Network Engineer Cisco
Resume:
Syed Asim !
***********@*******.***
CCIE# *****
Summary
• 10 + years of experience in the field of Network Engineering with strong and extensive knowledge of Design, Configuration, Implementation, Operation, Migration and Support of Cisco and Juniper Routers, Switches, Firewalls, IPS, Encryptors, and VPN Devices.
• Strong Quantitative and Analytical background with emphasis on Network Management developed through professional experience in Network infrastructure, Quality of Service
(QoS) and Security Policies.
• Extensive knowledge of deploying and troubleshooting L2/L3 TCP/IP, Multilayer Switching, QoS, IPSec DMVPN,GETVPN, UDP, Ethernet, Voice and Data Integration techniques of technology including H.323, MPLS and IP Routing Protocols like RIP, EIGRP, OSPF and BGP.
• Also experienced with Secure Computing security solutions of Juniper Net screen firewall. Experience in network hardware and software configurations that include enterprise class switches, routers,, firewalls, DMZ, VPN, IDS, IPS, network monitoring tools, network debugging tools, VoIP telephony infrastructure and call management solutions
• Expertise in maintaining network environment using network management and monitoring tools such as SNMP, anti-virus, change management, Ethereal, Sniffer Pro 4.7, Solar winds 8.0 Net flow Analyzer, What’s Up gold, LMS Cisco works .
• Expertise in managing and migration of enterprise network.
• Excellent communication skills with ability to interface and lead at all levels. A team player who can work in coordination with any person towards achievement of company goals. Industries: Telecommunications Industry, IT Industry and Service Provider. Technical Skills
LAN/WAN Ethernet/ Fast Ethernet/ Gigabit Ethernet networks, VLAN, VTP, STP,RSTP,PVST, 802.1W, 802.11a/b/g, Frame Relay, ISDN, PPP, ATM, MPLS, leased lines, SONET, DWDM and exposure to PPP, T1/ T3 and E1/E3, DS1, DS3, OC3, OC 12., VSAT, OFDM, Radio Technology.
Hardware Cisco routers (4455,3900,, 2900,, 1900, 1800 series) Cisco Nexus 5K, 7K, 9K,ACI, Cisco ASR 9000 series and Cisco Catalyst switches (6500, 4500, 3500, 2900, 1900 series), Juniper MAG, PSA3000 NS50,NS 5GT, Juniper NSM, PIX Firewall (506E, 515E, 525, 535), ASA 5500 series, CatOS, Cisco IOS 11x, 12x, PIX OS 6x, 7x, Checkpoint VPN-1 UTM, Cisco AIRONET 1100, 1200 series, WLAN, Wi-Fi, WSC, Cisco Security Device Manager. Next Gen firewalls (Sophos, Paloalto Networks).
Education, Certifications and Training
Cisco Certified CCIE Data Center (CCIE) - CCIE # 47188
CompTIA Security + Certified ID - COMP001021409075
Cisco Certified Network Professional (CCNP) - CSCO11219892
Cisco Certified Network Associate (CCNA) - CSCO11219892
AWS Solution Architect- Associate
Two days Juniper SSL Gateway Configuration and Troubleshooting training in VA.
Cisco ACI Hands on training.
5 days Hands on Training on Paloalto Networks Next gen firewall.
B.S – Telecommunications – Pakistan
M.S. – Telecommunications - Pakistan
Two days workshop training on Juniper SSL gateway and CJSA in Herndon VA.
Three days practical workshop on Network Security organized by Networkers Society of Pakistan (NSP).
One Week workshop on Routing and Switching at National Engineer Campus (Netlinks).
Preparation of Cisco IP Telephony .
Security Static NAT, NAT/PAT, Ingress and Egress firewall design, VPN, DMVPN and GETVPN Configuration, FWSM, IDS/IPS, URL Filtering, Kiwi Syslog Server Logging, AAA, TACACS, RADIUS,FMSM, ISC, iWAN, SDWAN,GlobalProtect Cloud Services. Advance Threat protection, URL filtering, Meraki Cloud, Next Generation Firewall Paloalto Networks, Cisco ASA Firewall Sourcefire. Sophos firewall.
Could Computing AWS Solutions Architect
Infrastructure
services
DHCP, DNS, SMTP, POP3, FTP, TFTP, IIS, Active Directory. Network
Management
SNMP, Remedy 7.0, Wireshark (Ethereal), Solarwinds, Netflow Analyzer, Opmanager, PRTG.
IP Telephony SIP, H.323, RTP, MGCP, voice gateways,CSCM 4.0. Platforms UNIX, LINUX, Windows XP, NT, 2000, 2003, SQL Server 2000. Programming C, C++, Java
AWS and Azure VPC, EC2, EBS, ELB, S3, Route 53, Direct Connect, CloudWatch, Professional Experience
Senior Network Engineer September 2018 - Till Today. Verium Information Technology and ServicesWashington, DC Environment: Cisco Nexus 9000 ( C9332PQ, C93108TC-EX ) NX-OS Data center switches, Cisco 7200, 4400,3900, 3800, 2900, 1900 series router, Cisco Catalyst 6500, 4500 series switch with SUP-7, ASA 5550, 5510, Juniper SSL gateway 6500, Paloalto networks (7050,5070,3020,). Responsibilities:
Working as Gov contractor with Verium and supporting federal customers as Sr. network Engineer in troubleshooting, designing network technologies including Data Center. Senior Network Engineer October 2009 – September 2018 The Nature Conservancy, N. Fairfax Dr, Arlington, VA, 22204 Environment: Cisco Nexus 9000 ( C9332PQ, C93108TC-EX ) NX-OS Data center switches, Cisco 7200, 4400,3900, 3800, 2900, 1900 series router, Cisco Catalyst 6500, 4500 series switch with SUP-7, ASA 5550, 5510, Juniper SSL gateway 6500, Paloalto networks (210,3060). Responsibilities:
• Installed and configured Cisco 7200 series router as perimeter router, Cisco Catalyst 6506 series switch as core layer switches.
• Worked in datacenter environment with maintaining and troubleshooting core, WAN aggregation and access layer with 6500 series switches.
• Configured EIGRP for production sites, summarization of OSPF routes with MD5 authentication being implemented for security purpose on OSPF stub area.
• Configured access list (ACL) on the PE routers and redistributed the OSPF routes into BGP routes provided by the ISP.
• Troubleshooting the EIGRP, OSPF and BGP routing on the Cisco equipments for end to end connectivity both by direct console and telnet.
• `Administrating Country wide Multi Area OSPF WAN.
• Troubleshooting backbone area and the ABR connecting other areas with backbone area.
• Troubleshooting branch end OSPF network.
• Migration of Cisco firewall 525 to ASA 5550 series firewall, implemented IPS/IDS 4200 sensor to monitor network activities and maintained the ASA 5540 series firewall by setting firewall policies, NAT, PAT, access-lists in distribution layer.
• Involved in the installation of FWSM module, IDSM, IPS.
• Configured and tshoot VPN tunnels between corporate and branch office using DMVP IPSec VPN with security association (IKE preshared, MD5 authentication, 3DES in ESP Tunnel mode).
• Configured CISCO 3825 as voice gateway router implementing IP call unity and SRST, applied QoS policies for VOIP network.
• Configured, maintained and troubleshooted Cisco VNP Server and remote Administration.
• Monitoring network with around 200 Cisco equipment using Cisco Works 2000 to ensure the minimum possible downtime.
• Improved complex IT and network operation management task using Netflow Analyzer .
• Used Sniffer Pro v4.7 and Wireshark to analyze the network traffic from various interfaces.
• Configured and troubleshooting for Juniper SSL gateway for TNC remote VPN users and different venders.
Sr.Network Engineer June 2005 – June 2009
Faysal Bank Ltd Karachi, Pakistan
Environment: Cisco 3800, 3725, 3600, 2600, 1800 series router, Cisco Catalyst 6500, 3500 series switch, ASA 5540
Responsibilities:
• Installed and configured Cisco 3845 and 3825 series router as perimeter router, Cisco Catalyst 6506 series switch as core layer switches.
• Worked in datacenter environment with maintaining and troubleshooting core, WAN aggregation and access layer with 6500 series switches.
• Configured EIGRP for production sites, summarization of OSPF routes with MD5 authentication being implemented for security purpose on OSPF stub area.
• Configured access list (ACL) on the PE routers and redistributed the OSPF routes into BGP routes provided by the ISP.
• Troubleshooting the EIGRP, OSPF and BGP routing on the Cisco equipments for end to end connectivity both by direct console and telnet.
• `Administrating Country wide Multi Area OSPF WAN.
• Troubleshooting backbone area and the ABR connecting other areas with backbone area.
• Troubleshooting branch end OSPF network.
• Configured CATOS and managed VLAN for production sites on 3500 series switches and enabled layer 2 security by deploying port security for user ports, enabling STP attack mitigation like BPDU guard, Root guard using MD5 authentication for VTP (802.1q).
• Migration of Checkpoint firewall 4.1 to ASA 5540 series firewall, implemented IPS/IDS 4200 sensor to monitor network activities and maintained the ASA 5540 series firewall by setting firewall policies, NAT, PAT, access-lists in distribution layer.
• Involved in the installation of FWSM module, IDSM, IPS.
• Configured and troubleshooted tunnels between corporate and branch office using site-to-site IPSec VPN with security association (IKE preshared, MD5 authentication, 3DES in ESP Tunnel mode).
• Configured CISCO 3825 as voice gateway router implementing IP call unity and SRST, applied QoS policies for VOIP network.
• Configured, maintained and troubleshooted Cisco VNP Server and remote Administration.
• Monitoring network with around 200 Cisco equipment using Cisco Works 2000 to ensure the minimum possible downtime.
• Improved complex IT and network operation management task using Netflow Analyzer .
• Used Sniffer Pro v4.7 and Wireshark to analyze the network traffic from various interfaces.
• Involved in resolving DWDM, SONET circuits connectivity issues.
• Usage of REMEDY 7.0 tool for solving ticketing issues and actively involved in change management process for new equipment installation.
• Created templates and documented using MS visio and MS office suite.
• Managed and monitored a team of technicians in changing the copper panels into fiber panels for bandwidth upgrade.
• Involved in team and resource management to configure Cisco 1841 series router on branch on-line facilities.
Network Engineer
Supernet Ltd Lahore, Pakistan January 2004 – May 2005 Environment: Cisco 4500, 3845, 3500, 1700 series routers, Cisco Catalyst 6500, 2900 series switch, Cisco Aironet 1200 series.
Responsibilities:
• Maintained the LAN/WAN infrastructure using the network equipments of Cisco routers 3800, 3600, 1700 series, Cisco Catalyst 6500, 2900.
• Configured CATOS, VLANs, VTP, STP, RSTP, port binding for the network on Cisco 6500, 2900 series switches both by direct console and by telnet. Setup and configured private VLANs for the server farm in the DMZ.
• SNMP network monitoring using HP open view NNM, analyze traffic using Sniffer Pro v4.7 and Wireshark.
• Installation, Configuration and Management of 3600 Main Street Bandwidth Managers.
• Configured static NAT, dynamic NAT, inside global address overloading, TCP overload distribution, overlapping address translation.
• Implementation and intense troubleshooting of communication networks including TCP/IP, IPSEC, complex routing including RIPv2, OSPF, BGP and the potential interoperation of layer 2 technologies such as SSL, VPNs, NetScreen Firewalls, NS Management platform(NSM), Ethernet, STP, RSTP, packet capture and analysis, DNS, RADIUS, SNMP.
• Configured, maintained and troubleshooted the site-to-site IPSEC VPN connectivity from the branch offices to the corporate office which included Cisco routers 7609, 3800, 3600,
• Installation, Configuration and Management of FRE, V.35,Dual E1, V.35 PRI, DSP and Expander Cards.
• Configuration of Corporate Customer Routers for Frame Relay.
• Coordination with PTCL for the Termination of 2MB Fiber Optic Streams on Multiplexes.
• Experience of working on various wireless technologies including Spread Spectrum, OFDM, Narrowband and VSAT.
• Deployment of Various OFDM, SS and Narrowband radio links using equipment from vendors including Deployment of Various SCPC and TDMA VSAT Links using equipment from vendors including Adaptive Broadband, MTI, Hughes etc.
• Responsible for Surveying Sites and Radio Link Budgeting Calculations.
• Used MS word and MS excel for documentation and created network wiring diagrams using MS visio.
• Involved and suggested for various business enterprise needs of the company.
• Lead a team of three engineers to configure Cisco 3845 on branch locations. Jr.Network Engineer
FASCOM Ltd- Karachi, Pakistan September 2002 – December 2003 Environment: Cisco 3800, 3600, 1800,1700 series routers; Cisco Catalyst 6500, 3500, 2900 series switch, PIX 515E,525,
Responsibilities:
• Installed and configured multiple T1 and fractional T1 circuit for branch offices, implemented traffic shaping policy and security policy.
• Configured Cisco PIX 525 firewall, Cisco VPN client and Cisco 1841 series Router using as VPN concentrator to implement tunnels for remote access and authentication.
• Redistributed RIPv2 into OSPF for connection between the LAN network appliances.
• Worked in coordination with various ISP and reengineered BGP attributes like route maps, weights, AS path according to corporate needs.
• Configured HSRP for load balancing in distribution layer routers and switches.
• Coordinated and implementation of WAN/LAN mediums including Frame Relay, ATM, HDLC and ISDN.
• Experience of working on various wireless technologies including Spread Spectrum, OFDM, Narrowband and VSAT (Hughes Network satellite Modems).
• Troubleshooting installation of radio and satellite link for different clients in all over the country.
• Documented and proposed solutions for network redundancy implementation with MS visio diagrams and data summary with MS word and MS excel.
• Involved in 24/7 on call support to tier 2 and tier 3 for the network infrastructure. Personal:
U.S Citizen, young, Energetic and in good health.
Reading, swimming, internet surfing.
References:
References available upon request.
Contact this candidate