Summary
Overview
Work History
Education
Skills
Websites
Skillset
Timeline
Generic

Dinesh Kumar Emmadi

Oak Point,TX

Summary

Network Security Engineer with a strong background in designing, implementing, and maintaining robust security infrastructures for global enterprises. proficient across various firewall platforms including Fortinet, ASA, Palo Alto, and Checkpoint. a proven track record in providing scalable TCP/IP security solutions and expert network designs that enhance business functionality. His expertise encompasses routing protocols and next-gen security features such as IPS and application detection rules.

Overview

11
11
years of professional experience

Work History

Senior Network Security Engineer

Bank of America
Plano, TX
11.2023 - Current
  • Played a pivotal role in planning, designing, testing, and deploying new security solutions
  • Provided expert guidance on Check Point, Fortinet, Trend Micro, and WTI products
  • Skilled in managing port configurations on Check Point and Fortinet firewalls, including turning up/down specific ports to control network access
  • Proficient in configuring port forwarding and port translation rules to redirect traffic to internal services securely
  • Experienced in troubleshooting port-related issues and ensuring proper port security measures are in place to prevent unauthorized access
  • Competent in configuring VLANs (Virtual Local Area Networks) on network devices to segment network traffic and enhance security
  • Proficient in managing VLAN memberships, VLAN tagging, and inter-VLAN routing on Check Point and Fortinet devices
  • Experienced in implementing VLAN-based security policies to enforce access control and segregation between different network segments.

Senior Network Security Engineer (Operations & Implementations)

Cisco Systems
03.2021 - 11.2023
  • Collaborated with cross-functional teams to review compliance requirements and adopt new technologies while ensuring network security
  • Conducted frequent Checkpoint software upgrades, ensuring systems remained up-to-date with the latest features, patches, and security enhancements
  • Implemented upgrade strategies for Checkpoint software across various environments, minimizing downtime and ensuring seamless transition
  • Developed and executed comprehensive testing plans prior to Checkpoint software upgrades to mitigate potential risks and ensure compatibility with existing configurations
  • Created documentation for team members on Checkpoint software upgrades procedures and best practices
  • Managed Fortigate software upgrades, including Forti OS 6.0.1, to maintain optimal performance and security posture of Fortinet firewalls
  • Designed upgrade plans for Fortigate software, considering factors such as system compatibility, feature requirements, and potential impacts on existing configurations
  • Implemented Fortigate software upgrades with minimal disruption to operations, coordinating closely with data team members to schedule maintenance windows and communicate any necessary downtime
  • Conducted thorough testing and validation post-upgrade to verify functionality and address any issues promptly
  • Documented upgrade procedures, configurations, and post-upgrade steps to ensure consistency and facilitate future upgrades
  • Provided technical support and troubleshooting assistance during and after software upgrades for both Checkpoint and Fortigate environments, resolving any issues encountered effectively.

Senior Firewall Engineer

Bank of America
Plano, TX
02.2018 - 02.2021
  • Managed Provider-1 MDS and MLM R80.10 and R77.30, overseeing hundreds of firewalls across AMRS, APAC, and EMEA regions, focusing on firewall and NAT policy development
  • Configured Checkpoint 23500, 5600, 13800, 12200 firewalls, and Power1 for MDS, leveraging existing configurations for seamless migration to new firewall systems
  • Implemented Affinity Configuration, optimizing core settings and dedicating cores based on traffic flow, and worked extensively with Secure-XL and Core-XL
  • Led Provider-1 Upgrade from R77.30 to R80.10, ensuring smooth transition and minimal disruption
  • Implemented changes on production firewalls, security policy & log management platforms, and IDS/IPS appliances
  • Designed advanced rule bases, employing smart dashboard for NAT configurations, and scripted MDS operations for rule optimization adhering to best practices
  • Utilized tcp dumps and fwmonitor for granular packet-level issue resolution and performed kernel-level debugging on firewalls
  • Integrated Checkpoint with Firemon for comprehensive rule analysis and reporting
  • Managed Tipping point SMS for numerous sensors, deploying Tipping point 8400 TX devices with stacking for enhanced throughput
  • Configured Gigamon/gigavue for span port configurations and administered LSM, CLI, and SMS for Tipping point Sensors management and troubleshooting
  • Provided expert guidance on Check Point, Fortinet, Trend Micro, and WTI products
  • Possess working knowledge of Juniper netscreen and SRX firewalls, as well as Fortinet firewalls (Forti OS 6.0.1), including VDOM creation, HA configuration via CLI, and management through Fortimanager and Fortianalyzer
  • Leveraged Firemon for rule usage reports, policy analysis, and merging when necessary, and developed scripts for route comparison, proxy ARP, and configuration verification.

Senior Network Security Engineer

RBC Capital Markets
Exchange Place, NJ
07.2016 - 01.2018
  • Configured and troubleshooted firewalls including ASA 5506, ASA 5510
  • Support over two hundred Cisco Firewalls Cisco ASA5500, Series 5500 – X and Cisco Next-Generation Firepower 4100 Series security appliances in standalone and high availability configurations
  • Troubleshoot customer firewall problems; modify firewall access rules according to security policy to resolve client requests as reported in ServiceNow Incident Management
  • Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products
  • Configure, Manage and Monitor PaloAlto firewall models (Specifically the PA-5050 and the PA-5260)
  • Performed migrations from CheckPoint firewalls to PaloAlto using the PAN Migration Tool MT3.3
  • Implemented advanced PaloAlto Firewall features like URL filtering, User-ID, App-ID, Content-ID on both inbound and outbound traffic
  • Deployed PaloAlto firewalls using Confidential NSX through L2 and L3 interfaces on models such as VM-300, VM-500, and VM-1000-HV
  • Design and implementation of security infrastructure for clients focusing on Cisco Firepower and ASA suite of products
  • Design and implement complex routing and switch environment
  • Redesign ASA environment using Route Based VPN solution (VTI) replacing Policy Based VPN solution
  • Enable file forwarding to Wild fire cloud through Content-ID implementation to identify new threats
  • Leveraged PaloAlto Networks Wild fire inspection engine to prevent Zero-Day attacks
  • Manage multiple Palo Alto firewalls centrally through the PaloAlto Panorama M-500 centralized Management appliance
  • Implement the Global Protect VPN, IPSec VPNs and SSL VPNs through IKE and PKI on Palo Alto firewalls for site-to-site VPN Connectivity
  • Deployed Active / Stand by modes of High Availability (HA) with Session and Configuration synchronization on multiple Palo Alto firewall pairs
  • Knowledge on the application of Active/Active HA mode
  • Enforce policy checks on north south and east west datacenter traffic through Panorama M-500
  • Provided escalated technical support in troubleshooting firewall and network issues
  • Hands-on experience with Blue coat Proxy Secure Web Gateways for content filtering, Data loss prevention and prevent Zero-Day exploits.

Sr. Network Engineer

The World of Coca Cola
Atlanta, Georgia
08.2015 - 06.2016
  • Primary responsibility was to provide day-to-day care and maintenance for a variety of network infrastructure equipment, including routers, switches, firewalls, load balancers, and network monitoring systems
  • Network design of gigabit Ethernet which includes Cisco nexus 7000 series switches environment, configuration and implementation of NGX firewall and Cisco 3600 series routers
  • Working experience in Virtual Device Context in Nexus7010
  • Performed upgrading of load balancers from Radware to F5BigIPv9 load balancer to improved functionality, reliability, and scalability in the system
  • Configuring and implementing routing protocols such as RIP, OSPF, and Static routing on Juniper M and MX series Routers
  • Troubleshooting issues and outages on Trunks and Router interfaces and firewalls extensively
  • Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs
  • Technical assistance for LAN/ WAN management and complex customer issues
  • Configured Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
  • Expertise knowledge on Cisco Layer3 switches
  • Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
  • Management in the routing protocols of EIGRP, OSPF, and BGP at the customer location
  • Designed and Implemented network design using TCP/IP
  • Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of the network
  • Management of a very large DNS environment using Lucent QIP
  • Worked in the management of DNS for DMZ/External servers manually
  • Monitored the network transmission using CiscoWorks2000 and Wireshark
  • Configuring and implementing VPN Tunnels using IPSec encryption standards
  • Troubleshoot, maintenance of Juniper switches and SRX Firewalls
  • Troubleshoot and technical support for Global wide area network consisting of multi-protocol label switching MPLS, VPN, and point-to-point site
  • Working experience of upgrading NX-OS to version 6.1 on the Cisco Nexus 7010
  • Worked on HSRP / VRRP for load balancing
  • Installation, configuration, and troubleshoot of Cisco wireless network, Wireless LAN controllers
  • Worked on Data, VoIP, security as well as wireless installations.

Networking Engineer

Harley Davidson
Wilmington, Delaware
03.2015 - 08.2015
  • Tested various BGP attributes like local preference, MED, Weight and replicated customer issues in the testing environment lab
  • Designed WAN structure to prevent a single point of failure in case of link failure
  • Configured PVSTP for loop prevention and VTP for Inter-VLAN Routing
  • Implemented port aggregation link negotiation using LACP and PAGP
  • Involved in design, implementation, and configuration of HSRP for load balancing on L3 switches on different locations of once on the switched Network
  • Configured and deployed BIG-IP LTM8900 for providing application redundancy and load balancing
  • Configured Client VPN technologies including Cisco's VPN client via IPSEC
  • Performed router redistribution manipulated route updates using distribute lists, route-maps administrative distance, offset-lists
  • Installed, configured, and troubleshooted Cisco wireless network, Wireless LAN controllers
  • Troubleshooted TCP/IP problems and troubleshooted connectivity issues in multi-protocol Ethernet Environment.

Networking Engineer

Hidden View Solutions
Hyderabad, AP
03.2013 - 04.2014
  • Managed IP addressing, implemented IP Access Lists, and worked extensively on Cisco Firewalls
  • Configured 2600, 2900, and 3600 router switch RIP and EIGRP
  • Responsible for implementing, engineering, level 2 support of existing network technologies/services integration of new network technologies/services
  • Worked on 2600, 3500, 7613 Router and 4500 and 6500 switches
  • Configured and managed Cisco access layer routers and switches
  • Major contribution to improving OSPF convergence by controlling OSPF algorithm and LSA/SPF throttling in the WAN infrastructure
  • Implemented VTP and trunking protocols like 802.1q and IS Lon cat 3560, 3750, and 4500 switches
  • Installation, Maintenance, Troubleshooting Local and Wide Areas Network ISDN, Frame relay, NAT, DHCP, TCP/IP
  • Configuration of Access List ACLS’d Ext, named to allow users all over the company to access different applications and blocking others
  • Configured STP for loop prevention and VTP for Inter VLAN Routing
  • Providing Network and Security Architecture and Operations support services for Windows 2008 based web, application, and database servers
  • Troubleshoot TCP/IP problems troubleshoot connectivity issues in multi-protocol Ethernet Environment.

Education

Masters in Information Assurance -

Wilmington University
06.2016

Bachelors in Information Technology -

Gurunanak Engineering
03.2014

Skills

  • Intrusion Detection
  • Firewall Management
  • Network Security Management
  • Firewall Installation
  • Application security
  • Firewall configuration
  • Incident Response
  • IP Addressing and Subnetting
  • Security issues troubleshooting
  • Attention to Detail
  • Team building
  • Network Security
  • Decision-Making
  • Written Communication
  • Continuous Improvement

Websites

Skillset

  • Firewall Platforms: Proficient in Fortinet, ASA, Palo Alto, and Checkpoint.
  • Routing Protocols: In-depth knowledge of routing protocols.
  • Next-Gen Security Features: Experience with IPS and application detection rules.
  • TCP/IP Security Solutions: Skilled in providing scalable security solutions.
  • Network Design: Expertise in designing secure network infrastructures.
  • Compliance Management: Familiar with compliance requirements.
  • Log Management: Experience in managing security logs.
  • IDS/IPS Appliances: Competent in managing intrusion detection/prevention systems.
  • Network Troubleshooting: Skilled in resolving network issues.
  • Load Balancing: Knowledgeable in load balancing.
  • OSPF Configuration: Experience in configuring OSPF.
  • Access Control Lists (ACLs): Proficient in managing ACLs.

Timeline

Senior Network Security Engineer

Bank of America
11.2023 - Current

Senior Network Security Engineer (Operations & Implementations)

Cisco Systems
03.2021 - 11.2023

Senior Firewall Engineer

Bank of America
02.2018 - 02.2021

Senior Network Security Engineer

RBC Capital Markets
07.2016 - 01.2018

Sr. Network Engineer

The World of Coca Cola
08.2015 - 06.2016

Networking Engineer

Harley Davidson
03.2015 - 08.2015

Networking Engineer

Hidden View Solutions
03.2013 - 04.2014

Masters in Information Assurance -

Wilmington University

Bachelors in Information Technology -

Gurunanak Engineering

Similar Profiles

CREATE PROFILE
Dinesh Kumar Emmadi