Network Security Data Center
Resume:
Name: Nusrat Islam
Contact: 917-***-****
Email: ******.**.*****@*****.***
Professional Summary:
Around 10+ years of experience in Networking, including hands-on experience in providing network installation, network integration, network support, and analysis for a broad range of LAN/WAN/MAN communication systems.
Hands-on experience with Cisco IOS/IOS-XE/IOS-XR/NX-OS, Juniper JUNOS, Aruba OS, Arista EOS, PAN-OS, IPSO/r for configuration and troubleshooting, and a strong ability to quickly adapt to new Cisco technologies such as Cisco NCS chassis.
Extensive experience with advanced routing protocols including OSPF and BGP, with a demonstrated ability to learn and implement new routing technologies like Segment Routing.
Hands-on experience and demonstrated knowledge on the Routing & Switching, Network Security, Information Security.
Configured and Implemented Cisco Identity Services Engine (ISE) with connectivity to Microsoft Active Directory for authentication including Based Authentication, Windows 2012 Authority.
Experience in testing routers and switches in laboratory and deploy them on site production.
Familiar with REMEDY, SNOW, JIRA for ticket change management process.
Hands on experience with network automation tools such as Ansible, Puppet and Chef.
Hands on experience and demonstrated knowledge on Software-Defined Networking (SDN). Experience with Cisco ACI on creating VXLAN’s, VTEPS, VNID’s, EVPN, Bridge Domains, Tenants, Application profiles, Contracts etc. on ACI.
Experience with partners on installation and configuration problems and issues related to SDA, DNAC.
Optimized firewall configurations to ensure high performance in high-bandwidth, low-latency environments, minimizing latency and maximizing throughput.
Worked on a team of 8 engineers who refreshed the entire Novartis US headquarters campus in East Hanover 6,000 users with state-of the-art Cisco gear, covering 75 LAN closets, 8 MDF's. Our routing protocol is EIGRP. Installed and racked Cisco 3750 stackable for 75 existing LAN closets, upgraded distribution layer from Cisco 6500 to 6500e Completed on time and within budget.
Managed both Hyper-V & VMWare environments which included deploying, updating and configuring Windows Server 2016 servers.
Evaluating new release of SDWAN solution on cloud platform for various products.
Experience operating in a modern cloud environment such as AWS, GCP, Azure or large-scale data centers.
802.1q, STP, RSTP, MSTP, VLAN, MPLS, NTP, FTP, SCP, TLS, ACLs
Analyse indicators by tactics, techniques, and procedures TTP.
Configured and managed Versa SDWAN solutions, ensuring seamless integration with existing network infrastructure.
Integrated the Nozomi Guardian product with third party security solutions (Splunk, QRadar, Fortinet, syslog, SMTP, Active Directory).
Managed and troubleshoot NET Cloud, Cradle Point and Aruba access points wireless devices on Citrix and Airwave. Aruba VPN, customer public and private wireless networks. Aruba mobility and ClearPass training.
Proficient knowledge of Cloud Platform Products such as AWS, Azure, GCP.
Working Knowledge and demonstrated experience on the Cisco Juniper, HP Aruba, Avaya, and Arista switches & Routers.
Enable monitoring and logging of 802.1X authentication events to track access attempts and identify potential security issues. Use network monitoring tools to analyze logs and generate alerts for suspicious activities.
Exposure to multiple technologies and builds/troubleshooting: VSAN/NSX/SDA/VXLAN, etc.
Assisted in the planning, designing, configurations, deployments and support of Cisco LAN/WAN/WLAN technologies to support, design, and integrate complex wireless LANs.
Hands on experience on the configuration and management of Gateways, Groups, user accounts, access control policies, user accounts, threat prevention policies, VPN tunnelling, and High Availability.
Specific responsibilities handled but not limited to Checkpoint Firewall, security systems, routers, switches, remote support, domain controllers, databases, exchange email servers and other LAN/WAN enterprises.
Deep technical troubleshooting on customer SDWAN Edge connect device, Firewall FortiGate and Palo Alto.
Integrated Cisco Prime with other network management tools to provide a unified view of network performance and streamline troubleshooting processes.
Deploy and manage with advanced security and network management tools like Aruba ClearPass Policy Manager, Aruba Airwave and cloud-based Aruba Central.
Configuration of wireless networks for internal and external customers
Consulting on a Ruckus Wireless solution for a high-profile customer with a big estate in Calabasas, CA. Designing and implementing a Ruckus Wireless solution using Ruckus Unleashed R510 APs.
Working Knowledge and demonstrated experience on the Cisco Catalyst 2960, 3750, 3850, Cat 9K, Cat 4500X, Cat 6500 switches: Nexus 2k, 3k, 5k, 7k, and 9k series switches.
Working knowledge and demonstrated experience on the Cisco ISR 800 series, 1000 series, 4000 series; ASR 1000 series, 5000 series, 9000 series; IOSXRV 9000, Meraki vMX100 virtual routers.
Working knowledge and demonstrated experience on the Juniper EX 2200 series, EX 2300 series, EX 3400 series, QFX 5120 series: MX5, MX40, PTX series, and T4000 Core Router
Working knowledge and demonstrated experience on the Palo Alto, Check Point, Cisco ASA, and FortiGate firewalls.
Working knowledge and demonstrated experience on the PAN-OS 6, 7.1, and 8.0 versions: PA 220, PA 820, PA-2K, PA-3K and PA-5K firewalls.
Catalyst Switch 3750s, 3850s, 6500s.
Hands on experience and demonstrated knowledge on the F5 Load Balancers, Citrix NetScaler.
Administered in implementing and configuring F5 Big-IP LTM-6400 load balancers.
Configured and implemented F5 BIG-IP, LTM, GTM load balancers to maintain global and local Traffic.
Hands-on experience on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability. Experience on Virtual Servers, Pools, Persistence, iRules, Listener IP’s, WideIP’s, SSL, HTTP and TCP headers.
Working knowledge and demonstrated experience on the Cisco, HP Aruba wireless networking.
Worked on the deployment and installation of Wireless Access Points, and their management through Wireless LAN (WLAN) Controller from scratch.
Technical Skills:
Network Configuration:
Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).
Routing Protocols:
RIP, IGRP, EIGRP, OSPFv2, OSPFv3, IS-IS, BGP v4, MP-BGP
WAN Protocols:
HDLC, PPP, RIP, IGRP, EIGRP, OSPFv2, OSPFv3, IS-IS, BGP v4, MP-BGP.
Circuit switched WAN:
T1/E1 – T3/E3/OCX (Channelized, Fractional & full).
Security Technologies:
Cisco FWSM/PIX/ASDM, Palo Alto, Cisco ASA, Checkpoint, Port Security, DHCP Snooping, IP Source Guard (IPSG).
Cisco Routers:
Cisco ISR-1000, ISR-4000, ASR-1000, ASR-9000, ASR-5500, Meraki VMX 100.
Redundancy and management:
HSRP, VRRP, GLBP, RPR, NSF/NSR, STP, Wireshark, SolarWinds, SNMP
Physical interfaces:
Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)
Layer 2 technology:
VLAN, VXLAN, HSRP, VRRP, GLBP, STP, RSTP, PVST+, MST, PVLAN, Optimizing STP (Port Fast, Uplink Fast, Backbone Fast, Root Guard, BPDU Guard),
Layer 3 Switching:
CEF, MLS, Ether channel (PAGP & LACP, Load Balancing)
Switches:
Catalyst 9400, 3850, 3650, 2960; Nexus 2k, 3k, 5k, 7k, 9k
Load Balancers
F5 LTM, GTM, iRules
Operating Systems:
Microsoft XP/Vista/7, Windows Servers 2003/2008, Microsoft project server 2013
CERTIFICATIONS:
• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Professional (CCNP)
Professional Experience:
Retail Business Services March 2023 to Present
Senior Network Engineer
Responsibilities:
Establish LAN IP infrastructure using Layer 2/Layer 3 switching, VLANs, VPC, HSRP, and routing protocols like EIGRP and OSPF, integrating existing networks with Cisco ACI SDN architecture.
Proficient in Cisco ACI, a solution for streamlined data center operations, cost reduction, and scalability enhancement.
Leveraged Prisma Access's advanced features to optimize user experience, including application performance monitoring and traffic prioritization, ensuring seamless and secure access to critical applications.
Managed and optimized firewall policies using AlgoSec's Firewall Analyzer.
Gained hands-on experience with specific firewall migration tools such as Expedition (Palo Alto's migration tool) or FortiConverter.
Utilized Cisco DNAC for network assurance and analytics, proactively identifying and resolving network issues.
Configured and managed RADIUS and LDAP servers for centralized authentication and authorization of network users.
Managed and optimized Aruba Airwave for comprehensive network monitoring and management, ensuring high performance and reliability of wireless infrastructure.
Conducted performance testing and analysis to identify bottlenecks and fine-tune firewall settings for optimal performance.
Conducted performance tuning and optimization of Versa SDWAN deployments to enhance network efficiency and reliability.
Segmented the lab network from the main corporate network using VLANs and firewalls, preventing unauthorized access and containing potential security breaches.
Improving network performance and reliability by planning capacity, engineering traffic, and implementing Quality of Service (QoS) for efficient data transmission across the organization's network.
Implemented Struxureware’s for real-time monitoring of critical infrastructure components, including power, cooling, and environmental conditions, ensuring optimal performance and preventing downtime.
Implemented proactive issue resolution strategies using ADEM, including automated alerts and remediation actions, to ensure optimal application performance and user satisfaction.
Configured and installed Cisco ASA, FTD, Checkpoint and Palo Alto firewalls.
Setup and managed light weight Kubernetes K3s for self-healing and high availability
Configured and managed VPN gateways using Cisco ASA and Fortinet to ensure secure remote access and data transmission.
Implement Cisco ACI utilizing a Spine and Leaf architecture, transitioning from NX-OS to ACI for improved data centre efficiency.
Analyzed security logs and identified potential vulnerabilities using tools like Splunk and Wireshark, ensuring proactive threat detection and mitigation.
Advanced command line troubleshooting on Checkpoint, Fortinet Firewalls, Palo Alto NGFW.
Migrating existing Routing configuration to SD - WAN.
Very good understanding of managing network services like DHCP, DNS, SNMP, Syslog, NTP, RADIUS, and FTP.
Leveraged Cisco Prime for comprehensive network management and monitoring, ensuring optimal performance and reliability of network infrastructure.
Skilled in Checkpoint Palo Alto and Fortinet firewall network environment.
Worked on SD-WAN technologies (Viptela, Meraki, Velo cloud and Silver Peak).
Deployed solutions leveraging Active Directory, DNS, NTP, and Group Policies.
Managing the changes through export/import of CSV spreadsheets on Infoblox web interface.
Design and Implementation of 802.1x Wired/Wireless User Authentication using Cisco ISE Radius Server.
System level monitoring on Linux and Infoblox Appliances to watch process and service statuses, like Performance Monitoring & Tuning - iostat, vmstat & netstat, nfsstat, etc.
Designing, deploying, and maintaining robust network infrastructures to support A hold Delhaize's business operations, including data centers, corporate offices, and retail locations.
Conduct comprehensive testing of Wi-Fi interfaces, including IEEE 802.11n and 802.11ac, addressing customer-reported issues.
Design and implementation experience in building Checkpoint Security Gateways, Palo Alto Firewalls, and Fortinet Firewalls and FWSM Blade modules on Cisco Switches.
Fortinet Firewall administration configuration of FortiGate 3000 series as per network diagram
Strong working experience on Cisco Security Products, Firewalls, ACS, Cisco ASA 5500X, Palo Alto 5000 Series and NGFW.
Configure and implement security solutions for various clients as per their requirements in Checkpoint R77, R75, R65, Provider-1, Palo Alto firewalls, Panorama, Cisco ASA firewalls, ASDM and in CSM.
Analysing of the rule traffic and usage reports using Fort Analyzer, configuring the Site-to-Site VPN for the remote Fortinet firewalls.
Migrating existing Routing configuration to SD-WAN
Coordinate activities with vendors (Infoblox/F5/Cisco) and other State Ram services teams like Network services, Security, Cloud Services, Windows Support, etc inventory management, etc.
Deployed Prometheus with Grafana to monitor the Kubernetes cluster and configured alerts firing when different conditions met.
Configured and managed GPON and XGS-PON networks to provide high-speed internet access and improve network efficiency.
Migrate, Upgrade and Patch Management of Cisco ASA, Checkpoint, Palo alto and Fortinet Firewalls.
Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory,
Google Cloud hybrid networking with interconnect through service providers to connect gcp infrastructure to on-prem and setting up on VPNs as a backup.
Lab testing and prove of concept for BGP and OSPF routing protocols for SD-WAN.
Lead implementation engineer for the enterprise DHCP/DNS migration to the Infoblox solution.
Effectively manage Cisco ISE for 802.1X Authentication, and DHCP server administration, and deploy and manage critical IT services such as Active Directory, DNS, SSH, NAT, and Terminal Services.
Investigate, implement, and maintain firewall rules on FortiGate and Juniper firewalls, monitoring network health using tools like SolarWinds and Wireshark for proactive issue resolution.
Performed IOS Software upgrades on switches 6500, 3750 and 4500s and Cisco ASR for compatibility with Cisco ISE 1.3/1.4 setup.
Experience on shell and python scripting with focus on DevOps tools, CI/CD and AWS Cloud Architecture and hands-on Engineering.
Worked on SD-WAN technologies (Versa, Riverbed, Silver Peak, and Velocloud) office 365.
LAN/WAN, SAN, Voice Over IP, SSH, SNMP, NTP, DMZ, Cisco Firewalls ASA, Cisco Switch, Cisco Wireless LAN Controllers, Cisco Internal and External Access points, Netgear Firewalls, SonicWall SSL VPN, IPsec VPN, Palo Alto Firewalls, Aruba Wireless Controllers, Aruba Access points, Aruba Point to Point wireless Routers.
Monitoring network health, analysing network traffic patterns, and troubleshooting connectivity issues to minimize downtime and ensure uninterrupted access to critical applications and services.
Maintaining accurate network documentation, including network diagrams, configurations, and inventory records, and providing regular reports on the network.
Integrated Docker orchestration framework using Kubernetes, created pods, config maps, deployments.
Created custom dashboards within ADEM to visualize user experience data, enabling real-time monitoring and reporting for IT teams and stakeholders.
Performed Fortinet Firewall OS upgrades via Fortinet Manager.
Managing a team of DevOps Engineer for infrastructure support on AWS cloud. Creating cloud formation scripts for hosting software on AWS cloud. Automating the installation of software’s through power shell scripts.
Good knowledge of network security monitoring and implementations using advanced ACLs, Palo Alto and Cisco ASA firewalls, network protocol analysis tools and capacity planning systems.
Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory, RSA SecurID, Proxy Radius Services to Cisco ACS, RADIUS and TACACS.
Ensuring compliance with industry standards, regulatory requirements, and internal policies related to data privacy, security, and network operations, such as GDPR, PCI DSS, and SOX.
LAN, WAN, WIRELESS LAN, TCP/IP, DNS, VPN, FTP, Cisco IOS, VTP, STP, RIPv2, EIGRP, OSPF, SNMP.
Experience on shell and python scripting with focus on DevOps tools, CI/CD and AWS Cloud Architecture and hands-on Engineering.
Installed new Fortinet firewalls to increase security and network control setup IPS, and Application control, as well as logging for compliance.
Experience in working with checkpoint, Palo Alto Next-generation firewall, Cisco ASA and Panorama M-100.
Configurations made to Switch, Gateway, Router DHCP, MGCP, VLANs, NTP Server with Putty by telnet / SSL.
Generated compliance reports to meet regulatory requirements using AlgoSec's reporting tools.
Setting up Palo Alto firewalls as Cloud exchange firewalls between on-prem and cloud environments which include AWS, Azure and GCP.
Setup Nginx Ingress controller to manage the ingress/egress routing rules for Kubernetes
Integrated EFK (Elasticsearch, Fluent, Kibana) stack as the logging solution for the deployed Kubernetes cluster
Experience working with Layer 3 Routing Protocols OSPF and BGP.
Configured and deployed F5 BIG-IP LTM (Local Traffic Manager) devices to distribute incoming application traffic across multiple servers.
Implemented Continuous Integration using Jenkins and GIT. Administration of DevOps tools suite: Puppet enterprise, AWS, Team city, GitHub, JIRA, Confluence, run deck, Puppet, Octopus Deploy, Splunk and ELK stack.
Implemented automation and orchestration workflows using Cisco DNA Center, reducing manual configuration tasks and improving operational efficiency.
Configured and enforced security policies within Prisma Access SASE Inline, including web filtering, SSL inspection, and threat prevention, to protect against web-based threats.
Implemented advanced F5 modules, such as ASM (Application Security Manager) for web application security and APM (Access Policy Manager) for access control.
Configured and managed Windows Server 2012/2016/2019 environments, including Active Directory, DNS, DHCP, and FTP.
Configured WAN connections with Meraki and FortiGate SD-WAN.
Airbus - Ashburn, Virginia Jan 2021 to Feb 2023
Senior Network Engineer
Responsibilities:
Responsibilities included installation, configuration, maintenance and troubleshooting of the corporate network, monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
Conducted risk assessments and identified potential security vulnerabilities in network configurations.
Implement security best practices for IPsec VPNs, such as using strong encryption algorithms, regularly updating pre-shared keys or certificates, and enabling anti-replay protection.
Analyzed security logs and identified potential vulnerabilities using tools like Splunk and Wireshark, ensuring proactive threat detection and mitigation.
Implemented L3VPN solutions to provide secure and scalable network segmentation for enterprise clients.
Hands-on experience with Cisco IOS/IOS-XE/IOS-XR/NX-OS, Juniper JUNOS, Aruba OS, Arista EOS, PAN-OS, IPSO/r for configuration and troubleshooting.
Conducted performance analysis and optimization of wired and wireless networks, including 5G, GPON, and XGS-PON technologies.
Conducted detailed performance analysis and troubleshooting using Aruba Airwave, enhancing wireless network stability and user experience.
Conducted detailed packet analysis using Wireshark to identify and resolve network performance issues, enhancing overall network efficiency.
Collaborated with security teams to address audit findings, optimizing firewall rules and policies to enhance network security and efficiency.
Deployed and configured Cisco DNA Center for centralized network management, enabling automation, assurance, and analytics across the network infrastructure.
Leveraged Struxureware's comprehensive data center management capabilities to streamline operations, enhance asset management, and improve overall efficiency through predictive analytics and proactive maintenance.
Configured and managed IPSec VPN and SSL-VPN solutions to provide secure remote access for users and applications.
Configured and managed Data Loss Prevention (DLP) policies within Prisma Access to protect sensitive data and ensure compliance with data privacy regulations.
Developed microservice on boarding tools leveraging Python and Jenkins allowing for easy creation and maintenance of build jobs and Kubernetes deploy and services.
Maintaining a professional working relationship with Infoblox Sales Representative and Sales Engineer.
Member of a team responsible for onsite LAN/WAN support deployment and configurations of routers, switches, wireless, voice, firewalls and related LAN/WAN technologies.
Experience in working with Nexus 7010, 9396,5548, 5020, 2148, 2248 devices
Responsibilities included installation, configuration, maintenance and troubleshooting of the corporate network, monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network.
TCP/IP, DNS, DHCP, FTP, NTP, SSH, Telnet, IMAP, POP3, SMTP, HTTP, SIP, SNMP Linux kickstart install, lvm, Wireshark, Nmap, rsyslog, bind, Apache, crond, Nagios, cacti
Configuration and administration of Cisco ASA 5525/45-X, Juniper SRX 240/1400, Cisco 3945 routers, Cisco 3750 switches. Configure and maintain security policies on Fortinet firewall and manager/ Forti Analyzer.
Utilized Netscout NGenius for advanced routing and switching analysis, providing in-depth network performance insights and troubleshooting complex issues.
Regularly reviewed and updated risk assessments and management plans to ensure ongoing compliance with NIST guidelines and evolving security threats.
Troubleshoot all Infoblox DHCP and IPAM issues that may occur. Working with other CBS engineers, as well as Infoblox Sales Engineers and TAC.
Assisted with migration of applications/VMs into cloud environments (AWS, Azure, GCP)
Designed and executed on-prem to AWS cloud migration projects for Texas DIR state agencies
Experience in configuring vdc, fex pinning, fex port-channel, port-channel, peer keep alive, peer link.
Experience in working and designing configurations for VPC, VPC domain, VPC peer-gateway, VPC peer-switch, auto-discovery, VPC single sided, VPC double sided, NX-OS, Vfr, Otv, fabric path.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Managing, leading, designing and deploying Cisco Security infrastructure that develops network wireless / wired networks to be authenticated /authorized through Cisco ISE with Prime/MSE Security.
Maintain boundary Juniper and Fortinet firewalls, and IDS/IPS/IDPS appliances in effort.
Performed automation and scaling of applications using Kubernetes best practices
LAN, WAN, WIRELESS LAN, TCP/IP, DNS, VPN, FTP, Cisco IOS, VTP, STP, RIPv2, EIGRP, OSPF, SNMP.
Installed new Fortinet firewalls to increase security and network control setup IPS, and Application control, as well as logging for compliance.
Building/Maintaining Docker container clusters managed by Kubernetes Linux, Bash, GIT, Docker, on GCP .
Integrated Cisco SDA with Cisco ISE to enable dynamic network segmentation and identity-based access control, enhancing overall network security and compliance.
Managed and enforced global security policies across multiple regions using Prisma Access, ensuring consistent protection and compliance with organizational standards and regulatory requirements.
Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products.
Experienced in creating pods and clusters using templates in Kubernetes and deploy using helm chart
Re-designed and rolled out entire network, (MAN) using Cisco gear.
High-level design implementation of Cisco ISE with Wired / Wireless devices with F5 LTM and test plans for enterprise security technologies
Engaged to review current cloud migration strategies and provide an analysis of their current methodology.
Creating groups and managing IAM concepts within AWS, GCP and Azure
Working with DevOps teams to set up an GCP environment for apps using Google Kubernetes Engine Clusters in east and west regions respectively sitting behind a HTTPs Load balancer. This also includes GCP networking within the clusters.
Protocols: MPLS, BGP, OSPF, IGRP, EIGRP, RIP, TCP/IP, DHCP, DNS, Ethernet, Fast Ethernet, GigE
Hands on experience in Windows Active Directory administration, DNS, GPU, GPO, DHCP, LDAP
Installed Fortinet appliances for security and compliance.
Managed and optimized Aruba Airwave for comprehensive network monitoring and management, ensuring high performance and reliability of wireless infrastructure.
Changing the AWS infrastructure Elastic Beanstalk to Docker with Kubernetes.
Configured all Cisco gear for Tempe from out-of-box for basic setup
Experience in Active Directory, GPOs, DNS, DHCP, File and Print Servers, IIS Web server, FTP, Terminal Server, NAT, Microsoft Clustering and Exchange mail server in windows base server environment
Configured and maintained VPCs with 7010/7018 and 5548 in the network and maintained VDCs in 7k switches, maintained VRFs in those separate VDCs.
Developed Kubernetes Pod definitions, Deployments, Helm Charts to version control deployment strategies
Building LAN/ WAN enterprise level Network, deployment Cisco ISE / Prime on wired /wireless network guest access, Firewalls /VPN setup, ISE profiling and posturing deployment, PxGrid setting
Thorough understanding of TCP/IP, virtual LAN, HSRP, STP, DNS, SNMP, SMTP and a myriad of other protocols and technologies.
Managed and secured cloud environments with AlgoSec Cloud Enterprise (ACE).
Designed and implemented security policy and access control using Cisco ISE, Cisco FirePower, Cisco Umbrella, Cisco AMP, (Advance Malware Protection).
Thorough knowledge and hands on experience with the Cisco Firepower NGIPS/IDS.
Responsible for implementing containerized based applications by using Azure Kubernetes Service (AKS)
Deployed and Manage SD-WAN network (Cisco Meraki Solution) for WAN connectivity.
Worked on ACE, A10 load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Recognized for performance excellence and contributions to success in network design projects. Strength in Cisco ISE and DNAC backed by extensive training in routing/switching.
Configurations of Check Point, Palo Alto, Cisco, Juniper, Fortinet FortiGate and SonicWall UTMs.
Knowledge of New Cisco SDA and Palo Alto SASE SDWAN Network Platform
Designed & Deployed Cisco ISE 1.2/1.3 for enterprise RADIUS Authentication with Active Directory,
Integrated AlgoSec with other security and network management tools for a cohesive security strategy.
Utilized Cisco Prime for troubleshooting WLAN. Used Cisco 5508 Wireless Controllers, for configuring and managing Cisco 3600, 3702, indoor, outdoor, wireless access points.
Designed 2 Data Center to include hybrid cloud networking which included perimeter firewalls from on-prem to cloud environments including AWS, Azure and GCP.
Assist in the design of multi-server environments including IP address schemes, DNS, DHCP, WINS, Ether-Channel (Bonding), etc.
Involved in deployment of Meraki SDWAN solution across the corporate offices.
Successfully migrated TACACS services from Cisco ACS to Cisco ISE.
Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.in corporate Cisco Nexus 9000 NXOS to ACI fabric to work in concert with existing Nexus7000s and ASRs for MPLS.
Performed regular updates, patch management, and security configurations on Exchange Server.
Conducted mailbox migrations, database management, and performance tuning for Exchange Server environments.
In charge of AWS and Azure and GCP Cloud Engineering for Netsync customers. This includes pre-sales and post-sales implementation and support in a managed serviced environment.
Implemented Contracts, Multi-tenants between Endpoint groups using SDWAN in ACI.
Responsible for performing predictive wireless designs/site surveys with Air Magnet Planner (Cisco 3500/3600/3700/ Aruba 105 access points) and conducting physical wireless site surveys with Air Magnet Survey.
Managed, installed and configured different type of equipment such as Alcatel Service routers 7750, layer 2 bridges such as ADVA and Overture, Cisco ASR routers, Cisco ISR 4300/4400 series routers, Silver Peak SD-WAN and Fortinet Firewalls.
In-depth knowledge and experience in LAN and WAN technologies including MPLS, SD-WAN, DIA, Point to Point (Dark Fiber).
Implemented advanced features of Aruba Airwave, such as RF visualization and client tracking, to optimize wireless network performance and coverage.
Excellent Hands-on experience with Cisco ISE and the Migration of Wireless and TACACs to ISE
Created Pods, deployments, services, and replication controller in Kubernetes
Experience with Cisco DNA solutions ISE, NGFW, Prime, ESA, WSA, VPN and CWS implementations
Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products.
Generated detailed reports and analytics using Struxureware, providing insights into energy usage, infrastructure performance, and environmental conditions, enabling data-driven decision-making and strategic planning.
Provide ISE deployment services for migration of users from Cisco NAC to Cisco ISE platform for the following locations.
Troubleshoot MPLS networks and assist our SD-WAN vendors in resolving network routing issues. Engineering new VLAN networks
Participated in troubleshooting SDN/SD-WAN
Contact this candidate