| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidate Candidate's Name
US CitizenUpper Marlboro, MD Street Address
PHONE NUMBER AVAILABLEEMAIL AVAILABLESenior Network Engineer with over 9 years of extensive experience in high-level design, Datacenter, Network operation Centre, implementation & troubleshooting, and 2nd and 3rd-level support on numerous technologies like Routing & Switching (4507, 6509, ASR Router), NEXUS (9k, 7k, 5k, 3k, 2k), Security (ASA, Juniper SRX 240, FortiGate, Check Point, Palo Alto), Load balancer (ACE, GSS, NetScaler, F5 Big IP), and Datacenter technologies for storage.Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.Proficient and high-level expertise using the F5-based profiles, monitors, VIPs, pools, SNAT, SSL offload, I Rules, virtual Servers, I APPs. Migration experience from ACE to F5/Alton Redware Load Balancer.TECHNICAL SKILLSSecurity Products/Services:Cisco (ASA, Firepower, FMC, IPS, IDS, IOS Security, Router Security, VPN, IOS Firewall), Palo Alto, FXOSSecurity Technologies:AAA, TACACS+, RADIUS, SSH, VPN, Cisco ACS, Data Loss Prevention, IPsec, Port Security, web application firewalls (WAF), proxy solutions, packet capture/analysis, public key/certificate management, mobile security, Cyber Ark, Blue Coat Proxy WSS, White Hat scanner, Stealth watchCloud Technologies:Microsoft Azure, Azure Sentinel logging, Azure Firewalls, Azure WAF, AWS; established the site-to-site VPN connection between the Data Center and AWS, managing up to 60 AWS accounts in an enterprise environmentNetwork Hardware:Cisco Routers (3900, 2900, 1900, 800), Cisco Catalyst Switch (new 9300, 6500, 5500, 4900, 4500, 3000, 3100, 3750), Cisco Nexus 5k, 7k, and 9k Series, Cisco WLC, F5 load balancingRouting/Switching:WAN, LAN, TCP/IP, Spanning Tree, PPP, NAT, PAT, ACL, RIP, OSPF, EIGRP, BGP, MPLS, VTP, SNMP, Stub Routing, VLAN Access/Trunk, Multi-Area OSPF, VLAN, VTP, HSRP, SVI, PortfastData Center Technologies:VMware, Cisco Nexus 1000v with VSM & VEMs, Cisco Cloud Services router (CSR 1000v), Port Groups, Port-Profiles, Routing Profiles, and Service ProfilesVoice/Wireless Technologies:VoIP, QoS, PoE, SIP, RTP, SRTP, IEEE 802.1x & 802.11 a/b/g/n/ac, WLAN, WAP, AP, SSID, LWAPP, CSMA/CA, BluetoothMonitoring Tools/Hardware:Wireshark, Remedy, Cacti, Nagios, SolarWinds, F5, Cisco Works, Cisco Security Manager Suite, DNS Servers, DHCP Servers, TFTP Server, Exchange Server, Blade Servers, Web Servers, Syslog, FTP, SplunkEXPERIENCESheridan Health care, Jersey City, NJ Senior Network EngineerJan 2021 Present Enterprise routing experience using protocols such as Static, RIP, EIGRP, OSPF, and BGP Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business applications Configuration of Leaf and Spine switches of ACI fabric with the help of APIC controller Creation and deployment of Application network profile (ANP), End Point Group (EPG), Bridge domain, and contract on APIC controller Created attachable Endpoint (AEP) on the APIC controller Troubleshoot any server issues on the APIC controller and ACI Installed iManage and other document management applications Deployed various Palo Alto firewalls such as PA-200, 220, 500, 440, 460, and 550 in branches Configured DHCP for automated IP address assignment and managed DNS for efficient domain-to-IP resolution. Supported multiple litigation support software packages including eDOCS Document Management and iManage Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, and VRRP. Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 Configuring and troubleshooting Cisco Branch routers 1800, 1900, 800, 900. Configured the Cisco Meraki switches MS390, and MS210 on Meraki Dashboard and got those deployed in branches. Configured the Cisco Meraki MX250 and MX450 VPN concentrator and Firewall in the data center andbranches for network connectivity. Configured Meraki Wireless and security appliance MR56, MR36, MX64, MX67 and managed through Meraki Dashboard. Setting up cloud infrastructure for POCs on OCI and AWS. Worked on route filtering and route redistribution to manipulate the routes on the router. Configured VLAN, Spanning tree, DTP, SVI, IP SLA, port security, dot.1x port security, SNMP, TACAS+, and ACL on Cisco switches. Configured the security authentication profile on Cisco ISE. Worked with Cisco wireless Access Points and Wireless LAN Controllers. Experience in configuring WLC and AP and troubleshooting Experience in Cisco Prime for configuring and troubleshooting the wireless network. Experience in upgrading and troubleshooting IPAM, DNS and DHCP. Design and configuring of security policy, PAT, and IPSec VPN on Palo Alto Firewalls. Responsible for turning up BGP peering in branch router and MPLS Ethernet circuit, as well as debugging BGP routing problems. Configuration of router-based, and policy-based VPN, SSL VPN, NAC, on Palo Alto firewalls. Configured VMware virtualization environments to support network functions and services. Implemented Mist and Meraki wireless solutions to ensure reliable and secure wireless connectivity. Dealt with the implementation of deployment-related to Cisco devices and applying security policies on it. Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, and other related issues. Planning for the upgrade of IOS on network devices and performing the upgrade on the firewall. Work on troubleshooting the ongoing operation issue and tickets. Configuring and troubleshooting the traffic flow on the Palo Alto firewall. Created and applied security profiles like web filtering and threat prevention on the Palo Alto firewall. Worked on Ethernet upgrade for branch network from T1 circuit. Worked on the configuration and commissioning of the MPLS circuits for various branch offices. Worked on UPS replacement for branches. Provide timely and accurate progress status on all ongoing support issues, with an emphasis on problems,issues, and concerns. Integrated tools like Slack, Webhooks, and Logic Monitor to establish effective network monitoring and alerting. Manage the accounts and permissions utilizing iManage, MMC, and ConsoleOne. Monitored bandwidth and network activity by analyzing information provided by Opsview and Nagios to ensure both efficient and effective network operation.NBCUniversal, Studio City, CA Network Security Engineer / Wireless Network EngineerOct 2019 Dec 2021 Configured, deployed, and maintained Fortinet security solutions, including FortiGate firewalls, FortiAnalyzer, FortiManager, FortiAuthenticator, and other Fortinet products Designed and implemented secure network architectures, including firewall policies, VPNs (site-to-site, remote access), and intrusion detection/prevention systems (IDS/IPS) Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers. Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Mutual redistribution of OSPF and BGP routes using route maps for WAN optimization.
Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
Configured VSS, Port Channels, L2 and L3 VLANS, Routing on L3 Cisco Switches. Worked on cisco Nexus 5000 series switches for data center. Identified opportunities for implementation of network best practices, particularly F5 load balancer implementations. Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers. Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers. Experience with working on Palo Alto Next-Generation firewalls security profiles and Cisco ASA VPN. Monitoring Traffic and Connections in Check Point and ASA Firewall. Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools. Remote access and site-to-site VPN administration using Cisco ASA/ASR and Palo Alto
Failover, OSPF and Any Connect VPN technologies Configuration of firewalls 5520 series ASA for business to business connectivity and application of ACL rules for network traffic. Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers Worked on commissioning and decommissioning of the MPLS circuits for various field offices. Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support. Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability Daily monitoring of network traffic using sniffers (Wireshark) and access logs to troubleshoot and identify network issues. Creating and maintaining reference architectures, technical standards and network diagrams for LAN/WAN/Data center networks. Managing Data Center and assisting other engineers with troubleshooting from network device, storage, and blade servers.Philips Health Care (Remote) Orlando,Florida, United state Senior Network Security EngineerJune 2018 to sept 2019 Worked on Change Management for migration from Cisco ASA to Palo Alto Hands-on experience with BIG-IP environments utilizing GTM, LTM, APM, or ASM Configured and implemented routing protocols like BGP, OSPF, and STATIC on Cisco routers and used WCCP for interactions between routers Install, configure and maintain PA 220 and VM 300s on AWS Monitoring and Network security log analysis Optimize existing policies using the policy optimization tools Configure IPsec VPN on Palo Alto and troubleshoot VPN tunnel connectivity issues. Troubleshoot and monitor Firewall traffics/issues through command-line using CLI commands, GUI packet capture. Analyze Logs and make necessary network reports. Configure NAT and PAT such as Static, Source (Hide) as well as Destination NAT policies as required.
Interface with vendors and service providers to ensure security is maintained and integrated into all network connectivity activities efficiently and effectively, with minimal downtim Configure, Manage and Monitor Palo Alto firewall models (Specially the PA-5050 and the PA-5260). Performed migrations from Check Point firewalls to Palo Alto using the PAN Migration Tool MT3.3. Implement advanced Palo Alto Firewall features like URL Filtering , User-ID, App-ID, Content-ID on both inbound and outbound traffic. Deployed Palo Alto firewall is using Confidential NSX through L2 and L3 interfaces on models such as VM-300, VM-500, and VM-1000-HV. Enable forwarding to Wildfire cloud through Content-ID implementation to identify new threats. Leveraged Palo Alto Networks Wild re inspection engine to prevent Zero-Day attacks. Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches. Performing the ACL requests change for various clients by collecting source and destination information from them.Maintain company onsite and cloud hosted Data Centre. Maintain and serviced Data Domain Managed in house network and led the maintenance and oversight of the Data Center Create highly detailed network documentation during operational support and project work Serve as a coach to lessor qualified network administrators to elevate their capabilities Work directly with Senior IT Leaders in understanding business opportunities, defining IT solutions, obtaining buy-in for recommendations, and ultimately managing the deployment and defining processes for systematic management of the solution. Troubleshoot IPSEC overlay connectivity from SD-WAN appliance to Versa SD-WAN controllers via Internet, MPLS and WBS transports. . Accountable for creating the Demo environment, co-develop or create solution MVP with customers for highly customize asks around offerings. Scheduling meeting and driving P1 & P2 conference calls. Creating SIP and providing RCA for escalated issue. Producing the RUN Book, SIP, MOP, SOP, HLD, LLD, VLAN topology design for remote & Datacenter. Working on Cisco ASR 9010, AS903, SW-3650, 3850 and Harden devices Siemens XM408, Contemporary Contractor switches, Tenda switches. Support routing protocol operation (OSPF and BGP), routing policies at BGP peering points, VPNs and the associated tunneling technologies (L2TP, MPLS, etc.), switching, Spanning Tree, VXLAN-EVPN and other switching technology. Maintain developed network systems by escalating any issues pertaining to networking: installation, configuration and administration of LANs, WAN, Cisco Nexus PHONE NUMBER AVAILABLE Working on technologies Like MPLS services, BFD deployment, BGP, BGP path selection criteria, OSPF. Experience working with network monitoring applications. (SolarWinds, Nagios, etc.) Producing documents for Test cases, RCA, Knowledge data base (KDB), File tracker, MOM tracking. Working on QOS for all network edge devices, configuring Palo Alto and building BOM.TJ Maxx, Framingham, MA Network Security EngineerJuly 2016 May 2018 Acted as a Subject-Matter Expert (SME) for Data Centre, Routing, and Switching domains at the leading US, China & India remote sites Design experience in the network management of circuits using TDM and Frame Relay network, fault management and performance monitoring Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments Maintenance of tools and utilities to install, monitor, and troubleshoot a network. Reporting layer- 2 network behaviors, which can help network administrators monitor them with Aruba switches. Worked in firewall deployment and management in Azure such as Palo Alto Firewall. Awareness on Cloud Computing, Software Defined Networking (SDN), Cisco ACI and Illumio. Support design and planning of Company Telco grade high-end Routers & Switches (Cisco ASR 9K, c7609,7200,ISR3900,2900, 1900 and 4K series Router / Cisco Nexus 7/6/5/2k,
Catalyst Cisco 6500, 4500, 3750, 2950, 3650 *3850 series Switches, ASA 5585-X & Juniper MX/M/E series Architect, design, and interpret the Data Centre Business strategies and requirement into successful implemented IT projects. Perform Periodic HLD, LLD, and NIP for the Apple store & Factory sites Projects. Deliver Training, KT, and mentorship for NOC. Responsible for implementing, refreshing, remote sites & DATA CENTRE Device across ASIA &USA that include Load balancers firewalls rules across the globe and deployment of Nexus 7K to 1 K. Provide Tier 2&3 support for Citrix NetScaler (17500, 7500 and 1250), Juniper Firewall SRX-240 and Cisco WC-5580.MTN Network, Lagos, Nigeria Network Security AnalystAug 2014 May 2016 Performed hands-on administration, monitoring, and troubleshooting of Local Area Networks (LANs), resulting in optimum performance and minimal downtime Maintained servers and managed active directory and GPO with PowerShell scripting Compiled process maps/flows, roles and responsibilities, inputs and outputs, templates, guides, checklists, etc. Validated and tracked security breach Offered first-rate support to end user locally and remotely Processed each Trouble Ticket for resolution based upon the classification i.e. Action Item, Configuration Issue, Software Defect, and Software Enhancement Provided daily metrics on the overall status and performance of the assigned Trouble Tickets using Remedy. Provided recommendations to change requesters to complete change request to determine the appropriate risk Documented the new Windows server settings that have been applied to the network. Ensured complete communication of planned outages associated with the change request to all affected parties well in advance of the change Discussed and effectively resolved conflicts between multiple teams and departments within organization.EDUCATION Bachelor in Polytechnic Masters in Business Analytics (2023)CERTIFICATIONS CCNA- R&S NSE (Network Security Expert) 1-3 ACE (Palo Alto Networks) |
