PROFESSINAL SUMMARY

Around * years of professional experience in Network Planning, Implementing, Configuring, Troubleshooting and Testing of networking system. Expertise in network protocols, Firewalls and Communication Network design.

Comprehensive knowledge of general networking protocols, information security principles, and Windows operating systems. Hands-on experience with TCP/IP, LANs, WANs, and WLANs (WIFI)

Extensive knowledge of installation, configuration, and maintenance of network infrastructure

In-depth knowledge of network storage systems, server systems, and network connectivity

Well-versed in Cisco networking, switches, routers, and firewalls

In-depth Cisco technology experience/knowledge in design, implementation, administration and support

Experience on Juniper and Cisco ASA 5585 firewall and Cisco Firepower.

Deploy and manage with advanced security and network management tools like Aruba ClearPass Policy Manager, Aruba Air Wave and cloud-based Aruba Central.

Experience in Checkpoint firewalls, Palo Alto Firewalls, Juniper Firewalls, Cisco WSA/CWS, Cisco ASA, SSL VPN, Cisco Nexus.

Working knowledge and demonstrated experience on the Palo Alto, Check Point, Cisco ASA, and FortiGate firewalls. Supporting EIGRP and BGP for problems of L2/L3 in internal teams external customers.

Knowledge networking foundation, extensive IP/MPLS routing experience with BGP/I BGP/eBGP and OSPF background and expertise in NM planning and design for Cisco routers (CRS - 1, GSR, 76xx, 72xx) and switches (2900, 3560, 4500 & 6500) as well for Juniper routers (MX-960, M-320, T640, T1600, MX-480). Experienced in Tier II, III & IV interface requirements. Worked on Bridge Domains, VXLANs, VTEPS, VNID.

Knowledge of Cisco DNA, SDWAN, SDN, ACI, VXLAN, EVPN, AWS & Azure Networking, NAC Solutions- Cisco ISE. Worked on Brocade SLX and MLX Ethernet router (CLI, Restful, NETCONF).

Working experience on tools and devices like Gigamon, Source Fire, Fireeye, Aruba, Cisco ASA, Cisco ISE.

Dealt with monitoring tools like (Solar Wind, Kiwi-cat tool), network packet capture tools like Wire-shark

Provided 24x7x365 availability and on-call support as required

Excellent working knowledge of TCP/IP protocol suite and OSI layers

Strong hands-on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS)

Designing/Deploying/Maintaining Next Generation Firewall (NGFW) features such as SSL inspection.

Experience in shell scripting's server, LINUX, open stack and python scripting with focus on DevOps tools.

In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL\'s, NAT, VLAN, STP, VTP, HSRP & GLBP

Strong hands-on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches

Dealt with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy. Knowledge of SDN, Cisco ACI, VXLAN, VTEPS, VNI, Bridge Domain.

Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools

Good knowledge and experience in Installation, Configuration and Administration of Windows Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments

TECHNICAL SKILLS

• Routers: CISCO 1900, 2600, 2800, 3600, 3800, 7200, ISR-2900, 4000, ASR-1k, 9k Juniper M & T Series, Cisco CRS-1, CRS, GSR.

• Switches: Cisco 2900, 3500, 3600, 3700, 3800, 4500,5000, 5500, 6500 series. Nexus 7k, 5k, 2k series.

• Routing: OSPF, EIGRP, BGP, RIP: 2, PBR, Route Filtering, Redistribution, Summarization, Static Routing.

• Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging.

• LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN Emulation.

• WAN: Leased lines 64k: 155Mb (PPP / HDLC), Channelized links (E1/T1-E3/T3), Frame Relay, ISDN, Load Balancing, MPLS.

• Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

• Layer 3 Switching: CEF, MLS, Ether Channel

• Firewalls: Cisco PIX 515, ASA 5505, 5510, 5515 X, 5500 X.

• Load Balancer: Cisco ACE, F5 BIG: IP

• Network Diagnostic Tools: Putty, Wire shark, Windows Remote Desktop.

CERTIFICATION, TRAINING AND SKILLS

• CCNA R&S Certified (Aug 2018), Cisco ISE Training (Sep 2018), CCNP Switching Training (Oct 2019), CCNP, ENCOR Training (Sep 2020), Fortinet NSE04 Training (Sep 2021).

• Network: Cisco Core/Distribution/Access switches and routers, Nexus 5k, Riverbed/CMC, Infoblox,

• Efficient IP, ISE, WLC/Access Point, DNA, Prime, AWS, VPN, Data Centre

• Security: Fortinet Firewalls, Forti Manager, Forti Analyzer, Forti AP, Pulse Secure

• Programming: Pascal, C, Java, CSS, Linux, Python (scripting)

• Others: One Control, Service NOW, Zabbix, Microsoft Office; E health (monitoring with SNMP), ISO 27001/9001

PROFESSIONAL EXPERIENCE

Client: Capital Health, NY Nov 2021 – Present

Role: Sr. Network Engineer

• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.

• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.

• Configured egress and ingress queues for ISP facing routers using CBWFQ.

• Generating RCA Root Cause Analysis for critical issues of layer1/layer2/layer3 problems.

• Configured CIDR IP RIP, PPP, BGP and OSPF routing.

• Deep technical troubleshooting on customer SDWAN Edge connect device, Firewall Forti gate and Palo Alto.

• Involved in the configuration troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network.

• Responsible for performing predictive wireless designs/site surveys with AirMagnet Planner (Cisco 3500/3600/3700/ Aruba 105 access points) and conducting physical wireless site surveys.

• Currently working on performing circuit and satellite turn-ups, migrations from ALU7450 to 7750, configurations and installations, configuring IPV4/IPV6 address on new installation turn-ups.

• Performed N7k/ASR9k L2/L3 configuration and failover test cases with F5 Load Balancers/Juniper SRX 5800's/7600 Routers during SRE5 certification testing for Cisco 7600 Router.

• Configured WAN connections with Meraki and FortiGate SD-WAN.

• Achieved success managing the software patches and device configurations with NETCONF - YANG and RESTCONF python modules.

• Configure, Manage and Monitor Palo Alto firewall models (Specifically the PA-5050 and the PA-5260).

• Monitoring alerts and usage of Firewalls, AAA, Free Radius, Websense, VPN boxes, and other devices using Network Security Management NSM Tools like Indeni, nCircle and EM7, Gigamon, Aruba.

• Identify network requirements for provisioning on MX-960 PE, CRS-1, GSR. Documented layer 2/3/7 inventory, IP address assignment and connectivity rules for PE’s in various projects.

• Identify, design and implement flexible, responsive, and secure technology services

• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.

• Experience with implementing and maintaining network monitoring systems Cisco works and HP Open view and experience with developing complex network design documentation and presentations using VISIO

• Implementation and configuration of F5 Big-IP LTM 6400 Load balancers. Configure Routers Switches and Wireless Access Point.

• Developed new Wi Fi Network Architecture for large WAN enterprise and worked with QIP to manage DNS names and IP addresses. Estimated Project costs and created documentation for project funding approvals.

• Experience with Firewall Administration, Rule Analysis, Rule Modification

• Troubleshoot traffic passing managed firewalls via logs and packet captures

• Knowledge of deploying and troubleshooting L2/L3, TCP/IP, Multilayer Switches.

• Configured and resolved various OSPF issues in an OSPF multi area environment.

• Worked on SSL Termination that occurs at the transaction of the server ends of a SSL connection.

• Designed and implemented PC, RSTP, NX-OS, WAN/ISP, Cisco N9K, Cisco N7K, Cisco N3K.

• Routing, switching, ASA firewall technologies, Palo alto NGFW - Firepower, system design, implementation and troubleshooting of complex network systems.

• Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products

• Working experience on Software Defined Network (SDN) controllers Cisco ACI, Open Daylight and SDN protocols Openflow and Netconf, SD-WAN.

• Integrate Aruba ClearPass with Active Directory for 802.1x.

• Working on tools and devices Aruba CADA to assign roles, policies to devices and users.

• Scripting Automation for JavaScript, Linux/Unix toolbox, Python, Perl, Bash, ESX, VMware.

• Knowledge of SDN, Cisco ACI, VXLAN, VTEPS, VNI, Bridge Domain.

• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.

• Worked on Cisco Advanced technologies like Cisco ACI, Cisco Meraki, Cisco Firepower, APIC EM and Cisco ISE.

• Configured & maintained IPSEC and SSL VPN's, implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall. Exposure to wildfire feature of Palo Alto.

• Support WLANs by performing and documenting 802.11 wireless surveys.Worked with telecom vendors in regards to network fault isolation.

• Hands-on experience with WAN ATM/Frame Relay, Routers, Switches, TCP/IP, Routing Protocols BGP/OSPF, and IP addressing.

Contact this candidate