Summary
Experienced Network Security Engineer with 4+ years of Security and Routing experience. Worked on large-scale Network Security projects with variety of customers involving in-depth configuration, troubleshooting, script development, tools, bug submissions and providing solutions.
• In-depth knowledge and troubleshooting skills on IPSEC VPN, NAT Rules, Packet Inspection.
• Strong troubleshooting skills on AAA protocols like AD, LDAP, RADIUS and TACACS.
• In-depth knowledge on Cryptography Standards, and its applications.
• Configured PKI/CA Server on different platforms like IOS, ASA, and Windows.
• Good understanding and basic troubleshooting skills on routing protocols.
• Strong skills in conducting networking and application vulnerability assessments. Developed and written signatures for threats and exploits and tested them using Wireshark and TCPDump.
• Good knowledge and experience in implementing Cisco IPS, & iPolicy IDS/IPS.
• Strong understanding on Cloud Network Products and worked on Microsoft Azure Virtual Router, Amazon AWS Firewall, and ASA; CSR; ACS on virtual machines.
• Expertise skills in configuring Cisco ASA, IOS and IOS-XE Devices.
• Strong background on configuring home products like Netgear and Linksys.
• Expertise in writing Security Standards, Policies guidelines for SSV, Ecocloud Websites.
• Strong analytical skills to design, code and debug programs.
• Lead a team of 15 technical support engineer in Support Coordinator position.
Technical Skills
Firewalls/VPN : Cisco ASA; PIX, Microsoft Azure, Checkpoint.
Routers/Switches : Cisco ISR; ASR; CSR; 7200 series, Catalyst, Netgear.
IDS/IPS : Cisco IPS, RealSecure, iPolicy Networks, Snort IDSCenter.
Security Tools : ASDM, CCP, SDM, CSM, ACS, IDM, Wireshark
Operating Systems : LINUX – Ubuntu; Red Hat, Windows, Mac.
Virtualization : VmWare Workstation, VSphere, Oracle VirtualBox.
Software/Scripting Languages : Python, C, C++, Java 2, J2EE, JSE, PL/SQL, UML.
Education
Master of Science Newcastle University, U.K. Nov 2003
Bachelor of Engineering: Bharathiar University, India Apr 2001
Certification
Python - Coursera : Sept – Nov 2014
Cybersecurity : September 2014
CCNP Firewall : September 2014
CCIE Security Written : June 2014
CCNA Security : February 2012
CCNA : December 2011
CISSP (First Attempt) : February 2007
Professional Experience
Security Engineer
Cisco Systems, San Jose, CA Feb 13 – Oct 14
As part of Cisco Support Team, Handled and resolved customer issues on a daily basis.
• Handled customer problems on variety of network topologies with different cisco security products in Federal Govt agencies, corporate networks and small business customers.
• In-depth troubleshooting and debugging in areas of DMVPN, GETVPN, VTI, GRE Tunnels, and Remote Access IPsec VPN on ikev1, ikev2 topologies.
• Successfully able to recreate customer issues in our labs and Identified software defects within a set timeline. Also made sure that the issue gets resolved in customer site after the bug fix.
• Exceled and trained folks in the TAC group to build VM Pool in Cisco Cloud for devices like ASA, ACS, CSR, ISE, PKI Server, LDAP Server, RADIUS Server to run on Virtual Machines.
• Successfully handled, implemented on issues like Anyconnect Migration for customers with 40,000 users and GETVPN migration for customers using massive MPLS Cloud networks.
• Trained and implemented Cisco Network Sensor and Cisco IPS in inline and promiscuous mode.
• Developed troubleshooting skills on basic HTTP, ESMTP, DNS, ICMP inspection on ASA.
• Worked on high availability network setup with NAT and VPN setup.
• Configured and worked on QoS issues like prioritizing, traffic shaping and traffic policing.
Network Security Engineer
Sustainable Silicon Valley, Santa Clara CA Oct 11 – Jan 13
As a Network Security Admin at Sustainable Silicon Valley, some of my day-to-day activities are:
• Installed and maintained routers, switches, servers and desktop for the entire company of 120+ people and supported them on daily basis
• Configured Cisco IOS Routers for Zone Based Policies, NAT Filtering, IPsec VPN.
• Installed and configured Access Control System (ACS) in failover for RADIUS authentication.
• Configured VLANs on Switches and handled issues with Spanning-Tree Protocol.
• Configured and implemented EIGRP, BGP routing protocols.
• Worked on vulnerability assessment tools like GFI Languard, Ethereal, to scan the network daily and remediate the exploits in the environment.
• Used controls, templates, standards and guidelines to write Security policies for Drupal-Based SSV Website, Eco-cloud Website and HR Administration.
Application Consultant
SlashSupport India Pvt Limited, Chennai Mar 06 – Nov 07
Handled the NETGEAR - ProSupport Business and SOHO customers by resolving the RMA, Installation, Configuration issues. Some works are:
• Extensive troubleshooting done in Netgear Products, like VPN Routers, Firewall Routers, Switches, Hubs, Wireless products, etc.
• Implemented different types of VPN Connection like Site-to-Site VPN by describing the IPsec Policy using the IKE, AH, ESP Protocols, and Hashing Algorithms.
• Configured the ...
Login or Register to view the full resume.