Post Job Free

Resume

Sign in

Network Engineer Design

Location:
Conshohocken, PA, 19428
Salary:
140000
Posted:
October 09, 2023

Contact this candidate

Resume:

PURUSHOTHAM KM Email: adz9r0@r.postjobfree.com

Professional Synopsis:

• Overall 12+ years of Technical, Functional & Operational Experience in Network Design, Planning, Implementation and Complex migrations and highly competent in handling network escalations.

• Progressive experience in Datacenter network, Implementation, migrations and Project Execution.

• Worked on various products of Cisco, Router, switches, Catalyst & Stack Switches, ASA Firewall, VPN solutions, Application traffic management and Global availability with F5 LTM, sliver peak SDWAN.

• Hands-on experience in SDN, SDWAN, Python & Microsoft Azure Networking. TECHNICAL SKILLS

Hardware Cisco ASR 1001-X, ASR1001-Hx, ISR4331/K9, ISR4451/K9 Routing Protocols OSPF, EIGRP, BGP

WAN VRF-lite, LDP, MPLS, MPLS VPN, L2TPv3, VPLS

Hardware

Cisco Nexus Series 7K, 5K, 3K, 1K Switches, Catalyst 3750 Stack, 3850- X, 9300 Series, 4500, 6500-E Series switches.

Cisco Switches(N77-C7706), (Nexus 7706, WS- C4500X-32SFP+, WS- C3750X- 24T-E, WS-C2960X-48FPD-L, WS- C3560CX-12PC-S) Protocols STP (RSTP, PVST, MST), VTP, HSRP

Switching

DC Technologies VDC, VSS, VPC, OTV, VXLAN

Security

Hardware

Cisco ASA 5505, 5510, 5515, 5520, 5525-x, 5585-x and StealthWatch, Security Palo Alto, Fortigate 300, 1000, 2000 and FortiGate 500Eseries VPN IPSec VPN, DMVPN, GET VPN

Wireless Cisco WLC 5508, WLAN, Mobility, Flex Connect, Local Mode, Cisco Wireless (AIR- AP1832I-N-K9, AP 1600I, Cisco WLC 5508 Wireless LAN controllers, 9800-L-F-K9) Tools Service Now, Solar winds, IPAM, Gigamon, Apcon and ThousandEyes Load

Balancer

F5 Application Delivery controller, F5 Global Server Load Balancing, F5 (BIG-IP VPR- B2150)

SDWAN Deploying Hub and Spoke, establishing VPN, troubleshoot, Fortinet, Silver Peak appliance AZURE Create vnet, implement load balancer, enable FW EDUCATION

• BACHELOR OF ENGINEERING Visvesvaraya Technological University Year of Passing – 2010 OTHER SOFTWARE COURSES/CERTIFICATION COMPLETED:

• Juniper Enterprise Routing and Switching Specialist Nov - 2019

• Attended boot camp on VMware NSX: Install, Configure, Manage [V6.2] on Feb 2018

• Cisco Certified Network Professional Implementing Cisco IP Routing on Sep 2016

• Implementing Cisco Wireless Networking Fundamentals on 2015

• Cisco Certified Network Professional Implementing Cisco IP Switched Networks on Sep 2014 EMPLOYMENT HISTORY:

Current Organization: Institute of International Education Tenure: Sep 2021 – Till Date

Designation: Sr. Network Engineer

Roles and Responsibilities:

• Orchestrate deployment of network services and systems within a Public Cloud environment utilizing a Cloud Management Platform.

• Designed new Azure landing zone architecture putting into consideration, compute and other Azure Cloud adoption framework principles and deployed Azure resources in the new Azure landing zone.

• Deploy network resources like Vnets, Subnets, VNet Peering for connectivity within Azure Landing Zone.

• Deploy the express route connection to set-up connectivity between the on-prem environment and Azure using MPLS provider and creating redundancy.

• Configured and set-up Azure Virtual WAN for connectivity of Azure regions and office branches using a hub and spoke design.

• Deploy and manage perimeter security and load balancing Azure services like Azure firewall, application gateway, Azure Front End amongst others.

• Deployed and set-up Azure Virtual Appliances to comply with security baseline with Azure NSG, Azure firewall and intrusion detection.

• Utilized NSGs for Access Control List for incoming and outgoing packets and troubleshot access/connectivity installed on the VMs that were deployed in Azure. Executed multi- factor authentication (MFA).

• Dev-Lab support implementation advance SD-WAN configurations from traffic engineering testing.

• Incorporated web-filtering and intrusion prevention solutions for Fortinet clients in order to meet surf control policy and industry standards. Whitelisting and blacklisting the public websites on the Fortinet 500E as per application.

• Building IPSec & SSL VPN tunnel between site to establish connectivity between different campus.

• Preparing SD-WAN rules with lowest cost interference to different Service provider, optimizing the BW utilization.

• Developed procedures and processes to deploy new SDWAN solution to multiple sites with unique network infrastructure, reducing time per install.

• Design, configure and troubleshoot FortiAnalyzer, Fort client, Fortiweb and Forti authenticator.

• Configuration of FortiGate, FortiManager, FortiAnalyzer. Troubleshoot and configured FortiGate CPE firewall, FortiGate cloud series 5101C firewall.

• Configure and maintain security policies on Fortinet firewall and manager. Hands-on experience with Fortinet FortiGate physical firewalls.

• Configuring VPN both B2B and remote access SSL and centralized policy administration using FortiManger, building Fortigate High availability using Fortigate Clustering protocol (FGCP)

• Utilize FortiManager, Forticlient and FortiAnalyzer to maintain and optimize FortiGate firewalls. Back up, Restore and upgrade Fortigate Firewall appliances.

• Configuring FW in stateful and stateless mode depending on the requirement.

• Upgrading IOS of the firewall and upgrading with full packages.

• Configuring VPN both B2B and remote access SSL and centralized policy administration using FortiManger,

building Fortigate High availability using Fortigate Clustering protocol (FGCP).

• Providing an extensive database of attack signatures that can be used to match and detect known threats. Cognizant Technology Solutions

Project 1:

Project Sector - MassMutual

Tenure: June 2017 – Sep 2021 Designation:

Infra Technology Specialist

Roles and Responsibilities:

• Creating and Implementing DC Configuration scripts for new customer integration and existing customer’s migrations from existing DC to new DC.

• Analyzing the customer network architecture and maintaining their network services. Migrating the customer which has been acquired by them and providing the network infrastructure support.

• Working on network performance improving which involves the IOS upgrade and device upgrade.

• Design discussion and implementation planning along with customer and enterprise architecture for any new deployment which would improve customer network environment.

• Owing the configuration changes on Network, Firewalls & F5 Load balancer devices hosted in DC.

• Creating irules to optimize and improve the throughput of F5, Creating VIP, managing, monitoring of Nodes, SSL off-loading. Persistence.

• Providing packet level of analysis for critical & P1 application issue, cascading utilization, response, delay from client and server prospective. Using APCON, GIGAMON and SAVVIS OMNIPEEK appliance.

• Configure, manage and monitor palo alto firewall models (specifically PA-5050 and PA-5260.

• Implement advanced Palo Alto Firewall features like URL filtering User-ID, App-ID content-ID on both inbound and outbound traffic.

• Deployed Palo Alto firewalls using confidential NSX through L2 and L3 interfaces on models such as VM-300, VM-500 and VM-1000-HV.

• Rendered support for a blend of Fortinet products such as FortiGate Firewall and Forte analyzer.

• Incorporated web-filtering and intrusion prevention solutions for Fortinet clients in order to meet surf control policy and industry standards.

• Designed network flow for various application for internet access and reachability from internet on Cisco layer 2 switch and FortiGate equipment in enterprise environment.

• Whitelisting and blacklisting public websites on the Fortinet 500E as per application. Project 2:

Project Sector - Vorwerk Design/Build/Migration

Tenure: Jan 2015 – Jun 2017

Roles and Responsibilities:

• Implemented enterprise Grade Network solutions on Greenfield data center which is an Active/Passive Datacenter setup with Nexus 7K / 5K / 2K switches with multiple VDCs.

• Configured double-sided VPC for downstream switches and single-sided VPC for Firewall and Load- Balancer.

• Configured EIGRP for LAN Routing and BGP for WAN.

• Structured cabling plan along with port-mapping preparation.

• Integration of Cisco Access point with Datacenter Wireless controller in flex connect mode.

• Re-designed Campus and Branch locations Network with redundancy, migrated to the new Network across Europe, and connected over MPLS cloud.

• Co-ordinate with Vendor/Service Providers for WAN links termination at Campus and Non-Campus locations at Europe, USA and Mexico.

• IPsec VPN solutions through internet links (DSL/4G) for the non-feasible MPLS branch locations.

• Document the solutions for operations team and Client’s use. Project 3:

Project Sector - Global Operations Center

Tenure: Oct 2011 – Jan 2015

Roles and Responsibilities:

• End-to-End Assessment for the Network Infrastructure.

• Evaluated existing Client network infrastructure, design and topology, Risk levels and submitted network assessment report with AS-IS discovery, analysis and Recommendations.

• Identified single point of failures, Obsoleted networking equipment, Performance Bottlenecks, High availability, Stability improvements & cost saving opportunities

• Assessed Network SME knowledge, capability, capacity & availability at different levels (L1, L2 & L3)

• Assessed the Application Networking Architecture, monitoring tool for events, alerts & reports.

• Observations on Process followed for Incident, change, problem and release management.

• Submitted Documentation on existing Network Datacenter architecture, working on all customer network upgrades and changes remotely within assigned SLA. Implement VLANs in a network campus. Implement inter-VLAN routing in a campus network.

• Implement security features in a switched network. Troubleshooting LAN, VLAN, VTP problems.

• Troubleshooting issues related to Layer 2/ 3 skills like Switching / Routing. Configuration of IP address for Switches and Routers. Configuring & Troubleshooting of VTP, Inter VLAN Routing. Installing, configuring & maintaining network equipment’s & devices, implementing structured cabling, routers and switches. Routing Protocols – EIGRP, RIP (v1,v2) IGRP, OSPF, etc.

• Assisted in designing and implementing VLAN and IP addressing scheme for over 800 end users in multiple departments and floors Configuring Routing Protocols – EIGRP, RIP (v1, v2), IGRP, OSPF, etc.

• Configuring the switches with VLANs, HSRP, STP and VTP. Configuration of VLANs, Inter VLAN routing and VTP on Cisco switches. Configuration of Spanning-Tree features – RSTP. Ariba Technology India Pvt Ltd.

Tenure: July 2010 – Oct 2011

Designation: Network Engineer.

Roles and Responsibilities:

• Installing, configuring & maintaining network equipment’s & devices, implementing structured cabling, routers and switches. Routing Protocols – EIGRP, RIP (v1, v2), IGRP, OSPF, etc.

• Assisted in designing and implementing VLAN and IP addressing scheme for over 800 end users in multiple departments and floors Configuring Routing Protocols – EIGRP, RIP (v1, v2), IGRP, OSPF, etc.

• Configuring the switches with VLANs, HSRP, STP and VTP. Configuration of VLANs, Inter VLAN routing and VTP on Cisco switches. Configuration of Spanning-Tree features – RSTP. DECLARATION

I hereby declare that, all the information mentioned in the resume is true to my knowledge and please feel free to contact me in case of any query or confusion.

(Purushotham K.M.)



Contact this candidate