Post Job Free
Sign in

Cisco Network Engineer

Location:
Pennsylvania
Posted:
March 27, 2020

Contact this candidate

Resume:

Yash Pambhar

Email: ********@********.*** Contact: 832-***-****

Professional Summary:

Experience in monitoring and analysing the load balancing of network traffic using Wireshark and Solar Winds.

Strong hands on experience on ASA (5505/5510) Firewalls.

Experience in physical infrastructure like structured cabling, IP address management, Racking, Stacking, UCS management

Experience in F5, Cisco ACE 4710 Load balancers.

Experience of working Cisco wireless controllers 2500, 4400, 5500 and 5700 Series.

Experience Configuring Virtual Device Context in Nexus 7k, 5k and 2k.

Excellent experience dealing F5 LTM/GTM of 5100, 6400, 6800 for a Server and site load balancing environment.

Experienced in Networking concepts such as DNS, DHCP, Email, HTTP, SSL, OSI Model and TCP/IP Protocols and application

Experience in implementation, support and troubleshooting of VLAN's including operational knowledge of Spanning - tree protocol (STP), RSTP, HSRP, VLAN Trunking (VTP), Inter-vlan routing, ACL and ISL/802.1q.

Good knowledge and experience in Installation, Configuration and Administration of Windows Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP,DMVPN, Linux OS under various LAN and WAN environments.

Experience with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy.

Experience with different Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentation using VISIO.

Hands-on experience on designing, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.

Expertise in installing, configuring and maintaining Cisco Switches (2900,3500,7600,3700 series,6500 series) Cisco Routers (4800,3800,3600,2800,2900,1800).

Expert level Knowledge of troubleshooting, implementing, optimizing and testing of static and Dynamic routing protocols such as EIGRP, OSPF, BGP ; ability to interpret and resolve complex route table problems.

Excellent leadership qualities with good written and oral communication

Good knowledge of Juniper SRX and ASA 5500 series, Palo Alto Firewalls.

Configuring virtual chassis for Juniper switches EX- 4300, firewalls NS 5200.

Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.

Install and configure Bluecoat Proxy in the network for web traffic management and policy configuration.

Installed, configured and administered Palo Alto firewalls

Implementation of traffic filters on Cisco routers using Standard, Extended Access list.

Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+& RADIUS)

Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA & APM devices for easier management and common configurations

Worked on MPLS-VPN designs and MPLS-QoS for the migration of frame relay to MPLS system.

Area of Strength includes:

Knowledge in planning, design, implementing & troubleshooting complex networks & advanced technologies.

Experienced in handling Level 1, Level 2 and Level 3 Technical Support Calls and conducted RCA.

Advanced knowledge, design, installation, configuration, maintenance and administration of Palo Alto Firewalls PAN OS 4.0 to 7.0, Checkpoint Firewall R55 up to R77 version and Cisco ASA.

Cisco Routers: 1600,1700,2600,2800, 3600, 3800, 7200 and 7600

Cisco Switches: 1900, 2900, 3560, 3750, 4500, 4900, 6500

Cisco Nexus: 7K, 5K, 2K & 1K

Network Security & Firewall: Cisco ASA, ACL, IPSEC-VPN, Checkpoint (R60, R65, R70, R75, R77), WAF, Cisco Pix, Cisco ASA, Palo Alto PA200, 2000, 3000.

Advanced knowledge in Design, Installation & configuration of Palo Alto & Checkpoint Provider Environment.

Responsible for Checkpoint and Cisco ASA firewall administration across global networks. Familiar with Cisco firewalls PIX 515, ASA 5500 series and Checkpoint Firewalls.

Migration from Cisco to Palo alto firewall & Cisco to Checkpoint firewall.

Advanced knowledge in Cisco ASA 5000 series installation, configuration and maintenance.

Advanced knowledge in configuration and installation of IOS security features and IPS.

Advanced knowledge in Cisco Switches and Routers Configurations.

Advanced knowledge in TCP/IP suite and routing protocols, such as OSPF, BGP, & EIGRP.

Advanced Knowledge in IPSEC VPN design connection & protocols, IPSEC tunnel configuration, encryption and integrity protocols.

Performed daily response operations with a schedule that may involve nontraditional working hours

Collaborates with Cyber Security to improve prevention, detection, and response capabilities

Extensive Knowledge and understanding of global security policies. Demonstrate deep expertise in technical and security process design.

Extensive experience in Configuration and deployment of network security devices, including firewalls, Intrusion, Detection Systems, VPN, Identity Gateways.

Managing the monitoring of daily intelligence operation feeds, analyses and development of baselines for all related risks from Security Analytics and/or other log management tools.

Skills:

Operating System: Linux/Unix, MacOS and Windows 7/8/10.

Protocols: ARP, ICMP, CIDR, Telnet, Frame Relay, Ethernet, TCP, UDP, RIP, OSPF, EIGRP, BGP, DHCP, STP, IPSec, HSRP, SNMP, DNS.

Tools: Cisco Packet Tracer, Wireshark.

Firewalls: - Checkpoint, Palo Alto, Cisco Firewall Service Module, Cisco ASA

Software: Microsoft Office, MacAfee Drive Encryption.

Virtualization: Microsoft Virtual Server 2008 R2, VMware.

Intermediate skills: Bash scripting, Git, Dockers, Jenkins, Nexus switches.

Certifications:

Cisco Certified Network Associate-Routing and Switching (CCNA).

Palo Alto ACE

Professional experience:

Network Engineer August 2019 – Present

JDL GROUP, NJ, USA.

Job Responsibilities:

Identify and resolve network incidents which negatively impact the enterprise capabilities and reports network statuses to Network Operations Controllers

Performs routine, scheduled hardware and software checks on infrastructure and core services.

Expertise in VPN configuration, routing, NAT, access-list, Security contexts, and failover in ASA firewalls.

Experience with Juniper JUNOS operating system and working on M and MX series routers.

In-depth knowledge of implementing, configuring and troubleshooting Routing Protocols such as Static Routing, EIGRP, OSPF and BGP

Strong Experience on and troubleshooting experience on Nexus 9k, 7k, 5k and 2k.

Hands on experience on Checkpoint firewalls and Cisco ASA.

Strong knowledge on operating systems for various platforms such as Windows XP/2000 Server/Vista, 7/8/10, Linux, Ubuntu 10/11, and UNIX based OS, also Cisco IOS XR, and Junos.

Strong experience in Software Defined Networking (SDN), TCP/IP, OSPF, EIGRP, MPLS, BGP, routing and switching technologies.

Monitored Citrix Netscaler to assure proper load balancing and connectivity

Running migration cutovers of MPLS-VPN and DMVPN for newly acquired offices.

Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.

Configured ASA 5520 to ensure high-end security on the network with ACL s and Firewall.

Configuring Security intelligence ( IPS / IDS ) in ASR routers

Configure, maintain and upgrade of data center infrastructure, Nexus 7k, 6k, 5k, 2k, and UCS, employing VDC, VPC, VRF, and fabric-path technologies

Configure Bluecoat proxies using bluecoat director for content and URL filtering.

Configuring, upgrading and verifying the NX-OS operation system.

Configured and managed Cisco access layer routers and switches & carried out route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, and offset-lists.

Implementation of switching protocols like Spanning Tree Protocol STP in the network, VTP, VLANs, and configured Fast-Ethernet channel between switches.

Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.

Configured Client VPN technologies including Cisco’s VPN client via IPSEC.

Configure VoIP phones to be provisioned through company servers.

Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE

Configured TCP/IP addressing scheme to assigned IP blocks.

Configured BGP, OSPF and VRF on Cisco routers.

Involved in day to day management of Citrix NetScaler 11.0 for view, managed users, servers and monitored health of servers and load balance.

Configured F5 Big IPs with VIPs, Pool, and SSL certificates to ensure traffic was load balanced.

Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 4.0 VMware and physically with Cisco ISE appliances.

Configured Cisco ISE for Domain Integration and Active Directory Integration.

Configured 5525-X firewall for the DMZ at the Data Center.

Configuration and Maintenance of ASA 5580-20, ASA 5525, ASA 5520, ASA 5510, FWSM Firewalls.

Worked with 2600, 2800, 3600, and 3800 and 7200 series routers and juniper MX and T series routers.

Worked on Cisco Identity Services Engine (ISE) project.

Worked on F5 LTM 8900 for the VIP updates, iRules attachments, pool and member configurations based on the request from the application owners of the enterprise.

Worked in an environment with Border leaf, Spine and Leaf architecture

Architecture, implement, and support the F5 BIG-IP infrastructure included LTM, GTM, APM, and ASM.

Installing, configuring and Windows 2003 servers of DHCP, FTP, WSUS, Web Server and SQL Database Server.

Installation of Cisco ASA 5500 series firewalls.

Successfully installed Palo Alto PA 3060 Firewall to protect data center and provides L3 support for routers/switches/firewall.

Implementing and troubleshooting firewall rules in Cisco ASA 5525, 5580, Checkpoint R77.20 Gaia and VSX as per the business requirements.

Implementing and troubleshooting firewall rules in Cisco ASA 5525, 5580, Checkpoint R77.20 Gaia and VSX as per the business requirements.

Provided technical direction and guidance for development and operational information security activities

Provide Technical Support for IP Telephony Solutions for Existing UCCE Expansion Projects

Provide second/third level technical support for ACI (Application Centric Infrastructure), APIC technologies

Provided Load balancing solutions to clients for using F5 Load balancers

Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tuning AS-path.

Network Engineer May 2018 – May 2019

Tec Systems Inc. (Building Automation Firm), NY, USA.

Job Responsibilities:

Network Engineer

Experience in configuration of Cisco routers 7500, 7600, 7200, 3700, 3800, 3600, 2900, 2800, 2600, 1900 series, ASR 7300 and 3900.

Performed configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, & Gigabit Ethernet.

Hands on experience in configuring and supporting site-to-site and remote access server, IPSec, VPN solutions using ASA firewalls, Cisco and VPN client.

Deployed Citrix Netscaler MPX 5905 on Production site and DR site as Active-Passive nodes for external Citrix users access to Citrix resources and GSLB Load balancing for various applications. Also deployed Citrix VPX 200 for partners portals to access Storefront resources. Configures NS devices, configured Licenses, Certificates etc.

Hands on Experience working with security issue like applying ACL's, configuring NAT and VPN.

Experience working Juniper T-Series, M-Series, ERX 1400, M320, MX960, J-Series Routers

Configuring user's roles and policies for authentication using Cisco NAC/ Cisco AnyConnect and monitoring the status of logged users in network using Cisco ISE

Configuring and modifying Access-lists (ACL), policy maps, route-maps.

Configuring OSPF, BGP, RIP, MPLS and static routes.

Configure Palo Alto Firewall models as well as a CMS ( Panorama ) to manage large scale firewall deployments

Experience with configuring Cisco 6500 Virtual switching system in Distribution layer of the Data center network.

Configure Cisco switches, wireless access points and wireless LAN controllers to meet network design.

Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.

Configure, monitor, and insure connectivity of LAN, and WAN sites.

Configuring and troubleshooting Cisco 1800, 1900, 2800, 3800, 3900 series routers and Cisco Nexus 9K, 7K, 5K, 6500, 4900, 3750 series catalyst switches.

Configure/upgrade wireless access points and am familiar with Cisco wireless controllers.

Installation and Configuration of VMware NSX/VSphere 5.0.

Experienced on Load Balancing Citrix components using Citrix Netscalers.

Implementing security Solutions using Palo Alto PA 5000, CheckPoint Firewalls R75, R77.20 Gaia.

Implemented Quality of Service (QoS), Policy Maps, ACI, Class-maps, and Policy Routing in the network infrastructure throughout all the different sites

Implemented with Cisco Layer 3 switches 3750, 4500, 6500 in multi VLAN environment with the use of inter-VLAN routing, HSRP, ISL trunk, ether channel.

Implemented port aggregation & link negotiation using LACP and PAGP.

Implemented firewall rules in Palo Alto firewalls using Panorama for one of the environment.

Implemented QoS for Voice, Video against DATA by IP Precedence and DSCP.

Implementing and configuring F5 LTM’s for VIP's and Virtual servers as per application and business requirements.

Implement and manage Geo-Location based load balancing using F5 GTM load balancers.

Implementing Juniper MX240, 480, and 960 routers into the IP/MPLS core network, along with EX4200 switches, SRX650 firewalls, and SRX5600 firewalls

Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the Organization

Implemented and troubleshoot (on-call) IPsec VPNs for various business lines and making sure everything is in place

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance

Created load Evaluators to evaluate the loads on the servers based on various rules depending on the threshold of the metrics

Worked with Nexus 9k (standalone and ACI) ASRs, N5K/2k, N7K, ASAs, UCS, ACS, ACI, VMware

Worked on F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.

Worked with internal/external customers including partners by delivering the ACI Jumpstart program to help customers and speed up technology adoption

Worked on Load Balancers CSM and F5 LTM like 3900, 6900 for corporate applications.

Worked with customers directly on firewall, networking, storage, backups, and VMWare issues.

Used Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment.

Troubleshooting of ISR Cisco 2800, 2900, 3900, 7200, 7600, ASR 7K Series routers.

Troubleshoot routing issues on Cisco 7600, 7200 VXR and Juniper M320.

Troubleshoot and Worked with Security issues related to Cisco ASA, Checkpoint, IDS/IP S and Juniper Netscreen firewall s

Troubleshoot application load balancing issues on Cisco CSS and ACE platforms.

Troubleshoot with Cisco, Juniper, Riverbed, F5, Citrix, Arista appliances

Migrating Virtual Firewalls to Physical Firewall and Cisco ASA to Palo Alto Firewalls.

Jr. Network Administrator November 2014 - August 2017

Ulkanth Systems, Gujarat, India

Job Responsibilities:

Configured, deployed, managed and troubleshot existing and new Cisco Router/Switch networks on corporate VLANs.

Actively worked on Switching tasks that includes VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.

XenApp and Access Gateway Reconfiguration and NetScaler Global Server Load Balancing

Flexible to work on Linux and Window environments and worked on scripts to run patches.

Hands on Experience of with Cisco 2600, 2800, 3600 Series Routers.

Hands on Experience of with Cisco 3550, 3750 series Catalyst switches

Knowledge about VLAN and Inter-VLAN routing.

Regularly managed Citrix NetScaler for view, monitor and manage users, alerts, health of servers and load balance

Configuration of Routing Protocols such as STATIC, RIP, EIGRP, OSPF and BGP

Worked with Client teams to find out requirements for their Network Requirements.

Deployed and configured WI-FI Access Points

Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels and Spanning tree for creating Access/distribution and core layer switching architecture.

Load Balancing technology and concepts - specifically the Citrix NetScaler platform

Designing solutions for requirements using Cisco Routers and Switches.

Deploying the network infrastructure to meet the requirements.

Monitor performance of network and servers to identify potential problems and bottleneck.

Support on hardware and software related issues within the network.

Education:

Master’s in Information, Network, and Computer Security.



Contact this candidate