Network Security Engineer

Ritwik Ranga

Email: acybwa@r.postjobfree.com

Phone no: 202-***-****

MS in Electrical Engineer

B. Tech in Electrical and Communication Engineer

ACCOMPLISHMENTS

3+ years of experience in Network and Security Engineering and Administration of Security, LAN and WAN Technologies.

Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.

Experience in installation, configuration, administration, troubleshooting of firewalls (Cisco firewalls, Checkpoint firewalls and Juniper firewalls) and related software, and LAN/WAN protocols.

Administering multiple Firewall of Juniper/Net Screen, in a managed distributed environment. Fulfilling routine change requests of Net Screen OS Firewall and resolving trouble tickets, maintain and monitoring firewalls using scanning software Nesses

Experience in Supporting and troubleshooting Checkpoint (R77 Gaia, R75.40, R70, R65, Provider-1, MDM/MDS, VSX, SPLAT and IPSO) Juniper (SRX, JUNOS, Screen OS, Net Screen SSG, SPACE and NSM) and Cisco firewall (ASA 5550, 5540, 5520, PIX 525, 535, CSM and ASDM) technologies.

Extensive experience in Layer 3 routing and Layer 2 switching and dealt with router configurations like 7200, 3800, 2800 and switches 6500, 4500, 3700, 3750, 3900, 2900, 2960 and 3500XL, 3950 switch series.

Thorough knowledge of the installation, termination and troubleshooting of the physical layer and data link layer of the OSI model.

Configuring/Managing Intrusion Prevention System (IPS): Cisco IPS/Fortinet & Checkpoint UTM.

Proficient in setting up IT infrastructure including wide area networks (WAN) / local area networks (LAN), security management systems & networking devices administration.

Hands on experience with the usage of diagnosis tools like Qkview, TCPDUMP for analyzing the real-time statistics during the packet flow.

Proficient in configuration of routing protocols like RIP, IGRP, EIGRP, OSPF multiple areas and BGP.

Strong communicator: Able to interact effectively and positively with individuals of all technical abilities; An Out-of-The-Box Thinker, Believe in Team Work & Team Spirit, Decision Maker, Proactive, Customer Focused & Good Documentation / Presentation Skills.

TECHNICAL SKILLS

Firewall

Checkpoint R65/R70/R75/R77/Firewall-1, Cisco ASA, Juniper, NetScreen.

Security Technologies

IPS/IDS, Firewall, VPN, Tunnelling, IPSEC, DMZ, ACL, SSL, TACACS+, RADIUS

Protocols

NAT, VTP, VLAN, TCP/IP, UDP, EIGRP, OSPF, RIP, ARP, NTP, SSL, HTTP, HTTPS, SMTPPOP3, DNS, ICMP.

Switches

Cisco Catalyst VSS 1440 / 6513 / 6509 / 4900 / 3750-X / 2960

Routers

Cisco Routers ASR 1002 / 7606 / 7304 / 7206 / 3945 / 2951 / 2600

Operating Systems

Windows XP/7/8, Windows Server 2000/2003/2008, Linux, CentOS, Cisco IOS, Visio

Technical Certifications

CCNA, Palo Alto ACE Certified

Professional Experience

Network Security Engineer

Pulte Group, Atlanta, Ga

(Dec 2015 - Present)

Day to day activities included but not limited to an extensive use of Checkpoint Smart Console suite (R75x, R76x, Gaia R77x & VSX) to manage policies and rule base of security control points, device mapping using network address translation, objects management, routes and other administrative tasks.

Implementing Security Solutions in Juniper SRX and NetScreen SSG firewalls by using NSM.

Daily technical hands on experience in the configuration, troubleshooting of Juniper SRX firewalls as well as experience working directly with customer in a service/support environment.

Extensive implementation of firewall rules on Juniper SRX 3600, SRX 650 and SRX 220 on a daily basis, using SPACE as well as CLI when needed.

Daily exposure to IP based network security protocols with Juniper SRX firewalls, Operating Systems and security configurations LAN/WAN/Security solutions.

Successfully migrated databases from R71.20, R75.20 to R75 and latest versions.

Enforced network security to DMZ & external Market Data vendors via Cisco PIX 515 and ASA 5500 series firewall rules, and NAT.

Provide support to help desk for complex/major network problems. Build the rules for the application access across the IPSEC VPN tunnel.

Perform network security, administration, analysis, and problem resolution for networks, Windows 2000, UNIX (Solaris & BSD), CISCO, TCP/IP, and Checkpoint firewalls.

Network/Security Engineer (Internship)

Hanesbrands, Winston-Salem, NC

(June 2015 – Dec 2015)

Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration.

Configuration and Maintenance of ASA 5580-20, ASA 5540, ASA 5520, ASA 5510, PIX 535, FWSM Firewalls.

Installation of Cisco ASA 5500 series firewalls, Cisco 3500, 4500, 6500 series switches

Configuration and Maintenance of ASA 5580-20, ASA 5540, ASA 5520, ASA 5510, PIX 535, FWSM Firewalls.

Installation of Cisco ASA 5500 series firewalls, Cisco 3500, 4500, 6500 series switches

Configuration and Maintenance of ASA 5580-20, ASA 5540, ASA 5520, ASA 5510, PIX 535, FWSM Firewalls.

Installation of Cisco ASA 5500 series firewalls, Cisco 3500, 4500, 6500 series switches

Configuration and Maintenance of ASA 5550, ASA 5510, PIX 535, PIX 515E, FWSM Firewalls and Cisco IPS 4240 using Cisco Security Manager (CSM).

Expertise in VPN configuration, routing, NAT, access-list, security contexts, and failover in ASA firewalls.

Implement and manage Geo-Location based load balancing using F5 GTM load balancers. Provide consulting services to customers recommending best practices for their security posture and their environments.

Involved in configuring Cisco routers and switch administration, familiar with enterprise level Cisco Routers such as 7200 series, 3800 series, 3700 series, 2800 series, and Cisco catalyst series switches like 6500, 3750, and 4500.

New firewall design, installation, routing configuration & implementation. Manage and support Remote Access VPN setup for users and field locations with Nortel VPN Captivity Switch and RSA Secure IDS two-factor authentication.

Network Engineer

ORTAM Technologies, INDIA

(July 2013 – June 2014)

Provide initial fault isolation, proactive maintenance and monitoring of Company’s Network Equipment. Perform monitoring and support of internal network security.

Provide support to internal users and external clients on various hardware and software issues.

Firewall Policy Implementation on Checkpoint R62 and R65 using Provider 1.

Migrated Nokia IP 300 to Checkpoint NGX R65 SPLAT

Site to site VPN implementation on Checkpoint Firewall R62 with 3DES encryption over IPsec.

Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800 Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations.

Monitored, troubleshoot, configured, and deployed LAN/WAN solution.

Configured BGP, Frame-Relay, IPsec-VPN, SSL VPN, and routing protocols (OSPF, EIGRP, RIP, BGP, eBGP & iBGP).

PC/LAN support in an Ethernet based TCP/IP (DCHP & STATIC IP allocation).

Responsible for network architecture design and system engineering support in the following areas: Gateway services, Routing implementations & configurations, IP subnets, QoS policies, Network security implementations, Firewall implementation and Network management.

Provided staff augmentation support for BGP, EIGRP, OSPF and Multicast enabled enterprise network using Cisco equipment including 6509s with FWSMs, 3750 Stackwise switches, PIX & ASA firewalls.

Performed 24*7 on-call rotation schedule over network monitoring tool interface and configures Loopback connectivity for enterprise network.

Contact this candidate