Network Engineer Management
Resume:
SANJAY
Network Engineer
acw99u@r.postjobfree.com
PROFESSIONAL SUMMARY:
Over 8 years of Experience in designing, architecting, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
Installation, configuration, troubleshooting of CISCO routers 2800, 3750, 2900, 7301, 7600, 12410, ASR1k. Catalyst 6509, 4507 and Data center switches like 7k, 5k and 2k of Nexus.
Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, and Ether-channel.
Experience in Configuring & implementing VLAN, VTP, LAN switching, STP and 802.x authentication in access layer switches.
Switching tasks include VTP, ISL/802.1q, IPSec and GRE Tunneling, VLANs, Ether channel, Trunking, Port Security, STP and RSTP.
Experience securing and managing remote access using various VPN technologies like IPSec, SSL, and GRE.
Utilizing management tools Cisco Prime, Solarwinds, HP, IMC, Riverbed/mazu, Cisco Works, Visio, Sniffer and Network Analyzer.
Redundancy Technologies includes Virtual Scale (CISCO VSS), VCP, Virtual Link Trunking (VLT), VRRP, HSRP
Practical knowledge about TCP/IP, DHCP, DNS, SMTP, POP3, RIPV1, RIPV2, OSPF, IGRP. EIGRP, BGP Routing protocol Static, default and dynamic.
Configuration and troubleshooting L3 switches with VLAN, STP, SPAN, ETHERCHANNEL, HSRP, VRRP and GLBP.
Implementation, Configuration and Support of Checkpoint (NGX R76, R77 and R77.10), Juniper Firewalls (SRX5400, SRX5600, and SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks Firewall models (PA-2k, PA-3k, and PA-5 k), F5 Load Balancer...
Worked extensively on Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
Migrated and implemented new solutions with Cisco ASA Firewall series 5505, 5510, 5512-X
Configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms.
Administer Configure and Implemented Checkpoint FW Interface, NAT and VLAN using R77 GAIA Smart Dashboard.
Advanced knowledge, design, installation, configuration, maintenance, migration and administration of Checkpoint Firewall R55 up to R77.
Experienced in handling and installing Palo Alto Firewalls and juniper SRX firewall.
Handled Panorama firewall management tool to administer Palo Alto firewalls.
Worked with F5 Load balancers and Cisco Load balancers (CSM, ACE and GSS).
Experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
Experience in configuring and Troubleshooting BIG-IP F5 LTM load balancer, Expertise in creating custom iRules, Health monitors, VIP’s, pools, nodes.
Installed and configured the Linux servers in the network per specifications of clients.
Maintained existing programs/scripts and extended Linux system functionality as needed.
Experience with Infoblox NIOS operating system supporting DNS architecture, DHCP scope allocations.
Worked on Bluecoat proxy server, Tipping Point Intrusion Protection System management
Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, Rules Creation for content
Filtering has Experience on AV and SG applications.
Experience with Juniper Firewalls, SSG Series, NetScreen Series ISG 1000, SRX Series.
Installation, configuration and administration of Juniper SRX Firewall, Juniper EX and Juniper MX devices.
Good Understanding of Cisco Application Centric Infrastructure (ACI).
Implementing Knowledge of Nexus 9K to support the ACI fabric.
Implemented CLIs in K-shell and Perl on Solaris OS
In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, PPP, MPLS and Frame Relay.
Implementing security policies using cryptography, ACL, ASDM, IPsec, VPN and AAA Security on different series of routers.
Experience in managing and migration of large scale enterprise networks, knowledge in developing test plans, procedures and testing various LAN/WAN products and protocols.
TECHNICAL SKILLS
Cisco router platforms
2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.
Cisco Switch platforms
2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.
Firewalls & Load Balancers
C Cisco ASA 5585, 5550, 5540, Juniper SRX5400, 5600, 5800, Juniper Net screen 6500, 6000, 5400. Juniper SSG Firewalls, Checkpoint Gaia R76, R77, R77.10 &R77.20 Palo Alto PA-3060/2050, F-5 BIG-IP LTM (3900 and 8900), Blue Coat SG8100, AV 510, Av810.
Routers
Cisco routers (1900, 2600, 2800, 2900, 3800, 3900, 7200, 7600), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)
Switches
Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus (2248, 5548 &7010), Cisco ACI
Routing
RIP, EIGRP, OSPF & BGP, Route Filtering, Redistribution, Summarization, Static routing
WAN Technologies & Wireless
FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased lines, DSL modems, Bluetooth
LAN Technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco
Secure Access Control Server
(ACS) for TACACS+/Radius.
VOIP Devices
Cisco IP phones, Avaya.
Routing Protocols
RIP, OSPF, EIGRP, and BGP.
Switching Protocols
VTP, STP, RSTP, MSTP, VLANS, PAgP and LACP.
Network management
SNMP, CiscoWorks LMS, HP Openview, Solar winds, Ethereal.
Layer 3 Switching
CEF, Multi-Layer Switching, Ether Channel.
Carrier Technologies
MPLS, MPLS-VPN.
Redundancy protocols
HSRP, VRRP, GLBP.
Security Protocols
IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.
Software & Other
Microsoft Office Suite, MS SQL Server 2008, HTML, VMware, AWS, Cisco ISE
Ticketing software
Service-now, Remedy system
Language
Unix, Turbo C/C++, Python, basics in Perl and Shell scripting.
CERTIFICATIONS
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
PROFESSIONAL EXPERIENCE
Client: New York life, NY. 06/2015 – present
Role: Network engineer
Responsibilities:
Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits. Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and troubleshooting.
Administrate the firewall server (MS ISA 2006).
Installed and administered Sun Solaris/SunOS, SGI IRIX and Mandrake Linux servers; implemented NAT firewalls and IPSec tunnels; configured NIS/DNS, DHCP, WWW, FTP, RAS, SMTP/IMAP, SSH services; performed network performance optimization; introduced security policies
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Upgrading and deployment of Nexus 7010, 5596 and 2248
Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
Configured EIGRP and OSPF as Interior Gateway protocol route filtering and Route redistribution.
Troubleshoot complex LAN/WAN infrastructure that includes routing protocols EIGRP, OSPF and BGP
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Experience with Cisco ASA firewall to protect DMZ services.
Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Check Point firewalls.
Experience on working with Palo Alto Next Generation firewall with security, networking, and management features such as URL filtering, Anti-virus, IPsec VPN, SSL VPN, IPS, Log Management etc.
Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
Creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 LTM module.
Configured and deployed BIG-IP LTM 6900 for providing application redundancy and Load balancing.
Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
performed Network address translation on Cisco ASA 8.2,8.3 and 9.1 versions
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
Experience in Cisco wireless networking (5500/4400/2500 series Wireless LAN controllers, 3700/3600 series Access Points)
Configured and played with various BGP attributes such as Local Pref, MED, Extended Communities,Route-
Performed the ACL request changes for various clients by collecting source and destination information from them.
Created MOPS (Method of procedures) and sought the approval of peers to perform configuration changes.
Work on different connection medium like Fiber and Copper Connectivity.
Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools and Network Monitoring using tools like Solarwinds Orion, Riverbed, and Cisco Works.
Environment: Cisco 6506/4948/4510 switches, Cisco 3660/3845/7609 Routers, VLAN, Checkpoint, Palo Alto, F5 Load Balancers, OSPF, RIP, RIRP, BGP, MPLS, HSRP, VRRP, GLBP, ASA 5500,Nexus 2K,5K,7K.
Client: PSEG, NEWARK, NJ. 04/2014 – 06/2015
Role: Sr. Network Engineer
Responsibilities:
Responsible for the configuration of Cisco Routers (7000, 5300, 4000, 2500, 3000, 2600) using RIP, OSPF, EIGRP, BGP
Implemented Cisco IOS Firewall IDS using 2600 series router
Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers
Involved in the redistribution of OSPF on the core Cisco ASA Firewall.
Experience on administration and configuration of Cisco PIX, ASA and Checkpoint Firewalls.
Experience on PIX Firewalls, Cisco ASA firewall. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS.
Migrating existed bluecoat Proxy infrastructure with MacAfee Web Gateway using Parent/Child architecture across multiple Data Centers using F5 LTM load balancer.
Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering hands on experience on Blue Coat Av and SG appliances.
Installed and configured bluecoat ProxySG in the network for web traffic management and Policy configuration
Expertise in configuring and troubleshooting of Palo Alto, Juniper NetScreen& SRX Firewalls and their implementation.
Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall
Researched, designed and replaced aging Checkpoint Firewall architecture with new next generation Palo Alto appliances serving as Firewalls and URL and application inspection
Exposure to Wildfire feature of Palo Alto.
Implemented Positive Enforcement Model with the help of Palo Alto Networks.
Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
Palo Alto appliances serving as firewalls and URL and application inspection.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Performed troubleshooting, while maintaining trouble ticket tracking, following both internal/external routes.
Configuring, Monitoring and Troubleshooting Cisco ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
Configuring failover and working on ssl-vpn when in active/standby failover on Cisco ASA
Support customer with the configuration and maintenance of Cisco ASA firewall systems
Configured CISCO content switch for load balancing and NetScaler Load balancing.
Worked on Load balancing strategies/techniques, expertise in application switching /traffic management, knowledge of persistence and SSL certificates.
Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
Acted as Tier 3 support for connectivity, failures, configuration, implementation, and troubleshooting.
Provided project management for data center cabling, documented all network drawings using Visio
Designed, tested, and implemented global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols.
Implemented traffic policy changes with Cisco PIX Firewall appliance switch WAP configuration and installations.
Assisted with escalation procedures and customer notifications.
Dealt with customer problems to management and support groups utilizing standard escalation model.
Environment: Cisco 2600/2800/3600 Cisco 2950/2960 switches, Juniper NetScreen, Cisco Routers 7000, 5300, 4000, 2500, 3000, 2600, NAT, Nexus 2K,5K,7K, Citrix NetScaler, Bluecoat, Cisco ASA, PAT, DHCP, DNS, OSPF, EIGRP, Palo Alto, F5 Load balancer, MPLS, ASR, TCP/IP, LAN, WAN.
Client: KEY BANK, CLEVELAND, OH. 01/2013 – 03/2014
Role: Network Engineer
Responsibilities:
Responsible for daily troubleshooting, support and maintenance and management of network infrastructure.
Helped the Lead engineer in performing the racking, configuring the Nexus switches like 7000, 5000 and 2000 series in the Data Center Environment.
Working knowledge of SNMP, SNMP Traps and Syslog.
Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decom of existing Data Center, which involved working with Partner Companies.
Provided high level of security to the network by installing ASA 5510 along with ACLs.
Worked on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
Provided tier 3 support for Checkpoint Firewall-1 software to support customers.
Installation and troubleshooting of company's WIFI network with added security and Cisco VOIP.
Configured Cisco ASA Firewall 5585 series in existing network.
Configured IP, EIGRP, OSPF and BGP in routers.
Troubleshoot the network problems related to DHCP IP Address scheme.
Implemented traffic engineering on top of an existing Multiprotocol Label Switched (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
Configured network access servers and routers for AAA Security (RADIUS/ TACACS+).
Created Private VLANs & prevented VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
Performed Security operations in terms of pushing new policies and deploying new rules. Performed security troubleshooting in terms of checking ACLs and ACEs and traffic flow analysis using packet capture features.
Involved in the configuration and maintenance of IPsec Site-Site VPN.
Used to be responsible for resolving the service request tickets from the help desk which involved in providing entire technical support.
Thoroughly documented and diagramed network solutions, configurations, and break/fix steps.
Incorporated network security recommendations into the design of the network to protect Microsoft "information assets".
Responsible for special functions as directed by management and other duties as assigned.
Environment: Cisco 2600, 2800, 3660, 3845, 7609 Routers; Cisco 2960, 3560, 4510, 4507, 6509 catalyst switches; Nexus devices 5548, 5596, 7010; Juniper routers M3200, TX 640; Cisco ASA 5500 firewalls; Checkpoint, Load Balancer BIG-IP F5 LTM 6500
Client: SPRETNOST IT SOLUTIONS, HYDERABAD, INDIA. 10/2011- 12/2012
Role: Network Engineer
Responsibilities:
Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
Configured, managed and troubleshot networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
Monitored, troubleshot, tested and resolved Frame Relay, ATM, MLPPP, PPP, and Dial-up.
Configured/Troubleshot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN.
Installed and configured various types of Personal Computers and Printers. Installed different operating systems on Intel based PC's.
Configured VLAN'S, VTP's, and enabling trunks between switches.
Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.
Planed, coordinated, implemented and supported the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.
Documented and Log analyzing the Cisco PIX series firewall.
Excellent Troubleshooting Skills and Customer Centric approach.
Environment: Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800 routers, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, and Sniffer, Data center
VIP IT SERVICE PVT. LTD, HYDERABAD, INDIA 03/2008 – 09/2011
Network Support Engineer
Responsibilities:
Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF and BGP.
Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers
Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches and routers.
Provided IP address management applying SUBNETING and VLSM.
Configured VLANS, implemented inter Vlan routing.
Implemented redundancy using STP protocol in switched Network
Assisted Network Engineer in the installation and configuration of firewalls.
Performed on-call support for installation and troubleshooting of the configuration issues.
Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment
Developed network drawings and documentation utilizing Visio, Word, and Excel programs
Maintained an overview of network addressing schemes and documentation
Responsible for special functions as directed by management and other duties as assigned.
Environment: Cisco Routers 2900, 2600, 3600; Cisco Switches 1900, 2900, 3500, 3700 and 450 Series; LAN/WAN: Frame relay, NAT, DHCP, TCP/IP
Education
Bachelor of Technology, Computer Science & Engineering
Contact this candidate