Network Engineer Security
Resume:
Sai Ram
Network Engineer
Professional Summary:
•Proficient in configuring and managing dynamic routing protocols such as OSPF, EIGRP, and BGP, ensuring optimal and reliable routing across diverse network topologies.
•Experienced in configuring enterprise-grade Cisco Routers, including ISR 4000 and ASR 1000 series, for advanced routing solutions like MPLS, DMVPN, and SD-WAN.
•Skilled in implementing advanced routing techniques such as route redistribution, distribute lists, route-maps, prefix lists, and managing BGP attributes to enhance network performance.
•Extensive experience in installing, configuring, and maintaining Cisco Switches (Catalyst 2960, 3560, 3750, 4500, 6500 series) to ensure efficient network operations and reliability.
•Extensive experience with Arista EOS, including configuration, automation, and troubleshooting of Arista switches, routers, and network devices.
•Utilized Arista Cloud Vision and monitoring tools to enhance network performance, proactively detect issues, and improve issue resolution times .
•Integrated Cisco routers with security appliances (Cisco ASA, Firepower Threat Defense) to provide robust network security and threat mitigation.
•Configured and managed Intrusion Prevention Systems (IPS) including Cisco IPS, Fortinet, and Checkpoint UTM, enhancing infrastructure security.
•Skilled in load balancing using F5 BIG-IP LTM, GTM, and AWS/GCP Load Balancers for traffic optimization and application high availability.
•Implemented advanced Palo Alto firewall features such as APP-ID and USER-ID to improve network security, visibility, and traffic control.
•Experienced in F5 LTM configuration and troubleshooting, providing level 2 and level 3 support to ensure efficient load balancing and application delivery.
•Designed and allocated virtual IPs for F5 ADCs using IPAM Infoblox, optimizing IP address management.
•Successfully migrated applications from Cisco ACE/CSM to F5 LTM, ensuring minimal downtime and seamless transitions.
•Deployed F5 GTM to efficiently distribute traffic across regions, reducing latency for global users.
•Configured health monitors in F5 LTM to detect outages and reroute traffic, ensuring high availability.
•Migrated on-premises Citrix ADC to Azure Application Gateway to enhance scalability and reduce operational costs.
•Engineered load balancing strategies for containerized microservices using HAProxy and Kubernetes ingress controllers.
•Developed a CI/CD pipeline leveraging Jenkins and Ansible to automate the deployment of VMware NSX virtual networks, improving consistency and reducing deployment time.
•Orchestrated the migration of VMware workloads to AWS via VMware Cloud on AWS, ensuring scalability and high availability.
•Implemented NSX-T micro-segmentation policies for enhanced security in multi-tenant environments.
•Created a dynamic inventory system powered by Ansible, integrated with a centralized database for more efficient management.
•Developed Python-based automation solutions for VLAN and port configuration on Cisco switches, optimizing operational efficiency.
•Deployed and managed cloud-based networking solutions across AWS, Azure, and GCP, including VPC, VNet, subnets, and security groups.
•Skilled in deploying and managing Cisco Meraki wireless solutions, delivering reliable, high-performance Wi-Fi connectivity across enterprise networks.
•Experienced with Aruba wireless access points and mobility controllers, including 802.11ac models, to enhance Wi-Fi performance and user experience.
•Conducted comprehensive site surveys, RF planning, and capacity management to optimize Meraki and Aruba wireless deployments for coverage, performance, and capacity.
•Knowledgeable in Azure compute services, Web Apps, Data & Storage, Networking, Hybrid Integration, and Identity & Access Management, ensuring solid cloud infrastructure management.
•Proficient in implementing AWS security best practices, including IAM, encryption, network security, and compliance controls.
•Hands-on experience with AWS containerization services like Amazon ECS and EKS for deploying and managing containerized applications at scale.
•Experienced in network automation using Junos Automation scripts, Python, and Juniper REST APIs, optimizing configuration management and SDN integration.
•Utilized Terraform to write infrastructure-as-code for AWS EC2 instances, Elastic Load Balancers, and S3 buckets, improving cloud resource management.
•Developed Python and Terraform automation scripts for OpenStack environments to streamline deployment and resource management.
•Expert in designing and implementing SD-WAN solutions with Viptela and Cisco Meraki, optimizing WAN connectivity and application delivery.
•Configured routing networks on SilverPeak SD-WAN, ensuring seamless and efficient connectivity across multiple locations.
•Deployed and managed SD-WAN solutions using Cisco Meraki, enhancing performance, security, and scalability for distributed enterprises.
Technical Skills:
Category
Technologies/Tools
Network Configuration & Management
Cisco (Catalyst 9000, 9300, 9500, ISR 1100, ISR 4400, ASR 1000, Nexus 9300, 9500, 7000), Juniper, Arista (7300X, 7050X series)
Routing Protocols
OSPF, EIGRP, BGP, RIP, IS-IS, MPLS, DMVPN, SD-WAN
Firewall Management
Check Point R80.x, Palo Alto Firewalls (PA-3200, PA-5200), Azure Firewalls, Fortinet, AWS Security, Cisco ASA, F5 BIG-IP
Network Security & Monitoring
SIEM Tools, IPSec VPN, SSL VPN, Snort, Suricata, Cisco IPS, Firepower Threat Defense, AWS IAM, VPN, URL Filtering, User-ID
Wireless Network Management
Aruba (ClearPass, AP 330 series, Mobility Controllers 7220, 7010), Meraki (MR series)
Cloud Network Solutions
Azure (VNets, DNS, Subnets, Virtual Networks), AWS (VPC, Route 53, Direct Connect, ECS, EKS, VPN), Meraki, VMware, Terraform
Load Balancing & Application Delivery
F5 BIG-IP LTM, NetScaler (Citrix ADC), AWS ALB, iRules, GTM, APM, HAProxy
Virtualization & Data Center
VMware (vSphere, vCD, vCAC, vROPS, vCOPs), Cisco UCS B-Series, Aruba, AWS, Azure, Nexus, Cisco Prime Infrastructure, DNA Center
Network Automation & Scripting
Ansible, Python, Terraform, ServiceNow, Jenkins, CI/CD Pipelines, VMware NSX-T, Grafana
SD-WAN & WAN Optimization
Viptela, Meraki, Velocloud, SilverPeak SD-WAN, SD-WAN, WAN Optimization
IP Address Management
Infoblox IPAM, DHCP, DNS, VLANs, ARP, VTP, PPP
Routing & Switching Protocols
ARP, VTP, PPP, VLAN, STP, RSTP, ISL Trunking, EtherChannel, HSRP
Data Center Infrastructure
Cisco Nexus (7000, 5000, 2000), F5 BIG-IP, Riverbed Steelhead, Citrix NetScaler, VMware, Cisco UCS B-Series & C-Series Servers
Incident & Performance Management
VMAN, SNMP, Qradar, ServiceNow, Load Balancer Performance Monitoring
Migration & Integration
F5 BIG-IP vCMP, Cisco to Arista, AWS, Azure, VMware Cloud Integration, NetScaler to F5 BIG-IP Migration
High Availability & Scalability
HAProxy, High Availability Configurations, Cloud Scalability, Cisco High Availability, VPC, AWS EC2, VMSS, Azure Availability Sets
Education: BTech, Computer Science Engineering (CSE), GITAM, AP. 2015
LinkedIn: www.linkedin.com/in/sai-ram-95b0a8226
Professional Experience
Tango Analytics, TX Aug 2023 - Present
Network Engineer
Responsibilities:
Installed, configured, and maintained Cisco Switches (Catalyst 9000, 9300, 9500) and Routers (ISR 1100, ISR 4400, ASR 1000 series) to ensure optimal network performance.
Configured Cisco Routers, Catalyst Switches, and Nexus Switches (Nexus 9300, 9500, 7000 series) to support enterprise-wide routing and switching solutions.
Designed, optimized, and configured Cisco routing solutions for large-scale enterprise networks, ensuring scalability and reliability.
Monitored and analyzed network traffic using Splunk to proactively detect and mitigate security threats, improving incident response time.
Managed DHCP, DNS and IP address thru Infoblox, and Admin for Internet sites access thru Zscaler.
Proficient in GCP networking services, including Virtual Private Cloud (VPC), subnets, and firewall rules to create secure cloud networks.
Managed installation and configuration of Nexus 9000 Series switches in the data center, enhancing network performance and integration with existing infrastructure.
Implemented and managed Nexus 9300 and 9500 Series switches to reduce latency and improve data throughput across enterprise networks.
Extensive hands-on experience with Cisco routing protocols such as OSPF, EIGRP, and BGP to ensure efficient routing in diverse network topologies.
Implemented and managed firewall policies to secure data and applications across enterprise networks, ensuring confidentiality and integrity.
Monitored network traffic using SIEM tools to proactively identify and mitigate security incidents.
Conducted vulnerability assessments and penetration testing, addressing identified risks and improving network security.
Deployed Cisco routers for WAN connectivity using technologies like MPLS, DMVPN, and SD-WAN for scalable, secure access.
Expertise in designing and configuring GCP VPCs for secure and scalable infrastructure, including public and private subnets.
Function as part of a Firewall and Security team in support of Checkpoint Firewalls, Zscaler Proxy, Juniper Portals, SecAuth, Open LDAP, and Active Directory.
Performed Layer 1, 2, and 3 troubleshooting while managing trouble ticket tracking and ensuring compliance with internal escalation procedures.
Managed and implemented daily firewall rule changes on Check Point and Azure firewalls based on business user requests.
Administered Check Point R80.x firewalls, ensuring secure network policies and access control.
Led the optimization and implementation of VMAN for enhanced network management, reducing downtime by 30%.
Configured, managed, and monitored Palo Alto firewall models (PA-3200, PA-5200 series), improving security measures across the network.
Managed migrations from Check Point firewalls to Palo Alto using the PAN Migration Tool MT3.3, improving overall firewall performance.
Utilized advanced Palo Alto Firewall features like URL filtering, User-ID, App-ID, and Content-ID to secure inbound and outbound traffic.
Administered switching technology, including VLAN creation, Port Security, Trunking, STP, and Inter-VLAN routing for LAN security.
Implemented advanced wireless network features such as seamless roaming, band steering, and airtime fairness for optimal wireless performance.
Led migration projects for applications from legacy NetScaler Load Balancers to F5 BIG-IP LTM, improving load balancing efficiency.
Engineered F5 BIG-IP configurations including Virtual Servers, Pools, iRules, Profiles, and Persistence for optimized application delivery.
Conducted migration of applications to F5 BIG-IP vCMP infrastructure for more scalable and efficient load balancing.
Worked with ServiceNow to configure applications for ITIL management, delivering medium to large-scale implementations with a deep understanding of ITIL V3.
Deployed data center solutions using Cisco UCS B-Series Blades and UCS C-Series Servers for optimized hardware performance.
Developed and maintained VMAN configurations to ensure seamless integration with network infrastructure for improved management.
Implemented Aruba ClearPass for guest and corporate connectivity, managing Dot1q configurations for secure network access.
Troubleshot and resolved wireless network issues using Aruba's management tools to ensure optimal performance and user experience.
Configured Azure Transit firewall policies, including static routing and VPN connections for secure cloud communication.
Designed and configured Azure Virtual Networks (VNets), subnets, and network settings, ensuring security policies and routing integrity.
Experienced with Meraki wireless security features, including WPA2-Enterprise and MAC filtering, to ensure secure Wi-Fi access.
Managed backup and restore processes for Azure services, designed and configured Azure Virtual Networks (VNets), and implemented security policies for optimal cloud infrastructure.
Expertise in Azure scalability and availability, ensuring resilient virtual machine configurations with Azure VM availability sets and Virtual Machine Scale Sets (VMSS).
Worked extensively with VMware Suites (vCD, vCAC, vROPS, vCOPs, vSphere) to ensure smooth cloud and data center operations.
Managed Azure infrastructure, including Azure AD, Office 365, and Azure Storage to ensure smooth service operations.
Led migration of NiSource's legacy WAN network to SD-WAN with virtual firewalls, improving network scalability and security.
Designed and deployed SD-WAN solutions using Viptela, Meraki, and Velocloud, optimizing application data delivery across LAN and WAN.
Configured switching protocols such as ARP, VTP, PPP, VLAN, STP, RSTP, and routing protocols including RIP, OSPF, BGP, EIGRP, IS-IS, MPLS, and SD-WAN for improved network efficiency.
Environment: Cisco (Catalyst 9000, 9300, 9500, ISR 1100, ISR 4400, ASR 1000, Nexus 9300, 9500, 7000), Palo Alto Firewalls (PA-3200, PA-5200), Check Point R80.x, Azure (VNets, DHCP, DNS, Subnets, Azure Firewall, Virtual Networks), Meraki (MR series), F5 BIG-IP LTM, vCMP, ServiceNow (ITIL), Aruba ClearPass, Cisco UCS B-Series Blades & C-Series Servers, VMware (vSphere, vCD, vCAC, vROPS), SD-WAN (Viptela, Meraki, Velocloud), and VMAN.
Rehrig Pacific, CA Oct 2021 – July 2023
Wireless Network Engineer
Responsibilities:
Worked with routing protocols such as EIGRP and BGP to optimize network performance. Utilized Infoblox for IPAM, DHCP, and DNS management.
Implemented network security best practices by configuring firewalls, VLANs, and access control lists (ACLs) to secure enterprise data and applications.
Configured and maintained core and server farm switches (Nexus 7018s/2248s) and Cisco 6509s in provider edge and extranet environments.
Conducted troubleshooting and performance tuning on Nexus 9300 and 9500 Series switches, reducing network downtime and improving reliability by 30%.
Delivered training on VMAN usage to IT staff, fostering network visibility and control capabilities across the team.
Implemented AWS security best practices, including IAM, encryption, network security, and compliance controls to safeguard resources and data.
Provided expert-level troubleshooting on Arista switches, resolving network performance issues and reducing incident response time by 25%.
Configured Cisco routers with OSPF, RIP, EIGRP, Static, and default routes, ensuring seamless inter-network connectivity.
Utilized Splunk for packet capture analysis and log correlation, enhancing root cause analysis for security incidents and network outages.
Replacing Checkpoint VPN and BlueCoat proxy with Zscaler and worked on implementing Zscaler in Production.
Maintained and troubleshot dynamic routing protocols (BGP, OSPF, EIGRP) on Cisco routers (7613, 7201, 3945E), with advanced features like route redistribution and summarization.
Regularly upgraded and maintained network infrastructure, including Cisco Switches (Catalyst 9000, 9300, 9500), Cisco Routers (ISR 1100, ISR 4400, ASR 1000), Nexus (7000, 5000, 2000), F5 BIG-IP, Palo Alto Firewalls, BlueCoat Proxy, and Riverbed Steelhead appliances.
Deployed advanced routing and switching protocols in large-scale datacenters for optimized data flow and network efficiency.
Experience with zscaler Internet security and Zscaler private access.
Managed Aruba wireless solutions, deploying 802.11ac access points (Aruba 330 series) and Mobility Controllers (7220, 7010) for enhanced Wi-Fi performance.
Conducted network assessments and audits for Cisco routing deployments to ensure compliance with best practices and industry standards.
Collaborated with cross-functional teams to deploy VMAN solutions, improving network visibility and control across environments.
Collaborated with IT teams to enforce secure network architecture, access controls, and regulatory compliance.
Responded promptly to network breaches, minimizing downtime and ensuring data integrity during incidents.
Documented and enforced security policies, ensuring compliance with regulatory requirements and best practices.
Managed multiple Palo Alto firewalls centrally through the Palo Alto Panorama M-500 management appliance for streamlined security control.
Implemented Aruba wireless solutions, including virtual controllers and clustered APs, for international companies.
Applied AWS networking services like Amazon VPC, Route 53, Direct Connect, and VPN to build secure cloud-based networks.
Optimized AWS resources and costs through instance right-sizing, Reserved Instances, and Spot Instances to ensure cost-effective operations.
Designed and implemented Virtual Switching Systems (VSS) on Catalyst 9400 switches to improve network performance and resiliency.
Migrated the datacenter for Brewers and Distributors Ltd (BDL) from Calgary and integrated it with the Mississauga datacenter infrastructure.
Managed AWS containerization services (Amazon ECS, EKS) to deploy and manage applications at scale.
Configured Active/Standby High Availability (HA) on Palo Alto firewalls, including session and configuration synchronization.
Acquire Zscaler knowledge through self - paced learning in order to provide support for clients/customers.
Troubleshoot escalated client proxy issues to include Blue Coats and Zscaler.
Acquire Zscaler knowledge through self - paced learning in order to provide support for clients/customers
Troubleshoot escalated client proxy issues to include Blue Coats and Zscaler
Managed firewall policies on Cisco NGFW 5500 series and Palo Alto firewalls, handling NAT, security, application filtering, URL filtering, and data blocking.
Automated dynamic VLAN allocation and IP management with custom Python scripts integrated with network APIs.
Developed network performance dashboards using Grafana, providing insights into network efficiency and potential bottlenecks.
Conducted network diagnostics with Python scripts for packet capture and troubleshooting.
Managed VMAN software updates to ensure system stability and security.
Built F5 BIG-IP infrastructure, including BIG-IP 10200v platforms and vCMP guest instances for application delivery.
Migrated applications from Cisco ACE/CSM to F5 LTM and GSS configurations to F5 GTM.
Deployed and managed Meraki wireless solutions (MR series), optimizing enterprise Wi-Fi performance.
Coordinated global capacity engineering for public/private peering, managing datacenter changes with pre- and post-checks.
Managed VMware infrastructure, including ESXi hosts, vSphere clusters, and NSX-T networks for virtualization and network security.
Implemented CI/CD pipelines using Jenkins and Ansible for network configuration automation and deployments.
Configured virtual switches, VLANs, and distributed firewalls within NSX-T environments to ensure robust network security.
Optimized Meraki wireless deployments through site surveys, RF planning, and capacity management to ensure high-performance Wi-Fi coverage.
Managed SilverPeak SD-WAN configuration for routing network optimization.
Troubleshot IPsec overlay connectivity issues between SD-WAN appliances and Viptella SD-WAN controllers.
Analyzed network performance using VMAN, addressing issues proactively to ensure optimal performance.
Deployed and managed SD-WAN solutions (Cisco Meraki) for WAN connectivity optimization.
Environment: Cisco (Nexus 7000, 5000, 2000, Catalyst 9000, 9300, 9500, ISR 1100, ISR 4400, ASR 1000, 7613, 7201, 3945E), Arista switches (Arista 7300X, 7050X series), Juniper switches, Palo Alto Firewalls, F5 BIG-IP, BlueCoat Proxy, Riverbed Steelhead, Meraki MR series, SilverPeak SD-WAN, AWS (Amazon VPC, Route 53, Direct Connect, ECS, EKS, VPN), Infoblox IPAM, Panorama M-500, Aruba 330 series APs, Aruba Mobility Controllers, NSX-T, VMware (ESXi, vSphere), Grafana, Terraform, Jenkins, Ansible, Python, and VMAN.
Walmart, Bentonville, AR Feb 2019 – Sep 2021
Network Engineer
Responsibilities:
Performed network monitoring and optimization tasks using Arista’s EOS monitoring tools, improving overall bandwidth utilization.
Performed regular maintenance and upgrades on Nexus switches in the data center, ensuring high availability and minimal downtime.
Integrated Cisco routers with security appliances (Cisco ASA, Firepower Threat Defense) to ensure comprehensive network security and threat mitigation.
Designed and deployed scalable load balancing solutions using F5 BIG-IP LTM and AWS Application Load Balancer (ALB) for critical applications.
Configured health monitors and traffic distribution policies to guarantee high availability and optimal performance.
Performed SSL/TLS offloading to reduce server load and improve application performance.
Developed custom iRules for specialized traffic routing and load balancing requirements.
Developed and implemented security policies on Nexus 9300 and 9500 Series switches to enhance network security and ensure industry-standard compliance.
Leveraged network automation and programmability with Junos Automation, Python, and Juniper REST APIs to streamline configuration management and orchestration.
Extensive experience in Routing, Switching, and MPLS technologies for efficient network operation.
Deployed and scaled networks across global datacenters, automating network provisioning in both new and existing locations.
Collaborated with cross-functional teams to successfully implement Juniper switching solutions aligned with business goals.
Integrated Splunk with SIEM tools to improve log management, threat detection, and compliance reporting.
Managed and monitored networks using Cisco Prime Infrastructure, DNA Center, and SNMP-based tools for proactive troubleshooting and network optimization.
Installed and configured Arista 7250QX series switches on a Spine Platform for high-performance networking.
Configured and managed Intrusion Prevention Systems (IPS) with Cisco IPS, Fortinet, and Checkpoint UTM for enhanced security.
Configured Palo Alto GlobalProtect with Windows USER-ID for host-based information collection.
Leveraged Palo Alto APP-ID to reduce attack surfaces, regain visibility, and gain control over traffic.
Administered network security, analysis, and troubleshooting across diverse platforms (Windows, UNIX, Cisco, TCP/IP, and Checkpoint firewalls).
Regularly upgraded and maintained network infrastructure, including Cisco switches (2960, 3560, 3750, 4500, 6500), Cisco routers (ISR 4000, ASR 1000), Nexus (7000, 5000, 2000), F5 BIG-IP, and Palo Alto firewalls.
Provided Level 2 and 3 support for F5 LTM troubleshooting and optimization.
Managed Azure compute services, Web Apps, Data & Storage, Media & Content Delivery, Hybrid Integration, and Identity & Access Management.
Designed virtual IPs for F5 ADC through IPAM Infoblox to optimize network management.
Automated infrastructure with Terraform, creating scripts for EC2 instances, Elastic Load Balancers, and S3 buckets in AWS.
Collaborated with DevOps teams to integrate network configurations into CI/CD workflows for continuous delivery.
Administered hybrid networks combining physical and virtual components for seamless operation.
Configured and maintained CI/CD pipelines in GitLab to automate network configurations and version control.
Wrote Python scripts for API integration with monitoring tools to automate alert escalation.
Designed Ansible playbooks for network provisioning, ACL updates, and backup automation.
Automated network device backups to ensure compliance with disaster recovery policies.
Environment: Arista 100G, VxLAN, EVPN, Cisco ASA, Firepower Threat Defense, F5 BIG-IP LTM, AWS Application Load Balancer (ALB), Junos Automation, Python, Juniper REST APIs, Nexus 9300, Nexus 9500, Cisco ISR 4000, Cisco ASR 1000, F5 BIG-IP, Palo Alto Firewalls, Infoblox IPAM, Terraform, EC2, Elastic Load Balancers, S3, Azure Compute Services, Azure Web Apps, Azure Networking, Cisco Prime Infrastructure, DNA Center, SNMP, Arista 7250QX, Fortinet IPS, Checkpoint UTM, GitLab CI/CD, Ansible, Palo Alto GlobalProtect, APP-ID, MPLS, TCP/IP, BGP, EIGRP.
IBM/AT&T, Plano, TX Feb 2017 – Jan 2019
Network Engineer
Responsibilities:
Led LAN and WAN development, including IP address planning, design, installation, configuration, testing, and ongoing maintenance. Managed switching technologies, including VLAN creation, port security, trunking, STP, inter-VLAN routing, and LAN security.
Worked on zscaler policies, cloud app control policies, advanced threat, malware, sand box based polcies.
Implemented Cisco Layer 3 switches (3750, 4500, 6500) in a multi-VLAN environment, utilizing inter-VLAN routing, HSRP, ISL trunking, and EtherChannel for high availability and redundancy.
Configured and troubleshot WAN technologies like MPLS, T1, T3, DS3, and ISDN. Managed network changes based on business line requirements in a data center environment and monitored traffic with Qradar and Cisco IPS event viewer.
Managed and implemented Port Open Requests (PORs) for various departments, and troubleshot IPsec VPNs for business lines with on-call support to ensure network stability.
Collaborated with DevOps and application teams to optimize traffic flow for microservices-based architectures.
Monitored and optimized load balancer performance and resolved incidents to minimize downtime.
Deployed and managed Citrix ADC (NetScaler) for application delivery and load balancing in multi-datacenter environments, ensuring high availability.
Optimized DNS traffic using global traffic management (GTM) strategies for improved regional user experience.
Installed and configured new Cisco equipment, including Catalyst switches (6500), Nexus 7010, Nexus 5548, and Nexus 2000, as part of a data center deployment converting from Cisco 6500 to Nexus.
Configured VPC and VDC in Nexus 7010/7018, and FCOE in Nexus 5548. Managed Nexus 2000 Fabric Extender (FEX) for server and storage connectivity.
Led firewall rule analysis, modifications, and administration as part of the security team.
Configured and managed 500+ network and security devices, including Juniper SRX Firewalls, F5 Big-IP Load Balancers, and Nexus devices.
Implemented and managed Citrix NetScaler Load Balancers, including integrated caching requests.
Managed internal infrastructure by adding switches and servers to support server farms and existing DMZ environments. Implemented Cisco ISE for guest access with Cisco Wireless Controllers.
Administered Cisco ASA firewall systems, configuring simplified and traditional VPN communities, and supporting Cisco AnyConnect configurations.
Worked on Azure AD SAML authentication for zscaler authentication and AD group based policies.
Configured and managed F5 BIG-IP load balancing, including LTM, GTM, APM, and custom iRule development, with 24x7 on-call escalation support as part of the security operations team.
Worked on VLAN configurations and extensions for inter-data center connectivity, supporting new equipment such as routers, switches, and firewalls in DMZs.
Implemented IPsec and GRE tunnels, configured routing protocols (OSPF, EIGRP, BGP), and designed and implemented site-to-site VPNs on Cisco ASA 5500 firewalls.
Environment: Cisco IOS, Cisco Catalyst Switches (6500, 3750, 3550), Cisco Layer 3 Switches (3750, 4500, 6500), MPLS, T1, T3, DS3, ISDN, Qradar, Cisco IPS Event Viewer, IPsec VPN, Citrix ADC (NetScaler), F5 Big-IP (LTM, GTM, APM), Global Traffic Management (GTM), Cisco Nexus (7010, 5548, 2000), VPC, VDC, FCOE, Nexus 2000 Fabric Extender, Juniper SRX Firewalls, Citrix NetScaler, Cisco ASA, Cisco ISE, VPN (IPsec, GRE), BGP, EIGRP, OSPF, ACLs, Checkpoint Firewalls, Site-to-Site VPN.
Hutchison Global Services, India Oct 2015 – Jan 2017
Network Engineer
Responsibilities:
•Diagnosed and resolved network issues by analyzing traffic patterns, utilizing Cisco IOS commands, and applying effective solutions to ensure continuous uptime and security.
•Configured and managed Cisco routers and switches to optimize network performance and reliability, including the setup of VLANs, routing protocols (EIGRP, OSPF), and ACLs.
•Assisted in the design and maintenance of datacenter infrastructure, including rack installation, cable management, and hardware configuration to meet enterprise network demands.
•Monitored and optimized datacenter network performance by implementing best practices for load balancing, redundancy, and failover strategies to guarantee high availability and scalability.
•Deployed and managed cloud-based network solutions on platforms such as AWS and Azure, including VPC, subnet, security group, and VPN configuration.
•Automated network management tasks within cloud environments through scripting (e.g., Python, Terraform) to improve efficiency, scalability, and consistency in network configurations.
•Conducted network performance assessments and capacity planning to ensure scalability and alignment with business needs.
•Implemented network security protocols, including firewall configurations, intrusion detection/prevention systems, and VPN setups, to protect organizational assets.
•Deployed HAProxy for internal service load balancing in a containerized environment.
•Supported incident resolution and performance optimization for enterprise-scale network infrastructures.
•Troubleshot network issues across both virtualized and physical infrastructures, ensuring minimal service interruptions.
•Managed regular updates and patches for VMware environments to improve security and performance.
Environment: Cisco IOS, Cisco Routers, Cisco Switches, VLANs, EIGRP, OSPF, ACLs, Cisco ASA, Palo Alto Networks, IPSec, SSL VPN, HAProxy, Snort, Suricata, AWS, VPC, Subnets, Security Groups, VPN, Microsoft
Contact this candidate