Rajesh Kumar

• Work closely with Director of information security to ensure network systems are designed and deployed towards the adoption of the Zero Trust Network Security Framework
• Analyzed system risk to identify and implement appropriate security countermeasures.
• Closely collaborate with security architects in developing cloud security frameworks towards the migration of our on-prem applications to the cloud
• Lead the creation of security network infrastructure designs, configurations, standards, and documentation to effectively deliver secured network solutions.
• Proposed and implemented network enhancements designed to maximize ROI on hardware and services spending.
• Selected and installed network security solutions based on extensive research and verifiable performance data.
• Architected an end-to-end network segment with the required firewall and network access policies to ensure the PCI compliance of our payment card systems
• Managed relationships with external vendors, negotiating contracts for hardware, software, and services related to network security.
• Developed security metrics and technical analysis to give insight into performance and trends.
• Implemented necessary controls and procedures to protect information system assets from intentional or inadvertent modification, disclosure or destruction.
• Enhanced network security by implementing advanced firewall configurations and intrusion detection systems.
• Authored security and vulnerability reports, detailing logged incursions and suggesting remediation efforts.
• Optimized network performance through effective monitoring and troubleshooting of security devices.
• Coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
• Implemented multi-factor authentication solutions to strengthen access controls across the organization''s networks and systems.
• Audited networks and security systems to identify vulnerabilities.
• Employed firewalls, Network Access Control Appliance and VPNs to safeguard network security and block unauthorized access.

• Provisioned new IT assets such as firewalls, routers and Loadbalancers, while ensuring new installations are in compliance with the NIST cybersecurity framework.
• Provided smooth communications by configuring LAN technology, wireless access points and controllers.
• Reviewed system logs to determine usage levels, bandwidth, performance, and system security to target inefficiencies and implement appropriate solutions.
• Spearheaded various network projects by acting as technical lead and working closely with stakeholders to provide solutions to meet business requirements.
• Maintained up-to-date asset management records, recording new procurements, hardware assignments and asset recoveries.
• Ensured data security by deploying advanced firewall configurations, intrusion detection systems, and encryption protocols.
• Scheduled infrastructure upgrades and software update rollouts around high traffic times to maintain network availability.
• Troubleshot routers, layer 2 and 3 switches, and network firewalls.
• Conducted comprehensive risk assessments to identify potential vulnerabilities within the organization''s networks.
• Delivered training sessions to junior engineers, fostering a culture of knowledge sharing and collaboration within the team.
• Managed and monitored installed systems for highest level of availability.
• Monitored and tested application performance to identify potential bottlenecks, develop solutions and collaborate with developers on solution implementation.
• Participated in system development life cycle from requirements analysis through system implementation.
• Streamlined internal processes by automating routine tasks using scripting languages such as Python and Bash.
• Increased network efficiency by implementing and maintaining robust infrastructure systems.
• Optimized network performance through regular audits, identifying areas of improvement and implementing necessary changes.
• Provided continuous support to end-users, resolving connectivity issues promptly and professionally.
• Collaborated with other network engineers to configure and maintain network monitoring and load balancing.
• Reduced response times to network incidents with thorough documentation and efficient escalation procedures.
• Managed vendor relationships effectively, negotiating contracts that aligned with organizational goals while reducing costs substantially.
• Collaborated on large-scale projects that resulted in significant cost savings through resource optimization techniques.
• Built servers, upgraded applications, and conducted hardware audits.
• Contributed to the achievement of departmental objectives by adhering to best practices in change management, ensuring smooth transitions during network updates or modifications.
• Implemented configuration management tools like Ansible or Puppet which led to consistent deployment practices and reduced human error.
• Created graphical reports to visualize network performance and uptime to management members.
• Installed fiber, ethernet, and console cabling in climate-controlled NOC.
• Managed installation, upgrade and deployment projects and provided on-site direction for network engineers.
• Identified issues, analyzed information and provided solutions to problems.
• Trained and educated end-users on prevalent ransomware attacks and introduced self-help IT resources.
• Configured and implemented Palo Alto Firewalls to provide clients with comprehensive security, antivirus protection, DNS security and virtual network capabilities.
• Secured network systems by establishing and enforcing access control policies.
• Monitored network services metrics and produced reports weekly for comprehensive overview of performance.
• Tracked network and telephony devices for performance and load threshold metering.

Design, deployment, and support of labs for Cisco Internet of Things educational experiences as part of a Learning Research and Development Group
Rapid prototyping of Cisco educational lab systems including Cisco 829 Fog Router, Cisco 2504
Wireless LAN Controller, Cisco 1702 Lightweight Access Point, and Cisco 5505/5506 Adaptive Security appliances
Deploying the call manager and sip proxies. setting up the Tele-presence units Dx80
worked on the Rspberry PI project. prototyping the wifi hacking with linux Kali using Raspberry Pi
Working on Digitization labs, designed and deployed the multiple sites using 2901, 4321, wlc, access points, IPS smart homes and factories.
Customizable signatures on IPS, WSE. adding Application Visibility and Control and Web Security Essentials
Implement network security including building firewalls, managing host security, file permissions, backup and disaster recovery procedures as well as system hardening requirements, access control management, system logging and auditing of network devices and security appliances
Complete deployment of Wireless part on CIsco IR 829 router. Creating SSID, Tweaking Authentication
Enable web users and authenticate remotely to access IR 829 Access point

• Installed and supported hardware and software, including desktops, servers and printers.
• Worked closely with end users to solve problems related to hardware and software.
• Deployment of open source network monitoring applications such as Cacti, Icinga and Nagios for Network performance monitoring and analysis
• Maintained documentation on configurations and maintenance using component labeling and technical diagrams.
• Delivered software patches to network computers and performed regular data backups to ensure security processes were compliant.
• Conducted in-depth network reviews and tightened up security policies to monitor access and prevent cyber threats.
• Enhanced network security with the implementation of firewall policies and regular vulnerability assessments.
• Investigated and corrected problems with printers, copiers and other peripheral devices.
• Conducted regular preventative maintenance on networks to ensure continued stability and performance.
• Monitored network hardware operations to evaluate proper configuration.
• Analyzed root causes of recurring issues to develop long-term solutions that increased reliability across multiple networks.
• Managed network upgrades, migrations, and expansions while minimizing disruptions to daily operations.
• Performed regular audits on network devices for policy compliance, identifying areas requiring improvement or remediation efforts.
• Designed and implemented cloud network infrastructures along with intra- and inter-data center connections.
• Improved network performance by troubleshooting and resolving hardware, software, and connectivity issues.
• Assisted in the design of scalable wireless networks that accommodated future growth while maintaining high levels of security.
• Designed robust backup solutions to protect critical data from loss due to hardware failures or other unexpected events.
• Documented support procedures, processes and solutions in centralized systems, enabling user self-service.
• Designed and evaluated WAN and LAN connectivity technologies.