Palo Alto Network Security
Resume:
Oluwakayode ‘Paul’ Joseph
Phone: 903-***-**** Email: ad2slh@r.postjobfree.com
Summary
Cisco Certified Network Professional with almost 13 years of experience, seeking to contribute and grow with a dynamic, progressive and innovative organization.
Talented and knowledgeable professional, responsible for setting up the network of multiple international satellite offices
Proven successes in the administration of multi-site WAN/LAN networks
Expert in configuring and maintaining Cisco routers, switches, NEXUS, and firewalls (IOS and NX-OS)
Installation, deployment, Analysis and troubleshooting of Firewall Technologies i.e. Firepower, Fortinet, Palo - alto, Cisco ASA, F5 (LTM)
Firepower, Cisco ASA, Fortinet and Palo Alto installation, upgrade, Monitoring and patch management
Migrate, Upgrade and Patch Management of Cisco ASA, Firepower, Palo alto and Fortinet Firewalls
Setup site-to-site IPSEC VPN tunnel and Remote VPN (SSL) within and across platforms like Firepower, Cisco ASA, Palo alto and FortiGate Firewalls and Cisco Router devices
ASA, Firepower, Palo alto and FortiGate for HA and fail-over for network reliability.
Expert in setting up VPN for multiple clients
AnyConnect and Global Protect setup for remote users.
Experienced in the implementation of Internet Peering
Experienced implementing a variety of Layer 2 and Layer 3 carrier-based Ethernet services.
Ability to provide configuration and troubleshooting skills for data networks including LAN, WAN, WLAN and Cisco routers, switches, firewalls, wireless access controllers, and others
Ability to operate Layer 2 protocols such as VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues
Ability to configure STP for loop prevention and VTP for Inter-VLAN Routing
Design and Implemented DMZ Network in a large-scale environment.
Ability to configure ASA Firewall for multiple clients
Ability to configure Palo Alto Firewall for multiple clients
Managed and Administered A10 load balancer & F5 Load balancer
Experience in configuring routing protocols like EIGRP, RIPv2, OSPF protocols
F5 Load Balancer Setup VIPs, Pools, Nodes, Health Monitor and Policy
Firewall [Cisco ASA, Palo Alto, Firepower and Sony .
Captured packets in customer data center or enterprise environment to ensure fault/down time are promptly resolved Sniffer and Wireshark
Comprehensive experience in planning, designing, implementing, configuring, troubleshooting, and managing of data networks, and network security including network security operations, network security monitoring, product deployment, and support for firewall products
Technical Skills:
Technology Snapshot: Cisco Routers Configuration and Design Cisco Switches Configuration and Design Protocols: RIP OSPF, EIGRP, BGP, STP, VTP,MPLS, TCP/IP, CDP, DNS, DHCP, Telnet L2 and L3 VLAN and Trunking DMVPN,GRE Tunnel ASA Firewalls OSI Layer 1-7 Model LAN and WAN Technology Spectrum Nimsoft PRTG SMART Clarify OpenView Remedy Microsoft Office Suite TrueView-Gigamon Firemon ACS Raritan LogRhythm F5 Load Balancer A10 Load balancer Palo Alto Network. Firepower-FTD
Education & Certifications
Cisco Certified Network Associate (CCNA) Routing & Switching Active
Cisco Certified Network Professional (CCNP) Routing & Switching Active
Cisco Certified Network Associate (CCNA) Security Active
Cisco Certified Network Professional (CCNP) Security Active
Cisco Certified Network Internetwork Expert (CCIE Written Active
Cisco Certified Network Internetwork Expert (CCIE Lab in Progress) Active
Accredited Configuration Engineer (ACE) Exam - PAN-OS Palo Alto
F5 Load Balancer Certified
Palo Alto Networks Certified Network Security Engineer (PCNSE)
Bachelor’s (BS) degree in Real Estate Management, Moshood Abiola University
Fortinet NSE4 Certified
Professional Experience
CultureTech. RBC Bank (Contractor) Nov 2022 – Present
Consultant - Sr. Network Engineer
Responsibilities:
Maintained and administered Palo Alto Firewalls
Maintained and administered Cisco wide area routers
Maintained and administered Cisco Nexus Core Network and NXOS Catalyst access/edge Network
Maintained and administered F5 load balancers
Maintained and administered FortiGate Firewalls
Maintained and administered Firepower Firewalls
Maintained and administered A10 load balancers
Utilize Fortimanager, FortiClient and Forti Analyzer to maintain and optimize FortiGate firewalls.
Manage Palo alto, Firepower, Cisco ASA and Fortinet policy and network
Back up, Restore and upgrade of Firepower and FortiGate firewall appliances
Migrate ASA to Firepower, FortiGate and Palo Alto firewall
Design diagram for project as needed.
A10 Load Balancer setup and support.
FMC-Firepower Management Center support
Panorama
DNA center support for Network devices upgrades
IBM Qradar. Manage Risks and Vulnerabilities.
Silverpeak Orchestrator
Hardware Upgrade deployment
Beacon Hill. Wells Fargo Dec 2021 – Nov 2022
Consultant - Sr. Network Engineer
Responsibilities:
Utilize Fortimanager, FortiClient and FortiAnalyzer to maintain and optimize FortiGate firewalls.
Manage Palo alto, Firepower, Cisco ASA and Fortinet policy and network
Back up, Restore and upgrade of Firepower and FortiGate firewall appliances
Migrate ASA to Firepower, FortiGate and Palo Alto firewall
Setup FortiManager to manage Fortinet firewalls
Design diagram for this project as needed
A10 Load Balancer setup and support.
FMC-Firepower Management Center support
Panorama
DNA center support for Network devices upgrades
IBM Qradar. Manage Risks and Vulnerabilities.
Silverpeak Orchestrator
Hardware Upgrade deployement
MNJ Technologies. Jan 2020 – Nov 2021
Sr. Network Engineer
Responsibilities:
Responsible for leading design, engineering and certification of Internet Hosting and Application Services network components
Configure and administer security rules and policies to permit and/or deny user traffics based on company. security policy with F5 BIGIP, FortiGate 1500D, Firepower, Cisco ASA, and Palo alto firewalls
Configure Firepower and FortiGate firewall to authenticate users based on user identity, user group, session and PC-User Authentication
Configure IPSEC and SSL VPN with Palo-alto, Cisco ASA, Fortinet, Firepower and Router
Perform WAN and LAN IP network service infrastructure design and engineering; service prototyping and laboratory experimentation
Formulate detailed network topology layout and traffic flow
Provide daily support on Incidents, problems, tasks and changes in support of network security, including interfacing with customers
Address any vulnerability threats, and security findings
Perform the installation and testing of new software releases and fine tunes existing systems
Provide ongoing maintenance for network hardware/software, appliances and vendor coordination
Maintain and develop documentation of guidelines and standards for specific technologies
Monitor performance levels and trends throughout the Bank of America network to determine quality of service for the entire infrastructure
Configure, maintain and troubleshoot networking solutions for an enterprise class firm, including support ticket handling, change management, ServiceNow, Clarify ticketing system.
5+ years of computer and network routing and switching experience at an enterprise level.
oStrong understanding of fundamental and network concepts (operating systems, LAN, WAN, DHCP, DNS, TCP/IP, ports, etc.)
Hands on experience with ServiceNow, resolving Network related tickets.
Experience with Microsoft and Unix-based operating systems
Troubleshoot and support Cisco routers and switches including Cisco Nexus, F5 Networks LTM, Cisco ISE, IPsec VPN, Cisco wireless network platforms, Palo Alto and Cisco Firewalls, Bluecoat Proxies, Infoblox, DHCP, DNS IPAM and other platforms usually found in enterprise environments.
10+ years of experience and working knowledge in designing, deploying, security, and maintaining LAN/WLAN/WAN infrastructures.
Routing and networking protocols, including BGP, CDP, CLNS, VRRP(-E), HSRP, IGRP, EIGRP, IS-IS, MPLS, NAT, OSPF, QoS, RIP, DNS, TCP/UDP, IP, and others
Strong security and remote connectivity background with knowledge of and utilizing Next Generation Firewalls, VPNs, IPSEC, SSL, IPS, IDS, ASA’s, Concentrators, and others
Proficient use of packet analyzers, network assessment tools
Configuration and troubleshooting of Cisco routers, switches, ASAs and concentrators
Experience setting up unified threat management services on firewall devices, preferably Cisco SonicWALL and Palo Alto
Insight Global (Wells Fargo) July 2018 – Jan 2020
Sr. Network Engineer
Responsibilities:
Responsible for leading design, engineering and certification of Internet Hosting and Application Services network components
Perform WAN and LAN IP network service infrastructure design and engineering; service prototyping and laboratory experimentation
Formulate detailed network topology layout and traffic flow
Data Center Implementation with Design and Test Plan
DMZ implementation and configuration setup
Responsible for determining and certifying selected network technologies
Provide tiered support including working with the client organizations to analyze technical problems and recommend solutions
Switch upgrades from 2960s, 3750s, to 9300 series and securely expunging configurations from old switches with accurate documentations
Skilled with Stack cablings and Power stacking Cablings on 9000 series Switches.
Securely Scrubbing old switches configuration for security purpose
Deleting Old Hardware setup from HPNA and pushing new Hardware into Production.
Implement VLANS between different departments and connected them using trunk
Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS on 1800, 1900, 2900,2800, 2500,2950,4500, 3900, 7500, 3850, 7200, 3750, 2350, 4000, 2960, 3560, 6509,9000 series
Deploy and Configure Palo Alto Firewall into production.PA 200,500,2050,3000 series
and 5000 series
Experience in designing and troubleshooting of complex BGP and OSPF routing problems
F5 Load Balancer setup Adding web servers, LTM Nodes, Pools and members, static and dynamic Load Balancing, destination NAT, iRules, exporting QKView files for Troubleshooting
MedSynergies Irving, TX June 2015 – June 2018 (Temporary Assignment)
Sr. Network Engineer
Responsibilities:
Provided configuration and troubleshooting skills for data networks including LAN, WAN, WLAN and, Cisco routers, switches, firewalls, wireless access controllers, and other network infrastructure devices as well as Cisco voice and collaboration products
Configured and maintained Cisco routers, switches, NEXUS, and firewalls (IOS and NX-OS) 2Ks,5Ks,7Ks and 9Ks
Utilize FortiManager, FortiClient and FortiAnalyzer to maintain and optimize FortiGate firewalls. FortiGate site to site VPN with other vendor firewalls.
Manage Palo alto, Firepower, Cisco ASA and Fortinet policy and network
Configure and administer security rules and policies to permit and/or deny user traffics based on company. security policy with F5 BIGIP, FortiGate 1500D, Firepower, Cisco ASA, and Palo alto firewalls
Spearheaded the Core Switch Migration Project from WS-C6506-E to 6513
Configured switches from scratch to production environment
Configured STP for loop prevention and VTP for Inter-VLAN Routing
Experienced in configuring routing protocols like EIGRP, RIPv2, OSPF protocols.
Configured routing protocols such as OSPF, EIGRP, Route redistribution between OSPF and EIGRP
Evaluated, analyzed & implemented firewall policies to meet business requirements
Monitored traffic and access logs in order to troubleshoot network access issues
Configured and implemented Site-Site VPN connection
Troubleshot and configured PAN firewall for Security Policies, Site to Site IPsec VPN, Zones protection profiles, URL Filtering, PAN upgrade, Vulnerability and Spyware Protection, File Blocking and as well pushing configuration from Panorama
Configured access-list, NAT, Object grouping on ASA 5505, 5510, 5545
Setup policies on PAN firewall and assisted in Troubleshooting for multiple locations
Setup VPN connection between Cisco ASA and Palo Alto firewalls
Configured and troubleshot DMVPN for multiple Locations both local and abroad.
Migrated Cisco ASA environment to Palo Alto firewall
Migrated SonicWall Firewall to FortiGate firewall and also managing and administering it
Policy changes and Troubleshooting the FortiGate firewalls through FortiView and Forti manager
F5 Load Balancer setup Adding web servers, LTM Nodes, Pools and members, static and dynamic Load Balancing, destination NAT,iRules, exporting QKView files for Troubleshooting
Configured F5 for Test, QA and Production environment
Setup F5 for Test and Production environment
A10 Load balancer configuration Stage and Production environment. Adding SLB Virtual Servers, Virtual Service, Service Group, Servers. Setup Virtual service Templates, Health monitor, aflex rule. Removed weak ciphers and Added strong ciphers for Grade B ratings from www.ssllabs.com On all Websites
Troubleshot and configure PAN firewall for Security Policies, Site to Site IPsec VPN, Zones protection profiles, URL Filtering, PAN upgrade, Vulnerability and Spyware Protection, File Blocking and as well pushing configuration from Panorama
Firewall Migration of different Vendors in Production environment. ASA to Firepower, ASA to Palo Alto
Policy Implementation on Firepower,Palo Alto, ASA firewalls
Presidio Inc. Lewisville, TX January 2014 – June 2015
Network Engineer
Responsibilities:
Maintained a thorough understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, etc.)
Configured and setup Cisco Firewalls, VPN Concentrators and Security appliances for access to vital business applications environments
Designed, setup and configured complex wireless networking that supports open or secured access and the ability to support voice and video applications
Maintained a thorough understanding of Local Area Networking
Assisted in the design of multi-server environments including IP address schemes, DNS, WINS, Ether Channel (Bonding), etc
Managed assigned projects and program components to deliver services in accordance with established objectives
Established networking environment by designing system configuration, directing system installation, defining, documenting, and enforcing system standard
Maximized network performance by monitoring performance, troubleshooting network problems and outages, scheduling upgrades and collaborating with network architects on network optimization
Undertook data network fault investigations in local and wide area environments, using information from multiple sources
Secured network system by establishing and enforcing policies, and defined and monitored access
Supported and administered firewall environments in line with IT security policy
Reported network operational status by gathering, prioritizing information and managing projects
Remote troubleshooting and fault finding if issues occur upon initial installation;
Updated job knowledge by participating in educational opportunities, reading professional publications, maintaining personal networks and participating in professional organizations
Manage Clients Firewalls such as Firepower, Palo Alto, FortiGate and ASA for system upgrades, remote clients VPN, NAT polices, access-list polices and many more
Site to Site VPN setup of Palo Alto Firewalls, FortiGate, Firepower and Cisco ASA.
Managing and administering Security Profile on NGFW such as FortiGate firewalls, Palo Alto Firewalls and Firepower Firewalls. Web-Filtering, data Filtering control, and many other profiles that are categorized in industry standard.
SDWAN setup on FortiGate firewalls
CompuCom, Dallas, TX September 2012 – December 2013
Network Engineer
Responsibilities:
Maintained and administered Palo Alto Firewalls
Maintained and administered Cisco wide area routers
Maintained and administered Cisco Nexus Core Network and 6500/Catalyst access/edge Network
Maintained and administered F5 load balancers
Maintained and administered FortiGate Firewalls
Maintained and administered Firepower Firewalls
Maintained and administered A10 load balancers
Maintained and administered Data Center power and cooling systems
Assisted in the delivery of all Unified Communication and Network Infrastructure projects
Supported of local and long-distance carrier circuits, configuration, Quality of Service and routing
Monitored overall network performance, identifying poor quality lines, underutilized circuits, cost reduction initiatives, upgrade needs and service improvement opportunities
Maintained current documentation for all voice and data network systems using standard templates including cable systems, equipment inventory, spares, and floor plans
Communicated frequently and effectively with all levels of internal customers; continuously applies quality improvement methodologies to improve these work processes
Analyzed user-generated trouble tickets to determine cause of reported problems and take appropriate action for resolution
Assisted in the support, management and day to day operations of the corporate firewall and network infrastructure, including 24x7 on-call support
Executed hardware and software life-cycle management policies and procedures as it relates to the voice and data Network to meet business needs
Deployed a robust, stable, and manageable LAN/WAN/DMZ for the network
Managed projects from inception to completion
Configured and supported switches, routers, load balancers, and firewalls
Provided 1st/2nd level support for network escalations
Monitored and responded to event dashboards
MTN Service Provider (Lagos, Nigeria) February 2008 to November 2011
Network Engineer
Responsibilities:
Directed the installation and maintenance of PC applications, including Microsoft Office Suite, print drivers, and network settings
Ensured timely and accurate integration of systems and provided education to teams on the proper usage of programs
Launched and maintained network operations; assembled computer and network hardware, supported clients and network engineers, and escalated issues as necessary
Identified, troubleshot, diagnosed, and resolved hardware or software issues while achieving minimal system downtime
Coordinated and led the upgrades of PC and network hardware and software components, including LAN and WAN technologies
Proven successes in the administration of multi-site WAN/LAN networks
Expert in configuring and maintaining Cisco routers, switches, NEXUS, and firewalls (IOS and NX-OS)
Expert in setting up VPN for multiple clients
Ability to provide configuration and troubleshooting skills for data networks including LAN, WAN, WLAN and Cisco routers, switches, firewalls, wireless access controllers, and other network infrastructure devices
Ability to operate Layer 2 protocols such as VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues
Ability to configure STP for loop prevention and VTP for Inter-VLAN Routing
Ability to configure ASA Firewall for multiple clients
Experience in configuring routing protocols like EIGRP, RIPv2, OSPF protocols
Contact this candidate