---------------------------------------------------------------------------------------------------------------------------------------------------Qualification Summary:

7+ years of experience in Networking and Security, including hands-on

experience in providing network support, installation, specializing in cisco
environment in Data center and analysis for a broad range of LAN / WAN/MAN
communication systems.
Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like
7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600,
2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series
switches.
Proficient in Cisco IOS for configuration & troubleshooting of routing protocols:
MP-BGP, OSPF, EIGRP, RIP, BGP v4, MPLS.
Expert in Data Center Technologies such as vPC, VDC, VSS, STP.
Hands on experience in configuring and supporting site-to-site and remote access
Cisco, IPSec, VPN solutions using ASA/PIX firewalls, Cisco, VPN client in addition to
providing TACACS+ and RADIUS services.

Enhanced level of knowledge with PPP, ATM, T1/T3 Frame-Relay.

Knowledge of implementing and troubleshooting complex layer 2 technologies such

as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of
HSRP, VRRP for Default Gateway Redundancy
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Responsible for CheckPoint and Cisco ASA firewall administration across global
networks.
Experience in working with Cisco Nexus Switches and Virtual Port Channel
configuration.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications
and their availability..
Good understanding of Quality of Service and Hands on experience of QOS on
Cisco and Juniper gear.

Experience in testing Juniper routers and switches in laboratory and deploy

them on site production.
In-depth knowledge and hands-on experience in Tier II ISP Routing Policies,
Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 /
T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
Experience in Designing and assisting in deploying enterprise wide Network Security
and High Availability Solutions for ASA.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with both Checkpoint and Cisco ASA VPN experience.
Expert Level Knowledge about TCP/IP and OSI models.
Experience with Putty, Exceed and Secure CRT.

Expert knowledge of cable connectors and replacement as RJ-11, RJ-45, V.35, RS449.
Proficient in handling network traffic generators like IXIA and Spirant and network
protocol analyzers like Ethereal, Wireshark
Knowledgeable in understanding of the ITIL framework
Experience on load balancing strategies/techniques, expertise in application
switching/traffic management, knowledge of persistence and SSL certificates.
Basic and advance F5 load balancer configurations, including migrating
configurations from Cisco ACE to F5 and general troubleshooting of the F5 load
balancers.
Efficient at use of Microsoft VISIO/Office as technical documentation and
presentation tools.

EDUCATION:
Bachelors of Technology in Electronics and Communication Engineering
PROFESSIONAL CERTIFICATION:

Cisco Certified Network Associate (CCNA)

Cisco Certified Network Professional (CCNP)

PROFESSIONAL EXPERIENCE:
Bank of America, Charlotte, NC
date
Sr. Network Engineer

June 2014 to till

Key Responsibilities

Configuring and installing 6500, 4500 in Campus networks.

Experience with WCS predictive maps and RF Engineering Planning.

Switches Replace branch hardware with new 2851 routers and 2960 switches.

Designed and Implemented Nexus 7K/5K/2K and Catalyst 6500/4900/3750-X in

a complex DC Core/Aggregation/Access layer on a 10G backbone in Production and
DR Data Center.

Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF
to BGP (OSPF is used for local routing only) which involves new wan links.

Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from
IPSec/GRE to GetVPN.

Experience working in 24x7 NOC team monitoring and support various client
system infrastructures, network devices and IPT network using Spectrum, Nimsoft
and silverback.

Configuring routing protocols OSPF, EIGRP,RIP, MPBGP, LDP and BGPV4

Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on

6500 catalyst

Build Logical design and Implementation of Wireless Solution

Worked on F5 LTM, GTM for the corporate applications and their availability

Experienced working on virtualization products e.g. VMware, VSphere and

Vblock

Involve in Handling Network Performance monitoring Using IXIA test tools for
enhanced and cost effective network solutions to various customers.

Measured throughput from END to END on lab topologies using IXIA.

Involved in iRule management like loading rules, writing iRule syntax using TCL
language

Identify, design and implement flexible, responsive, and secure technology services

Experience with Firewall Administration, Rule Analysis, Rule Modification

Responsible for Cisco ASA firewall administration across our global networks

Support customer with the configuration and maintenance of PIX and ASA firewall
systems

Experience working with JUNOS OS on Juniper Routers and Switches.

Experience working on Juniper T-Series, M-Series, MX-Series and J-Series

Routers

Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA

5500(5510/5540)

Break-fix, install, change, and/or troubleshoot Cisco VoIP phones

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution
and Migration with Cisco ASA VPN experience

Setup simplified and traditional VPN communities, and Cisco Any connect

Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various
models of Cisco routers to facilitate adding new business partners to new and
existing infrastructures.

Modified internal infrastructure by adding switches to support server farms and

added servers to existing DMZ environments to support new and existing
application platforms.

Analyzed customer application and bandwidth requirements, ordered hardware and

circuits, and built cost effective network solutions to accommodate customer

requirements and project scope.

Configured routers and coordinated with LD Carriers and LECs to turn-up new
WAN circuits.

Responsible for Cisco ASA firewall administration across our global networks

Experience with migrating Hybrid based Cisco CatOS and Native Cisco IOS on
6500 switches.

Configured various BGP attributes such as Local Preference, MED, Extended

Communities,
Route-Reflector
clusters,
Route-maps
and
route
policy
implementation.

Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN

infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access
level to 2950, 3550.

Converting CatOS to Cisco IOS Config Conversion on distribution layer switches

Configured various Router interfaces like ATM interface, T3 & Channelized T1

interfaces

Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with

Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(with PRP and RPR
processors)

Excellent Troubleshooting Skills and Customer Centric approach.

Environment:Cisco3750/3550/3500/2960switchesandCisco3640/120007200/3845/3600/2800
routers, Cisco ASA5510, Checkpoint, Junos, RIP, OSPF, EIGRP , BGP, VPN, LAN, WAN, VPN, Nexus
7K,5K,2K.

AmeriHealth Caritas Atlanta -GA

May 2014
Sr. Network Engineer

Mar 2013-

Key Responsibilities:

Experience working with Juniper EX-Series Ethernet Switches.

Configured IP RIP, PPP, BGP and OSPF routing Protocols.

Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF,

LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.

Getting finalized requirements about Request For Change (RFC) from business
analyst for the monthly release.

Create the test strategy for all monthly releases and test case document for testing
the RFC's.

Performs analysis and diagnosis of highly complex networking problems in the Data
Center Environment.

Configuring and implementing F5 BIG-IP,LTM,GTM load balancers to maintain

global and local traffic

Worked on change management documentation of Network infrastructure design

using Microsoft Visio.

Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by

tuning AS-path.

Implemented Firewall Security in compliance with PCI on Cisco ASA,FWSM &

Checkpoint.

Configuring HSRP for network redundancy and High availability.

Involved in designing of LAN (Ethernet) and WAN infrastructure for the new Data
Centre Using MS Visio.

Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for

new IP segments that either come on line or that may have been altered during
various planned network changes on the network.

Configured RIP, PPP, BGP and OSPF routing, and Involving in the configuration &
troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.

Configured IP access filter policies, and Creating and provisioning Juniper SRX
firewall policies.

Documented new VPN enrolments in a database and create standard procedures for
further improvement.

Co-ordinated with the Data Network and Security team and came up with
possible solutions.

Worked on Physical site Inventory verification, gather information of various Cisco

Network devices and Security Devices to develop Run book and Spec Book.

Provided proactive threat defense with ASA that stops attacks before they spread
through the network.

Configured Cisco 1231 Access points with 5959 and 4941 antennas
(802.11/a/g).

Configured and supported Cisco firewall PIX 500 series.

Configuring AAA using TACAS+ and ACS server.

Responsible for network design, bandwidth allocation, IP address allocation,

supervising installation, configuration and maintenance on major network
technologies. Worked with various internal organizations during pre/post
deployment phase of different type of circuits.

Providing Tier II support in the provisioning, end-to-end test and turn-ups and
maintenance of the major accounts.

Optimizing Network by continuously and extensively working with customer to

upgrade and optimize network and Circuit Move Add Changes including detailed
design documentation.

Performed Layer I, II and III troubleshooting, while maintaining trouble ticket

tracking, following internal/external escalation procedures and customer
notifications.

Configured Cisco Routers for BGP, OSPF, RIP, RIPv2, EIGRP, Static and
default route in a VPN environment using MPLS.

Implemented and troubleshooted the MPLS network.

VPN configurations on Cisco VPN 3005 concentrator, 2610 routers and PIX
firewall 501.

Performed troubleshooting, while maintaining trouble ticket tracking, following

internal/external escalation procedures and customer notifications.

Configured the Cisco router as IP Firewall and for NATting.

Experience working with Nexus 7010, 5020, 2148, 2248 devices

Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a
remote line card (module) for the Nexus 5000

Environment: Juniper EX, Checkpoint, F5 BIG-IP, LTM, GTM, RIP, OSPF, EIGRP, RIP, BGP,
LAN, WAN, MPLS, Nexus 2K,5K,7K,PIX 501,Cisco VPN 3005, Cisco 3750/3550/3500/2960
switches and Cisco 3640/120007200/3845/3600/2800 routers
HTH Worldwide, Fairfax, VA
2011 Feb 2013
Network Engineer

Nov

Key Responsibilities:
Responsible for designing and implementation of customers network and
Security infrastructure.
Involved in complete LAN, WAN, Extranet redesign (including IP address
planning, designing, installation, pre configuration of network equipment,
testing, and maintenance) in both Campus and Branch networks

Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a
remote line card (module) for the Nexus 5000
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA
5500/PIX security appliance, Failover DMZ zoning & configuring
VLANs/routing/NATing with the firewalls as per the design.
Provided Load Balancing towards access layer from core layer using F5 Network
Load Balancers.
Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload
and everyday task of creating WIP and VIPs
Configuring routing protocols like EIGRP, OSPF & BGP and troubleshooting layer3
issues.

Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500
series Cisco Catalyst switches.

Involved in troubleshooting IP addressing issues and Updating IOS images using

TFTP.

Creating VLANS and enabling inter-VLAN routing.

Configuring layer-2 technologies like STP, VTP with suitable parameters as per the
network environment.

Work on different networking concepts and routing protocols like RIP, BGP, EIGRP,
OSPF and other LAN/WAN technologies.
Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network
team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer,
Cisco 6513 at distribution/core layer.

Tested routers and done Performance Analysis of both LAN/WAN infrastructure.

Interacted with business users from a service delivery and service support
perspective.

Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP,

Routing Protocols (BGP/OSPF), and IP addressing.

Design, implementation and operational support of routing/switching protocols in

complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.

Planned, tested and evaluated various equipment, systems, IOSs and procedures
for use within the network / security infrastructure.

Identify, design and implement flexible, responsive, and secure technology services.

Experience with Firewall Administration, Rule Analysis, Rule Modification

Modified internal infrastructure by adding switches to support server farms and

added servers to existing DMZ environments to support new and existing
application platforms.

Responsible for Cisco ASA firewall administration across our global networks

Support customer with the configuration and maintenance of PIX and ASA firewall
systems

Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600,
2800, 3600, 7300 series Routers.

Configured Site to Site IPsec VPN tunnels to peer with different clients and each of
client having different specifications of Phase 1 and Phase 2 policies using Cisco
ASA 5500 series firewalls.

Configured VLANs, Private VLANs.

Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509
switches

Configured ASA 5540 to ensure high-end security on the network with ACLs and
Firewall. Assigned a security level (0-100) on Cisco ASA and the number vary with
the trust issues. For trusted it is 100 and less trusted it is 0. Worked with firewall
SRX550 services gateway security for routing, switching and WAN connectivity.
Used IPSec VPN tunneling to provide access to user machines and partners in other
network. Provided application level redundancy and availability by deploying F5 load
balancers LTM.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with Cisco ASA VPN experience

Environment:Cisco2900/3550/4500/6809switches,Cisco1600/2600/2800/3600/7300
routers, Cisco ASA5510, Checkpoint, Cisco ASA, PIX, LAN, WAN, RIP, OSPF, EIGRP,
BGP, Nexus 2K/5K/7K,VLAN, F5 BigIP GTM/LTM
Nipun Net Solutions Pvt Ltd - Hyderabad, India
2009 Aug 2011

May

Network Engineer
Key Responsibilities:

Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
Key contributions include troubleshooting of complex LAN/WAN infrastructure that
include
Configured Firewall logging, DMZs & related security policies & monitoring
Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing
with snooping & IP source guard
Installed and configured Cisco PIX 535 series firewall and configured remote access
IPSEC VPN on Cisco PIX Firewall.
Enabled STP Enhancements to speed up the network convergence that include Portfast, Uplink-fast and Backbone-fa
Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with
Cisco VPN hardware & software client and PIX firewall

Setup and configured Cisco VOIP 7975 phones

Involved in troubleshooting of DNS, DHCP and other IP conflict problems
Used various scanning and sniffing tools like Wire-shark.
Experience with Infoblox technologies.
Hands on Experience working with security issue like applying ACLs, configuring
NAT and VPN
Documenting and Log analyzing the Cisco PIX series firewall
Configured BGP for CE to PE route advertisement inside the lab environment
Spearheaded meetings & discussions with team members regarding network
optimization and regarding BGP issues.

Trace Network Solutions- Hyderabad, India

2008 to Apr 2009
Jr. Network Engineer

Jun

Key Responsibilities:

Installed, configured and maintained Cisco 2600, 1600 series Routers and
Catalyst 1900, 2900, 3550, 3560 series.
Configured 2600 series routers with OSPF protocol and 2900 series switches
with VLANS and Trunking protocols.
LAN/WAN hardware including Ethernet Hubs, Cisco Switches, switch panel
installation, configuration and troubleshooting, Frame-Relay configured support.
Provided network security administration functions including hardware access,
software access, passwords, user privileges and related tasks.
Configured inside ACL and interfaces, outside ACL and interfaces.

Configured NAT and PAT policies.

Configuration and troubleshooting of EIGRP, OSPF, BGP.

Design OSPF areas for reliable Access Distribution and for Core IP Routing.

Support the project manager in defining the work and the associated effort,
duration, and resource needs to deliver the solution.

Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for
secure login.

Versed in SIP, VoIP and Data Protocols over SNA, DSL, ATM, Frame Relay and MPLS
Network protocols.

Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches

Once trouble ticket has been created keep customer informed of status of ticket and
estimated time to repair.
Coordinating with service providers for WAN link outages.

Checking and configuring Cisco 7600 and 7200 routers at data center for remote
sites issues.
Working on Cisco 6509 and 4507 series switches for LAN requirements that include
Upgraded and updated Cisco IOS from 12.3T to 12.4. Used to DHCP to automatically
assign reusable IP addresses to DHCP clients.