Sign in

Network Engineer Cisco

Pleasant Hill, CA, 94523
October 11, 2019

Contact this candidate



Emeritus Cisco Certified Network Engineer with over 13+ years of professional experience in network engineering, performing network analysis, design, implementing, capacity planning with focus complex networks, for different industries, as financial, healthcare, manufacturing and hospitality.

13+ years of experience in Cisco routing, switching and security with hardware/software experiences with cisco routers such as 1900, 2900, 3900, Cisco ASR-1k, Cisco multilayer switches 3850, 4500, 6500, Cisco Nexus 5k/7k/9K and Juniper, SRX1500 switches and brocade FCIP 6510.

6+ years of experience in the installation and configuration of Cisco ASA firewalls.

Participated in planning and execution of more than 18 disaster recovery exercises held at SunGard Availability services and IBM BCDR for different customers, objectives and strategies.

Regaining and distribution of network corporate knowledge to quickly solve problems among team members.

Highly valuable project management and operations planning skills.

Experience with different network management tools and sniffers, to guide network operation center personnel. (CACTI, HP-NA, Spectrum, Solar winds, Sevone)

Strong experience in using various tools for network management, monitoring, troubleshooting, and benchmarking appliances from different network vendors. (Jperf, Net flow, wire shark, packet captures and network dumps)

Configuration of DHCP, DNS. HTTP, SNMP, SNMTP, NTP, TFTP, LDAP, RADIUS & TACACS+ servers.

Install, manage & troubleshoot large networks, systems administration on windows & Linux platforms in development, training, production on multitenancy environments.

Management of Linux and modern scripting languages. (Bash, Python)

BIG-IP F5 configuring and troubleshooting load balancer LTM.

Creating virtual servers, pools, nodes and I Rules and refreshing SSL certificates on BIG-IP F5 in LTM module.

Implemented MPLS/VPN services for various customers.

Designing, implementing & managing LAN, WLAN & WAN solutions for different client setups. In-depth knowledge and experience in WAN technologies including T1, T3, HDLC, point to point.

Layer 3 routing protocol configurations: RIP, EIGRP, OSPF, BGP, redistribution, origination and tweaking of routes metrics to influence traffic over less preferred paths, using GRE and policy-based routing and VRF.

Management of Cisco as a firewall in various domains such as internet, DMZ, Business-Partner.

IPSEC tunnel on as a configuring and tweaking with business partner firewall.

Strong knowledge of HSRP, VRRP Redundancy protocols in high availability environment.

IP addressing & sub netting and NAT management for VLSM.

Experience in configuring VLANs, STP, VTP, PVST Link aggregation ports, ECMP and QoS in access layer switches.

Experience in configuring and troubleshooting vPC on Cisco Nexus-9k for downstream fex and servers.

Experience in reordering physical cabling.


PP Routing

RIP, BGP, OSPF, IGRP, EIGRP, Static Routing, IP Addressing and Sub netting, VLSM, Network Infrastructure

Communication Protocols


Redundancy Protocols



Ethernet, Cable Modem, and Wireless

Switch Technologies

VLANs, VTP, STP, DTP, MPLS, ISL and dot1q

Network Hardware

Cisco switches (1900, 2960, 3560, 3750, 3850, 4500, 6509).

Cisco Nexus Switches (2248, 2232, 5548, 5596, 7010, 9300, 9405), Cisco routers (1600, 1700, 1900, 2800, 2900, 3900, 4321, 4451 7200 ASR-1k), Cisco ASA 5500 series and Firepower

Other vendor hardware

3Com, Brocade, Dell, Extreme, F5 network load balancer, Motorola, Palo alto and VMware NSX

Network Management Tools

MRTG, HP Open view, HP- NA, Info lox, Sevone, Spectrum, What sup Gold


NAT/PAT, ingress & egress firewall design, VPN configuration, internet content filtering, SSL, IPSEC, IKE, static, dynamic, policy-based routing and authentication AAA (TACACS+ & RADIUS)


Cisco ASA, Juniper SRX, Palo alto

Operating Systems

Windows, UNIX, Active Directory, Linux

Scripting languages

Python, Linux shell, and R studio


Master of Engineering and Operations Management 2017-2019

Universidad Autónoma de Yucatán, México

B.Sc. In Electronic Communications 2000-2005

Universidad Autónoma de Nuevo Leon, México

Professional Experience

Client: Atos Global Delivery May 2016 – Present

Role: Network Engineer VI, Merida Yucatan


Configure Cisco firewalls and routers manage a group of 12 accounts in three datacenters.

Worked with network team to migrate firewall rules managing perimeter access on Cisco ASA 5540 and 5580, with newly defined ip address for management and hosting. As they were out of compliance from GLOBAL ip planning.

Coordinate the migration of firewalls from Cisco ASA 5520 to Juniper: SRX1500.

Configured networks using routing protocols such as OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand infrastructure.

Dealt with implementation, deployment related to firewall security Policies.

Responsible for connectivity issues or performance, hardware installation for cisco ASA.

Good experience on Sevone, Info box, HP-NA, CA PM, F5 load balancer, Cisco routers 2800, VSS Switches 6509, 3560, firewalls 5580, 5520, 5540

Possess a good experience working with ticketing system service now and Remedy v3, and Service now.

Implemented zone based firewalling and security rules on cisco firewall, and refreshed IPSEC tunnels between ASA-ASA, ASA-Palo alto for new addressing, (migration from non-compliant addressing for 8 different accounts).

Clean up CORE switch, F5 load balancer, from legacy configuration of customers that where not present on infrastructure.

Troubleshoot any issues related to packet capture, link and path monitoring.

Review documentation and troubleshoot 4 DR sites for Mainframe Operations of an IT supplier, automotive manufacturing, retail and healthcare services companies, it included single IPSEC tunnels on Cisco context firewalls, and a multi-VRF switching environment running OSPF routing.

Client: Dell Services/ NTT Data Services May 2013– May 2016

Network Design Sr Advisor, Merida Yucatan


Responsible in the last two years of the activities of two junior and one senior network engineers who reported to the IT manager of the site in the United States.

Conducted support efforts for one of Dell's most complex internal sites, where three routing transformations were left unfinished and the budget for purchase for hardware refreshment was restricted.

Generated documentation about the infrastructure without having corporate knowledge of it and guided the cleaning of the unused and misleading configuration of network devices, delivering them corrected to the internal support team, and facilitating the transfer of corporate knowledge to integrate new nexus 9504 switches for its later operation.

Generated Visio documentation for 300 hotels using Bash script to pull CDP information on customer switches.

Analyzed the proposals of different firewalls and central switches for the integration of a new account in the company, in which the 32 different Vlans network segments were defined, to improve their IT security strategy by including firewalls in their data centers.

Dealt with implementation, deployment related to cisco devices and applying security policies.

Troubleshoot issues related to VLAN, VLAN trunking, related issues.

Planning for upgrade of IOS on devices and performing the upgrade.

Responsible for maintaining the entire Routing and switching domain across datacenter and two branch offices

Monitored network traffic and developed capacity-planning initiatives, making necessary recommendations additional resources or hardware.

Extensive working knowledge of Cisco as a 5500 series firewalls.

Removed DHCP Services from switches and turned them into appropriate servers.

Removed excessive EIGRP peering on across 80 access and distribution switches on account HQ facilities.

Responsible for troubleshooting and resolving firewall software and hardware issues, including VPNs, connectivity issues, logging, cluster configurations, and hardware installations for as a and Palo Alto firewalls.

Implemented and troubleshoot the virtual firewalls (Contexts) solutions in as a Configuring access-list on Cisco as a Firewall.

Provided Layer-3 redundancy by implementing HSRP and GLBP for high availability

Helped on troubleshooting routing issues related with load balancers upgrade from F5 v9 to v13, which improved functionality and scalability in the enterprise.

Extensive working knowledge in BGP, OSPF, EIGRP, HSRP, L2/3 VPNs in IOS, IOS XE, and IOS XR platforms with 4 different VRF for ip addressing migration purposes.

Switching experience includes cisco catalyst switches: 3750, 4500, 6500, 9300, 9400 series switches. and brocade FICP 6510 and cisco routers ASR1002x and 2900

Worked as part of a team to manage enterprise network Infrastructure as a tier 3 support engineer and project support.

Configured networks using routing protocols such as OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand infrastructure.

Responsible for turning up BGP peering and customer sessions, as well as debugging MPLS-BGP routing problems.

Administration of ASA firewalls in the DMZ and FWSM in the server farm to provide security and controlled/restricted access between VRFs & NAT access.

Client: ACS Business Process Solutions January 2012 – May 2013

Role: Information Management Principal, Mexico City


Responsible for executing the network strategy of Symcor, to make the transition and monitor the high availability infrastructure in a site from another service provider to an ACS data center.

Coordinated the activities of a junior network engineer.

Organized IP addressing documentation, the hardware installation from the request, the wiring and the remote console and configured to monitor and manage it completely.

Design how data traffic would be influenced between remote Symcorsites, ACS cloud network and the physical ACS network, and the active standby disaster recovery site. The technologies used were MPLS, VRF, NEXUS, FEX, ASA firewalls, and brocade FCIP to replicate mainframe storage.

Installing, configuring and troubleshooting cisco routers (3945, 3845, 2800, 3600, 4500) and Switches to perform functions at the access, distribution, and core layers, for 16 mid-sized facilities (<500 users per site).

Configuring, and fine-tuning of nexus 5548 and 2248 to provide a flexible access solution for datacenter access architecture.

Designing and installing new branch network systems. Resolving network issues, running test scripts and preparing network documentation.

Working with BGP, OSPF protocols in MPLS Cloud.

Migrated OSPF with EIGRP for faster WAN convergence on remote sites.

Establishing VPN tunnels using IPsec encryption standards and configuring and implementing site-to-site VPN, remote VPN.

Configure BGP features such as as-override, EBGP load sharing on client connections

Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.

Configuring HSRP, VLAN trunking 802.1Q, STP, port security on catalyst 4500 switches.

Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.

Configuring, monitoring and troubleshooting cisco’s ASA 5500 security appliance, failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.

Providing level 3 support to customers, resolving issues by attending to conference calls.

Working on Sevone view map for network management system and ticketing.

Helped in four disaster recovery exercises that tested different scenarios and applications, to route traffic on a standby DR site.

Working on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance.

Working on security levels with radius, tacacs+.

Client: DELL SERVICES January 2010- March 2011

Role: Business Continuity & Disaster Recovery Specialist, Guadalajara


Helped the disaster recovery planner with the creation and execution of the strategy of general recovery of their services, in my period I executed 9 exercises of recovery of disasters of IT and I developed the strategy of the network in each one of them.

Trained 16 support engineers in different areas about the scope of their exercises.

Updated the plans of 9 clients, identifying the necessary actions and restructuring processes to reinforce the client's disaster recovery strategy.

Environments consisted of cisco 6509, cisco firewalls, F5 load balancers, databases, and VMware servers hosting Linux, and windows servers.

PEROT SYSTEMS DELL SERVICES November 2006- December 2009



Responsible for managing tier 2 support of 240 remote sites and two high availability central server LANs for a client of medical practice clinics.

Coordinated hardware integration and troubleshooting of data services, IP addressing, routing and switching and QoS protocols.

Trainer of eight new hires of engineers to understand the operation of the Dell services network and how it was integrated with the account and what were the standard procedures

I recommended the inclusion of the QoS in two accounts, to fix the network traffic in the commercial needs.

IT experience in administration, troubleshooting & new implementations on cisco switches, cisco routers, WLC and APs in LAN/WAN Environment.

Provide domain and system access to vendors, employees, and customers

Lead all deployment and move projects (Installation new hosts, relocate production hosts, system upgrade etc. and bring up new hosts in production environment)

Supported nationwide LAN infrastructure consisting of cisco 3750 and catalyst 6509.

Configured port-fast, uplink fast and other spanning tree features.

Maintained good understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.)

Configuration and maintenance of EIGRP protocol, which was the enterprise routing. Configuration included deploying of new branch locations or new network devices in the existing infrastructure.

Implementing traffic filters using standard and extended access-lists, IP prefix-lists.

Inspected overall health of the network, server deployment throughout the company's LAN.

Assigning IP address and password to Routers.

Resolving routing and switching related real-time performance issues.

Configuration & management of VLANs, 802.1q trunks, VTP, security policies.

Fine tune redundant router protocols HSRP and EIGRP.

Developed and documented network diagrams and procedures.

Implemented route redistribution between EIGRP and MPLS.

Designed ACLs and VLANs.

Configuration and troubleshooting of LAN's and WAN is with various protocols including TCP/IP, DNS, DHCP, PPP, RIP, IGRP, EIGRP, OSPF.

Configuration of Cisco 2800, 3600, 2600, 2800, series routers that are used for WAN design.

Experience in Cisco 2900, 2950,3500, 3700 switches

Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on-call tech as needed for client.

Worked with the help desk for circuit troubleshooting to give support to the smart hands persons at the site.

Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured cisco routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.

Switching (Ethernet), related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.

Responsible for implementing QoS prioritizing voice traffic over a data.

Implemented SNMP on cisco routers to allow for network management. Completed the installation and configuration of T0, T1, T3 circuits.

Troubleshoot TCP/IP problems, troubleshoot connectivity issues.

Servicios Integrados Banamex July 2005- July 2006



In charge of securing connectivity services, provisioning and troubleshooting for Citi Banamex bank branches, with data and voice support over MPLS, using IPSec VPN.

Configuring the access and distribution routers through the routing protocols DDR, HSRP, OSPF and BGP.

Documented the procedure of replacing LAN switches of 180 remote sites that dictated the control of changes.

Responsible for troubleshooting any problem that appeared the day after the integration of the new data switches.

Troubleshooting of cisco routers with ping, trace route and basic issues.

Ensure connectivity and communication among networks, and clients on remote branches.

In-depth knowledge in WAN technologies including E0, E3, HDLC, Point to Point, frame relay.

Handling various trouble tickets, assisting other teams to bring the device to production.

Create and test cisco router and switching operations using OSPF routing protocol, DDR with dial ups for backup.

Maintenance and trouble-shooting of LAN, WAN, IP Routing.

IOS upgrade for cisco routers & switches.

Integrated, Integration and trouble-shooting of dynamic routing protocols.

Implemented site to site GRE VPN when migrated from OSPF multiple areas into to MPLS Head end routers design.

Monitor and tune network to ensure acceptable levels of performance.

Infrastructure consisted of +5000 remote sites supporting Cisco 1800, 1700 routers, and Cisco 1900, 2950 switches.

Contact this candidate