Network Engineer Customer Service
Resume:
Career Highlights:
Senior Network Engineer having worked with multiple clients and network environments. High level understanding of switching, Routing, Firewalls, Network security, Application Delivery controllers and Wireless.
Experience in Switching in campus and Data center environments. Worked on Migration projects from legacy to new hardware switches. Worked on IDF/MDF refresh projects, Access, Distribution and Core refresh projects in Data centers, Spine leaf Architecture.
Experience with Cisco 2960, 3750, 3850, 4500,4948, 5510, 6500, CAT 9K switches. Juniper EX and QFX series. Arista and Aruba Switches and Extreme network switches in Campus Environments.
Extensive experience on Cisco ASR, Nexus 7K, 9K, 5K, N3k and 2K switches, Juniper M and T series routers, Arista 7000 series switches, Cisco 7200 series routers in Core, Distribution and Edge in Data centers.
Well versed with Layer2 and Layer 3 Protocols that include STP, RSTP, PVST, MST, HSRP, VRRP, LACP, PAGP, OSPF, EIGRP, BGP, VXLAN, EVPN, MPLS, VPLS, IS-IS.
Worked on Internet core, Internet Peering, Data center Core, Distribution, Extranet, DMZ, Inter DC Circuits, BGP overlays, OSPF mesh, ISP circuits, redundant configurations in all layers, VPC, VDC, FEX modes in Nexus.
Hands on experience in all types of Layers 1 connectivity that includes Copper – Cat5, Cat6, Fiber 1Gig, 10gig, 100gig, SFP, QSFP, LC, SC, ST, MM and SM.
Experience in Hardware Load balancers such as F5 BigIP LTM, GTM and APM Modules, BigIP Series devices are 4400, 8000, 8950, 7250, 7850 and Citrix Netscaler ADC Boxes such as MPX8000, MPX10500, MPX11500, MPX13500 and MPX15500.
Experience in Juniper EX Series Switches such as EX3300, Ex3400, Ex4600, EX4650, EX8200s and GMR Router’s MX80, MX90, MX204, MX240, MX480 and MX960 .
Worked on Legacy and Next Gen firewalls that includes cisco ASA, Palo Alto, Checkpoint, Juniper SRX and FortiGate Firewalls.
Worked on Perimeter firewalls, IPSEC tunnels, Zone based Vsys, Virtual routers, NAT and ACL policies, URL filtering, SSL forward proxy, SSL decryption.
Configuring or administering with Cisco SDWAN Threat Defense, Cisco Firepower Management center.
Configured, installed, and maintained VeloCloud SDWAN systems at customer offices, remote offices, and Data centers.
Worked on Application traffic security with WAF, F5 ASM, F5 APM for Authentication, Citrix NetScaler’s for ICA proxy, Citrix VDI, Microsoft Office 365, Azure AD.AWS, Zscaler Cloud based proxies, Cisco IronPort proxies and Blue Coat.
Experience with SD-WAN solutions that include Viptella and Versa. Configuration of centralized policies, ranch policies, Application aware routing, failovers in WAN, transport side and service side templates in SD-WAN.
Knowledge in Spine and Leaf Architecture with Nexus 9K in ACI mode. Experience in VXLAN, VTEPS, VNI, EVPN Bridge Domains, Symmetric and Asymmetric IRB.
Cisco MSE and Cisco CMX are two location-based services provided by Cisco.
Cisco MSE is a wireless infrastructure appliance that provides indoor location services, while Cisco CMX is a cloud-based software solution that provides indoor and outdoor location services.
Exposure to multiple ticketing tools, workflows, monitoring tools that include ServiceNow, Jira, Remedy, SolarWinds, Wireshark, NetCool, Whatsup Gold, SNMP v2c and V3.
Passionate about learning new technologies. Basic exposure to Python Scripting for network automation.
Technical Skills:
Router and VoIP Platforms
Cisco Routers series 7300, 4000, 3800, 2000, 1900; ASR9910, ASR9920 Juniper T4000, MX10, MX40, MX80, MX90, MX204, MX240, MX960, ACX2200, ACX5000; On SIP, Avaya products, cisco IP phones
Routing Fundamentals and Protocols
Routed and Routing protocols RIP, EIGRP, IS-IS, OSPF, BGP, IPX; MPLS, VPLS IPv4 and IPv6 addressing, Subnetting, VLSM, Static routing, ICMP, ARP, HSRP, VRRP, Route Filtering, Multicast, 802.11, Policy Based Routing, Redistribution, Port forwarding
Switch Platforms
Cisco Catalyst series 2960, series 3560, 3850, 4500,4948, 5510, 6500, 7000; Nexus series 2K, 3k, 5K, 7K, 9K, 92k ; Nortel/Avaya 5510, 5520; Juniper EX3300, EX3400, EX4300, EX4600, EX4650.
Switching Fundamentals and Protocols
Ethernet technologies, LAN networks, MAC, VLAN and VTP, STP, PVST+, Multicast,
RSTP, Multi-Layer Switching, 802.1Q, EtherChannel, LACP, PaGP, CDP, HDLC, RARP, LDP, LLDP.
Firewall Platforms
Juniper Netscreen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, CheckPoint (NGX R65, 3100, 5100, 5900), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks 3050, 5050, 7050 WAF.
Security Protocols
Standard and Extended ACLs, IPsec, VPN, Port-security, SSH, SSL, IKE, AAA, Prefix-lists, Zone-Based Firewalls, NAT/PAT, HIPAA standards, Ingress & Egress Firewall Design, Content Filtering, Load Balancing, IDS/IPS, URL Filtering, L2F, IDS, TCP Intercept, Router Security, SNMP trap
Network Management and Monitoring
Wireshark, Infoblox, HP OpenView, Cisco Prime, Security Device Manager (SDM), Cisco Works; TCP Dump and Sniffer; SolarWinds NetFlow Traffic Analyzer, Network Performance Monitor (NPM), Network Configuration Manager (NCM)
Load Balancers
F5 (BIG-IP) LTM 2000, 3900, 4410, 6400, 6800, 8950, 8000, 7250, 7800, AV 510,
Citrix NetScaler MPX:8800, 10500, 11500, 13500 & 15500
WAN technologies
Frame-Relay, ISDN, ATM, MPLS, PPP, DS1, DS3, OC3, T1 /T3 lines, SONET OC3-OC192, SDH, POS, PDH
Cloud Computing and Automation
AWS, Microsoft Azure, Cisco Meraki, C#, Python scripting, Ansible, Cloud Migration
Other Networking Protocols and Fundamentals
DHCP and DNS server, Active Directory Management, NTP, NDP, TCP, UDP, FCP, Network Implementation, Troubleshooting techniques, NHRP, NetBIOS, NFS, FTP, TFTP, HTTP, PAP, PPTP, SIP Trunking, SNMP logging, BitTorrent, SMTP, RADIUS and TACAS+, PBX servers, SDN, SAN
Operating Systems
Windows 10/7/XP, MAC OS, Windows Server, Nexus OS, Cisco IOS-XR, Linux, UNIX
TRAINING & CERTIFICATION
Cisco Certified Network Associate (CCNA R&S)
Cisco Certified Network Professional (CCNP)
Juniper Networks JNCIA JUNOS
Graduate Professional and Academic Development.
Education Details
Bachelor in Electronics & Communication Engineering, May-June 2014, O.U, HYD, INDIA.
Master’s in Electrical and Computer Science Engineering, New York Institute of Technology, NY, April-May 2017, USA.
PROFESSIONAL EXPERIENCE:
Client: Sound Transit April 2022 – Present
Sr. Network Engineer
Project Summary: The primary scope of this project was Network Migration. Switched from Legacy devices like Brocade, Moxa, CES, FastIron to Juniper EX/MX series devices. Identified required amount of SFP’s, QSFP’s, Fiber and Copper Cables.
Have extensive experience in switching on Juniper, Cisco, Brocade, and its Capacity Planning & VLAN's, datacenter switching technologies, multi-chassis aggregation and link aggregation.
Worked on routing protocols such as OSPF, BGP. Have knowledge about the best practices for availability and performance.
Experience with deploying IPv4 and IPv6, dual stack IPv4/IPv6, numbering schemes, aggregation, and allocation.
Ability to diagnose complex network problems and find the root-cause.
Demonstrated creation and implementation of 'best-practice' standards and departmental policies and procedures.
Experience in working with cross-functional teams inside the organization and with outside vendors such as King County (SCADA Team)
Producing high quality technical and functional specifications documentation
Extensive experience with industrial/ruggedized switches such as Garrettcom, Ruggedcom, etc.
Used Microsoft VISIO to create architectural diagrams of the network gear for building new networks. Ability to create as-builts, rack elevation and connectivity diagrams.
Configured Juniper Ex3400, Ex4600, EX4650, MX204 MX480s, EX8200s, EX4500s, EX4200s, and SRX5800s from scratch to match design.
Hands on experience with SDN, Cisco ACI, VXLAN, VNI, Bridge Domain, Arista cloud vision, EVPN, MP-BGP, Spine and Leaf Architecture.
Experience with interior and exterior routing protocols that includes RIP, OSPF, EIGRP, IS-IS and BGP. Worked on Cisco, Juniper, and Arista routers.
Participated in the installation, configuration, and post installation routine operational tasks and configuration of the Cisco Nexus Switches.
Worked with JunOS maintaining Juniper Ex3400, Ex4600, EX4650, MX204 MX480s, EX8200s, EX4500s, EX4200s, SRX5800s and ACX1000 router to maintain some sites and stations.
Understanding of networking concepts and tools such as SolarWinds, which is used for monitoring and troubleshooting.
Configured Power configurations for load balancing of voltage between different networks devices
Interpreting and administering policies and procedures sufficient to administer, discuss, resolve, and explain them to staff and other constituencies.
Identifying, troubleshooting, and resolving basic computer hardware, software, network, and peripheral problems.
Created design and implementation of cisco DNA-C Managed networks utilizing industry best practices and cisco hardware, overseeing new and existing equipment as well as hardware and software upgrades.
Configure cisco DNA for Secure remote workforce with zero trust policies and dynamic segmentation of endpoints.
Provided level 2/3 support for ISE related Issues, including off-shift and weekend support functions.
Worked extensively on Access control policies consisting of VLAN switching through SNMP, applying downloadable ACLs through Cisco ISE and configuring standard and Extended ACL's locally an don upstream switch's for Cisco NAC.
Configured probes in CISCO ISE to collect device information connected on to company switches and external routers.
Integrated cisco ISE with load balancer (Citrix Netscaler and F5 LTM) to manage traffic between multiple ISE PSN Nodes to Provide AAA services.
Upgraded Cisco ISE consisting of 45 ISE Servers north America wide from legacy version 2.1 to 2.4 without affecting business operation.
Demonstrated hands on experience with Active Directory and networking fundamentals (TCP/IP protocol, SMTP, DNS, DHCP and WINS)
Excellent oral and written communication skills, including the ability to read and process complex technical information.
Strong technical skills with the ability to work with minimum supervision. Ability to work independently or in a team environment.
Excellent organizational and decision-making skills
Responding to user requests on ServiceNow and provided effective customer service using clear communication skills.
Communicating technical information to non-technical users.
Worked under steady pressure with frequent interruptions and a high degree of employee contact by phone or in person.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
Responsible for Checkpoint, ASA, Palo Alto Firewall management and operations across global networks.
Researching, analyzing, and evaluating new service delivery methods and techniques
Must be able to multitask, manage multiple projects and shifting priorities.
Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, F5 Load Balancer, Cisco Nexus7K/5K, Checkpoint, Cisco ASA, Nexus 5k and 7k, NX-OS, Meraki, BIG-IP, LTM/GTM, Citrix NetScaler, Juniper EX4600, EX3400, EX4300, ACX1000, JunOS, Netbox, Infoblox, DNS, DHCP, Web Application firewall (WAF), POP3, HTTP, NNTP, SNMP, FTP, SSH, Cisco ACE 4710, OSPF, MPLS,VPLS, BGP, VLAN, IPSec.
Client: Microsoft Corp June 2019 – Feb 2022
Location: Redmond, WA.
Sr. Network Engineer
Responsibilities:
Design and implementation of new solutions and improving resilience of the current environment.
Establishing networking environment by designing system configuration, directing system installation, deploying, defining, documenting, and enforcing system standards.
Maximizing network performance by troubleshooting network problems and outages, scheduling upgrades, and collaborating with network architects on network optimization.
Develop tools/solutions for Network Design, Provisioning. & Network Capacity Augmentation with data analysis.
Development of automation solutions for network provisioning such as Zero Touch Provisioning systems.
Design and implementation of low-latency, high-availability, and performant applications.
Configure DNA for Policy-driven provisioning and guided remediation to increase network uptime.
Deployed a high available cisco infrastructure based on cisco DNA-C, Cisco ISE, switches, routers, and Access points.
Working with Cisco DNA solutions ISE, NGFW, Prime, ESA, WSA, VPN and CWS implementations.
Working on pilot projects involving small scale deployments/experiments involving these technologies.
Assist with technical design discussion and investigation relating to design requirements.
Resolving deployment issues and coordination with Operations for deploying services in production.
Work design and implementation of Rescue DNS to onboard additional services such as AzDNS, GTM, WATM
Assist in setting up a lab that completely simulates the full DNS stack including coordinating efforts with Citrix and A10.
Monitoring and alert management of all components related to the ISE NAC solution and providing ongoing maintenance and support of solutions components (patching, upgrades, capacity reviews and lifecycle management).
Provided level 2/3 support for ISE related Issues, including off-shift and weekend support functions.
Engineering traffic management solutions, including the design, low level engineering, and application load balancing solutions for client applications across the pre-provisioned ADC infrastructure.
Collaborating with Application team/owners to migrate from Legacy A10 Load Balancer to F5 VE LTM
Migrated around 30 physical devices including models BIG-IP VPR-C2400, BIG-IP 10250(vCMPs), BIG-IP 4200 and including GTMs, LTMs, and vCMPs to F5 Virtual Edition.
Migrated A10 Load Balancers to F5 Virtual Edition LTM.
Experience in network Automation using Python and Ansible.
Created zero touch Configuration script by using Python and Ansible libraries.
Created Zero touch cisco, Arista, NetScaler code upgrade script by using Python and Ansible libraries.
Created zero touch migration python script for F5 Migration from BigIp 8900 platforms to BigIP 7250 Platforms.
Created Zero touch script for basic CLI commands in multiple vendor devices such as Cisco, Nexus, Arista, BigIp F5, Citrix Netscaler.
Contributed to developed API tools for raising request of RMA for multiple devices such as Cisco, Nexus, Arista, BigIp F5, Citrix NetScaler by using Ansible and Python libraries.
Support customer with the configuration and maintenance of ASA firewall systems. Troubleshooting of protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
Handle service-now tickets related to CIsco ASA and Zscaler & VPNalong with the connectivity issues and provided support when any issue is raised.
Engineering and configuring Virtual Server, Pools, Nodes, Persistence, and monitor on F5 LTM.
Monitoring and capturing the traffic using network management tools like Solar Winds, Forti monitor and Infoblox
Configured and troubleshooting the F5 LTM, F5 GTM and F5 AFM and providing level 2 and level 3 support for the customers
Licensing and provisioning F5 modules such as LTM, GTM, ASM and AFM.
Extensively worked on code upgrades fro V11 to V13/14, V13/14 to V15/16, and V14/15 to V 16
Extensive knowledge in configuration via TMSH and Advanced shell.
Creating custom profiles, health monitors, Application Firewall policies and rules, syslog, and SNMP.
Good knowledge on basic iRules scripting and debugging.
Extensive knowledge and experience regarding F5 BIG-IP LTM VIP configuration and health check as well as hosting SSL certificates on F5 platforms.
Worked extensively in configuring the IPSEC VPN for different CHI sites from the CHI HQ. Details include ACL's, Object NAT, setting up DMZ networks, HA firewalls.
Network Infrastructure should be up to date for any bug fixes, systems improvement. For this, the network infrastructure is upgraded periodically scheduling a down time. This involves use of different applications.
Ensure training plan is clearly defined and adhered to by all existing and incoming resources.
Creating and Defining Operability requests.
Acquitted with Cisco Meraki for Cisco Wireless devices Monitoring, managing, and troubleshooting Cisco Wireless devices using Cisco Meraki.
Documenting SOP, Policy and procedures, Maintaining and Documentation Library.
Deliver complete and detailed Resource transition reports to cover attrition as needed.
Communicating and driving high priority escalations to resolution with Ops/Dev teams.
Creating Development Change Requests (DCR) for break/fix mitigation and operability.
Developing processes to make them more effective and efficient.
Preparing the detailed Network architecture design documents is the process of defining a structured solution that meets all the technical and operational requirements, while optimizing common quality attributes such as performance, security, and manageability. It involves a series of decisions based on a wide range of factors and each of these decisions can have considerable impact on the quality, performance, maintainability, and overall success of the Network.
Networking Fundamentals and in depth Understanding of Network Routing and switching Technologies, Load balancing methods and rules, Standards for Ports and RFC information.
Be involved in start to finish scheduled
Maintenances such as code upgrades, hardware replacements on network devices.
Diagnose and correlate complex network problems.
Escalate incidents and work on increased priority.
Support Network Devices including routers, switches, firewalls and load balancers from Cisco, Juniper, F5, Arista, Netscalar and Citrix.
Communicate to internal and external customers.
Installation, Upgrade and maintain the networking equipment.
Incident analysis and management, Problem Analysis and Resolution.
Investigations involving complex network infrastructure for
Prepare project concepts, Gap Analysis, solution design and functional specification documents for the projects.
Publishing graphical reports for SLA and Data metrics.
Identifying the noise incidents and working with respective team to suppress/fix them.
Converting all SOPs to Auto Mops to reduce the cycle time.
Automating the code upgrade and Deployment process.
Client: Otsuka Pharmaceuticals June 2017 – May 2019
Location: Princeton, NJ
Sr. Network Engineer
Responsibilities:
Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.).
Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter Vlan routing, LAN security etc.
Implemented with Cisco Layer 3 switches 3750, 4500, 6500 in multi VLAN environment with the use of inter-VLAN routing, HSRP, ISL trunk, ether channel.
Experience with F5 GTM/LTM installation and assist in configuration of F5 APM LTM modules for BIG IP networking equipment.
Cisco Meraki Appliance MX (400, 80, 60) and Meraki wireless Access points (MR66, MR18).
Installed and configured Meraki (MX80, MX60) Appliance via Meraki MX400 Cloud. Installed and configured Cisco Meraki (MR66, MR18) wireless Access points in the warehouses
Involved in Network Designing, Routing, DNS, IP Subnetting, TCP/IP protocol.
Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, and SRX5800s from scratch to match design.
Configure all Checkpoint, Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale Firewall deployments.
Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place. Implementing IPsec and GRE tunnels in VPN technology. Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.
Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
Experience configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 7010/7018
Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration. Experience in working with designing, installing, and troubleshooting of Palo Alto firewalls.
Actively involved in design & deployment of a new datacenter using Cisco Nexus 9000 platform in spine & leaf architecture utilizing VXLAN fabric & BGP-EVPN overlay technologies.
Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN. Supporting project test teams in analyzing the bandwidth utilization.
Experience with Firewall Administration, Rule Analysis, Rule Modification
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series, Access control lists, Configured Frame-Relay, ISDN, ATM, load balancing switches and configured IPX/SPX, HDLC, PPP, BGP, EIGRP, OSPF and VRRP on various sites. Implemented antivirus and web filtering on Juniper SRX 240 at the web server.
Setup simplified and traditional VPN communities, and Cisco Any connect.
Support customer with the configuration and maintenance of ASA firewall systems. Troubleshooting of protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow.
Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
Managing and providing support to various project teams with regards to the addition of new equipment such as routers switches and firewalls to the DMZs.
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/12000/7200/ 3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Infoblox, Checkpoint, Cisco Works tools, Wireshark windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP
Client: RealPage Inc, Jan 2014 – Aug 2015
Location - Hyderabad, India
Role: Network Administrator
Responsibilities:
Worked with the Help Desk for circuit troubleshooting to give Support to the Tech persons at the site.
Configuring routers and sending it to Technical Consultants for new site activations and giving online support at the time of activation.
Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
Experience in Cisco 7200, 7600 routers, Cisco 2800 3700 series switches: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
Configured the Cisco router as IP Firewall and for NATing.
Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
Installed and configured PIX 520, 525, 535 series firewalls, configured standard and extended access-lists and policy- based filters.
Configured ASA 5510 appliance and VPN.
Responsible for implementing QoS prioritizing voice traffic over a data.
Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.
Troubleshoot TCP/IP problems, troubleshoot connectivity issues.
Contact this candidate