SAI
Email Id: *****@*******.***
Contact No: 732-***-****
PROFESSIONAL SUMMARY:
Over 8 years of experience in managing services and operations encompassing infrastructure designs, implementation and maintenance of large and complex network systems as well as database in IT.
Installation, configuration, troubleshooting of CISCO routers 2800, 3750, 2900, 7301, 7600, 12410, ASR1k. Catalyst 6509, 4507 and Data center switches like 7k, 5k and 2k of Nexus.
Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, and Ether-channel.
Experience in Configuring & implementing VLAN, VTP, LAN switching, STP, RSTP and 802.x authentication in access layer switches.
Practical knowledge about TCP/IP, DHCP, DNS, SMTP, POP3, RIPV1, RIPV2, OSPF, IGRP. EIGRP, BGP Routing Protocol Static, default and dynamic.
Configuration and troubleshooting L3 switches with VLAN, STP, SPAN, ETHERCHANNEL, HSRP, VRRP and GLBP.
Strong experience in Network security using ASA Firewall, Checkpoint, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN, F5 Load Balancer.
Experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
Experience in configuring and Troubleshooting BIG-IP F5 LTM load balancer.
Advanced knowledge, design, installation, configuration, maintenance and administration of Juniper SRX Firewall, Juniper EX and Juniper MX devices.
Strong technical knowledge on LAN, Wi-Fi, WAN, MPLS, VPN, Network Security devices, CISCO.
Experienced in Analyzing requirements and Designing, Deploying and operating Enterprise Environment’s in Security stand point of view.
Has excellent experience in multi-server corporate networking environment consisting of 250+ servers and 2500+ users in disparate geographical locations.
Expertise in mentoring teams and improving users guides for flow of deliverables (business cases, business models and presentations) on the parameters of time and resource.
Working knowledge of connectivity type tools (wireless, Cisco Any Connect).
Good knowledge on Citrix NetScaler.
Good knowledge and experience with ACLs, Firewalls, and Intrusion Detection/Intrusion Prevention (IPS/IDS).
Experience in setting up the Imperva system to monitor and log transactions for specific applications.
Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering hands on experience on Blue Coat Av and SG appliances.
Experience in WAN Accelerations devices like, Cisco WAAS and Riverbed.
Proven skills in defining application development and support methodology within the organization.
Installed and configured the Linux servers in the network per specification of clients.
Ability to read existing source code in C to determine current programming logic
Customer Confidentiality and Network Security managed per the highest standard.
TECHNICAL SKILLS:
Routers
Cisco 3600 series, Cisco 2600 series, Cisco 1700 series And Cisco AS5200 series
Switches
Cisco 6400 series, Cisco 2900 series, Cisco 1900 series, Bay stack 425-24T switch, Cisco Switch
Hubs
3com, Hewlett Packard, D-LINK
Protocols
TCP/IP, RIP, OSPF, EIGRP, BGP, IPX\SPX, DHCP, DNS and PPP VTP, STP, RSTP, ISDN, WLAN, HSRP, FTP, TFTP, SNMP
Concepts
Frame-Relay, ATM, VLAN, MLS, VPN
Firewall
Checkpoint R65-R77, CISCO ASA 5500 & 5585 Juniper Net screen 1000, 500, Juniper SRX, Cyber guard, and Knight Star
Load Balancers
BIG-IP F5 (LTM, GTM), Citrix NetScaler
Security tools
Arc site 6.0, Arbor, Surefire, Wire shark, EM7, Spectrum, Solar Winds
Policy & Firewall Management
Tiffin, F5 BIG IP Access Policy Manager, F5 Advanced Firewall Manager. F5 Application Security Manager, Cisco Call Manager.
Web Proxy
Bluecoat Proxy SG, Websence 7.0
OS
CISCO IOS 12.X, MS-DOS 6.22, Windows 95/97/98/Me, Windows NT4.0, Windows 2000, Windows 2000 Advance server, Windows XP, Windows 2003, Linux
Internet
Internet Information server 4.0, Internet Explorer, Netscape Navigator
Languages
C, C++, Html, JavaScript, PHP, and Perl
HIGHLIGHTS:
Expert in IT Security Policies.
Expert Wireless Network Security.
CERTIFICATIONS AND PROFESSIONAL DEVELOPMENT:
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
Trained Virtual Machine Associate.
Trained Data Center Operator.
PROFESSIONAL EXPERIENCE:
Charles Schwab, Austin, TX February 2015-Present
Senior Network Engineer
Responsibilities:
Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
Troubleshooting the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections.
Working knowledge and experience in layer 3 routing protocols including BGP and OSPF.
Experience in configuring DNS Properties and maintaining DNS Database.
Responsible for managing DHCP services, creating DHCP network templates and DHCP pool.
Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
Provided redundancy to the network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
Configuring, implementing and troubleshooting VLAN's, VTP, STP, Trunking, Ether channels.
Packet capturing, troubleshooting on network problems with Wire shark, identifying and fixing problems.
Responsible for following peak Data Center policies and procedures in Data Center environment.
Great exposure to SDN and network virtualization technologies like Cisco ACI.
Responsible for designing and engineering of a virtual network infrastructure which included Cisco ACI support technologies.
Performing network monitoring, providing analysis using various tools like Wire shark, Solar winds etc.
Good experience with the ticketing tools like Service Now.
TD Bank, Farmington Hills, MI Feb2014–Jan 2015
Network Data Engineer
Responsibilities:
Worked extensively on Checkpoint Firewalls R65/R70/R75/R76/R77.10.
Managing Checkpoint firewalls using Provider one and Smart Dashboard.
Isolate Issues using Smart Tracker.
Well experienced with configuring Juniper ACLs, Cisco ACLs
Worked on Juniper Net Screen Firewalls Using NSM
Extensive Experience in Managing and trouble Shooting Juniper SSL VPN Monitoring Network traffic using Solar Winds.
Policy Management using F5 Access Policy Manager
Monitoring Health Check and Maintaining Firewalls using E7.
Testing F5 Advanced Firewall Manager for feature deployment.
Experience with design and implementation new Firewalls in Vendor Locations for Site-to-Site VPN Tunnels with multi-vendor products.
Implementation of MPLS VPN Networks.
Managing Cisco ASA Firewalls using ASDM (Creating and Modifying Rules)
Managing Configuring and Troubleshooting Juniper SRX Firewalls.
Monitoring Enterprise infrastructure for vulnerabilities using ARCSITE 6.5
Enterprise Web Traffic Filtering and Data loss prevention using Web sence 7.0
Managing Load Balancer’s F5 (LTM and GTM) and Trouble Shooting
Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health monitoring.
Troubleshooting IPv4 and IPv6 Dual stacking issues.
Involved in maintaining STP, RSTP for the catalyst switches I worked on.
Configuring and troubleshooting cisco ASA Firewalls for Site to site VPN tunnels.
Managing ARUBA VPN Boxes.
Resolving QOS issues on routers for Marked Traffic
Upgrading checkpoint Firewalls from R70 to R76.
Migrating Juniper Net Screen Firewalls to Juniper SRX Firewalls.
Network Risk assessment, through Pretesting.
FedEx, Collinsville, TN Dec 2012– Jan 2014
Network engineer
Responsibilities:
Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall
Researched, designed and replaced aging Checkpoint Firewall architecture with new next generation Palo Alto appliances serving as Firewalls and URL and application inspection
Exposure to Wildfire feature of Palo Alto.
Implemented Positive Enforcement Model with the help of Palo Alto Networks.
Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
Palo Alto appliances serving as firewalls and URL and application inspection.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Hands-on experience with WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types
Implemented Cisco Secure Access Control Server (ACS 3.0) for TACACS+/RADIUS
Knowledge with redistribution of routing protocols and Frame-Relay configuration
Implementation of TCP/IP and related Services-DHCP/ DNS/ WINS
Configured, maintained and troubleshot routing protocols such as OSPF, EIGRP.
Implemented port aggregation and link negotiation using LACP and PAGP
Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring
Performed troubleshooting, while maintaining trouble ticket tracking, following both internal/external routes.
Used IPSec VPN tunneling to provide access to user machines and partners in another network. Provided application level redundancy and availability by deploying F5 load balancers LTM.
Configuring, Monitoring and Troubleshooting Cisco ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
Configuring failover and working on SSL-VPN when in active/standby failover on Cisco ASA
Support customer with the configuration and maintenance of Cisco ASA firewall systems
Configured CISCO content switch for load balancing and NetScaler Load balancing.
Worked on Load balancing strategies/techniques, expertise in application switching /traffic management, knowledge of persistence and SSL certificates.
Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
Acted as Tier 3 support for connectivity, failures, configuration, implementation, and troubleshooting.
Provided project management for data center cabling, documented all network drawings using Visio
Designed, tested, and implemented global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols.
Implemented traffic policy changes with Cisco PIX Firewall appliance switch WAP configuration and installations.
Assisted with escalation procedures and customer notifications.
Dealt with customer problems to management and support groups utilizing standard escalation model.
Techsoware Pvt Ltd, Hyderabad, India Jan 2011-Oct 2012
Jr. Network Engineer
Responsibilities:
Responsible for providing high level technical support, including identifying and resolving problems on Cisco supported products for E-Commerce infrastructure. This included external routing and internal/intranet routing for DMZ servers.
Configured EIGRP, BGP, and MPLS.
Configured Firewall, QOS by SDM and provide security by Prefix list, Access- List and By Distribution List.
Good experience in implementing new ultra-secure networks in multiple data centers that included Cisco, Juniper security devices.
Responsible for providing security using Fortinet Firewall.
Good knowledge on wireless technologies.
Implemented cable multi-service operator (MSO) to capture traditional Telco subscribers with IP telephony and provide relevant QOS.
Designed VLAN’s and set up both L2 and L3 logical to have it communicate to the Enterprise network.
Satisfactorily Resolved Problems in timely manner with focus on providing a high level of support for all customers.
Moved Core switches and several non-Cisco devices under strict deadlines to maintain network functionality.
Worked and gained good knowledge on DC Xaas networking
Erudite Soft Private Ltd, Hyderabad, India Jul 2008-Dec 2010
Designation: L1Engineer
Responsibilities:
Creating user accounts & distribution groups, setting file and folder permissions.
Performed the installation and configuration of installation and configuration of local area network, maintenances of server and backup process.
Administering Active Directory and Group Policies to maintain corporate compliance.
Allocating, configuring and monitoring system resources in a multi-node VMware, VSphere cluster.
Working with other team members and manager to understand & update systems configuration documents and technical specifications.
Assist in monitoring the Storage Area Network.
Developed highly efficient algorithms in C++ through both pair-programming and independent work.
Specified, prototyped, developed and tested an object-oriented. Multiplatform C++ framework containing support to: data structures, common algorithms sockets.
Worked closely with presales and global network team for enhancing network operation effectiveness, technical escalations and service improvement.
Setup and configured network monitoring and management systems, which include Window and monitor network connections, server services and disk usage.
Installed MRTG to collect bandwidth utilization statistics of servers and WAN links.
Managed team of 30 engineers in systems and technology team.
EDUCATION:
Holds a Bachelor’s degree in Electronics and Communications