Engineer Network
Resume:
Hemanth Kumar
act8oi@r.postjobfree.com Ph:336-***-****
PROFESSIONAL SUMMARY:
CCNP Certified Professional with 7+ years of experience in network design, implementation, troubleshooting, engineering, managing & migration of large-scale enterprise networks.
Expertise in implementing L2 technologies including VLAN’s, VTP, STP, RSTP, Trunking & Port Security.
Experience in deployment and configuration of Cisco 7600/3800/2800/1900 series routers and Cisco catalyst 6500/4500/3750/2950 series switches
Worked on Port Groups on M Series Module and F Series Module for Nexus 7K
Configuration of Fabric path and connectivity between Nexus 5K and Nexus 7K
Proficient in Cisco ca for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS
Sound knowledge of Routing, Switching concepts and MPLS design.
Good understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
Worked on Routers & Switches: GSR 12000, Cisco 2900 3900, 7200, 7600, ASR 1002,Cisco 6500, 4506, 4510, Nexus
Provided firewall policy configuration and services with Juniper SRX 240 & 650 series
Extensive knowledge/experience in implementing, maintaining and troubleshooting LAN/WAN, Network security including NAT configuration, VPN Concentrator, VLAN, Cisco Firewalls.
Responsible for Check Point and Cisco ASA firewall administration across global networks
Experience in managing and securing remote access through designing and implementing various VPN technologies including IPSec and SSL.
Worked on Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG and Juniper SRX platforms.
Familiar with Cisco firewalls PIX 515 and ASA 5500series.
Experience in Configuring Client-to-Site VPN using SSL Client on Cisco ASA 5520.
Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
Knowledge of Solarwinds Orion, Cisco Works, HP Open view network monitoring tools
Security Incident handling, SIEM (ESEM) using RSA Envision/Arcsight products.
Maintaining and updating inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
Implemented security policies using SSL, VPN, IPS/IDS
Experience with CSM, F5 (LTM) Load balancers to provide efficient switching and routing for local and global traffic.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
Good team player, excellent communication skills, analytical skills and eagerness to learn new technologies
configuration, irules, managing SSL certificates (SHA1 and SHA2), client based authentication using SSL certificates
Cisco PIX 535, 520, 515, ASA -5500 and 5505. Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series)
Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
Upgraded Nexus OS on Nexus5k.
Experience in configuration of VLAN with 802.1q, VTP, STP and RSTP (802.1W)
TECHNICAL SKILLS:
Networking Equipment
Cisco 2500,2600,2800,3600,3800,7200,7600 series routers, Cisco 1900,2900,3550,3750,4900,6500 series catalyst switches, ACE load balancer 4700, F5 Load Balancer, WAP, Nexus
Routing Protocols
RIP v1 & v2, EIGRP, OSPF, BGP, VRRP, HSRP, GLBP
LAN technologies
Ethernet/ Fast Ethernet/ Gigabit Ethernet networks, VLANS, VTP, STP, 802.1q
WAN technologies
Frame Relay, PPP, ATM, ISDN, PPP, MPLS; exposure to DS1, DS2, OC3, OC12, T1/T3, E1/E3 and leased lines.
WLAN Technology
802.11 standards, Lightweight and Autonomous systems
Network Security
IPSec, VPN Configuration, VPN Concentrator, Arc Sight SIEM, PIX 506, 515, 525, 535; ASA 5505, 5510 Firewalls, NAT/PAT, IDS/IPS, Ethereal. Checkpoint, Blue coat
Infrastructure services
DHCP, DNS, SMTP, FTP, TFTP, POP3
Network Management
SNMP, Cisco Works, WhatsUp Gold, HP Open View
Communication Protocols
TCP/IP, IPv6, ARP, VLAN (802.1q, ATM), PPP, HTTP, SSH, Frame Relay, MPLS, 802.11, Wi-Fi, WiMAX, Bluetooth
Communication Concepts
VPN, Multicasting, CDMA, W-CDMA, GSM
Platforms
Windows 98/XP/VISTA, 7 and LINUX
Applications
MS Office, MS Visio
PROFESSIONAL CERTFICATIONS:
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional(CCNP)
PROFESSIONAL EXPERIENCE:
AT&T (AMGEN), Seattle, Washington May 2015 – Present
Network Engineer
Responsibilities:
Provide day to day support of a global enterprise network Switches, Routers and Riverbed devices.
Dealing with NAT configuration and troubleshooting issues related access lists and DHCP/DNS issues with in the LAN network.
Hands on experience in configuring VPC, VDC and ISSUE software upgrade in Nexus 5k switches.
Working with Nexus 2218 series Fabric Extender (FEX) and Nexus 5548 to provide a flexible access solution for data center operations.
Troubleshooting by inspecting the packets with Wireshark.
Duties include specific work location and designation of on-site engineer.
Researching, analyzing and understanding the syslog (Log Logic) reports from security and networking devices such as firewalls, routers, radius, TACACS and Kerberos servers.
Implementation and configuration of F5 BIG-IP LTM-6400 Load Balancers.
Hands on experience on ACL’s, BGP,OSPF protocols Configuring on ASR 1k Devices, Implementing security policies using ACL,AAA(TACACS +, RADIUS)
Configuring and troubleshooting on HSRP, VRRP, GLBP, RSTP, PVRST, MST related issues coming in network environment implementing SNMP and SYSLOG.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Checkpoint Firewalls.
Installing, Upgrading and Configuring real Cisco Routers and Switches.
Refreshing Cisco 3750 Switches to Cisco 3850 and Cisco 4507 R+E (Supervisory) Switches.
Refreshing Cisco 4507 R-E (Supervisory 4/6) Switches and Cisco 4507 R+E (Supervisory 8) Switches.
Configuring DHCP options and DNS FOA in INFOBLOX and maintain wireless network by monitoring and troubleshooting issues related to WAP’s WLC’ using CISCO PRIME 3.0
Configured Virtual Servers, Configure Nodes, and configuring the load balancing Pools and also used to work with configuring load balancing algorithms. Also configured Session based persistence and have learnt configuring writing i-Rules for specific redirection purpose and also i-rules for persistence. And also did SNAT in F5 and also did Monitors in F5
We also did CLI TMSH or BIG PIPE. CLI. and also used F5 GTM for creating WIDE IPS’s, Listeners, and Also DNS Modifications
Data center routing and switching, upgrade of Catalyst switches into Nexus 7K platform VDC, implementation of VPC feature and fabric extender (fex) of Nexus 5k/2k aggregation and access layers. Upgrade IOS/NxOS. Implement, maintain and support Vlan switched network access.
Using Security devices such as ASA 5540,5520,5510,5505 and ADSM.
Review Firewall rule conflicts, unused rules and misconfigurations and clean up
Assist with incidents and perform Move, Add, Change, Deletes (MACDs) of Network devices.
Must work well as a sole contributor while maintaining the ability to function in virtual team environment.
Troubleshooting switches, routers and riverbed devices. Moving applications from one data center location to other location.
Updating job knowledge by participating in educational opportunities, reading professional publications, maintaining personal networks, Participating In professional organizations.
Handling Service Now Service Automation System on a daily basis which is a ticketing system used to work on the assigned incidents / tickets raised by clients.
Good knowledge in connecting fiber optics to SFPs in switches.
Environment:
Cisco Routers (2500, 2600, 3000, 6500, 7500),ASR, Switches (2900,3600,4500,4900,6500), ASA(5505, 5510, 5505, 5520) firewall, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP,GLBP, HSRP), Nortel LAN 5530, Cisco VPN 3000 Concentrator, Nexus ( 5k,7k), Juniper SA (6500, 4500, 2500), F5 Load Balancers (6400, 6800, 8800), Avaya P330,Cisco WAP’s
Trover Solutions, Kentucky, Louisville Dec 2013 – April 2015
Network Engineer
Responsibilities:
Achieved recognition as a relationship BCM coordinator with excellent individual and teamwork skills. Experience in providing direction to both Business Units and Technical Support ( VPN, Windows, LAN and WAN Network) Teams
Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
Experience in Implementation of NAT solutions on WAN applications.
Configured HSRP and VLAN trucking 802.1Q, Spanning Tree, VLAN Routing on Catalyst 6500 switches.
Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers
Hands on experience in Upgrading IOS, troubleshooting network outages.
Worked on various Nexus Products Nexus 7010, Nexus 7009, Nexus 5548 and Nexus 2248.
Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS
Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, NOKIA Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
Possess Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel.
Upgrades and backups of Cisco router configuration files to a TFTP server
Configuration and set up of Juniper SRX firewalls for policy mgmt. and VPN's
User authentication and resource allocation using Cisco ACS server using Radius and TACAS+ protocols for administrative control.
Monitoring and Managing the Firewalls (Checkpoint Boxes, Nokia, Cisco ASA, Juniper), VPN Devices and Routers. Troubleshooting the Firewalls, VPN Devices and Routers. Adding rules to firewalls and routers.
Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
Responsible for CheckPoint and Cisco ASA firewall administration across global networks
Experience with configuring VIP, Pools on F5 LTM and working with I-rule management on LTM
Provided firewall policy configuration and services with Juniper SRX 240 & 650 series
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Experience with Unicenter NSM in monitoring IP Telephony environments to provide increase uptime and expedite any detected issues that might impact the clients’ environment.
Involved in Security Incident handling, SIEM (ESEM) using RSA Envision/Arcsight products.
Configured VLANs with 802.1q tagging, ether channels and Spanning tree for creating Access/distribution and core layer switching architecture.
Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
Created security policy according to user’s requirement in cisco ASA-5580, Juniper-SRX-5800&ISG-1000 firewall using CLI & GUI
Designed and Implemented Cisco PIX525 and ASA5550 firewall’s interfaces with FTP, DNS, HTTP servers on DMZ with different security levels.
Configured application load balancing using F5 LTM
Configuration of Fabric path and connectivity between Nexus 5K and Nexus 7k
Experience converting Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN
Environment: Cisco Routers (2500, 2600, 3000, 6500, 7500), Cisco PIX Firewall (515, 525, 535), Switches (2900, 3600, 4900, 6500), ASA(5505, 5510, 5585) firewall, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP,GLBP, HSRP), Nortel LAN 5530, Cisco VPN 3000 Concentrator, Nexus ( 5k,7k), Juniper SA (6500, 4500, 2500), F5 Load Balancers (6400, 6800, 8800), Avaya P330
Saic, Washington DC Sep 2012 – Dec 2013 Network Engineer
Responsibilities:
Performed Baseline Configuration Module (BCM), Domain Control Module (DCM) and Core Services Installation Module (CSIM) upgrades to COMPOSE v3.0.1 on ISNS Servers.
Providing Network and Security Architecture and Operations support services for Windows 2000 based web, application and database servers.
Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF.
Configuring ACL to allow only authorized users to access the servers.
Participated in on call support in troubleshooting the configuration and installation issues.
Designed and built a prototype system to perform lightweight, real-time mapping of Internet paths between data centers and client hosts, using probabilistic databases and information theory.
Performed network troubleshooting, second level technical support, and tape backup operations.
Manage the day-to-day log collection activities of source devices that send log data to ESEM (SIEM) RSA – Envision.
Worked on netmap: a framework for high speed software packet forwarding
Extract the logs, Perform real time log analysis using SIEM technologies and Forensics Analysis of logs as per the request
Served as a main escalation point of contact for level II personnel.
Coordinated with higher-level support and external vendors for resolution.
Worked on Port Groups on M Series Module and F Series Module for Nexus 7010 and Nexus 7009.
Aggregate, correlate, and analyze log data from network devices, security devices and other key assets using SIEM technologies.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
Worked on commissioning and decommissioning of the MPLS circuits for various field offices
Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
Secured network access with Cisco Secure (RADIUS/ TACACS+).
Extensive Juniper Networks experience in Junos, ScreenOS, Pulse, NSM, and Junos Space
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
Experience in configuring and troubleshooting various WAN technologies like MPLS, T1, T3, DS3 and ISDN
Installation, Maintenance, Troubleshooting Local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
Created security policy according to user’s requirement in cisco ASA-5580, Juniper-SRX-5800&ISG-1000 fire-wall using CLI & GUI
Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
Environment: Cisco routers (1600, 3600, 7300), Cisco switches (6509, 3550, 4500, 2900), Juniper SA (6500, 4500, 2500), Nexus (7K, 5K & 2K), Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 515E), ASA (5540, 5510) firewall, F5 Load Balancers (6400, 6800, 8800)
Acme Brick, Texas July2011 – Aug 2012 Network Engineer
Responsibilities:
Responsible for implementing, engineering, & level 3/4 support of existing network technologies / services & integration of new network technologies / services.
Worked on troubleshooting customer related issues related to router Configuration, Layer 1/Layer 2 issues.
Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's
Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
Worked on OSPF using features like TSA, SA, NSSA and route summarization.
Configured EBGP/IBGP policies also tested BGP attributes such as Local preference, MED, AS-PATH, Community and Weight.
Working knowledge of Firewall service module FWSM UPGRADE, FWSM RULESET conversion
Experience with WCS predictive maps and RF Engineering Planning.
Worked on networks with WAN protocols such as MPLS, HDLC, PPP& Frame Relay.
Configured BGP load balancing and ensured stability of BGP peering interfaces.
Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
Configured Virtual-link between discontinuous backbone areas in the network and also established authentication between all OSPF routers using MD5 authentication.
Involved in effective communication with vendors, peers and clients in resolution of problems.
Monitor network performance accompanying company’s service level agreements (SLA) using Network management tools such as Cisco works and also provided necessary recommendations to improve network performance.
Environment: Cisco routers (7600,7200,3800,) and Cisco switches (6500, 3700, 4900,2900),Nexus (7K, 5K & 2K),Routing Protocols (EIGRP, OSPF, BGP),Switching protocols (VTP,STP,GLBP,HSRP), Cisco PIX (525, 535), ASA (5505, 5510) firewall.
Cadila healthcare, Ahmedabad, India. Nov2008 – Dec 2010
Network Admin
Responsibilities:
Experience on Cisco IOS and Upgrading Cisco IOS using TFTP server.
Backups of Cisco router configuration files to a TFTP server.
Involved with the network infrastructure and the planning and design of enterprise local-area/wide-area network (LAN/WAN) solutions.
Plan, design, install and configure LAN/WAN as per organizational/client requirements, governed by communication protocols.
Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
Handling data network issues in and around sites and providing solutions.
Basic configuration of routers, switches, hubs, modems and other networking devices.
Troubleshoot all networking problems to ensure minimum downtime and maximum availability of network
Manage office network with Cisco devices with network devices including 2500 and 3600 series routers and 3500, 2900, 1900 series switches.
Configured and managed networks using L3 protocols like RIPv2, IGRP.
Configured VLANs, Private VLANs, VTP and Trunking on switches.
Configured L2 and L3 security features on devices.
Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic Natting.
Log messages using Syslog server and analyze the issues related to high CPU utilization and parameters that can degrade performance of the network
Environment: Cisco routers (7600,7200,3800,) and Cisco switches (6500, 3700, 4900,2900),Nexus (7K, 5K & 2K),Routing Protocols (EIGRP, OSPF, BGP),Switching protocols (VTP,STP,GLBP,HSRP), ASA (5505, 5510) firewall.
Education Qualification:
Bachelor of Technology in Electronics and Communication in JNTU Hyderabad, INDIA GPA 3.7/4
References: Available upon Request
Contact this candidate