• Us Citizen

• Green Card

• EAD (OPT/CPT/GC/H4)

• H1B Work Permit

• Corp-Corp

• Consulting/Contract

• UG :- - Not Required

• PG :- - Not Required

• No of position :- ( 1 )

• Post :- 11th Nov 2020

Network engineer in Mason ,OH

Professional Summary:

• Around 3 -4  years of experience in Cisco/Juniper Networking, Security which includes designing, Deployment and providing network support, installation, and analysis for a broad range of LAN / WAN protocols. Experience with SD-WAN solutions that include Viptella and Versa.
• Hands On experience Cisco IOS/IOS-XR/NX-OS, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Good knowledge of Palo Alto Firewalls and the Panorama Network Security Management Box.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Operates and maintains (O&M) the Aruba ClearPass Policy Server and the Aruba AirWave Wireless Intrusion Detection System
• Expertise with Installation of Arista 7250QX series switches on Spine Platform
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 9K, 7010, 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Responsible for Check Point (Secure Platform R70) and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Implemented and maintained Sourcefire intrusion detection/ prevention (IDS/IPS) system and hardened protection standards, IDS/IPS signatures on Firewall for Fine-tuning of TCP and UDP services.
• Implemented traffic filters using standard and extended access-lists, distribute-lists and route maps.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Strong knowledge of Juniper Qfabric environment - deployment and troubleshooting.
• Able to upgrade various Juniper high end devices Independently.
• Expertise in the following fundamental AWS Services (VPC, Subnet, Elastic Network interface, Internet Gateway, Route table, NAT Gateway, Network ACL, Direct Connect, VPC Peering, VPN, EC2)
• Experience with Aruba WLAN infrastructure in large scale global deployments.
• Worked on upgrading Aruba controllers and Access points in troubleshooting the devices with the networks.
• Experience with 802.1x, RADIUS, EAP-TLS WLAN standards
• Participated in troubleshooting SDN/SD-WAN deployments
• Experience with zscaler Internet security and Zscaler private access.
• Worked on zia for internet web traffic security.
• Migrated from Ironports to Zscaler ZIA
• Worked on setting up tunnels from f5 devices to Zscaler cloud.
• Worked on configuration of pac file.
• Worked on Azure AD SAML authentication for zscaler authentication and AD group-based policies
• Design and implement Cisco ACI in datacenters, create a strategy that allows use of containers, cloud orchestration tools for end users and developers
• Collaborate with application owners to define map dependencies for better application workflow within ACI or public cloud use.
• Experience in operating high-density AP and client deployments
• Experience designing mission critical wireless infrastructure
• Provide consultation regarding segmentation, security and policy of the SDN network
• Deployed, Managed, monitored and supported Bluecoat Proxy for content filtering, internet access between sites and VPN client users, forward proxy scenario and reverse proxy scenario for security and worked on adding URLs in Bluecoat Proxy SG's for URL filtering.
• Experience with setting up AWS direct connect to amazon S3, Amazon EC2, Amazon VPC
• Experience working on Security groups in AWS in vpc for traffic flowing between various virtual nets for dev, prod and uat instances.
• Worked on traffic flows from on premises to AWS to internet via virtual palo alto firewalls for services that include PAAS and IAAS
• Define the migration from “network centric” model to an application policy model infrastructure, create plans in include ACI, Hybrid Cloud and use of containers and orchestration tools
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Worked extensively on Cisco ASA 5500(5510/5540) Series. Experience with Palo Alto 5K series.
• Migration from ASA to PA.
• Experience with SSL decryption, APP ID, Threat ID, URL filtering in PA firewalls.
• Knowledge of WAN Optimization Technology, Riverbed.
• Worked on Cisco Firewalls Cisco ASA 5500(5510/5540) Series and Checkpoint R75, 76, NGX R70 Firewalls.
• Worked with Automation script with Python module like Chef & Ansible.
• Experience on Fortinet FortiGate Appliances including 3200D, 1500D, 1200D running Latest 5.2 FortiOS
• strong knowledge and experience in the dynamics of DNS, DHCP, IP addressing and IPAM
• Configuring, designing and troubleshooting INFOBLOX DNS and DHCP servers.
• Configuring Cisco Wireless Controllers and AP’s.
• Configuring the Network Admission Control (NAC).
• Configuring Cisco WAAS.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quick learning, effectively analyze results, and implement and delivering solutions as an individual and as part of a team.
• Hands on Experience testing iRules using Browser (IE), HTTP watch
• In-Depth Knowledge and experience of various wireless 802.11 standards, controllers, Access Points, Wi-Fi analytics from various vendors (Cisco Meraki, HPE /Aruba, D-Link and Netgear), SD-WAN (MX 65, MX100, MX400).
• Provided support that included resolving day-to-day operational issues with tickets generated by a server.
• Good understanding of SNMP, IP SLA and Network Monitoring with experience in tools like PRTG.