Post Job Free
Sign in

Network Engineer Security

Location:
Spring, TX
Salary:
70/hr
Posted:
July 25, 2025

Contact this candidate

Resume:

Sr. Network Engineer

Omar Khan

*****-*****************@*****.***

Phone-346-***-**** Work Authorization: US CITIZEN

LinkedIn- www.linkedin.com/in/omar-khan-232021228

SUMMERY:

A Sr. Network Engineer with heavy experience in designing, implementing, and managing complex enterprise network infrastructures. Expertise in Cisco routing and switching technologies, advanced knowledge of routing protocols (BGP, OSPF, EIGRP), and LAN/WAN architecture. I am skilled in deploying and managing SD-WAN solutions and network security platforms including Palo Alto (with Panorama and Prisma Access), Fortinet FortiGate, and Cisco ISE. Proficient in load balancing with F5, DNS/DHCP services, and integrating multi-vendor environments including ARUBA, ARISTA, and Cisco. Proven ability to ensure high availability, scalability, and performance of mission-critical networks with a strong focus on automation, security, and cloud-readiness.

Certifications

Cisco Certified Network Associates - CSCO14386525

Cisco Certified Network Professional - CSCO1383421

AWS Certified Cloud - 1fd3e107552d4f8cb2132bfb85702dce

CompTIA Security + - COMP001022693780

PCNSE – Pursuing

Education

Bachelor of Applied Technologies in Cybersecurity Lone Star College Systems – CyFair,

Technical Skill:

Networking & Protocols: BGP, OSPF, EIGRP, STP, HSRP, VRRP, VXLAN, MPLS, TCP/IP, VLAN, EtherChannel, QoS

Routing & Switching: Cisco Catalyst, Nexus, ASR/ISR routers, ARISTA, ARUBA, Juniper EX/MX series

Firewalls & Security: Palo Alto (NGFW, Panorama, Prisma Access), Fortinet FortiGate, Cisco ASA/FTD, Check Point, IPS/IDS, NAT, ACLs, VPN (IPSec, SSL), Zero Trust, Cisco ISE.

Load Balancing & Access: F5 BIG-IP (LTM, GTM), Citrix NetScaler, DNS, DHCP, IPAM

SD-WAN Technologies: Cisco Viptela, Meraki SD-WAN, Fortinet Secure SD-WAN, Silver Peak

Wireless & NAC: Cisco WLC, Meraki MR/APs, Aruba ClearPass, Cisco Prime, Cisco ISE

Monitoring & Tools: SolarWinds, PRTG, Net Brain, Wireshark, SNMP, NetFlow, Syslog, Splunk

Cloud & Automation: Prisma Access, Azure Networking, AWS VPCs, Terraform (basic), Python/Ansible for automation

Operating Systems & Platforms: Windows Server, Linux (RHEL/CentOS), VMware vSphere/ESXi

PROFESSIONAL EXPERIENCE:

Client: DuPont- Pasadena, Texas Jan 23 - Present

Sr. Network & Security Engineer

Designed and implemented dynamic routing protocols (OSPF, BGP) in HP/Aruba networks, ensuring efficient traffic distribution and redundancy across cloud-based and on-premises deployments.

Configure, Manage and Monitor Palo Alto firewall models (Specifically the PA-5050 and the PA-5260).

Installing & configuring standalone and HA pair Load-Balancers - BIGIP-LTM/GTM’s on 1600, 3600, 3900, 8900, 6900/6900S, 8900/8950S, 2000S, 2200S, 5200S, 7000S, Cisco CSS, Cisco ACE.

Managed Fortinet and Palo Alto next-generation firewalls by configuring IPS/IDS, SSL decryption, and URL filtering, integrating security policies with Azure cloud and hybrid infrastructures.

Configured and maintained dynamic routing protocols (BGP, OSPF, and EIGRP) on Nexus, 8K, and 9K platforms for enterprise-scale WAN and LAN environments.

Utilized WAN hardening features in SD-WAN to provide secure, encrypted, and tamper-resistant connections.

Working on Cisco IOS/NX-OS for configuration & troubleshooting of routing/switching protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS, VLANs, PVST, RPVST, MST, Trucking, VTP etc.

Integrated Palo Alto NGFW, Cisco ASA, and FortiGate firewalls with data center segmentation policies and micro-segmentation.

Configuring/Managing Intrusion Prevention System (IPS), Cisco lPS/Fortinet & Checkpoint UTM.

Responsible for installation, troubleshooting of firewalls (Cisco firewalls, Imperva Web app Firewalls, Checkpoint firewalls and Juniper firewalls,)

Provided escalation-level support and root cause analysis on ACI, BGP, Palo Alto, and QoS issues, collaborating cross-functionally under ITIL incident and problem management frameworks.

Delivered solutions with focus on Cisco Routers (4300, 1000, 1000X) Catalyst Switches (6800, 6500, 4500-X, 4500, 3800) Nexus (2K, 5K, 7K, 93180YC) Cisco NGFW Firewalls (4100), Cisco ISE

Worked on Cisco Layer 3 legacy switches 6509, 4510, 3948, and Cisco ASR 1000 (1002, 1001 WAN platforms) routers in multi VLAN environment.

Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.

Hands on experience in Cisco ASA 5505, 5510, 5520, 5540, 5506, 5545-x, & 5585 with firepower, 5550 series firewalls, Cisco Source fire Amp IPS and Cisco ACS.

Worked on Cisco, Meraki and Aruba Wireless solutions. Worked on configuration of WLAN controllers

Providing support to multi-site critical EMS network with MPLS L3VPN connectivity.

Configure Cisco Catalyst 6513, 6509, 4510, 3750, 3560, Nexus 9K (9300), 7K (7010), 5K (5020, 5696, 5572), 2K (Fabric Extenders), 1000V and Cisco ASR 1000 (1004, 1002, 1001 WAN platforms).

Designed, configured and troubleshoot protocols such as MP-BGP, OSPF, LDP, EIGRP, BGP v4, VLANs, Trunking, VTP for new network infrastructure.

Network designs using MPLS/VRF, Multi-Site BGP, OSPF, DMVPN, IPsec, IKE1/2 Solutions.

Designed and implement security strategies with Cisco and Palo Alto firewalls.

Designed EVPN-VXLAN fabric architectures using Cisco Nexus 9300/9500, Arista 7200/7500, and Juniper QFX series for high-performance Data Center networks.

Migrated Enterprise firewalls from Juniper to Palo Alto Networks using Panorama-managed 5000, 3000 and 200 series firewalls to provide a modular, dynamic, application layer aware security model.

Conducted lifecycle refresh and rearchitecture projects involving Cisco 8K/9K, Nexus, and Palo Alto devices, improving capacity, security posture, and operational efficiency.

Regularly update Cisco IOS, NX-OS, FX-OS on different Cisco Switches, Routers and Firewalls with zero downtime.

Managing IP addresses, and DNS/DHCP server IP reservation through SolarWinds centralized solution.

Configured BGP, OSPF, VLANs, and STP to ensure efficient routing and switching across enterprise networks.

Client: A&O Shearman New York, NY Sep 20 – Dec 22

Sr. Network Engineer

Extensive work with IPv4 and IPv6 protocols (configuration, BGP sessions announcements, assignment to clients and more).

Configured and Implemented complete firewall deployment project which consists of Cisco ASA 5516-X firewalls with IPS functionality, and Firepower Management Center (FMC) for centralized management of firewalls.

Strong hands-on experience on Palo Alto Firewalls, PIX Firewalls, ASA Firewalls and implemented Security Policies using Panorama, ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).

Support over two hundred Cisco Firewalls Cisco ASA 5500, Series 5500 - X, and Cisco Next-Generation Firepower 4100 Series security appliances in standalone and high availability configurations

Deployed and managed Cisco Nexus 9K switches in campus and data center networks, supporting BGP and EIGRP routing for resilient Layer 3 connectivity.

Involved in complete LAN, WAN development including IP address planning, designing, installation, configuration, testing, and maintenance.

Extensive hands-on support of F5 Products including AFM, ASM, LTM, GTM, WOM and APM.

Experience in installing, configuring and troubleshooting of Checkpoint Firewall. NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, R77 UTM.

Data Center Switching and Routing Hardware Includes Cisco Nexus 2K, 5K, 3K and 7K modules. ASR 1K, 9K, Cisco Juniper QFX Series, MX series routers, Arista 7000 series.

Implemented features like FEX Links, VPC, VRF, VDC, and OTV, Fabric Path on various Cisco Nexus platforms.

Involved the configuration & troubleshooting routing protocols like MP-BGP, OSPF, EIGRP, RIP, BGP v4, and MPLS.

Deployment and installation of Checkpoint, FortiGate and Palo Alto NGFW.

Worked on Cisco ISE, Aruba ClearPass for RADIUS and TACACS Authentication. Integration with WLAN controllers

Successfully installed Palo Alto PA-3060 Firewalls to protect Data Centre and provided L3 support for routers/switches/Firewalls.

Implemented BGP and OSPF routing on Cisco 8K/9K platforms for enterprise WAN environments, ensuring redundancy and route summarization.

Configured (Application Centric Infrastructure) ACI, API and Vx - LAN on Nexus 9k switches.

Configured IPAM, DNS and DHCP services/grid using Infoblox DDI solutions. Involved in troubleshooting of DNS, DHCP and other IP conflict problems.

Fortinet Firewall administration, configuration of FortiGate 3000, 3815 series as per network diagram.

Working on Cisco IOS/NX-OS for configuration & troubleshooting of routing/switching protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS, VLANs, PVST, RPVST, MST, Trunking, VTP etc.

Proactively monitor, troubleshoot, diagnose, and resolve network issues utilizing Solarwinds Orion and OpenVMS.

Working with the rule base and its configuration in Cisco IOSXR, Palo Alto, Juniper and Checkpoint firewalls.

Working closely with security team to configure, troubleshoot and to migrate legacy modules with Next generation Cisco ASA, Check Point and Palo alto firewalls.

Using VLAN and VRF Segmentation on edge routers to segregate traffic between AWS, Azure and Google Cloud

Configured F5 BIG-IP, Brocade ADX to provide load balancing for servers across multiple data centers.

Client: The Cigna Group Washington, DC Jan 2018 – Aug 2020

Network Engineer

Involved in the configuration troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

Advanced knowledge in TCP/IP suite and routing protocols, such as OSPF, BGP, and EIGRP.

Configured protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.

Performed Switching Technology Administration including VLANs, inter-VLAN Routing, STP, RSTP and Port Aggregation on Cisco catalyst devices and Arista 7K.

Configured Cisco Routers for BGP, OSPF, RIP, RIPv2, EIGRP, Static and default route in a VPN environment using MPLS.

Worked on Layer 2 protocols such as STP, VTP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment

Experience in deployment of Nexus 7010, 7018 5548, 2148T, 2248 devices.

Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Palo Alto firewalls.

Involved in the Migration of policy from Cisco ASA firewall into Juniper SRX’s

Designed 2 Data Center to include hybrid cloud networking which included perimeter firewalls from on-prem to cloud environments including AWS, Azure and GCP

Installed and maintain Cisco IOS Layer 3 switches 3750, 4500X 6500 in multi VLAN environment.

Experience with Cisco DNA solutions ISE, NGFW, Prime, ESA, WSA, VPN and CWS implementations.

Implemented HSRP on the Cisco 3550 Layer 3 switches and OSPF on 2 Cisco 3925 routers, the Layer 3 switch, 3 Cisco 3550 Switches, Cisco 3524XL switches for fail over.

Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using Panorama.

Involved in design and planning of LAN, WAN infrastructure in multiple data center.

Experience with GTM F5 component to provide high availability with providing services across data centers.

Client: Frontier Internet Monroe, Louisiana May 2016 – Dec 2017

Network Analyst

Configuration, Monitoring and Troubleshooting Cisco's PIX firewall, ASA 5500.

Installation and Configuration of Cisco Catalyst switches 6509, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy

Experienced in implementation and troubleshooting knowledge of protocols and technologies, especially in the following: BGP4, OSPF, IPv4, and Ethernet.

Working Knowledge and demonstrated experience on the Cisco Juniper, HP Aruba, Avaya, and Arista switches & Routers.

Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF, VRFS, Tunnels, L2TP, and VPLS, QoS and other LAN/WAN technologies.

Providing technical support to LAN & WAN systems.

Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.

Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.



Contact this candidate