Extensive knowledge in securing networks using Palo Alto, Cisco FirePower, Checkpoint and Juniper Firewalls. * Expert knowledge in Threat prevention (Anti-Spyware, Antivirus, Vulnerability protection), Data filtering, URL filtering, Palo Alto's APP - ID to enable application-based traffic inspection. * Experience in managing multiple firewalls using Templates and Device groups in Panaroma. * Knowledge on implementation of IDS/IPS systems in networks. * Sound knowledge on Panorama, Wildfire, FireEye and its integration with Palo Alto Firewalls. * Strong knowledge on IPsec & SSL implementation on Cisco and Palo Alto firewalls. * Configured alerts, extracted logs and performed real time analysis using SIEM tools like Splunk and Qradar. * Extensive knowledge on Kill Chain management. * Knowledge on mitigating various attacks like DOS, DDOS, MITM, and Rouge Software. * Experience in deploying and managing Cisco ACS/ISE to implement TACACS+, RADIUS in Access Control Networks (ACN). * Extensive knowledge on vulnerability management tools like Qualys. * Expert level knowledge of troubleshooting, implementing, optimizing and testing routing protocols such as EIGRP, OSPF, BGP. * Experienced in installation, configuration, and troubleshooting of Cisco 7600 series Juniper M320 and SRX series routers. * Expert level troubleshooting methodologies to isolate and identify configuration, design, and software anomalies. * Expert level knowledge of implementing and testing redundancy protocols like HSRP, VRRP, and GLBP. * In-depth knowledge and experience in LAN and WAN technologies including MPLS, Metro Ethernet, T1/T3, SD-WAN, DIA, Point to Point (Dark Fiber), CDN and SDN. * Expertise in Configuration, optimization and troubleshooting of Content Delivery Network (CDN) for web caching and SSL services. * Expertise in Redistribution, Route Filtering, Summarization, Supernetting without overlaps, PBR. * Extensive knowledge of standards in the industry such as the seven-layer OSI reference model and the five-layer TCP/IP model * Expert level knowledge of implementing and troubleshooting complex Link layer technologies. * Experienced in Switching technologies like VTP version 1,2 & 3, VTP modes, SVI, Trunks like 802.1q & ISL, switchport security, PPP like PAP and CHAP, IGMP and port aggregation. * Working experience in managing and troubleshooting the core, distribution and access switches. * Knowledge in migrations of Cisco Catalyst to Nexus switches at access layer in complex data center environments. * Substantial working experience on Virtual Port Channels (vPC), bonding server NICs and Virtual Device Contexts (VDC) in Nexus 7000 series switches. * Experienced in setting up Splunk Forwarders for new application tiers introduced into environment and existing applications. * Building Splunk queries by Splunk Search Processing Language (SPL) and Regular expressions. * Good knowledge on WPA/WPA2 - Enterprise and its RADIUS server, along with other 802.1x protocols for authentication. * Knowledge on different kinds of encryption and its terminology- PSK, TKIP, and AES. Aruba Wireless platform (Aruba ClearPass and Aruba AirWave). * Expert knowledge in ensuring high availability of servers using Load balancers like BIG-IP, Cisco CSS * Knowledge of F5 Load Balancers and their configuration of LTM and GTM's to manage the traffic on the servers. * Experienced working with Tufin SecureTrack and SecureChange in Tufin Orchestration suite. * Experienced working in Data Centers along with different teams that deal with Storage and LAN. * Expert level knowledge of operations like installation, maintenance of racks, stacks, and cables in Data Centers. Bluecoat Proxy Secure Web Gateways for content filtering, Data loss prevention and prevent Zero-Day exploits. * Worked with the team with the configuration of F5 Big-IP LTM and GTM to manage the traffic on the servers. * Supported the team designing the F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BIG IP Load Balancers. * Added cisco devices in the network to Solarwinds Network Performance Monitor. * Worked with Cisco Nexus 7K/5K and 2K FEX module Switches. * Experienced designing and operating Cisco hardware, including Cisco ASR1000 routers. * Experienced in Splunk to build, configure and maintain different environments and in-depth knowledge of log analysis generated by various operating systems. * Managed Splunk configuration files like inputs, props, transforms, and lookups. Upgrading the Splunk Enterprise and security patching. * Supported Network Operations Center (NOC) processes including change management, incident handling, communications, recording incident details, and managing IRT phone bridge. * Worked with Cut through, Store Forward and Fragment free switches of different vendors. * Worked on Aruba Clearpass for the NAC services. * Implemented and provided role and device-based access control for workforce and guests across wired, wireless and VPN infrastructure using Aruba ClearPass. * Created Certificates, Backup-updates, License Updates, Users Updates in routers and switches. Canara Bank, Hyderabad, India. Dec 2013 - Aug 2015 Network Engineer Responsibilities: * Deployed and Troubleshooted enterprise level Network and Network Security Infrastructure. * Successfully deployed Check Point security gateway in the network and managed it with smart center. * Implemented Check Point Security solutions such as Full Disk and Media Encryption, Anti-malware, Anti-ransomware, Anti-bot and SandBlast. Also deployed clusters using both VRRP and ClusterXL technologies. * Conducted security audits of perimeter routers to identify missing ACL's. * Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, route maps and prefix-lists. * Configured whole routing access to the local network infrastructure by implementing OSPF as the major routing protocol. * Configured VLAN trunking 802.1q and VLAN routing on Cisco 5500 catalyst switches. * Worked with Link aggregation protocols (LACP/PAGP). * Established, managed, and optimized network uptime and supplied end-user assistance for users. * Used MD5 authentication for VTP, disabling all unused ports, keeping them in unused VLAN and ensuring DHCP attack prevention wherever required. * Establishing VPN Tunnels using IPsec encryption standards and configuring site-to-site VPN, Remote VPN. * Helped the team with the migration of access control servers from cisco ACS to ISE * Worked actively with the networking teams to fix the latency problems using Wireshark packet analyzer. * Worked on service request tickets such as troubleshooting, maintenance upgrades, patches and solutions with all round technical support. * Involved in the installation and administration of IP telephony and VoIP communications using Cisco's CUCM and Unity platform.

Highlights:

Companies I like:

Cisco, Palo Alto, Fortinet

• Configure
• Connectivity
• Cisco
• IPSec
• Routers
• Switches
• Troubleshooting
• Wireshark
• Communications
• DHCP (Dynamic Host Configuration Protocol)