireless controllers.

In depth experience with Cisco UCS B Series Hardware and UCS Management

Familiarity with Cisco UCS C-Series Hardware Experience with Audit controls and Audit remediation Experience with SNMP, WMI

Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Translation from IPv4 to IPv6, Multilayer Switching, UDP, Ethernet, Voice & Data Integration techniques.

Experience in managing security policies with CSM, integrated with ASA 5500 devices.

Experience in installing, configuring and troubleshooting of Checkpoint and Palo Alto Firewall.

Worked extensively in Configuring, Monitoring and Troubleshooting Checkpoint security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design.

Experience with Bluecoat Proxy servers and Packet Shaper Systems.

Design and deploy Cisco ACS Server solutions including TACACS+, High Availability, Active Directory integration, etc.

Experience in installing and configuring DNS, and DHCP server.

Network management using Syslog, Packet Sniffers, SNMP etc.

Architecture, design, install, configure VMware ESX, ESXi, within VI3, vSphere 4 and vSphere 5 environments with Virtual Center management, Lab Manager, vCloud Director

Proficient in using SolarWinds Network Management tools like Network Performance Monitor (NPM), Net flow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.

Optimizing and configuring SolarWinds modules such as NPM, IPAM and Orion.

Experience with Microsoft SCCM, Symantec Netback up, Symantec Endpoint Protection (SEP), VMware, and Remedy software (Action Request System).

Knowledge of Cisco UC, VoIP, SIP and TDM troubleshooting techniques, traffic engineering, and experience interpreting and taking action on alert management and performance management tools.

Advanced Technical support for the Symantec Management Platform

Experience administering, configuring and supporting McAfee EPO.

Experience on IPS and/or DLP, Administration of McAfee anti-virus

Knowledge on VxLAN and/or Application Centric Infrastructure (ACI)

worked on leading research and engineering team on rapid prototyping next generation cloud computing and software defined networking (SDN) products and services

Experience on Web Filtering solutions from Blue Coat.

Worked on Bluecoat proxy server, Tipping Point Intrusion Protection System management

Scripted import/export tasks using REST APIs in Perl and Python

Implemented PXE Boot Servers that Resync between multiple locations.

Experience in WAN Accelerations devices like, Cisco WAAS and Riverbed.

Performed deep packet analysis to troubleshoot application issues using tools like Wire-shark.

Experience of Network Segmentation in Virtualized Environments.

Managing Windows Server Environment with physical and virtual environments, Configuring and Monitoring the health of Active Directory and Servers.

Maintaining all Citrix Servers, VMware Server and V-Sphere Client.

Installed and configured the Linux servers in the network per specifications of clients.

Provision new servers using HP RDP (Altiris), deploy patches, script automated installations of third party utilities

Configure DRAC or ILO to remotely manage the Servers.

Maintained existing programs/scripts and extended Linux system functionality as needed

Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills.

Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS

Routers

Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600, ASR 1K, ASR9K, Juniper MX 480, MX 960

Routing Protocols

OSPF, EIGRP, BGP, RIP v1/v2, MPLS PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches

Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960, Juniper JunOS

Switching Protocols

LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging

Multicast Protocols

IGMP, IGMP version 2 and 3, CGMP, PIM-Sparse and Dense Mode.

DHCP, FTP, TFTP

LAN technologies

Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STP, RSTP, 802.1W, Cisco Prime

WAN technologies

Leased lines 128k - 155Mb (PPP / HDLC), Channelized links (T1/DS3/OC3/OC12), Fiber Optic Circuits, Frame Relay, ISDN and ATM

Load Balancer

F5 Networks (Big-IP) LTM 8900 and 6400

Network security

Cisco ASA 5585,5550,5540, ACL, IPSEC, F5 Load Balancer, Checkpoint, Palo Alto, IPSec VPN, GRE VPN

Network Management

SolarWinds, Proteus, Xilinx 9.21, HP Open-view, Wireshark, Spirent, SNMP

Operating systems

Windows XP/ 7/ 8, Windows Server 2003/ 2008, Mac OS X and Linux

Language skills

C, C++, Python, Bash, SQL

Various Features & Services

IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP

Applications

MS (Office, Word, Outlook, Excel, PowerPoint, Visio), VMware, Adobe Photoshop and Illustrator

CERTIFICATIONS

Cisco Certified Network Associate (CCNA)

Cisco Certified Network Professional (CCNP)

PROFESSIONAL EXPERIENCE

Client: Santander Bank, Boston, MA. 06/2016 – Till Date

Role: Network Security Engineer

Responsibilities:

Involved in configuring and implementing of composite Network models consists of Cisco ASR 1K, 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.

Designing and implementing LAN/WAN solutions across locations

Working on Bluecoat Proxy configuration, user access troubleshooting.

Pack file modification for Bluecoat Proxy.

Health monitoring of Bluecoat Proxy.

Experience in performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.

Data centers consolidation, design, management and supporting network activities.

Managing the LAN/WAN devices across locations for day-to-day operations.

Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.

Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication

Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.

Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.

Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).

Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.

Managing location specific Cisco ASA Firewalls and also data center internet gateway firewalls.

Firewall policy administration and support on PIX Firewalls as well as Cisco ASA Firewalls.

Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances.

Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.

Handling new application load balancing requirements through F5 LTM devices.

Experience with configuring Virtual Server and configuring load balancing methods in F5 12.0 LTM.

Configured NAT and SNAT in F5 12.0 LTM. Managed virtual servers in F5 12.0 LTM.

Maintain BIG IP F5 configuration for modules LTM, ASM, APM and future GTM.

Upgrading and deployment of Nexus 7k, 5k and 2k

Configured VPC, FEX and VDC’s on Nexus 5K, 7K.

Created ACI EPGs (End Point Groups) contract policies, VRFs and bridge domains for tenants

Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers.

Coordinating with service providers like AT&T, Verizon etc. for all network outages /restoration/new implementations.

Integrating new locations with existing MPLS Network and enabling standard corporate application access.

Implementation of Site to Site VPN s with direct vendors and customers.

Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.

Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.

Implementing and maintaining network monitoring system (Cisco works, HP Open view and Wireshark) and experience with developing network design documentation using VISIO.

Designed and deployed a Cisco Identity Services Engine (ISE) solution (wired, wireless, and VPN users) for a commercial client with converged access switches and Cisco ASA firewalls.

Installed and configure Cisco Identity Service Engine (ISE) 2.0 and implement 802.1x and wireless guest sponsor portal.

Worked with team Managing and configuring Aruba Wireless controller devices (7210, 7240) and Cisco Access Points.

Implement Infoblox DNS appliance and run scripts as needed.

Organized and oversaw application upgrades to ACAS and Infoblox.

Used DHCP to automatically assign reusable IP addresses to DHCP clients via INFOBLOX IPAM.

Worked on Windows layered products including MS Exchange, DNS and Active Directory.

Used Infoblox for documentation and tools updates.

Configuration and maintain Active Directory, DNS, DHCP and Domain Controllers.

Advanced knowledge, design, installation, configuration, maintenance and administration of Junos, Juniper SRX Firewall, Juniper EX and Juniper MX devices.

Attending weekly CAB meetings and ensuring all changes were going through the change process.

Capacity planning and providing recommendations for infra upgrades

Infrastructure upgrades and new Infra deployments.

Managing IT Security & Disaster recovery Management

Environment: Cisco 6506/4948/4510 switches, Cisco 3660/3845/7609 Routers, Cisco ASA, Palo Alto, F5 Load Balancers, OSPF, BGP, MPLS, HSRP, Juniper MX 960, Nexus 2K, 5K, 7K.

Client: State Farm, Bloomington, IL. 06/2015 – 05/2016

Role: Sr. Network Engineer

Responsibilities:

Responsible for implementing, supporting, and maintaining 24x7 network services.

Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.

Configured and troubleshooting HSRP, BGP, OSPF, EIGRP, MPLS WAN, QoS and Route Maps.

Troubleshoot connectivity issues involving VLAN’s, OSPF, QoS etc.

Support, monitor and manage the IP network.

Maintained core switches, creating VLAN’s and configuring VTP.

Expertise in working with various Cisco routers such as CISCO 6500, CISCO 7613, CISCO-GSR, CISCO-GSR-XR, CRS-16/S and, CRS-8/S.Designed IP Addressing schemes, VLAN tables and Switchport assignments, Trunking and Ether-channel implementation.

Gained hands on experience with VLSM, STP, VTP, VLAN Trunking.

Managed and developed network projects designed to strengthen network continuity and deploy security elements in an attempt to meet and exceed contract requirements, including system analysis and troubleshooting.

Migrated L3VPN Traffic from Juniper M320's to Cisco CRS-1 with minimum disruption.

Built an accruing network via MPLS circuits to split the trusted and untrusted traffic via a Cisco ASR 10k .

Configured the ASR 10k to use the VRF routing functions to completely split the traffic through the network.

Knowledge and experience of 802.11 a/b/g/n Ethernet standard for wireless Technology.

Worked with other team members in testing of the network architecture.

Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.

Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF and BGP etc.

Configured, installed and maintained checkpoint endpoint security E80.40/E80.50 management and policy servers.

Migration and implementation; new solutions with Palo Alto Next-Generation Firewall series PA-500, PA-3060, PA-5060, PA-7050, PA-7080

Responsible for planning, documenting and implementation of complex Firewall and VPN solutions

Experience on working with Palo Alto Next Generation firewall with security, networking, and management features such as URL filtering, Anti-virus, IPsec VPN, SSL VPN, IPS, Log Management etc.

Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments

Exposure to wild fire advance malware detection using IPS feature of Palo Alto

Implemented Positive Enforcement Model with the help of Palo Alto Networks.

Checkpoint log server upgrade from R71.40 to R75.40 to take advantage of Smart logs.

Experience on Checkpoint Firewalls NG, NGX R65, R70, R75, R77, NSX (VMware Network).

Experience in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server.

Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.

Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.

Monitor mitigate threats using Cisco FirePOWER IPS using custom correlation events and built-in tools

Utilize Cisco FirePOWER policies to manage applications, Snort rules, and URL blocking

Monitor and create correlation events using Solarwinds Logging and Event Manager

Black listing and White listing of web URL on Blue Coat Proxy Servers.

Experience with Using GTM, APM & LTM F5 component to provide 24“7 access to applications

Creating Virtual IP address, Pools and Persistence profiles on F5 LTMs.

Experience with network based F5 Load balancers with software module Access Policy Manager (APM) & Checkpoint Load Sharing on checkpoint clusters.

Planned and worked on design with Network team to re-architect F5 load-balancers to load-balance traffic anywhere in the company network.

Proficient in handling network traffic generators like IXIA and Spirant and network protocol analyzers like Ethereal, Wireshark.

Emphasis on VoIP (Voice over Internet Protocol) technology, SIP (Session Initiation Protocol) and IP (Internet Protocol) networks.

Used Infoblox for documentation and tools updates.

Implementation on VMware ESXi and VMware Infrastructure.

Migrate Physical Servers to Virtual Server using VMware Converter (P2V Converter)

Experience configuring and troubleshooting on Citrix NetScalar Load Balancer.

Design, install, configure, troubleshoot and maintain varies load balancers including Citrix Netscaler, Riverbed STM.

Environment: Cisco 2600/2800/3600 Cisco 2950/2960 switches, Cisco Routers 7000, 5300, 4000, 2500, 3000, 2600, NAT, Nexus 2K,5K,7K, Citrix NetScaler, Bluecoat, Solarwinds, PAT, DHCP, DNS, OSPF, EIGRP, MPLS, ASR, TCP/IP, LAN, WAN.

Client: United Health Group, Minneapolis, MN. 01/2014 – 06/2015

Role: Sr. Network Engineer

Responsibilities:

Responsible for testing and documenting hosted VoIP/PBX. Programming of VoIP/SIP endpoints, Routers, switches, cabling, DHCP/ FTP/ TFTP servers and firewalls.

Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.

In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.

Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc. Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.

Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).

Configuration of OSPFv3, BGPv6 on Cisco Routers.

Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.

Worked on documentation to create Visio diagrams using MS Visio.

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.

Worked on team that designed and implemented F5 BigIP Load Balancers for use with in-house web and database applications.

Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor.

Train the Customer’s design, implementation and support personnel to configure and operate the Cisco Networks products.

Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.

Troubleshooting various network security related issues using Cisco SDM.

Monitoring links using SolarWinds.

Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, port aggregation

Hands on experienced in Telecom/ Datacom testing tools like Spirent

Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers.

Configured VPC, FEX and VDC’s on Nexus 5K, 7K.

Coordinate with Server, Security, Application teams along with 3rd party vendors to provision and setup third party servers, network devices in Data Center environment.

Worked on ASA 5510/5520 firewalls configuration and Implementation for the network.

DNS Updates/Removals/New Adds via InfoBlox DNS Appliance.

Used Infoblox for documentation and tools updates.

Environment: Cisco7600/7200/3800 routers, Cisco2950/3500/5000/6500switches, Cisco ASA Firewall 5510/5520, OSPF, BGP, EIGRP, RIP, VLAN, LAN, WAN, VPN, F5 BIG-IP LTM 8900, Nexus 5K/7K, VOIP

Client: MAGNA INFOTECH, HYDERABAD, INDIA. 10/2011- 12/2013

Role: Network Engineer

Responsibilities:

Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.

Configured, managed and troubleshot networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).

Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.

Monitored, troubleshot, tested and resolved Frame Relay, ATM, MLPPP, PPP, and Dial-up.

Configured/Troubleshot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN.

Installed and configured various types of Personal Computers and Printers. Installed different operating systems on Intel based PC's.

Implemented virtual Linux server and Windows server using VMWare and Xen when needed for testing

Installed Operating System and configured kernel parameters for Linux /Unix servers.

Installed Linux OS, and configured required network on the virtual machines.

Configured VLAN'S, VTP's, and enabling trunks between switches.

Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.

Planed, coordinated, implemented and supported the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.

Documented and Log analyzing the Cisco PIX series firewall.

Excellent Troubleshooting Skills and Customer Centric approach.

Environment: Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800 routers, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, and Sniffer, Data center

FORTUNA IDENTITY, HYDERABAD, INDIA 07/2009 – 09/2011

Network Support Engineer

Responsibilities:

Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF and BGP.

Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers

Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches and routers.

Provided IP address management applying SUBNETING and VLSM.

Configured VLANS, implemented inter Vlan routing.

Implemented redundancy using STP protocol in switched Network

Assisted Network Engineer in the installation and configuration of firewalls.

Performed on-call support for installation and troubleshooting of the configuration issues.

Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment

Developed network drawings and documentation utilizing Visio, Word, and Excel programs

Maintained an overview of network addressing schemes and documentation

Responsible for special functions as directed by management and other duties as assigned.

Environment: Cisco Routers 2900, 2600, 3600; Cisco Switches 1900, 2900, 3500, 3700 and 450 Series; LAN/WAN: Frame relay, NAT, DHCP, TCP/IP

Contact this candidate