Engineer Network
Resume:
Nitin Arora
*****.**********@*****.***
Cell -: 201-***-****
https://www.linkedin.com/in/nitin-arora-cloud/
SUMMARY OF SKILLS
Cisco, Juniper, Palo-Alto Certified Network & Security Engineer with 11+ years of experience in the industry, which includes expertise in the areas of Routing, Switching, Firewall & AWS Cloud Services.
Designed, configured, test and implemented Network & Security solutions as per the client requirement.
Expertise in configuring and deployment of routing protocols-OSPF, EIGRP, BGP, Policy-based routing over Cisco Routers, configuring and troubleshooting route redistribution.
In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good knowledge of new SDN & SDWAN technologies.
In Depth Experience of MPLS and Multicast Routing.
Experience in F5 (LTM), Netscaler & Cisco ACE 4710 Load balancers.
Strong hands on experience in installing, troubleshooting, configuring of Cisco 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 6800 4500, 3750, 2950 and 3500XL series switches.
In-depth understanding of IPV4 and implementation of Sub Netting Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether-channel, Multi-Layer Switching, Port security,STP, RSTP and MST.
Strong Experience of multi-vendor Firewalls such as Cisco, Juniper SRX, FortiGate, Check Point and Palo-Alto.
Experience in implementing DMVPN with hub and spoke topology for 40 plus remote sites.
Experience in troubleshooting network issues using Cisco Prime Infrastructure, Wireshark, Solar winds, Cisco NCS, and FireMon.
Good Understanding of Data Center Networking, such as Nexus series & UCS.
Understand Cisco’s data center technologies and how to successfully configure and implement various forms and versions of the cloud, including Nexus, NAS, and Virtualization
Experience working with advanced wan technologies such as MPLS, VPN, Metro-Ethernet.
Good Knowledge of AWS Cloud Services including VPC, S3, IAM, Security and Database services.
Strong analytical and problem-solving skills, always striving for new knowledge with multi-tasking and organizational skills.
Excellent communication and interpersonal skills, ability to work independently as well as part of an integrated team.
PROFICIENCY AND TECHNICAL SKILLS
Networking Hardware: Cisco, Juniper, Fortinet, Palo-Alto, Check-Point, Brocade, Dell, HP,F5-BIG IP.
Routing Protocols: OSPF, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting.
Network Monitoring: Cisco Works 2000, Wire Shark, Solarwind NPM, Fluke.
Routers: CISCO 2600, 2800,3600,3800,7200, ASR 9k & 1K, Juniper M & T Series, Cisco CRS-1, CRS -3, GSR
Capacity & performance IXIA, Spirent, Solarwind NPM, Fluke (NetScout)
Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,5k,2k,1k, Juniper EX Series
Programming Languages: C, C++, VB Script, Power Shell, Python, Ansible
Firewalls: Juniper SRX (650/3600), Pix(525/535), ASA(5520/5550/5580), Palo-Alto, Checkpoint & Fortinet.
SDWAN : Cisco Viptela & Meraki, Open Day Light, Netflow, Rest API
PROFESSIONAL EXPERIENCE:
Client: Cisco/Morgan Stanley July 2019 – Present
Designation: SR Network Consulting Engineer
Location -: New York
Working at Client site (Morgan Stanley) for Cisco Systems.
As a part of the WAN 20 project, involved in migrating legacy SNSP to WAN20.
Involved in design and deployment of 160 ASR 9k Routers across globe, the existing design consist of 5 different AS (called 4 M Core and 1 G-Core Model), next generation private cloud for MS.
Responsible for managing all Master documents, including HLD & LLD Master Visio Diagram for Core, Master IP SS, QIP, Cut-sheets, Port-allocations, and BOM.
Responsible for preparing configuration and Run books for Branches, external-vendors, and Voice migration to WAN 20.
Responsible for preparing configuration of new L3 Circuit test, route-policy, and QOS for core routers.
Migrated all legacy Verizon PIP headend circuit to WAN20 Infrastructure consisting of more than 1000 Wealth Management branches across NA and EMEA.
Client: State of South Carolina - Department of Administration Mar 2017 – July 2019
Designation: SR Network Engineer/Architect Sep 2013 – Nov 2016
Location -: Columbia, SC (Total – 5.9 Years)
Working in an ISP environment and providing Internet, MPLS and Metro-E services to more than 90 Government Agencies, beside that also supported all access network and security gears at customer edge.
Responsible for day-to-day administration of Active's network infrastructure of over 1700 network & Security devices and supporting and Managing various government agencies network gears and providing technical support to more than 75 Government agencies including SLED,DMV,DPS,DDSN,DHS,DMS,PPP,DHEC etc.
Responsible for implementing network related projects as well as configuring and maintaining various network devices.
Worked on a broad range of topics such as proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
Using industry best practices, design, install, configure and troubleshoot network devices and their operating systems to ensure quality IT services are delivered to state and local government.
Responds to service requests from Service now in a timely manner. When service requests are assigned, determines how to apply network best practices. After determining the service request requirements and documenting the necessary network platform and/or modifications, submits change request to change management system. Upon change management approval, employee completes the modifications on the network platforms and/or software in order to resolve the service request.
Analyze data to provide solutions to complex problems and assist in resolving issues. When a network problem is reported, uses the tools available such as Cisco's Real-Time Log Viewer, Cisco's MARS and Enterasys' TALON SIEM to determine the issue. Then communicates his findings to the others involved and corrects the issue when possible
Maintain services, applications and operating systems, including DNS, firewalls, VPN, SolarWinds, syslogs, ACS and wireless control systems to support network activities.
Leading several critical FW migration project, first started to migrate 45 Customer from FWSM to ASA contexts, deployed 14 standalone SRX 650, managed check point FW for 2 agencies and deployed Palo-Alto as a perimeter FW to utilize advanced URL filtering, antivirus and vulnerability protection.
Responsible for the planning, design, implementation, organization and operation of SCDMV & DSS Palo Alto Firewalls based perimeter security network and network security devices including but not limited to 7000, 5000 and 3000 series FW’s. The job also involves simultaneously working on the successful engineering, testing and deployment of multiple projects
Works directly with customers to develop, design, implement, and manage network architecture to support and secure customer data and information technology processes related to customer service delivery functions. Involved in designing load balancer with Server & Security team to re-architect F5 Load-balancer to load-balance traffic anywhere in the organization network. Also designed and Implemented iRule to block certain IP traffic based on Incoming IP.
Replaced all 7200 & Cat 6500 PE and Provider EOL routers to New ASR 9k(P), Nexus 7700 & Cat6880 (PE), also replaced all DR network gears and replaced with Nexus 5K and 6880.
Developed Python/TCL regression and performance test suite
Analyzed and evaluated device-generated protocol traffic for validity and realism (network layer 2 and 3 and a mul- titude of application protocols)
Developed custom pcap file interpreter in Python.
Mentor, cooperate with, learn from and support other members of DSIT’s business units in order to complete complex tasks, resolve troubles, and fulfill service requests at a high level of professionalism and positive customer service.
Client: EFH (TXU Energy, Luminant Energy) Nov 2016 – Mar 2017
Implementation Partner -: HCL America
Designation: Network Security Engineer
Location -: Dallas, TX
Responsible for implementation and administration of network security hardware and software.
Enforcing the network security policy and complying with requirements of external security audits and recommendations.
Worked on 18 on-going projects for consolidating TXU and Luminant migration to Vistra Energy.
Delivering complex network security solutions in support of customer billable projects on time and meet business and technical requirements.
Maintaining and administering perimeter security systems such as firewalls and intrusion detection systems.
Design/installation of Palo Alto Next Gen Firewalls and application based firewall policies
Keeping up to date on all relevant Network / Security Engineering products and solutions (Palo Alto firewalls, Cisco ASA's, Cisco ISE, FireEye, RSA SecurID, etc.)
Client: Nokia (Microsoft) (QTS Data Center –Atlanta, GA) Jan 2013 – Sep 2013
Implementation Partner -: HCL America
Designation: Sr Network Engineer
●Worked in QTS DC, involved form the scratch to build new RDC for Atlanta Nokia site.
●Configured Cisco nexus-5k, Catalyst-3750, 3560, 2960 and F5 big ip 2200 Load balancer.
●Worked with security team and configured ASA 5585, Checkpoint 21400, 12200.
●Configuring Routers, Switches, VPN Concentrators and PIX Firewalls. Inter connecting various client sites through VPNs. Carrying out function- and performance tests. Configuration of multi-homed backup solutions. Failover tests.
●Support, maintenance, upgrades, new installations and troubleshooting on the core networks consisting of both Cisco and Juniper routers running OSPF, IS-IS, BGP and MPLS.
●Visited 7 sites for turn up wan and MPLS link and involved in migration.
●Manage day-to-day network operations both internationally and locally.
●Maintaining local network and data center infrastructure along with providing insight into modernization and standardization of network to best utilize existing equipment to full functionality.
●Served as primary point-of-contact for local data-center network operations.
●Providing peer guidance on various server and network deployments.
●Responsible for enterprise level VLAN configuration to allow intercommunication throughout Nokia locations over diverse WAN infrastructure.
●Maintaining network availability and anticipating network issues to mitigate them before they affect company or line of business operations.
●Customize layer 2 and layer 3 networking between VMware, networking components and storage for high availability and maximum performance.
●Build, configure and deploy VMs and templates. Completed Physical-to-Virtual (P2V), Virtual-to-Virtual (V2V) and Virtual-to-Physical (V2P) migration of Windows NT, 2000, 2003, 2008, and 2012 as well as Linux servers from VMware, Hyper-V, Xen and legacy hardware.
Client: JPMorgan Chase, OH Jan 2012 – Dec 2012
Designation: Network Engineer
Prime Vendor -: Collabra
Worked with the migration team both WAMU (Washington Mutual Fund) and JPMC chase to migrate their existing environment to JPM DC Chase.
Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches
Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
Participated in the installation, configuration, and post installation daily operational tasks and configuration of the deployment of Cisco Nexus equipment
Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding
Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path
Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption
Implemented various OSPF scenarios on networks consisting of 7600 routers
Configured policy based routing for BGP for complex network systems
Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local preference
Provided technical support, design and implementation of Cisco IVR 8.5.1 and DFS applications
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
Responsible for day to day management of Cisco Devices, Traffic management and monitoring
Installed, configured and set security policies on cisco and checkpoint firewalls, VPN
Installed, configured and troubleshot Cisco wireless network, Wireless LAN controllers
Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
Client: Hannaford Bros. Co., Scarborough Mar 2011 - Dec 2011
Designation: Network Engineer
Wipro Technologies (Time Warner) Sep 2009 – Feb 2011
Prime Vendor -: Think Tree Technologies
Designation -: Network Engineer
Goldey Beacom College -: Wilmington, DE (Part-time 20Hours) Jan 2008 - July 2009
(Desktop & Network Support for Computer Lab)
Intelenet Global Services, India
Client - BSNL May 2005 - Jul 2007
Designation: Network Associate
Certification:
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
CCNP Route
CCNP Switch
JNCIA - Juniper
JNCIS – Juniper (SRX)
ACE – Palo- Alto
CCIE – Service Provider (W)
AWS – Certified Solution Architect
Education -:
Master of Science in Managing Information Technology (Sullivan University, KY, USA)
Master of Science in Management (Sullivan University, KY, USA)
Master of Business Administration-Finance (Goldey beacom College, Wilmington,DE)
https://www.linkedin.com/in/nitin-arora-cloud/
Contact this candidate