Sumanth

adjeiv@r.postjobfree.com +1-507-***-****

Professional Summary:

An Experienced Network Security Engineer in CISCO ISE, CCNA, CCNP and Cyber Security with 4+ Years of Experience and 6+ Years of overall Experience in IT.

Experience in Mayo Clinic Health Sector client as a Network Security and Cybersecurity Analyst.

Expert in various security tools experience including ORDR, ISE, Wireshark, Akips, Netbrain, NET STATS DAGS, IBM Big Fix, etc.

Expert in HTM tools TMS, CMDB, Nulovo, Asset Data, True Viewer.

Expert in Physical and virtual remediation to Identify unidentified devices.

Expert in working with several departments and coordinate with them like endpoint team, MSS, WSS, HTM, CMDB and NOC.

Expert in Configuring and Maintaining Infoblox for IP Address Management. Variable Length Subnet Masking (VLSM) mechanism is used to create subnets. Integrating Domain Name System (DNS) and DHCP for centralized management

Experience in VPN technologies: IPSec & SSL.

Experience in Enhances distributed Micro-Segmentation models to maintain the Confidentiality, Availability, and Integrity of enterprise data and information systems.

Experience in PHI, HIPAA and GDPR applying Security controls to Security profiles.

Experience in Creating Security profiles, Implementing, Testing, Penetration testing, Application integrity and go live.

Experience in UBS banking client implementation, Maintenance and configuration. Network Migration from Cisco Legacy devices to Juniper Next Generation routers, switches and load balancers.

Experience working with UBS Global Network Operation Center.

Experience in Support LAN/MAN/WAN infrastructure that include routing protocols like OSPF, BGP, VPLS and MPLS for remote branch offices, campus and data center setups

Experience in Working on juniper Qfabric system (DG, IC, CPE, NNG and RSNG), EX (4200, 4300) which includes VLAN, access ports, LACP, STP, static routes, class of services, firewall filters, IGMP, PIM, BGP.

Experience in upgrading Citrix NetScaler Load balancers, Juniper MX routers, Juniper Qfabric switches to engineering approved latest versions.

Implement DNS, DHCP, TELNET, SSH, SNMP, SYSLOG, NTP, TACAS on all network devices.

Experience in knowledge of web services, website development, DevOps concepts, SecDevOps, concepts of cloud services and infrastructure.

Expert in Teaching students and preparing advisory documentation for future references.

Expert in Data Center Security Operations, Cabling, Designing, replacements of Network Components and Installing Wireless Access Points,

Expert in Microsoft Products, Security Operations, Problem solving methods and Network Operation Center.

Expert in Working with manufacturing industry onsite Requirement Gathering and Data Inventory Management.

Expert in Multiple subject backgrounds as Electronics and Computers, Computer Security, Application Security, Data Security and Management.

Expert in building new computers, installing Operating system and repair the computer.

OBJECTIVE:

•Network/Cyber Security Consultant with junior to mid-level of experience Managing IT services and providing executive level support to team and clients. Seeking to apply my detail-oriented talents and adaptable personality to fulfill the company’s need. Have strong background with management and product release experience. With couple Masters (3.8/4.0) GPA. And I am multilingual person.

Tools and Technologies:

HTM tools: ORDR, Asset DATA, TMS DATA, NET STATS DAGS, IBM Big Fix, Dameware.

Network Monitoring tools: Akips and Stat seeker.

Packet capturing tools: Wireshark.

Security tools: Cisco Identity Services Engine (ISE), Checkpoint Firewall.

Wireless Network tools: Cisco Prime, Cisco Wireless Controllers.

Network traffic analyzing tools: Stealthwatch.

VPN tools: F5.

Network automation tools: Netbrain.

Security technologies: Cisco TrustSec (CTS).

IP Address Management: Infoblox.

Ticketing tool: Service Now.

Programming languages: Python, Java Script, CSS, Html, PowerShell, Microsoft VBA.

RPA Tool: Automation Anywhere.

OS Expertise: Linux, Windows, Mac OS.

Cloud Services: AWS and Microsoft AZURE, GCP.

Monitoring Tools: Splunk, DataDog, Wireshark.

Data Base: Microsoft Active Directory, CMDB, TMS, Service Now.

CMMS: Nuvolo.

SMTP external services.

Firewall: Checkpoint, Cisco ASA, Meraki.

IPAM: Infoblox.

Location Tracking: AeroScout.

NetFlow: Cisco NetFlow, IPFIX.

Network Management: Cisco Prime.

Network Policy: Cisco ISE,ClearPass.

SIEM: Splunk, Qradar.

URL Feed: webRoot.

Switches and Routers: Cisco and Juniper.

Skype, MS Teams, Zoom, Cisco Web Ex, Outlook.

Education and Certifications:

Academic Qualification:

Master of Science in Computer Information Systems.

MBA.

Certifications:

CCNA.

CCNP. (ISE- Security Identity Management Implementation)

Automation Anywhere professional V10.0.

Certification in inventory management systems.

Certification in java ddos attacks using entropy variations.

Certification in Embedded with C.

Professional Experience:

Mayo Clinic – Rochester, MN.

HTM Associate Info Security Engineer.

Jan 2020– Dec 2020

Responsibilities:

Involved in Creating Security profiles, Implementing, Testing, Penetration testing, Application integrity and go live.

Involved working in BIG FIX for VM management for OS TYPES in devices.

Supported Using DAGS (Device Access Grantor Service) Device Doctor tool, Dameware to connect remotely to devices.

Analyzing using PHI, HIPAA and GDPR applying Security controls to security profiles.

Involved in SPAD process (Security Privacy Architecture and Data - SPAD).

Generate Asset reports from ORDR Tool and navigating and adjusting options as requirements needed.

Using ORDR as a filter for evaluating and monitoring User reports.

Implementing ORDR in different buildings and gathering reports form the deferent departments as the information requested.

Supported Using the ServiceNow ticketing tool to raise tickets for investigation.

Track the Investigation of Service Now ticket and consult the appropriate departments to resolve the issue.

Created Pivot tables and compared data from one source to other source and created excel data sheet as of the requirement.

Using the tool TMS DATA and updating the information in that tool and updating the data entry.

Performed Nuvolo admin and Nuvolo Implementation in the enterprise.

Involved using Asset DATA to investigate Asset data information with ORDR information to matchup.

Involved Using CMDB data Vs ORDR DATA analysis and comparison and filtering unidentified versions and devices.

Involved Using Python to evaluate the network device configuration and find the authentication failures.

Involved Using Microsoft VBA to design the DATA Presentation in Graphs and records.

Involved Using PowerShell to compare the MS Excel sheets from the reports to Master data.

Involved in research security trends, New methods, enhance systems security, prevent unauthorized access and Preemptively eliminate the possibility of system breach.

Involved in DLP (Data Loss Prevention) Methods.

Involved in generate tags for HTM and CMDB New devices.

Involved Working with Stakeholders and program application leads to promote secure design patterns for web services and microservices of applications.

Experience in Enhances distributed micro-segmentation models to maintain the confidentiality, availability, and integrity of enterprise data and information systems.

Mayo Clinic – Rochester, MN.

Network Security Engineer (NAC).

Oct 2018 – Dec 2019

Responsibilities:

Involved working in most of the cisco products as Cisco ISE, Cisco ASA, Checkpoint Firewall, Cisco Wireless controllers, Cisco Prime, Cisco Trust Sec (CTS), Cisco Meraki To analyze the issues.

Involved in Physical and virtual remediation to Identify unidentified devices also working with several departments like Endpoint team, MSS, WSS, HTM, CMDB and NOC.

Travelled for several locations to do Remediation of medical devices to make sure they are used by right department.

Involved in Mayoizing the devices (Cisco wireless Access points). Performed wiping Access points and configure them as required.

Involved in Deploying Cisco Identity Services Engine (ISE) in enterprise, helped with posturing, creating ACL, white List, Black list, Groups, profiles, etc.

Involved in Generate Authentication reports in Cisco ISE and determine the 802.1X and MAC Address Bypass (MAB) failures. Adding/Modifying the policy and/or profiling features in order to fix the failures.

IPAM InfoBlox I used this tool to assign the new host names and check host records and lease IP address.

Involved in Configuring and Maintaining Infoblox for IP Address Management. Variable Length Subnet Masking (VLSM) mechanism is used to create subnets. Integrating Domain Name System (DNS) and DHCP for centralized management.

White Listing and Black Listing, Temporary white list Permanent white list and create groups and profiles and investigate on purged devices and investigate live logs trouble shoot the issues accordingly.

Involved using network automation tool NET BRAIN, to push configurations into switches, routers and other network devices.

Assess, implement and troubleshoot Cisco Wireless Access Points (WAPs). Analyze wireless traffic and provide solutions for better wireless signal strength.

Resolving Service Now tickets in a timely manner so that there is minimum impact to the end users in case of a Network Outage.

Involved Using monitoring tools such as AKIPS and Stat seeker to monitor 10,000+ Network Equipment across Mayo Clinic Health Systems in Minnesota, Arizona and Florida regions.

Performing Packet captures in order to study the Network traffic flow between source and destination. Each packet is inspected to troubleshoot packet drops, latency and other Network connectivity issues.

Configuring Border Gateway Protocol (BGP), Enhanced Interior Gateway Routing Protocol (EIGRP) and Open Shortest Path First (OSPF) routing protocols on Cisco ISR and ASR series routers.

Configuring Virtual Local Area Networks (VLANs), VLAN Trunking Protocols (VTPs), DHCP Snooping and Port Security mechanisms on Cisco Access Layer Switches (3800, 4500 and 6500 Series).

Involved using MAC Address Based Investigation and MDM Tool with IOS Devices Identification.

Worked On call Support and Investigation of unidentified devices and fix them.

Implemented NAC Enforcement in Access layer switches in building by building.

Helped Preparing the procedural Documentation future references for the project.

Used Python Script to run for failure reports in switches.

True Viewer tool to investigate the device locations within the enterprise.

Involved in NAC Naming standard Policies and Mayo Clinic admin policies to words the user and devices.

Explaining the information to different departments and implementing the NAC project in different departments like Radiology oncology ...etc.

Knowledge on how to use Cisco file storage, VOIP, vSphere.

UBS - Nashville, TN.

Network Engineer.

Jun 2018-Nov 2018

Responsibilities:

Scope of the position involves the Implementation, Maintenance and Configuration of data networking hardware and services, inclusive of WAN and LAN technologies, migration from Cisco legacy devices to Juniper Next Generation Network Infrastructure, routers, switches, load balancers, WAN optimization, monitoring and reporting services.

Support day-to-day operations which include incident resolution, problem resolution and change resolution in 24x7 Global Network Operation Center.

Works with internal/external clients, operations/systems, financial exchanges, and other Network engineers to design, automate, research and develop, investigate and solve system issues, and participate in business analysis.

Support LAN/MAN/WAN infrastructure that include routing protocols like OSPF, BGP, VPLS and MPLS for remote branch offices, campus and data center setups.

Work on juniper Qfabric system (DG, IC, CPE, NNG and RSNG), EX (4200, 4300) which includes VLAN, access ports, LACP, STP, static routes, class of services, firewall filters, IGMP, PIM, BGP.

Configuration Juniper MX 80, 104, 240, 480 routers and troubleshooting OSPF, BFD, BGP, PIM, BUM (multicast, broadcast, unicast) routing, policy-options, RSVP, MPLS, stretch VLAN’s, RPM probes, QoS.

Create RMA for defective infra with vendors and providing technical assistance to local DC team remotely in replacements.

Troubleshoot and implement day-to-day issues on McAfee web gateways like MWG 550 for proxy services includes FTP, SFTP, HTTP, HTTPS, SOCKS, TLS, SSL and plug gateways.

Assist branch users on WIFI Connectivity issues and supporting LTE infra in branches provided by carriers.

Involve in upgrading Citrix NetScaler Load balancers, Juniper MX routers, Juniper Qfabric switches to engineering approved latest versions.

Implement DNS, DHCP, TELNET, SSH, SNMP, SYSLOG, NTP, TACAS on all network devices.

Works on JUNOS versions 13.3R3-S10.2 and 13.3R3-S3 on MX routers and 14.1.X53D17.1 and 14.1X53D122.8 and 14.1X53D121.4 on Q-fabric, Virtual Chassis and Virtual Chassis Fabric switches.

Setup Wireless Access Points and LTE modems for WIFI services for RBO branch offices to use it as a disaster recovery for OOB LTE to login into the devices as backdoor.

Responsible for directly interacting with Juniper and work on JTAC cases to resolve the issue to avoid Business impact.

Works on network management, performance and monitoring tools like Fluke TrueView and HP Network Automation (HPNA) tool.

Change Management activities like break-fix, operational and standard changes will be implemented which will fix the problems and help in creating new network estate for the client which can accommodate firm’s various applications.

Participates in Network outage bridge calls manned by various IT support groups providing network support and guidance.

Participates in an on-call rotation for support escalations.

Participates in daily meetings to review changes and underlying impacts.

Communicate effectively with clients and other teams to nurture the lifecycle of projects.

Mahima Soft, NY.

Jr Security Operations Engineer.

Mar 2018 – May 2018

Responsibilities:

Involved in using documentation tools like Microsoft VISIO, Microsoft Office.

Involved in Design, install, configure and isolate faults in Cisco Wireless LANs and assess WLAN encryption and security options.

Experience in Provide ongoing maintenance of systems operations hardware and software, Maintains remote server administration.

Responsible for system turn up and managing edge capacity.

Involved using several Operating systems as Unix, Linux, Windows Server 2008/2012, Windows 7/8 and Microsoft Hyper-V.

Worked together on provisioning and managing infrastructure and applications in Cloud environments including Amazon Web Services (AWS), Azure and Google Cloud Platform (GCP).

Involved in identifying and implementing automation to improve user experience (UX).

Involved scripting in PowerShell and Python.

Involved in DevOps, Infrastructure as Code (IaC) tools, including Docker, Kubernetes, OpenShift, Jenkins, GitHub, Terraform, Ansible, Git.

Took a training How to use JSON, REST, and XML web services.

New England College University Henniker, NH.

Graduate Research and Teaching Assistant.

Jun 2017 – Mar 2018

Responsibilities:

Responsible for running of Computer Security classroom as well as supervising students.

Involved in preparing lesson plans, newsletters, PowerPoint presentations and course documentation.

Guided Several students to correct their classroom work and supervised on Computer Security concepts.

Involved in Preparing the different security scenarios of Stealthwatch, Phishing, Social Networking, threat analysis, Data Loss prevention, Denial of service, Vulnerability Identification, Threat to Integrity and availability Confidentiality.

Knowledge on malicious attacks by viruses and hackers.

Knowledge on Data Backups, Disk Encryption, Difference between data security and data privacy.

Knowledge on Components of information Security (CIA triad) Confidentiality, integrity and availability.

IP Global Systems, UK.

Jr Network Operations Engineer.

JUNE 2015 - May 2016

Responsibilities:

Involved in working team of Data center security and Computer Security.

Installing, Racking and Stacking Networking Devices such as Cisco Routers and Switches.

Configured Routers and Switches with the provided config template.

Up-gradation of IOS using TFTP and FileZilla Server for Routers & Switches.

Performed trouble shooting Network connectivity, Ping, Tracer, Telnet.

Troubleshooting of LAN/WAN Networks, with both hardware and software.

Password recovery for Routers and Switches.

Knowledge in different network and routing protocols which includes TCP/IP, DHCP, RIPV2, STATIC ROUTE, OSPF, EIGRP etc.

Configuring Ether-Channels & installing wireless access points.

Knowledge on Configured Access List (Standard, and Extended) to allow users all over the company to access different applications and blocking others

Involved in implementing VLANS, Inter-VLAN routing, configuring trunk 802.1Q on Fast-Ethernet between Switches.

Inhouse cabling of LAN with CAT5, CAT6.

Involved in TCP/IP Addressing Subnetting for Class A, B, and C networks.

Knowledge Configure DHCP on a Cisco Router and Switch.

Involved in upgrade and replacement of network components as NIC cards, display cards, RAM, keyboard, mouse and other peripherals / devices.

Routers: Cisco 2900, 2800, 1900, 1800, 800 series.

Switches: Cisco 3500, 2900 series.

TreadzIT, IND.

Microsoft Network Engineer.

Jun 2012 –Dec 2014

Responsibilities:

MS Office, MS servers, Desktop Support, Computer repair and software Issues with installing.

Assist IT staff with closing IT Help Desk support tickets.

Troubleshoot employee laptop and desktop computing issues.

Prepare and/or modify system and process documentation.

Involved in server hardware and configurations (including web servers).

Involved in Networking concepts (TCP/IP LAN, WAN, Firewalls, OSI Model, etc.).

Involved in Microsoft server operating systems (e.g., Windows Server 2008/2012, SQL Server 2008/2012).

Involved in Windows Active Directory Services, Virtual Machines.

Experience of problem solving and analytical skills, oral and written communication skills and working effectively with a team of professionals on technical and business issues.

Hindustan Shipyard Limited, IND.

Campus Placement/ Industrial Engineer.

May 2012 - Jun 2012.

Training for couple months on Inventory Management.

Involved in several operations using MS Office, internal hardcopies to software migration.

Involved in technical department of ship interior electronic management, Security Operations and development.

Samyak - K L University, IND.

Computer Research Assistant.

Jun 2009 – Apr 2012.

I have involved in various projects and services and also IT lab assistance.

Working with professors and Jr students and guiding them in computer programming and other IT services.

Did some projects on VLSM, OOPS, Data Science, IEEE, ISO2700, Embedded With C, Computer Security, Network communications, Network Security, Phyton, C, C++, Java, Electronics, Electric Power Projects AC and DC.

Computer Builder, IND.

Freelance, self-employed

Jun 2007 - May 2009.

•Assemble the computer.

•Repair and Fix the Hardware and Software.

•IT Lab Maintenance.

•Help Computer Lab Teachers.

•Helped with Upgrading Systems in Technology.

Contact this candidate