Summary
Overview
Work History
Education
Skills
Websites
Certification
Timeline
Generic

Suresh Reddy

Senior Network/ Security Engineer
Austin,TX

Summary

Results-driven Network Engineer with 8 years of expertise deploying and maintaining LAN and WAN infrastructure. Dedicated technology professional with strong track record of accurately conducting system repairs and troubleshooting. Offering exemplary planning, project management and communication talents.

CCNP certified engineer with experience in routing and switching technologies, system design, implementation and troubleshooting of complex network systems including high-end routers.

Hands on experience of data center environment and implementation of VPC, VDC and Fabric path on Nexus 7K, 5K, & 2K Switches.

Working experience on various firewalls of different vendors which include Palo Alto PA-5220, PA220 &Panorama and Cisco ASA 5585-X.

Having good hands on experience in working with monitoring and managing the nodes within the network using Network monitoring tools like SolarWinds Orion NPM. Given support for RADIUS and TACACS+ servers for network device access control.

Implemented Cisco ISE for delivering consistent, highly secure access control across wired and wireless multi-vendor networks and remote VPN connections.

Overview

8
8
years of professional experience
4
4
years of post-secondary education
2
2
Certifications

Work History

Senior Network/ Security Engineer

Network Security Engine Lower Colorado River Authority
03.2020 - Current
  • Cisco 5520 ASA appliance, Wireless LAN upgrade project. Assisted infrastructure team with the installation of 60 cisco 3700 series AP, around the building.
  • Configured Security policies including NAT, PAT, VPN's and Access Control Lists.
  • Configured VDC's on NEXUS 7K for creating multiple logical switches and HSRP and VLAN trunking 802.1Q, VLAN Routing on Catalyst 6500 switches.
  • Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments in data center.
  • Worked exclusively on designing Data Center as well as Edge side.
  • Created comprehensive project plans, and coordination of team members, third-party contractors, and consultants
  • Assisted with strategic plans and roadmaps for future Infrastructure initiatives; tracking project milestones and deliverables; identifying and mitigating issues; resolving conflicts with the project; and developing/presenting proposals, reports and project plans to management.
  • Hands on experience with Upgrading and troubleshooting Cisco / Juniper on the edge side.
  • Configured Juniper EX series Layer2 and Layer3 and supervised equipment installation work
  • Experienced in develop, deploy, monitor, and improve business processes that make use of these support systems.
  • Performed NX-OS upgrades on all nexus platform, Experience in Configuring VDC, vPC (single sided and double sided) on N7K and N5K.
  • Writing ACL's as per the request of customers on ASA/SRX firewalls
  • Worked on maintaining the system; code upgrades, reviews, configuration changes, and monitoring. Backup cycles and security reviews are performed on an ongoing basis
  • Coordinate Citrix related implementation activities across various functional groups to help prioritize and schedule appropriate resources.
  • Configured Citrix NetScalerresponder policy and to maximize the performance and availability of all applications and data, and also provide secure remote access to any application from any device.
  • Installed and configured Firewall in Internet Edge and Firepower Series using Cisco ASA.
  • Firepower Series using Cisco ASA for additional vulnerability scanning.

Senior Network/ Security Engineer

Health Partners
09.2018 - 02.2020
  • Worked on Datacenter Migration project to migrate the existing 6509, 4509 devices to a Nexus 7010, 5010 and Nexus 2248 FEX based solution.
  • Experience configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 7010/7018
  • Configured and maintained VDCs in 7018 switches, maintained VRFs in those separate VDCs.
  • Scheduled maintenance of Nexus 2248, 5548 and 7010 switches so that there are no Orphan ports in the network.
  • Performed upgrade of NXOS from 6.2.2a to a higher version to increase performance and support new features on both N7010 & N7710 chassis.
  • Proficient in Configuring VPC between the Cisco Nexus 7k, 5k.
  • Responsible for the conversion of the existing environment from an EIGRP to OSPF setup to facilitate the migration of Core from Cisco to Juniper.
  • Experience performing troubleshooting on slow network connectivity issues, and Performance issues on F5 load balancers and Cisco ASA Firewalls.
  • Deploying and decommissioning Cisco switches/Firewalls and their respective software upgrades.
  • Hands on experience in Configuring VPN, routing, NAT, access-list, security contexts, and failover in ASA firewalls.
  • Maintained TACACS+/RADIUS Servers for AAA authentication and User authentication.
  • Worked on F5 BIG-IP LTM, configured profiles, provided and ensured high availability
  • Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing and deploying emergency hot fixes within a global network
  • Experience in F5 iHealth reports creating and maintaining high quality installation guides, standards documents, diagrams, run books and other engineering documentations.
  • Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.
  • Working knowledge and understanding of MAB configuration on ACS & ISE.
  • Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
  • Using Cisco ISE Deployment Assistant (IDA) to validate and document endpoint authentication status during monitor mode deployments.
  • Worked on configuration of Aruba Controllers (200, 650/651, 800 and 3600).
  • Worked on Catalyst 4506E, 4507, 6503E and 6506Eseries switches along with Nexus 5020 switches in change of configurations and maintenance.
  • Documented migration of data center from legacy switches to nexus switches.
  • Handled LAN environment involving HSRP, VLANs, Trunking and Spanning Tree protocol.
  • Upgraded the remote access (VPN) and firewall environment for the entire organization
  • To ensure that day-to-day Operations run smoothly. Change management and third level incident management being the primary responsibility, participate directly as well as take escalations from the team members as and when required.
  • Created Visio documentation to give complete picture of network design for each building.
  • Hands on experience in Troubleshooting IOS related bugs based on history and appropriate release notes.

Cisco ISE Network Engineer

Huntington Bank
07.2017 - 08.2018
  • Experience working with data center deployment where we converted from Cisco 6500 to Nexus.
  • Experience working with Nexus 5020, 2148, 2248 devices
  • Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
  • Troubleshoot wan related problems including OSPF, EIGRP, BGP routing and design
  • Supporting EIGRP, OSPF and BGP based network by resolving level 2 & 3 problems of internal teams & external customers of all locations
  • Deploying Cisco routers and switches such as 7200, 3800, 3600 and 3500, 4500, 5500.
  • Experience working with Cisco ASA 5585-X with firepower firewalls with Firewall rules, IPSEC VPN, NAT, Active-Standby Failover, OSPF and Any Connect VPN technologies
  • Designed, configured, implemented site-site VPN on cisco ASA 5585-X firewall.
  • Troubleshoot and Worked with Security issues related to Cisco ASA, and IDS/IPS firewalls.
  • Collaborating with Application owners, Network Team, DNS Team, and Firewall Team to migrate websites from Cisco ACE Load Balancer to New F5 BIG-IP Local Traffic Manager.
  • Deployed code upgrade from version 11.5.1 HF4 to version 11.5.4 on the F5 LTMs.
  • Configured F5 GTM solutions, which includes Wide IP (WIP), Pool Load Balancing Methods, probers and monitors.
  • Managed SSL Termination on F5 BIG-IP LTM which entailed creating Cert Request, importing, renewing and applying to Virtual Server hosting the Application.
  • Configuring and monitoring different modules F5 BIG-IP LTM and DNS traffic Management.
  • Management of Viprion 2400 chassis for the deployment of Big IP.
  • Perform Wireless Administration and troubleshooting for the corporate Wireless infrastructure.
  • Build Logical design and Implementation of Wireless Solution
  • Acquired strong skills in working with cloud based wireless technologies like 802.11a/n/g, CISCO Meraki
  • Basic configuration of Cisco Meraki Layer 2 and Layer 3 switches like MS 220, MS 320 and MS 420.
  • Acquired knowledge in working with Meraki wireless access points MR 12, MR 16, MR 24, and MR 34 etc.
  • Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
  • Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
  • Negotiate VPN tunnels using IPsec encryption standards and configured and implemented site-to-site VPN, Remote VPN on Cisco 5585-x Firewalls.
  • Management tools, SNMP, Syslog, Sniffer
  • Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP.
  • Implemented and configured SNMP, Syslog and traps on Cisco routes to allow for network management.
  • Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS

Senior Network Engineer

Client: TD Bank
09.2016 - 06.2017
  • Responsible in the Configuration of EIGRP, OSPF and BGP Involving in the configuration & troubleshooting of routing protocols on Cisco 2900, 3900, ASR 9010, ASR 1002 devices across locations and datacenters.
  • Hands on experience with Catalyst L3 switches and Cisco Nexus switches: 2232, 2248, 5548, 6001 and 7018(Sup 2E).
  • Operated with Sup 2E for 7018 Switch. And F cards for L2 switching and few M cards for L3 proxy routing purposes for F cards.
  • Functioned in upgrading system images on 5k and 7k Nexus switches using kick start and FTP server.
  • Experience with configuring FCOE using Cisco nexus 5548.
  • Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 to connect servers and storage devices.
  • Perform ISSU upgrade on Nexus 7010 devices by operating the supervisors in active/standby mode on the devices by determining ISSU compatibility.
  • Responsible for Firewall Administration, Rule Analysis, Rule Modification on ASA 5585, SRX550 devices.
  • Advance knowledge in installing, implementing and maintaining Juniper Firewalls SRX series.
  • Documented new VPN enrolments in a database and create standard procedures for further improvement.
  • Troubleshoot traffic passing managed firewalls via logs and packet captures.
  • The functionality with the DNS naming conventions and migrations from old load balancing environments to the F5 environment both 10.x and 11.x.
  • Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3750 at access layer, Cisco 6513 at distribution/core layer.
  • Created standard access lists to allow SNMP, NTP and logging servers.
  • Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6509 switches.
  • Deployed virtualized Network Switch functionality using Cisco Nexus 1000v using VMware vSphere 5.5
  • Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
  • Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
  • Negotiate VPN tunnels using IPsec encryption standards and configured and implemented site-to-site VPN, Remote VPN on SRX 550 Firewalls.
  • Performed upgrades for all IP series firewalls from previous Checkpoint versions (R75.40, R75.40VS, R75.45, R75.46, R75.47, R76, R77) to R77.10
  • Implemented all standard and non-standard ISDN and IP-VPN changes to company customer support connections.
  • Responsible for administrating Bluecoat and dealing with policies for user access like Blocking/Unblocking URL's.
  • Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
  • Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
  • Co-ordinated with the Data Network and Security team and came up with possible solutions.
  • Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning dhcp profiles.
  • Creating and Deploying of Virtual Machines from Templates and creating Snapshots and Cloning of Virtual Machines for future Deployments.
  • Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
  • Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO.
  • Created MOPS to get approval from peers to perform configuration add/ remove changes following change management process.

Education

Bachelors in computer science and engineering -

JNTU
Hyderabad
05.2010 - 01.2014

Skills

    RIPV1, RIPV2, IGRP, EIGRP, IS-IS, OSPF, BGP

CISCO Routers 1921, 1941, 2900, ISR 4461, NCS 520 CISCO Catalyst Switches 2960, 3560, 3650, 3750, 3850, 9200, 9300 and ASR 1k, 9k Core Catalyst 4503, 4507 RE, 6500/6503/6507, Nexus 2K, 5K, 7K series

Cisco ASA 5580,5585-X Firepower, Palo-Alto PA 5220, Cisco Any connect-VPN, Global Protect-VPN, ACL-Access Control List, IPS/IDS, NAT, PAT, Cisco ISE

IEEE 80211, Token Ring, Ethernet, Workgroup, Domain, HSRP, DNS, Static, VLAN, STP, VTP, Ether Channel, Trunks

DM-VPN, GET-VPN, VPN, IPsec-VPN

F5 Big IP LTM - Viprion 2000 series,3000 series, Citrix Netscaler MPX series

SNMP, Syslog, Sniffer, Netflow, and Wire shark, Cisco Prime, Solar winds Orion, NetBrain

Cat 6,5e,5, Single/Multi Mode Fiber (1G, 10G), Fiber Connector types SC, LC, FC, CWDM/DWDM Fiber Multiplexers

Websites

Certification

Cisco Certified Network Associate (CCNA R&S)

Timeline

Senior Network/ Security Engineer

Network Security Engine Lower Colorado River Authority
03.2020 - Current

Senior Network/ Security Engineer

Health Partners
09.2018 - 02.2020

Cisco ISE Network Engineer

Huntington Bank
07.2017 - 08.2018

Senior Network Engineer

Client: TD Bank
09.2016 - 06.2017

Bachelors in computer science and engineering -

JNTU
05.2010 - 01.2014

Similar Profiles

CREATE PROFILE
Suresh ReddySenior Network/ Security Engineer