Post Job Free
Sign in

Network Engineer

Location:
Edison, NJ
Posted:
April 10, 2017

Contact this candidate

Resume:

NAVEEN V

******.************@*****.***

OBJECTIVE

Network Engineer with 10+ years of experience in the industry, which includes expertise in the areas of Network Security.

TECHNICAL SKILLS

Cisco Routers/Switches: Cisco 2900 series (2921), GSR 12416, 12418, Cisco 7200vxr,

Nexus 5k and 6k Switches, Cisco 3640, 3600.

Redundancy and management: HSRP, RPR, NSF/NSR.

Network Configuration: Advanced switch/router configuration (Cisco IOS access list,

Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP.

WAN Protocols: HDLC, PPP, MLPPP.

Load Balancer: Cisco CSS, F5 Networks.

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco ASA Firewalls 5580-20, Checkpoint 12600, IPSEC & SSL

VPNs, IPS/IDS, DMZ Setup, CBAC, Cisco NAC, ACL, IOS

Firewall features, IOS Setup.

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI.

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Layer 3 Switching: CEF, MLS, Ether Channel.

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500.

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux.

Windows Servers 2003/2008 Windows MS-Office, Visio.

CERTIFICATIONS

Cisco Certified Network Professional (CCNP).

Cisco Certified Network Associate (CCNA).

Microsoft Certified IT Professional (MCITP).

WORK EXPERIENCE

T-Mobile USA, Inc. Snoqualmie, WA 19th Feb 2015– 19th Jan 2016 Sr. Engineer, System design and strategy

Plan, Design and assist in deploying enterprise wide Network Security and high availability solutions for ASA.

Used CSM (Cisco Security Manager) and Cisco ASDM (Adaptive security Device Manager) for Production Firewalls and VPN devices maintenances.

Experience with SNMP, Syslog, network alarming and performance monitoring protocols.

Worked on CISCO ASA 5500 series Firewalls (5510, 5550, and 5585), checkpoint 12600 for various application accesses for Application Vendors and Offshore implementation teams.

Creating and implementing security policies based on network traffic analysis for internet firewall.

Experience in adding Rules and Monitoring Juniper Firewall traffic through Smart Dashboard and Smart View Tracker applications.

Worked on MacAfee IPS and IDS NSM devices.

Migrated application specific firewall rule while moving server from one Data Center to another. Worked on Cisco AP’s and other devices.

Experience writing, staging, and testing device configurations and migrating the T Mobile retail stores from old 1800 series to the new 2921 cisco routers on the T Mobile’s network.

Worked on configuring and troubleshooting Nexus 5Ks, 6509's 7609's ASR1013's 3850's

Configuring the Nexus 5k and 6k switch modules.

Worked with server team, datacenter team, application owner during change implementation.

Hands-on experience in configuring ASAs into multiple context, Active/Active failover, Active/Standby Failover, Policy Maps.

Regularly performed Firewall audits around Juniper Firewall-1 solutions.

Experience working on Citrix server at T-Mobile.

Migrations included and not limited to Cisco to Cisco and Cisco to Checkpoint and Checkpoint to Checkpoint.

Designing, configuring, and maintaining network security devices.

Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks

Working on MOP’s and documenting them.

Worked on Nokia EMS and Ericsson EMS and Mavenir and Gigamons.

In-depth understanding of the OSI Reference Model and its security implications.

In-depth knowledge of networking, principles of routing, internet services and protocols and their security implications.

Monitoring Traffic and Connections in Check Point and ASA Firewall.

Manage project task to migrate from Cisco ASA Firewalls to Check Point Firewalls.

Managing and supporting Intrusion Detection Services, by performing health checks, rebooting the devices and monitoring the alarms generated by devices.

Worked on ASM, APM, VPN configuration and Configuring Nexus 6k Switches.

Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.

Monitor and troubleshoot issues related to Checkpoint Firewall (R75.40), F5 and A10 Load balancers, McAfee IDS, Gigamon, Extrahop and Secure 64.

Hands on experience managing Cisco and Juniper Firewalls.

Worked on ITOA architecture which allows to integrate multiple data sets into a common data store for more efficient and more accurate analysis.

Worked in setting up the SMTP, iDRAC, system notification, Audit logging and firmware update of the Extrahops.

Collecting the data from extrahop and analyzing it and bonding multiple interfaces together.

Worked on extrahop SNMP.

Configuring, troubleshooting and maintaining Cradle point devices in all T-Mobile Retail stores across the Nation which are installed for the stores backup.

Fixing the Wi-Fi and Access Point issues and troubleshooting the AP’s on the Wireless Controllers (WLC’s).

Worked on migrating Citrix farms from Citrix v6x to v7.6 and experience working on desktop virtualization.

Reviewing the MOP’s and make sure everything is correct prior scheduling the migration of cisco 1800 series to 2900 series routers, and also checking the DHCP scopes creation in Infoblox prior to the migration, if not, having them created before the grid restart.

Prepared technical documentation of configurations, processes, procedures, systems and locations and good knowledge on visio.

Review the MOPs and configure the switch ports for POS, printers, Cams, DVR’s and all other devices.

Monitoring the T mobile sites for any network failures on Splunk and make sure the backup works.

Hands on experience in configuring the cisco 2900 series router and also upgrading the software on it from Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.4(3) M8 to M2.

Worked on InfoBlox to change and create Secure DNS, DHCP and IPAM.

Worked on NTP servers decommissioning (ALTEON Load balancers) Network Change Management – Work with cross functional teams to identify and stream line processes as per National guidelines. Ensure that new Nodes/Technology & Services align with T-Mobiles NTM & NCM processes. Review Release Planning documents to ensure requirements met.

Provide support 24x7 on and as needed.

Capital one, Dallas, TX March 2014- February 2015

Network Administrator

Experience in writing rules and troubleshooting Issues related to checkpoint firewall, and has worked on R75, R75.20, R75.40 installed on Crossbeam X60 and X80.

Designed, built, and implemented Checkpoint R71 Firewall-1 VSX, with Provider-1 running on a Crossbeam X 45.

Configuring the Nexus 5k and 6k switch modules.

Monitor and troubleshoot issues related to Checkpoint Firewall (R75.40), F5 and A10 Load balancers, McAfee IDS, and Secure 64.

Extensive use of Excel to scrub existing ACL before implementing in new Data Center.

Handling Trouble Ticket management, Incident management, change management. Direct Customer interaction that involves the processes like changes in the configuration as per their requirements.

Review and validate firewall port open, requested by business line and provide Network Security approvals.

Responsible for Checkpoint firewall management and operations across global networks. Worked with Checkpoint Support for resolving escalated issues.

Switching related tasks included implementing VLANS, VTP and configuring ISL trunk on Fast Ethernet channel between switches.

Maintaining Network Integrity on LAN and WAN Networks.

Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation.

Implementing and maintaining (L2 & L3) 2800, 2900, 3600, 3900 and 7000 Series Routers and 2900, 3650, 3750 Series switches and Cisco 1252 and 1262 Access Points for various sites.

Analyzing and troubleshooting security issues related to Check point firewall.

Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN. Worked on IDS/IPS.

Worked on F5 load balancer deploying many load balancing techniques with multiple components for efficient performance.

Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).

Worked on application layer firewalls on the level of TCP/IP stack.

Troubleshoot network security issues by performing Incident determination, alert identification and correlation, and providing Resolution for in-scope environments.

Have knowledge on split DNS, round robbin DNS and worked on DNS SEC to protect against threats.

Configuration & Troubleshooting of Call out feature, SNMP, NTP, Network Redundancy features i.e. HSRP/VRRP etc, load balancing, policy based routing, rate limiting, traffic shaping, VLAN, trunking and routing protocols i.e. BGP, EIGRP & OSPF

Managed InfoBlox DNS Services and DHCP services.

Configured and Supported RSA Secure ID Devices.

Planning for refresh requirements, schedule and pricing.

Configured and managed WAN acceleration platforms including Cisco Wide Area Application Services (WAAS) and Riverbed platforms.

Experience working on the Cisco NCS to remotely detect and troubleshoot WLAN interference.

Experience working on traffic capturing and traffic analyzing tools.

Managed network device backup, restore and reboot etc.

Experience in HP NNM and HP Network Automation.

Worked on DHCP for a reliable ip address configuration.

Used DHCP to define TCP/IP configurations from a central location.

Troubleshooting all network devices like Routers and Switches across the enterprise

Communicating with Vendors and Telco’s to resolve network outages and periods of reduced performance.

In depth knowledge of NAT functionality of firewalls and Proxy servers.

Review of technical documentation for training materials, technical marketing collateral, manuals, troubleshooting guides, etc.

Experience establishing and configuring Enterprise Active Directory including firewall settings, group policies, and user/device accounts.

Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.

Upgrading Cisco IOS and adding AAA authentication commands in various Cisco Routers and Switches using TFTP.

Experience working with IDS/IPS.

Worked with packet sniffer like Wireshark to trace data flow and troubleshoot networks

Used Cisco Identity service engine to provide secure and guest access.

Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP with VRF.

Experience in administration of access control systems such as check point firewall and VPNs.

Implementing and troubleshooting traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) /EPLS network using Frame Relay and Open Shortest Path First (OSPF).

Installed and maintained Cisco and F5 Load Balancer and documentation.

Responsible for day to day management of Cisco Devices, Traffic management and monitoring.

Provide support 24x7 on and as needed.

Tribune, Chicago, IL (Dec 2012 – Feb 2014) Network Engineer-Deployment

Responsibilities:

Experience in Cisco/Juniper Networking, Security which includes Designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.

Configuring, administering and troubleshooting the Check Point, Palo Alto and ASA Firewall.

Hands On experience Cisco IOS/IOS-XR/NX-OS, for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS. Voice/data circuits, routers/switches, and cellular technologies.

In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, Firewalls.

Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.

Working with customers Site-to-Site and Remote Site VPNs using Cisco routers to Cisco routers, Cisco Router to Check Point Firewall and troubleshoot and modify existing VPN.

Monitoring the devices on Splunk for any abnormal activities.

Involved in Cisco ASA IOS code upgradation from 8.2.4 to 8.4.5

Pushing policies in Zone Based Firewalls using CSM.

Implemented MPLS VPN (RFC 2547) Mechanisms on Cisco IOS and JUNOS.

Experience with Network Monitoring Solutions.

Experience establishing and configuring Enterprise Active Directory including firewall settings, group policies, and user/device accounts.

Experience on Trafficking of TCP/UDP through NAT and know the role of port preservation for TCP.

Troubleshooting of MPLS VPN (RFC 2547) Mechanisms on Cisco IOS and JUNOS.

Upgraded IOS on various Cisco Routers like 3945 and 2911 as well as switches like 3750, 4500 and 6500.

Designed and troubleshooting secure VPN architecture, including MPLS VPN for various customers which includes ISP’s

Worked on different networking concepts and routing protocols like OSPF, DNS and other LAN/WAN technologies.

Configured networks using routing protocols such as EIGRP, RIP, OSPF and BGP.

Troubleshooting F-5 load balancers to improve availability, scalability, and manageability.

Co-ordinate with the Data Network and Security team and come up with possible solutions.

Upgrades and backups of Cisco router configuration files to a TFTP server.

Creating Virtual IP address, Pools and Persistence profiles on F5 LTMs.

Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.

Provide support 24x7 on and as needed.

Applied Computer Techniques, Hyd., India (Oct 2008 - Oct 2012) System Design & Strategy

Responsibilities:

Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.

Experience establishing and configuring Enterprise Active Directory including firewall settings, group policies, and user/device accounts.

Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).

Configured policy based routing for BGP for complex network systems.

Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.

Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.

Responsible for day to day management of Cisco Devices, Traffic management and monitoring.

Experience managing IDS or IPS networking technologies.

Responsible for Manual testing, reporting defects and working closely with development in narrowing down issues.

Handle customer escalations related to Internet connectivity issues, VPN issues (OSPF sync issues), etc. and work with various technical teams to find a solution.

Responsible to run different kind of Network test like MPLS, BGP, SNMP, and Firewall.

Hands on with strong understanding of routing and switching QoS designing, implementation and troubleshooting.

Worked on projects like socket programming which requires Java.

Good knowledge on Java programming working on Realms, Users, Application server Groups and Roles.

WAN optimization and Data Centre network optimization.

Installation and configuration of HA environment.

WAN technologies i.e. MPLS, MPLS VPN, IPSec VPN etc.

EDUCATION

Bachelor of Technology Jawaharlal Nehru Technological University

(Electrical and Electronics Engineering) (Hyderabad-India)



Contact this candidate