Manoj
acy15d@r.postjobfree.com
SUMMARY:
Cisco Certified Network Engineer with 8 years of experience in the industry, which includes
Network Engineer, NOC Engineer, Network Administrator, Network Security Engineer.
Strong hands on experience on Cisco switches (2900, 3550, 3750, 6500, MDS 9000, 5000 NX-
OS) series, juniper (EX, QFX, QFabric) series switches, Brocade (ICX, SLX CES), juniper
(T4000, LN, CTP) series routers, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers.
Experience in Configuring and implementing Palo Alto Firewalls, checkpoint firewalls, PIX
Firewall (506, 515, 525, 535), cisco ASA (5505,5510,5520) Firewall, Cisco ISE (Identity
Service Engine).
Hands on experience on cisco wireless LAN CONTROLERS and ACCESSES POINTS
Load Balancing using Cisco ACE, Kemp, ADC, F5, Security Device Manager (SDM).
Knowledge on SDN (software defined network).
Deployed Enterprise manager to monitor and manage BigIP F5 devices.
Engineered traffic management solutions, including designing, low level engineering for
F5 LTM, GTM, ASM, APM environment
Performed F5 appliance (LTM, GTM, APM, and ASM) maintenance and system upgrades
including hot fixes and security configurations.
In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point
to Point, MPLS and Frame Relay
Experience in Configuring and implementing VLAN, VTP domains, LAN switching and
STP/RSTP.
Enterprise Exchange 2007 SP3, Run & Maintain/Configure Exchange environment, 16K+ users, 5
Cluster (10 node CCR ESX VMWare Mail store) 25+ node messaging system, Exchange
PowerShell, Mailbox restoration, User support Outlook 2007/2010 clients, EMC Email Source
One Archiving, ActiveSync, RSA Security, Symantec Email Security, Room Wizard
Administrator. CRM Application integration.
Data Security - Provisioning/De-Provisioning Systems Automation, Access Termination
Processes development. Access Control for Main Frame, Email, Microsoft network,
Banking/Financial Applications.
Perform 24x7 log monitoring - review and analyze system security logs.
Monitored system security to maintain protection and align processes with corporate objectives,
including review of security certification, configuration plans, and risk compliance.
Serve as the primary data point for internal and external auditing processes, including third-
party data for quarterly and annual reports.
Experience in using net scout sniffer analysis for testing the performance of the network.
Configured and maintained net scout ngenius 4200 series packet flow switch as load balancer.
Expertise in the area of Virtualization with vSphere, VMware ESXi 5/4.1/4 and 3.x hosts and
Virtual Center server
Implemented vSphere 5.0 for Proof of Concept & Supporting vCenter environment in large-scale
production environment.
Expertise in implementation and supporting VMware vSphere ESXi environment.
Experience on Wide area application services
Experience in QoS on multicast VPN
Experience in Physical cabling, IP addressing (ipv4 & ipv6), Wide Area Network configurations
(Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
Proficiency in configuration of VLAN setup on various CISCO Routers and Switches.
Extensive hand on experience with complex routed LAN networks, CISCO Routers and
Switches.
Working configuration of new VLANs and extension of existing VLANs on/to the necessary
equipment to have connectivity between two different data centers.
Hands-on configuration and experience in setting up routers and switches to perform functions
at the Access, Distribution, and Core layers.
In-depth expertise in the analysis, implementation, troubleshooting & documentation of
LAN/WAN architecture and good experience on IP services.
Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN
Trunks, VTP Ether channel, STP, RSTP and MST.
Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized
T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the clients
location.
Aggregating switch links using LACP and PAGP protocols.
Implementation and Troubleshooting of WAN authentication protocols- PPP, CHAP and PAP.
IP addressing and IP address scalability by configuring NAT/PAT.
Experienced working on network monitoring and analysis tools like, Solar Winds, Cisco Works,
River Bed, Cisco Prime.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX
security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls
as per the design.
Design and build Windows 2000, 2003, 2010 2012, Servers.
Active Directory installation, maintenance and upgrades, Responsible for all software
installations on both the servers and workstations. This includes Antivirus software and any
custom applications.
Analyze, monitor, troubleshoot, and investigate security-related anomalies with various tools such
as AlienVault SIEM, Imperva Securesphere Web Application Firewall, Barracuda WAF,
SCCM, etc.
Maintain and upgrade Imperva WAF from version 8.x to 10.x. Maintain and review the events
and make necessary changes including setting up new applications.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with
both Checkpoint and Cisco ASA VPN experience.
Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules
for content filtering.
Hans on experience with Spirent Test tool .
Experience in Network Intrusion detection/Intrusion Prevention System.
Troubleshooting the Juniper SRX100 and 110 series, Juniper NetScreen with Site-Site VPN.
Worked on Juniper NetScreen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG
200.
Experience on workig with Netcracker, Cramer
Worked with ticketing tools like ServiceNow, Remedy.
Hands on experiences on McAfee EPO with deploying and removing agent on clients machine,
removing virus and manually updating DAT files.
TECHNICAL SKILLS:
Routers : Cisco (2500, 2600, 2800, 3600, 3800, 7200) series routers
series, juniper (T4000, LN, CTP) series
Routing Protocols : OSPF, EIGRP, BGP, EGP, RIP v1/v2, IS-IS, MPLS, Static Routing,
Redistribution, Summarization.
Switches : Nexus 2K/5K/7K, Cisco Catalyst 2900, 3500, 3700, 6500, 4500,
3850, 3560, 3750, 2960. juniper (EX, QFX, QFabric) series
Brocade(ICX,SLX CES), TP-Link, D-link, HP
Switching Protocols : LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer
Switch, Ether channels, Transparent Bridging.
Firewall : Cisco ASA series, Checkpoint, Juniper (SRX, Csrx, Vsrx) Series,
Fortinet( next generation fire walls), SonicWALL (Nsa Series,
Supermassive 9000 Series), Palo Alto Networks.
Load Balancer : Kemp, ADC, F5 Networks (Big-IP) LTM 8900 and 6400.
LAN : Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet
WAN : PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame
Relay, VOIP
Gateway Redundancy : HSRP, VRRP and GLBP WAN Optimizer, Riverbed Steelhead
Appliance, WAE DHCP and DNS Infoblox
Various Features
& Services : IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP,
CDP,
TFTP, FTP.
AAA Architecture : TACACS+, RADIUS, Cisco ACS.
Tools : Zenoss, QRADAR, Algosec, RIVERBED(OPNET)Modeler, PUTTY,
Secure crt.
Network Monitoring : Logic Monitoring (LM), LMS, Cisco Secure ACS, Wireshark,
Cisco Prime Infrastructure, SNMP, HRping, solar winds, citrix
Programing Languages : C, C++, Embedded-C.
PROFESSIONAL EXPERIENCE
Holland America Group, Seattle, WA Jun 2015 to Present
Sr. Network Engineer/Admin
Responsibilities:
Designed and support the consolidation of data centers utilizing Cisco 6500, Nexus 2K,
5K, 7K and juniper (EX, QFX) switch infrastructure.
Configure and maintain all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as
well as a centralized management system (Panorama) to manage large
scale Firewall deployments.
Hands on experience on all software blades of Check Point Firewall. 24x7 on-call step-
up support as a part of the safety operations team.
Working closely with knowledge center management to investigate the information center sites
for cabling necessities of assorted network instrumentation.
Provided application level redundancy and accessibility by deploying F5 load balancers long-
term memory.
Configuring ADC (Application Delivery Controller).
Performed Imperva SecureSphere DAM an WAF Health Checks.
Having knowledge Center style expertise, putting in and Configuring Network Devices in a
very knowledge Center as well as mend the cables within the Patch
Panel. style and enforced network
Hands-on expertise within the network management of circuits mistreatment TDM and Frame
Relay Managing and providing support to numerous project groups with regards to the
addition of recent instrumentation like routers switches and firewalls to the DMZs.
Implementing traffic engineering on high of Existing Multiprotocol Label shift (MPLS) network
mistreatment Frame Relay and Open Shortest Path First (OSPF).
Provided redundancy in a very multi homed Border Gateway Protocol (BGP) network by tunings
AS-path.
Migrate Multi-site backups from Netbackup & Commvault to Networker 8.2 and/or Avamar
7.2 & Data Domain. As a result; faster, source based de-duplicated backups,
Virtual Backup Appliance integrated to Vcenter, while using existing backup hardware
and network.
Backup all applications (Oracle, Sharepoint, SQL, Exchange, Active Directory), Operating
Systems (UNIX, Linux, HPUX, Solaris, Windows), VMware and NAS devices (Isilon, VNX,
NetApp, PureStorage) via Networker module, agent & plugins, to simplify backup, recovery
process and administration
Handling enterprise outages effectively and driving towards the resolution. Coordination of fault
escalations in conjunction with the first high-level technical management of high priority or
technically complicated calls.
Knowledge and skill of 802.11 a/b/g/n LAN normal for wireless Technology.
Working with capability management on network information measure utilization coverage of
the websites WAN link and merchant co-ordination for brand spanking new site turnovers /
WAN links.
Preparing Metrics report description on SLA performance of tickets and method quality report
back to analyze team performance & discussion on the advance areas (By monthly).
Providing coaching to new comers and effectively operating towards a method quality
improvement within the Team.
Configure best route map configurations in the new Cisco IOS XR Routing Protocol Language
(RPL).
Supporting EIGRP and BGP supported the network by partitioning level two & three issues of
internal groups & external customers of all locations
Performing troubleshooting on slow network property problems, routing problems that involves
OSPF, BGP and distinctive the foundation reason for the problems.
Extensive active expertise with complicated routed local area network and WAN networks,
routers and switches.
Hands-on expertise with Ether Channel, Spanning Tree, Trucking, ACLs,
Syslog. Expertise within the setup of HSRP, Access-Lists, and RIP, EIGRP, and tunnel
installations.
Proficiency in configuration of VLAN setup on varied Cisco Routers and Switches.
Work allotted tickets to see the purpose of failure and resolve issues remotely
utilizing obtainable tools and different Operation Center resources.
Monitor the network using cisco prime, HRping.
Analyzed and tested network protocols (Ethernet, TCP/IP) mistreatment Wireshark tool.
Provide step-up support to L1 members of network team.
Worked with completely different ISP globally for any WAN circuit and BGP
routing problems. Gap up cases for cerium routers, river bottom optimizer problems.
work & intensify issues effectively so as to satisfy client SLA's (service level agreements).
Perform downside management and root cause analysis for purchasers pro re nata.
Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
Environment: Nexus 2k/5k/7k, juniper EX, QFX Cisco 6500/7500/7200 Routers, Cisco
3550/4500/6500 switches, Juniper SRX100, Palo Alto Fire Walls, LAN, WAN, OSPF, RIP, BGP,
EIGRP, HSRP, PPP, VPN, Checkpoint, Cisco ASA.
Wayfair, Boston, MA Jan 2014 to May 2015
NOC Engineer
Responsibilities:
Responsible for fitting the infrastructure surroundings with majority of Cisco ISE & Palo
Alto appliances except for varied different instrumentality.
Efficiently exploitation ServiceNow tool for generation of tickets, distribution severity to
incidents, following up with incident standing and troubleshooting incidents.
Excellently used Splunk to research and monitor incident management and incident
resolution issues.
Analyzed and monitored incident management and incident
resolution issues exploitation Splunk.
Backed up Electronic health record systems via File system backup (EPIC). As a result,
faster backup and restore times.
Used Test Tool Spirent for testing a switch to Verify ONF Open Flow Specification.
Researched, designed, and replaced aging stop firewall design with new next generation Palo
Alto appliances serving as firewalls and URL and application review.
Upgraded and updated Cisco IOS from twelve.3T to 12.4. Accustomed DHCP
to mechanically assign reusable information science addresses to DHCP shoppers.
Configuring and troubleshooting perimeter security devices like stop NGX R77 Gaea,
Provider-1/MDM, Secure Platform, Palo Alto and cisco ASA Firewalls.
Palo Alto style and installation (Application and URL filtering,
Threat bar, information Filtering).
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall
logs exploitation varied tools.
Serve as the primary data point for internal and external auditing processes, including third-
party data for quarterly and annual reports.
Experience in using netscout sniffer analysis for testing the performance of the network.
Configured and maintained netscout ngenius 4200 series packet flow switch as load balancer.
Successfully put in Palo Alto PA 3060 firewalls to protects information Center and provided L3
support for routers/switches/firewalls
Implemented Zone primarily based Firewalling and Security Rules on the Palo Alto Firewall
Exposure to wild hearth feature of Palo Alto.
Maintained and managed networks running EIGRP and BGP routing protocols.
Regularly performed firewall audits around stop Firewall-1 solutions for purchasers.
Provided tier three support for stop Firewall-1 software system to support customers.
Work on stop Platform together with supplier sensible Domain Manager. Worked on
configuring, managing and supporting stop Gateways.
Configuration of routing protocols EIGRP and BGP for little to medium sized
branches supported company branch standards, together with distribution and route maps.
Access purpose refresh and implementation at varied sized branches and locations.
Used network observation tools like Spectrum to confirm network property and protocol
analysis tools to assess and pinpoint networking problems inflicting service disruption.
Worked with management and varied departments to develop procedures and
troubleshoot issues as they arose.
Build IT security infrastructure together with stop, Juniper and Palo Alto firewalls
Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health observation.
Configuring Juniper NetScreen Firewall Policies between secure zones exploitation NSM
(Network Security Manager)
Backup and restore of stop and Cisco ASA Firewall policies
Handling Break/Fix things, monitor, configure, policy creation on Checkpoint's sensible Center
Server running on Secure Platform
Monitoring Traffic and Connections using cisco prime and solar winds
Manage project task to migrate from Cisco ASA firewalls to examine purpose firewalls
Worked extensively in Configuring, observation and Troubleshooting Cisco's ASA 5500/PIX
security appliance, Failover demilitarized zone sectionalization & configuring
VLANs/routing/NAT with the firewalls as per the planning
Environment: Nexus 2k/5k/7k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches,
Brocade VPX, ICX series switches, Palo Alto Firewalls, LAN, WAN, OSPF, RIP, BGP, EIGRP,
HSRP, PPP, VPN, Checkpoint, Cisco ISE.
EMC, Santa Ana, CA Nov 2012 to Dec 2013
Network Engineer/Admin
Responsibilities:
Configuration 7609, 7606 with OSPF and juniper (EX, QFX, QFabric) switches with
various VLAN.
Firewall technologies including general configuration, risk analysis, security policy, rules
creation and modification of Check Point R65, R70 & R77, frotinet NGFW series firewalls
and Cisco ASA.
Hands on experience on all software blades of Check Point Firewall.
Design and Build Windows 2000, 2003, 2010 2012, Servers.
Active Directory Installation, Maintenance and Upgrades.
Modernized old backup and recovery technologies using select solutions (Networker,
Avamar, Quantum VTL and Brocade). Backup all operating systems and applications (Linux,
Unix, Windows, exchange)
Responsible for All Software Installations On Both the Servers and Workstations.
This Includes Antivirus Software and Any Custom Applications.
Responsible For Configuring, Maintaining, And Repairing All Servers, Workstations,
Laptops, And Peripherals.
Create and test Cisco router and switching operations using OSPF routing protocol.
Configuration and troubleshooting link state protocols like OSPF in multiple areas.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500
switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500
switches by configuring VLANs.
Implemented MPLS VPN networks to test various problem reproductions in lab
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and
Spanning tree for creating Access/distribution and core layer switching architecture.
Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
Configuration and troubleshooting of Cisco 6500, 7500, 7200 Series routers.
Extensively worked on Nexus 5k and 7k configured and troubleshoot.
Managing and supporting large scale MPLS & Frame relay on Cisco environment for
more than 5000 Retail sites, 100 Distribution centers, 100 offices and 3 datacenters.
Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN
/Hardware and critical network links by coordinating with the vendor.
business lines in a data center environment
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506,
PIX515
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network
routing for the B2B network connectivity.
Provided proactive threat defense with ASA that stops attacks before they spread through
the network.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using
Cisco ASA5500 Firewalls.
Performed troubleshooting, while maintaining trouble ticket tracking, following
internal/external escalation procedures and customer notifications. Configured Cisco Routers for
OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
Configured the Cisco router as IP Firewall and for NATting.
Having Data Center Design Experience, installing and Configuring Network Devices in a
Data Center including patching the cables in the Patch Panel. Design and implemented network
Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices
per engineers instructions and troubleshooting any related issues.
Involved in Switching Technology Administration including creating and managing
VLANSs, Port security, Trunking, STP, Inter-VLAN routing, LAN security etc.
Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based
authentication.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF,
LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Environment: juniper (EX, QFX, QFabric)Switches, Fortinet, CheckPoint, PaloAlto Firewalls
Cisco 6500/7500/7200 Routers, Nexus, 5K,7K, LTM, GTM, F5 Load Balancer, ASA, OSPF,
BGP, EIGRP, RIP, LAN, WAN, SSL/VPN.
AXIS BANK, Hyderabad Feb 2010 Oct 2012
Network Engineer
Responsibilities:
Configured and deploying Cisco catalyst 6506, 4948E, 4510 switches and Cisco 3660, 3845,
and 7609 series Routers.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
Experience in migration of VLANS.
Manage project task to migrate from Cisco ASA firewalls to Check Point firewalls
Involved in the troubleshooting aspects of complex network infrastructure using the routing
protocols like EIGRP, OSPF & BGP.
Implementation of Access Lists for allowing/blocking desired traffic.
Configuring VLANs/routing/NATing with the firewalls as per the network design.
Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
Configuration and maintenance of PIX and ASA firewall systems.
Good knowledge in systems integration, software hardware emulation experience.
Worked on change management documentation of Network infrastructure design using Microsoft
Visio.
Perform setup of test scenarios, both hardware and software components, and perform
troubleshooting.
Experience working in Datacenter environment, configuration changes as per the needs of
company.
Configured and performed troubleshooting on link state protocols like OSPF in single area and
multiple areas.
Configure and support Private BGP Peering with transit providers.
Configure iBGP and eBGP peering between L3 routers and core routers
Configuring, implementing and troubleshooting VLANs, VTP, STP, Trucking, Ether channels.
Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
Installing, configuring Cisco 2500, 2600, 2800, 3600 series routers and configured routing
protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
Experience in configuring, upgrading and verifying the NX-OS operation system.
Troubleshoot issues with network connectivity and issues related to neighbor relationship and
peers
Experience working with Nexus 7010, 5020, 2148, 2248 switches.
Experience configuring Virtual Device Context in Nexus 7k series switch.
Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.
Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway
Redundancy.
Worked in projects converting P2P circuits into MPLS circuits, commissioning and
decommissioning of the MPLS circuits for branch offices.
Configuring and resolving various OSPF issues in an OSPF multi area environment,
Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local
routing).
Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing
problems
Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP,
OSPF, and BGP
Performing network monitoring, providing analysis using various tools like Wire Shark, Solar
winds.
Environment:, CheckPoint, CISCO ASA,Cisco 6500/7500/7200 Routers, Nexus, 5K,7K, LTM,
GTM, CISCO ASA, OSPF, BGP, EIGRP, RIP, LAN, WAN, SSL/VPN.
Shell Networks & Solutions Ltd., India Jul 2008 to Jan 2010
Network L1 Engineer
Responsibilities:
Worked in Network building and Network infrastructure management team.
Worked with upgradation, replacement of NICs, display cards, RAM, peripheral devices.
Handled installation, configuration and troubleshooting of operating systems NT/2000,
XP, and Solaris.
Experience with Remedy ticketing system in resolving tickets related to routing and
Switching
Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
Remotely testing links up to 1.5 Mbps using tools like REACTS.
Recovered lost passwords and created standard access-lists and extended access list for
new users.
Monitoring network performance to improve the backup strategy using Netrep, Solar
winds.
Environment: Cisco 2500, 2600, 2800, 3600 series routers, Solar Winds, Netrep.
Education: Holds Bachelors degree from INDIA
Certifications:
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)