Sign in

Network Engineer

Santa Ana, California, 92705, United States
October 24, 2016

Contact this candidate



Network Engineer



Over 8 years of IT experience in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security, Linux Kernel Programming.

In-depth Cisco technology experience/knowledge in design, implementation, administration and support.

Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.

Strong hands on experience in installing, configuring, and troubleshooting of Cisco Nexus switches like 9K, 7K, 5K, and 2K.

Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience.

Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NATing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols

Corporate trainer for certification like CCNA, CCNP, Hardware & Networking.

Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, and


Responsible for Check Point and Cisco ASA &Palo Alto Firewalls environment.

Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches.

Experience in installation, configuration, troubleshooting of CISCO routers 2800, 3750, 2900, 7301, 7600, 12410, ASR1k. Catalyst 6509, 4507.

Experience in Wireless LAN technology and understanding of Cisco Access Points AIR-AP/CAP/LAP and Controllers.

Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale Firewall deployments.

Advanced knowledge, design, installation, configuration, maintenance and administration of Checkpoint Firewall R55 up to R77 version, Secure Platform Installation, VPN.

Advanced knowledge in Cisco ASA 5500 series and PIX installation, configuration and maintenance, configuration and installation of IOS security features and IPS, security risk analysis, attack mitigation & penetration tests based on LPT methodology.

Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).

Basic and advance F5 load balancer configurations, including migrating configurations

From Cisco ACE to F5 and general troubleshooting of the F5 load balancers.

Also prepared documentation for various Vlans and Voice sub networks and worked on Visio for the same.

Expertise in configuring Big-IP F5 LTMs, GTMs (virtual servers, iRules, pools, SNATs, health monitors) for managing the traffic and tuning the load on the network servers.

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both

Checkpoint and Cisco ASA VPN experience.

Real-time experience in designing and assisting in deploying enterprise Network SSL Security and High Availability Solutions for ASA.

Experience working with Generic Routing Encapsulation (GRE).

Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.

Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series)

Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP.

Successfully put in Palo Alto PA 3060 firewalls to protects information Center and provided L3 support for routers/switches/firewalls

Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware.

Aggregating switch links using LACP and PAGP protocols.

Expertise in installing, configuring and troubleshooting Juniper MX (MX2010, MX960, MX480, MX240, MX104, MX80) Series.

Implemented Zone primarily based Firewalling and Security Rules on the Palo Alto Firewall

Exposure to wild hearth feature of Palo Alto.

Installation & configuration of Microsoft Proxy Server 2.0 & Blue Coat Proxy.

Expertise in installing, configuring and troubleshooting Juniper Routers (E,J,M and T-series)

Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN.

Experience with design and implementation of Virtual Switching System (VSS).

Security experience in deploying VPN Solutions like IP Sec (site-site and client-site) & SSL VPN implemented across multiple vendors

Experience in Configuring Client-to-Site VPN using SSL Client on Cisco ASA 5520

Ability to help DELL, CISCO, IBM Customer Network Management System.

Switching - L2 and L3 LAN switching technologies, VLANs, IEEE802.1q, Trunking, Ether channel.

Experience with Juniper SRX 240 Firewalls.

Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.

Excellent Verbal, written communication skills and Interpersonal skills with ability to work with large teams as well as independently with minimum supervision & Team Player

In-depth knowledge of Linux Kernel Programming (Module Programming).

Worked on Juniper NetScreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG 200.

Hands on experiences on McAfee EPO with deploying and removing agent on client’s machine,

Removing virus and manually updating DAT files.

Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering

Proficient with network hardware and technologies including routers, switches, firewalls, Ethernet, Fast Ethernet, Gigabit Ethernet, Frame Relay and Wireless devices.

Build IT security infrastructure together with stop, Juniper and Palo Alto firewalls

Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health observation.

Hands-on experience in configuring Cisco routers to perform functions at the Access, Distribution, and Core layers.

Network security including NAT/PAT, ACL, VPN Concentrator.

Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP, PIM, MSDP, Auto-RP, BSR, IGMP-Snooping.

Designing, Implementing and Troubleshooting Cisco Routers (2800,2900,3900,3800,7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Checkpoint, Cisco PIX & ASA devices

Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, PPP and SNMP.

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240.

Knowledge on providing Managed Security Services - MSS

Strong Hands on experience in installing, configuring and troubleshooting of Cisco 12404,12406,7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.

Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability, EMs, Firepass and ASM.

Worked with the VMware tool for Virtualization.

Network Security – Anomaly Detection in Attack Prevention System, Network and Host IPS/IDS, Cisco PIX firewall, Vulnerability scanning, Penetration testing, Buffer Overflows, Cross Site Scripting,

Security consultant for Bombay Stock Exchange, India and Kotak Securities Pvt. Ltd and many more, involving web application testing, Penetration testing, Session Management

Technical Skills:

Switches : Nexus 2K/5K/7K/9K, Cisco Catalyst 2900, 3500, 3700, 6500, 4500, 3850,

3560, 3750, 2960

Switching : LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer

Switch, Ether Channels, Transparent Bridging

Routers : Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600, 1800, 1700 Routing

OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route Filtering, Redistribution, Summarization, and Static Routing, Juniper MX Series

LAN : Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet

WAN : PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame


Network Security : Cisco ASA 5500-X, ACL, IPSEC, F5 Load Balancer, Checkpoint

Blue Coat proxy.

Security Technologies : Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Juniper SRX, Palo

Alto firewalls, IPS/IDS, NAT, TACACS, 8021x, Packet capture/ analysis

Wireless : WLAN controllers, access points (APs), Cisco, and Aruba

Load Balancer : Cisco CSM, F5 Networks (Big-IP) LTM and GTM Gateway Redundancy

HSRP and GLBP WAN Optimizer Riverbed Steelhead Appliance DHCP and DNS Infoblox

Various Features & Services : IOS and Features, IRDP, NAT, CDN, SNMP, SYSLOG, NTP, DHCP,

CDP, TFTP, FTP, MS Ticketing, MIPE.

AAA Architecture : TACACS+, RADIUS, Cisco ACS

Network Management : Wireshark, SNMP, Netflow, Solarwinds, VMware, Opnet

Operating System : Windows 7/ XP, MAC OS X, Linux, UNIX, Windows Server 2003/2008

Applications : Wireshark, Netmon, Microsoft Service Enterprise, Secure CRT, Putty,

Alarm Monitoring Console, MS Ticketing, Office Productivity MS Office

Suite, MS Azure, VPN migration, Multipoint Ethernet, SNMP,

Router Configuration, SDN, NFV, Genesys Suite 6.5, and Genesys

Suite 7.x.

Professional Experience:

ATOS, Santa Ana, CA April 2015 - Present

Sr. Network Engineer


Deploying and decommissioning Cisco switches and their respective software upgrades.

Experience with design and implementation of Data center migration.

Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.

Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.

Deploying and decommission of VLANs on core Nexus 7000 and its downstream devices.

Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.

Involved in the deployment of content delivery networks (CDN).

Switches Replace branch hardware with new 2851 routers and 2960 switches.

Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Involved in the configuration & troubleshooting of Juniper MX2010, MX960.

Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.

Configuring HSRP between VLANs, Configuring Ether-Channels, and Port Channel on 6500 catalyst.

To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.

Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.

Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, Spanning Tree, 802.1q. Configured IP access filter policies.

Involved in configuring and implementing Checkpoint VSX firewalls.

Performing the ACL requests change by collecting source and destination information from them.

Supported wireless networking team working on Aruba wireless.

Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also provided secure sessions over internet using IPsec and SSL encryption.

Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.

Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.

Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515

Building the VPN tunnel and VPN encryption.

Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.

Environment: Cisco Catalyst 2960/3750/4500/6500 Series Switches, Cisco 2800/2900/3000 Series ISR’s and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K, Juniper MX,Cisco ASA 5500, Checkpoint, windows server 2003/2008, F5 BIGIP LTM/GTM, ACL, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP.

Disney, LA, CA Jan 2014 – March 2015

Sr. Data Network/ Security Engineer


Managing and configuring Cisco Switches and Routers independently.

Managing and configuring Aruba Wireless devices and Cisco Access Points.

Hands on experience with trouble shooting and configuring terminal servers.

Providing Technical Support and solutions for Network Problems.

Worked with F5 Load balancing, IDS/IPS, Bluecoat proxy servers and Administrating.

Creating and managing user accounts to all team members in partner environment.

Experience in Cisco switches and routers: IP addressing, WAN configurations.

LAN cabling in compliance with CAT6 standards; Installing new hardware and swap out hardware physically.

Hands on using crimp tools, punch down tools to punch cables to the 110 data/voice blocks.

Communicating and escalating tickets with service providers for network outage issues.

Managing the DNS entries using Infloblox.

Configuration and implementation of Check Point Firewalls, IDS/IPS, Bluecoat Proxy, CISCO ASA.

Extensive knowledge in implementing and configuring F5 Big-IP LTM 3900, and 6900 Load balancers

Monitoring Network infrastructure using SNMP tools HP NNM, Solar-winds and Opnet.

Perform detailed analysis and troubleshooting of complex problems on the Firewall platform.

Provide troubleshooting of latency sensitive perimeters involving the stocks & vendor connectivity.

Responsible for the day to day operations of a large production F5 LTM/GTM load balancing environment.

Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.

Hands-on experience with McAfee EPO deploying agent either with EPO.

Worked on Physical site; latency and slowness issues in transmitting results within internal quest network.

Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.

Experience working with Nexus 7010, 5020, 2148, 2248 devices.

Experience updating IOS on devices.

Configuring Juniper Netscreen Firewall Policies between secure zones exploitation NSM (Network Security Manager)

Configuring and implementing F5 BIG-IP Load balancer.

SSL offloading on F5 LTMs.

Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.

Hands on experience with trouble shooting and configuring Juniper MX480, MX240, and MX104.

Worked extensively on firewalls and configuration of Cisco (AAA) ACS server, RADIUS and TACACS+ for VPN users and implementation of secured VPN on Cisco routers, PIX and VPN concentrator appliances.

Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.

Configuring DMVPN tunneling between the branches.

Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.

Managed rules on Cisco NGX firewall.

Using VMware tool, configure a virtual network, custom network configurations, and troubleshooting of network connection failures.

Managing more than thousands Checkpoint Firewalls: Checkpoint R65/70/75, Checkpoint CMA, Multi Domain Services Manager (Provider-1) and Smart Center Management Server.

Configuring ASA Firewall and accept/reject rules for network traffic.

Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.

Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.

Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.

Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems

Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.

Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.

Environment: TACACS+, RADIUS, Solar Winds,SSL Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640 /12000 /7200/ 3845/3600/2800 routers, Cisco Nexus 7K/5K/9K, Cisco ASA 500, Checkpoint, F5 BIGIP LTM,GTM,RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP

McKesson, Tulsa, OK Aug 2012 – Nov 2013

Network Engineer


Assisted in troubleshooting LAN connectivity and hardware issues in the network of 100 hosts.

Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.

Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.

Created a backup and recovery policy for software application and verified peripherals are working properly.

Monitor performance of network and servers to identify potential problems and bottleneck.

Performed RIP & OSPF routing protocol administration.

Interacted with support services to reduce the downtime on leased lines.

Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.

Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.

Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issue Other responsibilities included documentation and support other teams

Configured OSPF over frame relay networks for NBMA and point to multipoint strategies

Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).

Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.

Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.

Configuration and troubleshooting of Cisco catalyst 6509 switch with supervisor 2T cards.

Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO

Estimated Project costs and created documentation for project funding approvals.

Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support

as required

Worked as a single point of contact for the whole migration

Configuration and maintenance of EIGRP and BGP network on router 7200 and 6500 MLS.

Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane.

Configuration and management of NEXUS network in the existing network infrastructure.

Created LAB setup with 7K and 5K, 9K NEXUS switches for application testing.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K, 2248/3560/5020/6509,ASA, Checkpoint, LAN,OSPF,BGP,RIP,EIGRP

Clematis Technology Solutions Pvt Ltd, Hyderabad, India Feb 2010 – July 2012

Network Engineer


Responsible for network design, bandwidth allocation, IP address allocation, supervising installation, configuration and maintenance on major network technologies. Worked with various internal organizations during pre/post deployment phase of different type of circuits.

Providing Tier II support in the provisioning, end-to-end test and turn-ups and maintenance of the major accounts. Optimizing Network by continuously and extensively working with customer to upgrade and optimize network and Circuit Move Add Changes including detailed design documentation.

Performed Layer I, II and III troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for BGP, OSPF, RIP, RIPv2, EIGRP, Static and default route in a VPN environment using MPLS.

Implemented and troubleshooted the MPLS network.

Implemented changes and upgrades to network equipment and perform quality assurance reviews of those upgrades. Reviewed all changes to network configuration for technical accuracy and impact.

Provided Network Support in the designing and implementation of Point to Point over T1s Frame Relay, DSL over ATM and IP over Frame Relay and Gigabit Ethernet.

Schedule conference bridges for escalated issues, used troubleshoot ticketing system such as BMC remedy and on - call support for severity one network outages.

Documentation of network resources, systems, peripherals, procedures and policies for optimization of IT resources and security.

Network consists of Heavy Cisco equipment such as: Cisco 356*-****-**** switches, Cisco 650*-****-**** series Layer 3 switches, Cisco 382*-****-**** series routers.

Hands on experience and good working knowledge with Checkpoint Firewall policy provisioning.

Worked on Firewall Administration, Rule Analysis, and Rule Modification.

Configuring and implementing F5 BIG-IP,LTM,GTM load balancers to maintain global and local traffic

Hands on experience with Nexus Switches 2K, 5K and 7K.

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.

Environment: Cisco 3560/2950/2924/6509/6513/5500 switches, Cisco 3825/3640/7200 routers, VPN, BGP, OSPF, RIP, EIGRP, F5 BIG-IP, LTM, GTM, Nexus Switches 5K/7K, VLAN, VTP, Checkpoint

Tribro Softech Pvt.Ltd, Hyderabad, India Jun 2008 – Feb 2010

Jr. Network Engineer


Installed Hard disks, Floppy drives, CD Drives, Sound Blaster cards, CPU, Memory, Power supply unit, Network card, Video graphics card, Hard disk controller card on PC systems.

Troubleshooting of ipersonal computers. On line Support to customers concerning their computer problems.

Involved in troubleshooting of DNS, DHCP and other IP conflict problems.

Responsible for reporting day to day operations of all associated hubs, routers, bridges, gateways and related equipment.

Configured BGP for CE to PE route advertisement inside the lab environment

Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers, system administrators.

Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.

Plans, coordinates, implements and supports the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.

Responsible for LAN and internet connection file and print server.

Maintained and installed new internet connections for customers.

Validate existing infrastructure and recommend new network designs.

Created scripts to monitor CPU/Memory on various low end routers in the network.

Installed and maintained local printer as well as network printers.

Handled Tech Support as it relates to LAN & WAN systems.

Handled installation of Windows NT Server and Windows NT Workstations.

Maintained and installed new internet connections for customers.

Used various scanning and sniffing tools like Wire-shark

Environment: Cisco catalyst 2960/4550/5550 switch, Cisco 2880/3700/3880 router, LAN, MAN, BGP and DHCP.


Bachelors of Technology in Electronics and Communication Engineering.


CCNA - Cisco Certified Network Associate

CCNP - Cisco Certified Network Professional

Contact this candidate