Network & Security Specialist
Accenture India Pvt. Ltd
Total years of experience :16 years, 10 Months
• Coordinating project functions for Cisco Wireless, Cisco ASA and Juniper SA for VPN; working in close relation with Project Manager to understand the business requirement; giving suggestions for best practice and suitable architecture for the client requirement
• Developing ROC (Change Template) and Visio Diagram for every change task; presenting it to the Internal CAB & Pre-CAB to make it without error before Producing in front of the client
• Network transformation project for integrating Cisco Firepower into existing environment of Core DC.
• Patch and version upgradation of Palo Alto Firewall features like Antivirus, vulnerability and other tasks like URL filtering.
• B2B VPN tunnel migration from existing setup to the new setup which includes Cisco router and Firepower for Crypto IPsec and destination NAT.
• Updating LLD & HLD for Greenfield Project Deployment; utilizing Cisco Prime for adding floor map and integration of new WLC
• Held responsible for raising new request with CMDB team for adding/removing or updating devices; also preparing network commissioning and verification document after successfully implementing the change
• Performing ROC (Record of Change) peer review for other colleague to identify technical, configuration and process related errors; make ROC error free before producing in front of the Internal CAB Member, if any
• Installing WLC viz. 5508, 5520, 2504 and Access Points from the scratch; involved in New Juniper SA Device installation & configuration per the script; license & certification upgradation as and when required
• Performing policy configuration changes and URL filtering from Palo-Alto firewall( PAN-OS7)
• Migration of Cisco ASA from one Data Centre to Another entailing updation of ACL rules, configuration review and modification as per standard requirement, license upgradation, etc.
• New cisco ASA implementation and migration from old to new setup.
• F5 configuration management with Virtual server, certificate update, iRule creation, OS upgradation.
• Installation and configuration of Cisco Firepower (FTD) - 4100 series
• Review BoM for new procurement and suggest required changes to the client.
• Coordination with project manager and other teams for timely delivery of any assigned project.
• Updating timesheet and man-hours on regular basis for data collection of individual performer for higher management
Firewall Transformation - Checkpoint to Cisco ASA Firewall Transformation; Wi-Fi Refresh - Renewed Complete Wi-Fi Environment with Advance Features - ISE, MSE & Prime; Third Party Vendor (Quantel) DC Migration - Moved all Application Traffic to New DC Location; ISP Room Migration - Migrated all Network Devices and Data Traffic from one DC Room to Another; Bluecoat Failover - Bluecoat active-standby installation and multicast configuration; DC LAN Refresh/Consolidation - DC LAN refreshment with advance devices like Cisco 9K and consolidation for well designed network; Brand Migration
Key Result Areas:
•Accountable for making firewall changes, VPN configuration, OS upgradation and traffic level troubleshooting on Juniper, Checkpoint and Cisco Firewalls
•Troubleshot IPsec VPN Issue on Juniper SRX
•Added new route, VLAN, Subinetrface & VRRP configuration on Nokia Voyager (NOKIA Firewall) for new vendor integration; troubleshot Juniper & Checkpoint Firewalls with the help of tools such as Juniper STRM (Security Threat Response Manager) & Smartview Tracker
•Took care of the firewall from Firewall Analyzer (Algosec Firewall Analyzer) like addition of new firewall into the analyzer, rule cleanup activity, disabling repetitive rule and submit a weekly firewall health report to management
•Configured:
•F5 Load Balancer & Alteon-Radwarer for adding Virtual Server, Node, Static Route, SNAT, Failover, VLANmapping, CSR Generation and Certificate Installation & iRule
•Cisco WLC 4400 & 5500 series for wireless setup
•New connectivity configuration between IGATE - Orange for specific application access over MPLS
•Deftly migrated a new ISP MPLS links from old to new service provider and supported BGP configuration
•Looked after BGP metric tuning as per the client IP engineering team requirement for high response time of specific destination
•Performed RCA ( Root Cause Analysis) as well as prepared SOP ( Standard Operating procedure) writing for network incidents
•Actively involved in:
•HP Tipping Point IPS operations management and fresh deployement for new setup infra
•Upgradation of IPS - Tipping Point & SMS Server
•Extracting report from IPS & submitting it to the legal and security team of the client
•Juniper SA management for VPN Users, Policy Manager and VPN based applications
•Installation of Solarwinds monitoring modules - NPM, NCM, NTA and Operational Management
•Bluecoat SG & Bluecoat AV Management; BC License Management; Bluecoat Troubleshooting & Configuration
•Oversaw wide gamut of tasks involved in patch management/relase management as well as vulnerabilityassessmentfor all Network & Security Infra; submitted a project progress report to the track lead & managed services report like SLA, OLA to management
Highlights:
•Bagged following awards & accolades:
•Pat on the Back Award for excellent contribution to the project
•CTO & CEO Appreciation Email for successfully completing major transformation activities in the client environment
•Certificate from the client’s IT Operations Head for outstanding service in stabilizing project
•Certificate for the Team of the Quarter for completing new call center setup in a very short duration at the client side
Client - HDFC Bank
Key Result Areas:
•Handled WAN linkutilization report from e-spectrum tool and configured bandwidth with Allot Tool
•Controlled all new branches link commissioning, their tracker and follow up with a service provider
•Attended monthly review meeting with client for down calls P1, P2, P3, P4 types of call and their trend
•Assessed the graphs of link utilization and created a reportfrom e-health tool and reviewed with the client; devleoed basic customized QOS polices with the help of Allot Tool
Client - Dena Bank ( Nationalized bank)
• Monitored data center & DR site for a core banking solutions; partnered with VISA & FSS team for network integration solution
• Instituted new branch configuration and prepared in-house document for the same
• Configured: EIGRP, BGP for optimization & performance improvement; bandwidth rate limit & ACL on required devices for smoothing video conference related issue; IPsec VPN for newly deployed branch router and head end (DC) device & troubleshoot for IPsec VPN issue for existing branches
• Handled ISDN link & configuration issue; configured on the head end device & branch end router for numerous new branches backup solution
• Upgraded all branches link bandwidth from 128 to 256 kbps by configuring E1’s at DC & DR side
• Collaborated with vendor for MPLS, E1 & ISDN link issues and updated to the client about their status
• Took care of Cisco Call Manager 4.1 for IP phone solution for banking setup; Checkpoint R70 firewall for basic port opening - Security policy configuration for Checkpoint R70 & Cisco ASA 5520
• Deployed Watsup Gold (SNMP) and Net flow analyzer tools into an environment
• Maintained network asset, SYSLOG, & their status from Cisco Works
• Responsible for IPsec VPN configuration setup for new branch with head end device and troubleshoot IPsec VPN issues for existing branches
Client: IBM <SB (Lloyds Bank)
Key Result Areas:
•Looked after customer network on SMART Monitoring Tool, thereby ensuring down services are notified to customers and Vanco-Reliance Globalcom
•Held accountable for troubleshooting network multicasting issues; also monitored timely ticket closure compliance with Customer & Vanco Escalation Processes
•Resolved numerous ADSL Services, Framerelay & MPLS related issues/incidents of client environments
•Configured GRE tunnel as per requirement for IPsec VPN connection; involved in network troubleshooting for routing protocols like RIPv2, EIGRP, and BGP for application & connectivity issues
•Troubleshot QOS while dealing with latency & voice related issues
•Configured LTSB branches and core routers by pushing templates from the Voynce Tool
Client - Epicenter Technology (BPO)
• Managed BPO processes network setup for JP Morgan chase, AmEx card, ADS.
• Prepared daily checklist for core devices.
• Managed Cisco IGX 8420 & 8430 wan switching devices for the core connectivity, Trunk management for Vocie calling & quality.
• Managed Cisco 4003 & 4006 switches for the LAN connectivity.
• Actively participated in Patch management, hardware replacement for Data center devices for the Continual Service Improvement plan.
• Configured EIGRP as a routing protocol between two regional sites.
• Coordinated with Cisco TAC team for complex technical issues.
• Redesigning of STP and updated to RSTP for better convergence time and eliminate existing STP issue in the environment.
• Followed up with the RMA (Return Material Authorization) team for replacement of faulty network devices or part.
• Managed various platforms of Cisco routers like 1800, 2600, 2800, 7200 VXR.
• Configured data & voice VLAN on switch port as per change requirement.
• Monitored network devices and link utilization on Solarwinds tool.
• Monthly backup of network devices.
B.E Electronics from North Maharashtra University Jalgaon with 64 percentage.