Summary
Overview
Work History
Skills
Certification
Summary Of Expertise
Timeline
Generic

Tejaswini

Summary

Having 5+ years of experience in IP Network Design, Network Integration, deployment and troubleshooting. Experience in Network Security that includes perimeter security for Internet, Extranet, DMZ, Internal Server farms, Web-traffic security with Proxies, Web Application firewalls. Worked and migrated multi-vendor equipment and Next generation firewall technologies. Worked on ASA, Firepower, Checkpoint and Palo Alto firewalls. Experience on MWG, Bluecoat and Zscaler proxies. Experience with Palo Alto firewalls for traffic filtering and applying policies through PANORAMA and local console. Experience utilizing industry standard network management tools such as Riverbed, SolarWinds, PRTG, Zabbix Working knowledge and demonstrated experience on the PAN-OS 6, 7.1, and 8.0 versions: PA 220, PA 820, PA-2K, PA-3K and PA-5K firewalls. Thorough knowledge and hands on experience on the Palo Alto firewall User-ID’s, App-ID’s, SSL Decryption, URL Filtering, Policies, Zone Protection, High Availability, and Certification Management. Worked on Check Point Firewall R77, R80 versions; 3000, 5000 series security gateways. Experienced in Palo Alto Firewalls, Juniper Firewalls, Check point firewalls, Fortinet Firewalls, Cisco WSA/CWS, Cisco ASA, SSL VPN, Cisco Nexus, Cisco ACS, Cisco ISE and IPS. Hands on with Blue Coat URL filtering with white listing and blacklisting URL, creating rules for content filtering. Strong hands-on experience on Palo Alto (5060, 3060), Checkpoint Firewall R77, juniper and Cisco ASA 5585 firewall. Worked extensively on Data Centre Palo Alto firewalls and F5 BIG-IP LTM. Migrating Palo Alto 5060 & 7060 firewalls and configuring IPS/IDS and content Filtering Configuring and implementing IPsec VPN tunnel between ASA 5550 Firewalls, Palo alto 5060, 7060 firewalls Applied access list, NAT & IPS/IDS configurations. Deploying and upgrading Palo Alto 5060 & 7060 firewalls and establishing IPS/IDS, anti-malware Experience with Migrations of Cisco ASA firewall to Palo Alto firewall Responsible for check point and Cisco ASA firewall administration across global networks. Generated heat map to design the wireless infrastructure and deployed the access points successfully. In-depth knowledge in designing, implementing, configuring with best practices on NexGen IDS/IPS Firewalls such as Palo Alto, Cisco Firepower (Sourcefire). Created Route maps on F5 BIG-IP GTM to link various VIPs from different F5 BIG-IP LTM to GTM. Troubleshoot and worked with security related issue of Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net-screen firewalls. Worked with Cisco ISE for TACACS, RADIUS and NAC. Experience in securing and monitoring across the network with DMVPN over IPSEC, IPSEC Site-to-Site VPN, IPSEC Remote Access VPN using proper ACL and NAT. Administrated a network using Network Access Control List (NAC) to enhance security of the LAN network. Expertise in URL filtering with Forcepoint, Email and web security with Cisco IronPort. Proficient in using firewall technologies including general configuration, security policy, rules creation and modification of Cisco ASA, Juniper SRX and Check point. Expertise knowledge in scripting (Perl/Bash/Python), VMware, ticketing tools like ServiceNow, Remedy and network security including NAT/PAT, ACL, VPN and IPSEC on DMVPN. Upgraded IOS, IOS-XR, IOS-XE and NXOS for both cisco routers and switches. During POC, Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment. Deployed, Managed, monitored, and supported Bluecoat Proxy for content filtering, internet access between sites and VPN client users, forward proxy scenario and reverse proxy scenario for security and worked on adding URLs in Bluecoat Proxy SGs for URL filtering. Upgraded IOS, IOS-XR, IOS-XE and NXOS for both cisco routers and switches.

Overview

5
5
years of professional experience
1
1
Certification

Work History

Sr. Network Engineer

American Airlines
TX
06.2024 - Current
  • Installing, configuring, and managing highly available and scalable datacentre and cloud networks to ensure seamless operations
  • Designing, implementing, and maintaining robust firewall infrastructures to protect the organization from external and internal threats
  • This involves configuring and managing firewalls from vendors such as Cisco, Palo Alto Network, PA-850 NGFWs, Fortinet, and Juniper
  • Configuring and managing Azure networking components, including Virtual Networks, Load Balancers, ExpressRoute, VPN Gateways, and Network Security Groups (NSGs)
  • Leveraging automation, orchestration, and continuous integration/continuous delivery (CI/CD) practices to transform and optimize network operations
  • Providing strategic counsel to leadership on technology roadmaps, presenting innovative concepts to improve business processes, and collaborating with internal experts and external partners to deliver robust network solutions
  • Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps
  • Developing and deploying IP networks based on Windows platforms, including routers, switches (VLANs on layer 3 switches), firewalls, VPNs, virtual servers, web servers, and database servers
  • Managing and setting standards for data backups, system disaster recovery, and maintaining operating systems such as Windows OS, SQL, Linux OS, VMware, SAN systems, and Microsoft 365
  • Environment: Cisco 2800/2900/3550/3750/6500/9300/9400 switches, Cisco 1600/2600/2800/7300/9300/9400 routers, Juniper EX2200, EX3200, EX4200, EX4500, EX8200,MX-3200, M Series, SRX210, SRX240, SRX 3600/6500, Cisco ASA Firewall, Nexus 7000, 5000 and 2000 switches, EIGRP, RIP, OSPF, BGP, VPN, and Ether Channels, Palo Alto firewall PA-850 NGFWs

Sr. Network Engineer

Sheridan
FL
10.2023 - 05.2024
  • Design and implement Cisco ACI in data centres, create a strategy that allows use of containers, cloud orchestration tools for end users and developers
  • Configured & Deployed Cisco ASA firewalls, Next-Gen Firepower Threat Defence (FTD), Firepower Chassis Manager (FCM), Firepower Management Centre (FMC), Cisco Security Manager
  • Primary POC for various infrastructure teams to collaborate on networking projects in flight
  • Working with team to scope, build, design and implement a new Colo
  • Working with scripting on Python, learning as I go
  • Palo Alto design and installation (Application and URL filtering, SSL decryption, SSL Forward Proxy)
  • Configured and maintained IPSEC and SSL VPNs on Palo Alto Firewalls
  • Successfully installed PA-5000 series firewalls in Data Center as perimeter Firewalls
  • Worked on Nexus 5k, 7k & 9k switches and log into routers and switches to manage configuration changes
  • Worked on end-to-end project for the Inbound & Outbound DMZ firewalls migration from Cisco ASA to Cisco Firepower Next-gen firewalls
  • Configured and maintained high availability Check point firewalls in a Provider-1 environment
  • Worked on implementation of load balancer configuration and VPN using the Citrix NetScaler
  • Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewalls and centralized GUI Panorama
  • Created ACI EPGs (End Point Groups) contract policies, VRFs and bridge domains for tenants
  • Worked with internal/external customers & application teams for the firewall access issues & Troubleshooting using Splunk, FMC, packet capture, packet tracer & TCP dump
  • Experience in performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s
  • Configured and maintained VPCs with 7010/7018 and 5548 in the network
  • Also, configured and maintained VDCs in 7010/7018 switches, maintained VRFs in those separate VDCs
  • Experience on working with ansible to control multiple cisco devices to push configuration
  • Deployment of Palo Alto firewall into the network
  • Configured the Access List Policies on protocol-based services
  • Experience in working at Data Centre
  • Built HA pair for the Firepower Management Centre between the two Data Centres for the disaster recovery
  • Played a key role in building the remote data centre for disaster recovery solutions
  • Environment: Cisco 3650/2920/4510/4948/4507 switches, Cisco 1921/891F/3600/4300/4400 series routers, Nexus 5k, 7k & 9k switches, Next-Gen Firepower Threat Defence (FTD), Firepower Chassis Manager (FCM), Firepower Management Centre (FMC), EIGRP, RIP, OSPF, BGP, VPN, and Ether Channels, Palo Alto firewall, MPLS-based VPN, Juniper MX480s, EX8200s, EX4500s, EX4200s, and SRX5800s devices

Security Engineer

Applied Materials
CA
11.2022 - 09.2023
  • Design, implementation, and operational support of routing/switching protocols in complex environments including IS-IS, BGP, OSPF, EIGRP, Spanning Tree
  • Manage Cisco and Juniper Firewall access lists, address translation, and Site to Site IPsec and remote connection VPN's
  • Design and installation Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering)
  • Configuring and administering Checkpoint firewall and UTM (Unified Threat Management) Systems
  • Experience working on Cisco ASR 9K, Nexus 7k and 9K
  • Configured and designed OSPF, EIGRP and BGP at Distribution and Core layers
  • Configured OTV layer 2 connection between Data centers on Nexus
  • Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs)
  • Scheduled maintenance of Nexus (2248, 5548, and 7010) switches so that there are no Orphan ports in the network, and all Users to be dual homed, so that they have sufficient redundancy
  • Configured ASA 5500 to ensure high-end security on the network with ACLs and Firewall
  • Collaborate with application owners to define dependencies, map dependencies for better application workflow within ACI or public cloud use
  • Built a VPC, established the site-to-site VPN connection between Data Centre and AWS
  • Responsible for implementing, designing, configuration and providing Cisco ISE security solutions for multiple enterprise customers
  • Responsible for Cisco ASA firewall administration across our Organizational networks
  • Design, Implement & troubleshooting of Juniper switches, routers, and Firewalls EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX 3600/650
  • Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
  • Build and configure Active/Standby Failover on Cisco ASA with stateful replication
  • Successfully installed Palo Alto PA-3060 firewalls to protect Data Centre and provided L3 support for routers/switches/firewalls
  • Configured EBGP load balancing and ensured stability of BGP peering interfaces
  • Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps
  • Performed the ACL request changes for various clients by collecting source and destination information from them
  • Troubleshoot the BIG-F5 1600 LTM through constant contact with the vendor
  • Mapped, Network Diagrams and physical identification in MS Visio
  • Environment: Cisco 2800/3550/4300 switches, Cisco 1800/2800/3600/4300 routers, Cisco ASA Firewall, EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX 3600/650 devices, Palo Alto firewall, F5 load balancer, ACL, EIGRP, RIP, OSPF, BGP, VPN, and Ether Channels

Network Engineer

Locuz Enterprise
Hyderabad
08.2021 - 07.2022
  • Configured OSPF and BGP on Cisco 3850 and Aruba 3810 switches
  • Configured routing policy for BGP
  • Switching related tasks included implementing VLANs
  • Hands on experience on NAT (Network address translation) configurations and its analysis on troubleshooting issues related access lists (ACL)
  • Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall
  • Worked on the migration project of Juniper SSG to Juniper SRX firewalls
  • Migrate studies from the Cisco ACE Load Balancer appliance to the Citrix NetScaler Load Balancer appliance
  • Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers
  • Firewall policy administration and support on Checkpoint as well as Cisco ASA Firewall
  • Configuring TACACS, LDAP, and RADIUS for Cisco ASA and Palo Alto fireballs
  • Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for data centre access architecture
  • Manage Cisco and Juniper Firewall access lists, address translation, and Site to Site IPsec and remote connection VPN's
  • Helped in design and installation of test network environment of over 300 servers running in parallel of production data centre
  • Collecting data on Attacks to help SOC engineers create reports for auditing purposes
  • Deployment of Palo Alto firewall into the network
  • Configured the Access List Policies on protocol-based services
  • Built site-to-site IPsec VPNs over Frame-relay & MPLS circuits on various model’s tor Cisco routers to facilitate adding new business partners to new and existing infrastructure
  • Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
  • Troubleshooting of protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow
  • Professional level of familiarity implementing and troubleshooting JUNOS and NETSCREEN based Juniper firewalls (SRX, ISG)
  • Migrated VIPs from old Cisco ACE and CSM to F5 Load balancers
  • Sound knowledge of data communication wiring (CAT5/5E/6A and Fiber optics)
  • Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions
  • Configuring ACL to allow only authorized users to access the servers on Check point firewalls
  • Design and configuring of OSPF, BGP on Cisco Routers
  • Environment: Cisco 2800/2900/3550/3750/4500/5500/6500 switches, Cisco 1600/2600/2800/3600/7300 routers, Juniper EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX 3600/6500, Cisco ASA Firewall, Nexus 7000, 5000 and 2000 switches, EIGRP, RIP, OSPF, BGP, VPN, and Ether Channels, Palo Alto firewall

Network Engineer

Catalyst Networks
Hyderabad
06.2020 - 07.2021
  • Documented all the work done by using Visio, Excel & MS word
  • Experience in configuring, upgrading, and verifying the NX-OS
  • My responsibilities include Monitoring and Configuration of Cisco ASA 55xx series firewalls
  • Assisted senior NOC technicians in monitoring computer networks, data centre infrastructures, and servers for various issues from a centralized location as well as actively responded to client support calls
  • Maintained and managed network infrastructure components and cabling systems
  • Have experience in Install and monitor application traffic using Network protocol monitoring tools such as NTOP and Wire shark
  • Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration
  • Configured EBGP load balancing and ensured stability of BGP peering interfaces
  • Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps
  • Supervised the installation and testing of electrical circuits within data centre panels and PDU's
  • Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls
  • Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution
  • Mapped, Network Diagrams and physical identification in MS Visio
  • Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently
  • Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan
  • Environment: Cisco 2900/3550/3850/4500/6509 switches, Cisco ASA Firewall, VTP, HSRP, EIGRP, RIP, OSPF, BGP, VPN, and Ether Channels, check point Firewall, SRST Testing

Skills

  • Router platforms
  • Cisco routers
  • Cisco Catalyst switches
  • Switch platforms
  • Juniper Platforms
  • Networking Concepts
  • Firewall
  • Network Management/Monitoring
  • Load Balancers
  • WAN technologies
  • LAN technologies
  • Security Protocols
  • Networking Protocols
  • Operating System
  • Wireless/ Voice

Certification

  • Cisco Certified Network Associate
  • Cisco Certified Network Professional

Summary Of Expertise

Having 5+ years of experience in IP Network Design, Network Integration, deployment and troubleshooting. Experience in Network Security that includes perimeter security for Internet, Extranet, DMZ, Internal Server farms, Web-traffic security with Proxies, Web Application firewalls. Worked and migrated multi-vendor equipment and Next generation firewall technologies. Worked on ASA, Firepower, Checkpoint and Palo Alto firewalls. Experience on MWG, Bluecoat and Zscaler proxies. Experience with Palo Alto firewalls for traffic filtering and applying policies through PANORAMA and local console. Experience utilizing industry standard network management tools such as Riverbed, SolarWinds, PRTG, Zabbix. Working knowledge and demonstrated experience on the PAN-OS 6, 7.1, and 8.0 versions: PA 220, PA 820, PA-2K, PA-3K and PA-5K firewalls. Thorough knowledge and hands on experience on the Palo Alto firewall User-ID’s, App-ID’s, SSL Decryption, URL Filtering, Policies, Zone Protection, High Availability, and Certification Management. Worked on Check Point Firewall R77, R80 versions; 3000, 5000 series security gateways. Experienced in Palo Alto Firewalls, Juniper Firewalls, Check point firewalls, Fortinet Firewalls, Cisco WSA/CWS, Cisco ASA, SSL VPN, Cisco Nexus, Cisco ACS, Cisco ISE and IPS. Hands on with Blue Coat URL filtering with white listing and blacklisting URL, creating rules for content filtering. Strong hands-on experience on Palo Alto (5060, 3060), Checkpoint Firewall R77, juniper and Cisco ASA 5585 firewall. Worked extensively on Data Centre Palo Alto firewalls and F5 BIG-IP LTM. Migrating Palo Alto 5060 & 7060 firewalls and configuring IPS/IDS and content Filtering. Configuring and implementing IPsec VPN tunnel between ASA 5550 Firewalls, Palo alto 5060, 7060 firewalls Applied access list, NAT & IPS/IDS configurations. Deploying and upgrading Palo Alto 5060 & 7060 firewalls and establishing IPS/IDS, anti-malware. Experience with Migrations of Cisco ASA firewall to Palo Alto firewall. Responsible for check point and Cisco ASA firewall administration across global networks. Generated heat map to design the wireless infrastructure and deployed the access points successfully. In-depth knowledge in designing, implementing, configuring with best practices on NexGen IDS/IPS Firewalls such as Palo Alto, Cisco Firepower (Sourcefire). Created Route maps on F5 BIG-IP GTM to link various VIPs from different F5 BIG-IP LTM to GTM. Troubleshoot and worked with security related issue of Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net-screen firewalls. Worked with Cisco ISE for TACACS, RADIUS and NAC. Experience in securing and monitoring across the network with DMVPN over IPSEC, IPSEC Site-to-Site VPN, IPSEC Remote Access VPN using proper ACL and NAT. Administrated a network using Network Access Control List (NAC) to enhance security of the LAN network. Expertise in URL filtering with Forcepoint, Email and web security with Cisco IronPort. Proficient in using firewall technologies including general configuration, security policy, rules creation and modification of Cisco ASA, Juniper SRX and Check point. Expertise knowledge in scripting (Perl/Bash/Python), VMware, ticketing tools like ServiceNow, Remedy and network security including NAT/PAT, ACL, VPN and IPSEC on DMVPN. Upgraded IOS, IOS-XR, IOS-XE and NXOS for both cisco routers and switches. During POC, Cisco ACI (Application Centric Infrastructure) SDN architecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment. Deployed, Managed, monitored, and supported Bluecoat Proxy for content filtering, internet access between sites and VPN client users, forward proxy scenario and reverse proxy scenario for security and worked on adding URLs in Bluecoat Proxy SGs for URL filtering. Upgraded IOS, IOS-XR, IOS-XE and NXOS for both cisco routers and switches.

Timeline

Sr. Network Engineer

American Airlines
06.2024 - Current

Sr. Network Engineer

Sheridan
10.2023 - 05.2024

Security Engineer

Applied Materials
11.2022 - 09.2023

Network Engineer

Locuz Enterprise
08.2021 - 07.2022

Network Engineer

Catalyst Networks
06.2020 - 07.2021

Similar Profiles

CREATE PROFILE
Tejaswini