Senior Network and Security Engineer
Wateen Solutions
Total years of experience :9 years, 5 Months
Responsibilities
•Network Planning, Implementation, and Operation with Optimization assistance to Advanced Services. This includes R&S along with Cisco Firewall and but mainly revolving around Cisco NAC (ISE & ACS)
•Complete project deployment including documentation (LLDs) of banking Infrastructure to support inter-technology and vendor integrations for network access control services. This includes ISE, FTD, FMC, SFR and WLC integration for better endpoint security
•ASA, FTD, FMC, WSA, ISE, AMP, Anyconnect, Umbrella, VPN, AAA, ACL, dot1x, WLC, Firewall clustering, dot1q, and LACP(Huawei and Cisco) integrations and deployments.
• Integration of multi-vendor products for service delivery of ISE along with CoA and roll out. This includes the following subsections as well
•Wired Dot1x implementation with Cisco Catalyst ( approx. 2000 Endpoints)
•Endpoint Addition using csv file from export options.
•Wireless Dot1x implementation with Cisco WLC and ME (Mobility Express) ( approx. 1500 Endpoints)
•CA Certificate Implementation (For Admin, Portals, EAP Authentication ) applicable for approx. 5000 endpoints (Wired + Wireless + VPN users)
•Wired 802.1x MAB implementation ( approx. 3000 Endpoints) IP Phones + Cameras + Printers)
•Provisioning NAC agent (Any-connect Supplicant) from ISE.
•ISE and Microsoft AD (Active Directory) Integration
•ISE authentication and authorization profiles depending upon location type and groups imported from AD or created locally.
•Web Based user authentication.
• Posture compliance for VPN and Dot1x endpoints.
•Endpoint profiling and profile feed updates from Cisco ISE portal.
•Sponsor and guest portal along with BYOD for wired and Wireless users.
•VPN planning and establishment.
•Co-ordination with Cisco TAC and escalations for NAC and Security products (ISE, WSA, Umbrella etc.)
Responsibilities
Core network Infrastructure Management that includes new planning and integration of broadband resellers.
Inter-city connectivity, capacity and traffic management planning. (Vlan, 802.1Q, QinQ, STP, ERPS)
Maintaining VAS from multiple Linux based cloud servers as an MPLS central services behind a VR of frotigate.
Leading a team of six that manages up-to 120 Gigs of traffic, it’s complains and operations.
Bachelors of Telecommunication Engineering