Summary:
• 5+ years of IT experience in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security, performing Network analysis, design, Implementing, Linux Kernel Programming.
• Expertise in Networking Administration including instalments and configurations of physical networks (servers, switches, routers, panels, ports & hubs).
• Experience working on Cisco Catalyst Series 3750, 4500, 4900, 6500; Nexus 2000, 5000, 6000 and 7000 series switches.
• Designing, implementing and troubleshooting Cisco routers (800, 2800, 2600, 3800, 7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Cisco PIX & ASA devices.
• Experience in Cisco Security: Telnet, SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cisco (ASA, PIX) 5510, Cryptography, VPN, IPsec.
• Experience in installing and configuring DNS, DHCP server.
• Experience in managing complex routed networks providing technical support, troubleshooting and configuration.
• Well experienced in configuring and troubleshooting of Juniper Net Screen & SRX Firewalls and their implementation Experience in site-to-site and remote access VPN solutions.
• Designed & Implemented DMZ solutions for data center environment, build checkpoint firewall policies for the same.
• Implemented centralized management system, Panorama to manage large scale firewall deployments.
• Hands on experience in configuring tunnels like GRE, VPN like IPsec and DMVPN on Palo Alto firewalls.
• Experience with different Network Management Tools and Sniffers like Wireshark (ethereal).
• Experience with F5 load balancers and Cisco load balancers.
• Installed, Configured and currently maintaining Check Point Firewalls (R76 Gaia, R75.40, R75
and R70) in a Distributed Deployment and High Availability Redundancy Scenario
• Implementation and administration of Check Point Firewalls & network Management.
• Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.
• Experience in configuring, deploying and deployment of Cisco Security Manager (CSM) for management of ASA Firewall series.
• Established VPN tunnels between Cisco routers and Cisco Firewalls and Palo Alto Firewalls.
• Installed, configured and administered Cisco ASA firewall and other Cisco technologies.
• Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.
• Responsible for PIX, Checkpoint and Cisco ASA firewall administration.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers
• Detailed technical knowledge of either Cisco ACE, F5, A10 load balancer technology.
• Design, Build, and Implement various solutions on Check Point Firewalls, Blue Coat Proxies, F5, A10 Load balancers and F5, A10 Global Traffic Managers.
checkpoint and Palo Alto firewalls
• Configured, troubleshoot, and upgraded Checkpoint Firewalls which included network and/or resource access, software, or hardware problems.
• Maintained High Availability and clustered firewall environments for customers using Check Point High Availability.
• Perform Level 3-4 security implementations, vulnerability assessments and intrusion detection.
• Build Checkpoint firewall, and configured GUI to open/close TCP/IP ports.
• Worked with both GAIA and SPLAT operating system.
• Installed, configured and maintained Checkpoint R75-R77 Gaia/SPLAT.
• Identified and removed security policies that are no longer needed to reduce Checkpoint Firewall policy lookup.
• Configured necessary routing and NAT on the Firewall appliance to communicate with the internet.
• Backup, Restore and Upgrade of Checkpoint Firewall appliance.
• Monitored Checkpoint VPN tunnel activities with Smart View Monitor and troubleshoot VPN issues with CLI.
• Optimize existing policies to improve security and performance. Identify and remove security policies that are not no longer needed to reduce Checkpoint Firewall policy lookup.
• Configure IPsec, SSL-VPN (Mobile Access) on Checkpoint Gaia and troubleshoot VPN tunnel connectivity issues
• Troubleshoot and monitor Firewall traffics/issues through command-line using CLI commands, GUI interface and Smart Console (Smart View Tracker, Smart Log and Smart View Monitor).
• Analyze Logs and make necessary security reports using Smart Reporter console application.
• Network monitoring, packet captures and troubleshoot traffic passing through Firewall via logs.
• Respond to emergency outages, disaster recovery and the corporate firewall.
• Interface with vendors and service providers to ensure security is maintained and integrated into all security connectivity activities efficiently and effectively, with minimal downtime.
• Created a lab environment using VMware and Oracle Virtual Box to effectively test policies, software distribution as well as scripts prior to deployment in production
• Strong knowledge and experience of Palo Alto Firewalls
• Configured and managed VPNs, remote access solutions and perimeter security in Palo Alto firewalls
• Worked with applications transport protocols SSL, IPSEC, DNS, NTP, SSH, LDAP, RADUS, TACACS+ and AAA on Palo Alto Firewalls
• Configured routing protocols such as Static Routing and OSPF on Palo Alto Firewalls
• Maintain a thorough understanding of the basics behind the Internet and its workings (DNS, Security, IP Routing, HTTP, VPN, Email Routing, SPAM, etc.)Configure and setup Cisco ASA, Checkpoint, Palo Alto Firewalls, VPN Concentrators and Security appliances for access to vital business applications
• Design, setup and configure complex switching environments
• Design, setup and configure complex wireless networking that supports open or secured access and the ability to support voice and video applications
• Maintain a thorough understanding of Local Area Networking
• Configuring and installing client and server network software for upgrading and maintaining network and telecommunication systems.
• Maintaining multi-site network operations and software applications, operating systems and regular maintenance with both private and public facilities
• Managing assigned projects and program components to deliver services in accordance with established objectives.
• Responding to inquiries from staff, administrators, service providers, site personnel and outside vendors and etc. to provide technical assistance and support with auditing requests
• Troubleshooting malfunctions of network hardware and software applications, telephones and security systems to resolve operational issues and restore services.
• Experience with Cisco Routers & Switches, ASA firewalls and FWSM's, Cisco ASR, IPS, Visio, Checkpoint, MS Servers, ITIL v3 process and foundation understanding
• Experience with WAN technologies such as POS, DSL and MPLS
• Knowledge of redundancy and high availability protocols such as VRRP, HSRP, GLBP, SLB, LACP, and PAGP
• Experience with network security standards with a solid understanding of network based security protocols and methods (e.g. IP Sec, SSL, TLS, ACLs)
• Any other duties as assigned by management
NETWORK ENGINEER – HYD
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support
• Preparing feasibility report for various upgrades and installations
• Involved in network monitoring, alarm notification and acknowledgement.
• Implementing new/changing existing data networks for various projects as per the requirement.
• Installed and maintained local printer as well as network printers.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade