Recommend, design, implement, and support application delivery infrastructure integration

into business solutions, while meeting the business goals and objectives. This includes

supporting documentation and diagrams detailing the specific infrastructure.

Design and implementation experience with F5 BigIP LTM and GTM appliances and virtual

appliances.

Excellent understanding of LTM configuration (VIPs, Persistence, SNAT, SSL, etc.).

Analyse network topologies and traffic/capacity requirements.

As a network security consultant, implement network perimeter security to comply with

information security policy of the organization. This includes proposing the solutions to

customers for approval and implementation.

Design and implement ID based network access control methods for users to access private as

well as public cloud.

Implement remote access control methods using different VPN technologies including SSL,

IPSEC, PPTP and L2TP with strong authentication using multifactor authentication.

Vulnerability assessment and testing.

Facilitate design, implementation and troubleshooting for host and network based IDS/IPS

systems including SNORT.

Design, deploy and manage threat-free network infrastructure by implementing Anti-Spam,

Anti-Virus and Anti-Malware solutions.

Design and deploy SIEM solution and event management solutions along with hands-on

troubleshooting.

Maintain security standards for all 22 data centres across the globe.

Responsible for round the clock network operation for branch infrastructure supporting 10k+

associates spanned across 150+ projects with different domains like finance, healthcare,

education, government and more.

Managed and mentored team of 20 associates across 3 locations of Garima Park, GIFT city and Bhopal.

Gathered requirements from different customers and cross functional team to give desired IT

solutions with security controls in place.

Responsible for network design and implementation of Local Area Network and Campus Area Network.

Configuration ACL, site to site configuration, NAT/PAT, URL filtering, application filtering, content

ID filtering profile firewall.

Integration of Network Devices to Cisco ACS and Cisco ISE for device and end point authentication.

Responsible for Availability & Capacity Management for branch network and security infrastructure.

Handled Data Centre operation having 70 racks, 150+ network and security devices, 100+ physical &

virtual server and 500+ TB storage spread across 3 sites in Gujarat & MP.

Monitored and managed 1700 VDI users.

Responsible for managing CAPEX & OPEX for IT infrastructure.

Designed, tested and commissioned DRP for critical business units and enterprise applications

along with formulation of BCP. Conducted regular DR mock drills to assure continuity of business.

Prepared and deployed risk mitigation plans by identifying and tracking risks.

Actively participated in preparing documents for triple external audit such as ISO 9001, ISO

20000 and ISO 27001 conducted at TCS Gandhinagar.

Redesigned, updated, and established network topography standard.

Deploying and configuring L2, L3 switch, router, firewall and load balancer.

Replaced legacy routers with Cisco ASR series.

Part of a firewall and security team in support of Checkpoint, Cisco and Palo Alto firewalls,

Zscaler Proxy, Juniper Portals, SecAuth, Open LDAP and Active Directory.

Configured Cisco 2821, 2921 and 3845 CE routers to change them from EIGRP to a complex

MPLS environment that includes VRF, IPSEC VPNs, Broadband Tunnels, HSRP and VLANs.

Configured Cisco and Juniper switches to add VLANs for wireless project, VLANs, LACP, RSTP,

Dot1x and QoS protocols for MPLS.

Configured Cisco Wireless Access Points 1100, 3600 through Cisco NCS Prime. Imported

diagrams to create campuses, buildings and to map wireless APs location.

Responsible for verifying change records of routers, firewalls, switches and DHCP configurations

before applying.

Prepared multiple routers simultaneously for circuit turn-up, pushing MPLS configuration, and

MPLS migration using Cisco NCM and prescripted TCL configurations.

Configured routers for Controller Card Preparation, applying MPLS Configurations, MPLS

Circuit Turn-up, MPLS Circuit Migration, Broadband Migration, Post Migration Clean-up, PPP, PPP

Multilink, QoS, VPNs and Broadband Tunnels.

Network monitoring through Solar winds, Manage engine and Whatsup gold.

Implemented network change request for VLAN, MAC binding, ACL, STP, Dot1x, vPC, VRF, OSPF,

BGP for new project requirement.

Configured IPSEC, SSL and Clientless VPN, static and dynamic routes, URL filtering, threat

prevention, User-ID, App-ID, Antivirus policies, NAT and Access rules.

Vulnerability assessment and penetration testing of network infrastructure and closure of

vulnerability or open action item.

Managed backup of network infrastructure devices through FTP Script and Cisco Prime tool.

Performed syslog analysis of network devices.

Firewall rule base reconciliation on quarterly basis.

Prepare ITIL report on monthly basis.

Coordination with various service provider for GCN/shared MPLS, dedicated MPLS, internet and

P2P link setup.

Network Device BCP drill execution.

Actively participated for security & IQMS audits and project specific audits.

Responsible for 24/5 IT support for 1200 users by maintaining SLA in Incident Management &

TAT for Change Management.

Maintained Security Compliance for Network Devices.

Become Auditee in Internal/External/Customer Quality and Security Audits.

Developed Technical skills to T/S any network issues and resolve it on timely manner.

Implemented change request for network related changes to support project requirement.

Support Project for BCP & Mock Drills.

Rollout new network and security changes post successful testing.

Managed and provided support to 1400 stores network for Toys R US company of USA by

handling Wireless devices and L2 Network Devices remotely.

Coordination with various vendors for HW replacement of NW devices and L3 Network Team &

ISP for Priority 1 Cases / Network Outage.

Monitored all the network devices and carried required actions.