Vandit Email: firstname.lastname@example.org Phone: 404-***-****
7+ years of experience in Networking and Security, including hands-on experience in providing network support, installation and analysis for a broad range of LAN/WAN/MAN communication systems.
Detailed understanding of different layer 2 protocols like VLANs, VTP, STP, RPVST, Port Security, and Ether Channels (LACP and PAGP).
Experienced in Data-Center Nexus 7009, 7018, 5548P, 5596T, 2148T, 2224T and 6000 switches.
Implemented VDC, VPC, VRF and OTV and implemented VSS on Cisco catalyst 6509 and 6513 switches.
Experienced and skilled in configuring Routing Protocols RIP, EIGRP, OSPF and BGPV4 on Cisco routers like 2600, 2900, 3600, 3900, 7200 and 7600 series.
Designed Redundancy Gateways for Campus Network using HSRP/VRRP/GLBP.
Has expertise to work in Cisco ASA/Checkpoint vsx/Juniper/F5/Riverbed Products.
Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
Experience in troubleshooting of DNS, DHCP and other IP conflict problems.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Experience in testing Cisco/ Juniper routers and switches in laboratory and deploy them on site production.
DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
Working experience with 6500 series switches at layer 2 and layer 3.
Working experience with Wireless LAN Controller (WLC) and Light Weight Access Point (LWAP).
Expertise is maintaining stable STP topology using protocols such as Port fast, BPDU guard, root guard and UDLD.
Experience in Trunking protocols 802.1q and ISL.
Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
Expertise in Configuring and Troubleshooting of Palo Alto, Juniper NetScreen & SRX Firewalls and their implementation Experience in site-to-site and remote access VPN solutions.
Responsible for Check Point and Cisco ASA firewall administration across global networks.
Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
Experience in deployment of BlueCoat as proxy and firewall solution to provide secure and optimum access of web service.
Familiar with REMEDY for ticket change management process.
Experience in Meraki switches, access points and Meraki dashboard
Expertise in configuring and troubleshooting of Palo Alto, Juniper NetScreen & SRX Firewalls and their implementation.
Experienced in Cisco IOS, Juniper JUNOS Hands-on experience, specializing in Cisco Environment in Data Center, systems, network and user administration, LAN / WAN and Security.
Troubleshooting and monitoring application issues using tools like Wire-shark.
Excellent inter-personal skills with the ability to work in a team of large members with minimum supervision necessary.
Experience in documentation and updating client’s network documentation using Microsoft Visio.
Supported Large Frame-Relay, MPLS, E1/T1, ISDN, Analog networks.
Routers/Routing Protocols: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600; Juniper series MX, QFXw, PTX and SRX, vSRX; OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route Filtering, Redistribution, Summarization, and Static Routing, IS-IS, ICMP, FTP, SMTP, HTTP/HTTPS
Switches/Switching Protocols: Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850, 3560, 3750, 2960; Juniper EX3200, EX3400, EX4200, EX6200; UCS-C, UCS-D, UCS-M, CUCM - LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Etherchannels, Transparent Bridging
Network Security: Cisco ASA 5540, ACL, IPSEC, F5 Load Balancer, Checkpoint, Blue Coat, Palo Alto, SCADA, Process Control Domain (PCD), VMware
Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400, GTM
LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet
WAN: PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame Relay
WLAN: Autonomous AP’s, Lightweight AP’s, WLC, Channels- 802.11b/g
Communication Protocols: ARP, Wi-Fi, WiMAX, CDMA, GSM, Bluetooth
Gateway Redundancy: HSRP, GLBP
DHCP and DNS: Infoblox, QIP
Various Features & Services: IOS/JUNOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP, TACACS+, RADIUS
Network Management: Wireshark, SNMP, Solar winds
Amazon - Seattle, WA July 2019 – Present
Network Engineer III
Responsible to support AWS network connectivity and Retail website
Performed regular upgrades to network infrastructure components and diagnosis of complex networking problems by developing detailed implementation plans including communication strategies, validation and back out procedures
Configuring routing protocols such as OSPF, EIGRP, and BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy. It also includes the configuration of the port channel between core switches and server distribution switches.
Working in Internet Edge team to troubleshoot BGP problems in transit center worldwide
Configuring and Troubleshoot Static, BGP and OSPF Routing Protocols on Juniper Routers
Configuring QoS on Cisco ASA 5505 to maximize bandwidth and protect VoIP traffic. Strong exposure on various operation systems like IOS, NX-OS, IOS-XR, IOS-XE and Junos-OS
Upgrading Juniper OS in MX480, MX960 and PTX1000 routers to latest version 17.2X50-D15.104
Upgrading Juniper OS in EX Series switches to version 13.2X50-D15.3
Responsible to give support after JUNOS upgradation task
Automating the installation of software's through Ansible scripts
Hands-on experience in escalating JTAC case in hardware issues
Assigned to communicate with peers to establish and maintain BGP sessions
Great experience with prechecks and post checks like network capacity, accessibility during upgradation task
Assisted with providing requirements for implementing SD-WAN across an enterprise
Deployed Cisco security ASA Firepower services on two Cisco ASA 5525. Deployed IPS, URL Filtering and Malware protection.
Implementation of the IWAN (Intelligent WAN - Cisco SD-WAN) and VPN (Secure Transport) for enterprise networks
Assisted in migration of traditional Data Center infrastructure having Nexus 5k, 7k to Cisco ACI
Installed and upgraded configuration on F5 devices for approved change orders
Configured Virtual servers on F5 LTM Hardware load balancers
Configured F5 LTM solutions, which includes VIP, Pool Load Balancing Methods, probers and monitors
Experience with DNS/DHCP/WINS Standardizations and Implementations with Infoblox
IP address management, DNS, DHCP management for various devices like Switches, Routers, Servers, Wifi and all coming projects using InfoBlox
Worked on Cisco ACI Fabric 3.0 consisting of 9372TX Leaf nodes, 9504 Spine and UCS 220 M4 APIC
Having experience in traffic shifting automation and traffic engineering
Performing GIT operations and changes using GIT repository
Hands-on experience with python scripting to generate code reviews for bigger changes
Remotely deploying configuration files to devices through python automation in worldwide AWS Data centers
Coordinating with core network teams to troubleshoot OSPF and MPLS issues
Assigned to troubleshoot, diagnose, and solve issues across large, complex Airwave Aruba estates
Hands-on experience in Data Center management with Cisco Nexus switches
Migrating all cisco switches (2960, 3750, 3850, 4500, 6500) to related juniper switches (EX3200, EX3400, EX4200, EX6200)
Implemented site to site VPN in Juniper SRX for different locations
Used Cisco ISE to grant authenticated users with access to specific segments of the network, or specific applications and services, or both, based on authentication results
Configured Nexus 5000 switches to integrate with Cisco ISE features for device control and 802.1x
Modified Ansible scripts and tools to automate the Cloud deployment and operations
Created S3 buckets in the AWS environment to store files, sometimes which are required to serve static content
Responsible for firewall migrations from Pix to ASA and Checkpoint VSX
Configured the virtual machine for different applications in the VMware environment
VMware Administration via Virtual Center and ESX host service console
Core Network Migrations and Replacements for the devices with end-of-life and end-of-support, which also includes the Cisco ASA to Palo Alto firewall migration across multiple agencies
Engineering team member responsible for provisioning VMware NSX virtual network
Coordinating with the network staff to develop and enhance processes and procedures for disaster recovery
Documented workflow process, managing and implementing standard policy and procedures.
Univar Inc, Redmond, WA Feb 2018 – June 2019
Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500,7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 7k/5k/2k.
Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals.
Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for Checkpoint VSX.
Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2B network connectivity.
UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to facilitate 2/3/4G Network.
Utilize VMware vSphere to create and configure VMs for both Cisco ASAv5 virtual firewalls and Cisco FirePOWER management VM
Providing input on day-to-day security architecture policies and procedures for Checkpoint VSX
Deployed VMware vSphere 4.0 by upgrading VMware infrastructure 3.5 to vSphere 4
Worked on the migration to new Checkpoint VSX firewalls from Juniper firewalls.
Understanding of mobile backhaul network on IP, Ethernet, ATM, PW & TDM.
Created python scripts to automatic backup of configuration files on daily basis.
Have completed two Business integrations with a very strict timeline and gained some very good knowledge in understanding the roadblocks in Network integration and feasible methods to fix it.
Sanofi, Reston, VA July 2016 – Jan 2018
Involved in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.]
Responsible for all routing, switching, VPN, network security, and server load balancing.
Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS.
Implemented various EX, SRX & J series Juniper devices
Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco PIX/ASA firewalls. Completed a project to update the patch HFA50 across all the firewall to overcome the bugs in the existing version of R65.
Responsible for 6500, 3500, Nexus 5500-7009 switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
Configured CIDR, IP, RIP, PPP, BGP and OSPF routing
Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, from scratch to match design.
Worked with the Trouble Tickets on F5 Load balancers on LTM module
Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
Implemented and used SDM to configure Cisco IOS security features and network connection.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
Configured Object Grouping, Protocol Handling and Code up gradation on ASA Firewalls.
Design, implement and provide second level support for host load-balancing solutions at SWA.
Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) etc.
Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.
Worked with different vendors and implement Site-to-Site VPNs over the Internet.
Security policy review and configuration in Palo Alto and JuniperSRX Firewall in US offices and Datacenter.
Worked with Juniper M-Series, MX-Series Routers.
Working knowledge of the UNIX and CLI based command to implement the networking tools.
Configured and monitored Firewall logging, DMZ’s and related security policies.
Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all-around technical support.
Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and for special user requests as authorized by management.
Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
Regal Beloit, South Windsor, CT Mar 2014 – June 2016
Involved in configuring Site-to-site and remote access VPN solutions.
Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
Worked on multiple projects related to Branch networks, Campus networks, extranet clients and Data Center Environments involving in data center migrations from one data center to another.
Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
Created data migration strategies to help with completion of migration of data center from one point to another.
Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HRSRP, EIGRP in unequal cost load balancing to build resilient network.
Design and implement Catalyst/ASA Firewall Service Module for various LAN’s.
Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP.
Configured Client VPN and RSA Token ID technologies including Cisco’s VPN client via IPSEC.
Configuring ACL to allow only authorized users to access the servers.
Participated in on call support in troubleshooting the configuration and installation issues.
Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
Provided technical support in terms of upgrading, improving and expanding the network.
Providing technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.
Developed local standard operating procedures and configuration guides for switches, routers, firewalls, and IPS/IDS devices.
Designed and configured F5-BIGIP-LTM reverse proxy & load balancing solutions for client networks.
Kgn Technologies, INDIA Feb 2012 to Mar 2014
Jr Network Engineer
Responsible for monitoring the Network performance based on company’s Service Level Agreement (SLA).
Documented the company’s design, implementation and troubleshooting procedures.
Configured VLANs with 802.1Q Tagging according to the Server team’s requirements.
Tested the new zone for failover capabilities and redundancy. Connected the Distribution routers to the Core routers via OSPF Areas.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Performed IOS upgrades on various catalyst series switches and maintained latest IOS versions according to company’s policy.
Responsible for cabling and labeling based on day to day requirement and Racking & Stacking of various network equipment and made sure that there are no connectivity issues using ping and tracer.
Provided Helpdesk support that involved identifying and escalating the tickets to specific groups.
Responsible for level 2 support of existing network technologies / services & integration of new network technologies / services.
Configured VSS on Cisco Catalyst 6509 switches in order to have redundancy. Worked on T1/E1/T3 technologies and different LAN & WAN technologies.
Supported various LAN environments consisting of Cisco 6500 switches with Sup-720.
Designed and implemented Cisco 7500, 7200, 6500, 3600, 2600 Series routers in lab environment to reproduce various issues and test fixes for them.
Troubleshooting complex LAN /WAN infrastructure that include routing protocols EIGRP, OSPF.
Configured Access-lists, Distribution-lists, Offset-lists and Route Redistribution.
Involved in configuration of OSPF Summarization (Summarizing internal and external routes).
Scalability of OSPF by Filtering of Intra, Inter and External OSPF routes
Used various BGP Attributes and various Route-filters such as named Access-lists, Prefix lists, Route-maps to permit or deny routes and to change various attribute
Experienced in implementation and troubleshooting knowledge of protocols and technologies, especially in the following: BGP4, OSPF, IPv4, and Ethernet.
Configured Ether channels, Trunks, Vlans, HSRP in a LAN environment.
Configured STP for loop prevention and VTP for Inter-VLAN Routing.
Responsible for performing administration on BGP, OSPF routing protocols.
Education: MS in Electrical Engineering, Texas A&M University, Kingsville – 2018