Home

Ramya Pabbathi - Network Engineer

[email protected]

Location: Remote, Remote, USA

Relocation:

Visa:

RAMYA PABBATHI Mobile: +1 (984)-327-0008 Email: [email protected] LinkedIn: https://www.linkedin.com/in/ramya-pabbathi-b37576330/ Professional Summary: 10 plus years of experience in Networking, including hands-on experience in providing network support, installation and analysis for a broad range of LAN /WAN/MAN communication systems. Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4. Moderate knowledge in configuring and troubleshooting Cisco Wireless networks; LWAPP, WLC, WCS, stand-alone apps, roaming, wireless security basis, IEEE 802.11a/b/g, RF spectrum characteristics. Experience working on Cisco ASR 9001&ASR 1006. Hands on experience on windows server 2007, 2008, 2012. Experience in Designing and assisting in deploying enterprise-wide Network Security and High Availability Solutions for ASA. Configure, Manage, Analyze, and Optimize Network Performance, Traffic, SD-WAN, VPNs, Security, Firewalls, & Policies. Working with Silver peak SD-WAN circuit. Turned up, tested and maintained DS0, T1 SONET and DS3, installed DSU/CSU and CPE. Upgraded Network to DOCSIS 3.1 for enhanced download / upload speeds, throughput, and channel bonding. Installation of IP Voice System PBX and Voice gateway Cisco SPA 8000. Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Hands on experience on dealing with Microsoft Azure cloud computing including implementing access lists in the Network Security Group. Responsible for Check Point and Cisco ASA firewall administration across global networks. Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration. Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability. Experience working with Nexus 7K, 5K, 2K devices. Experience in testing Cisco routers and switches in laboratory and deploy them on site production. Strong knowledge of TACACS+, RADIUS implementation in Access Control Network. Troubleshoot routing protocol issues within the NOC along with SPANNING TREE. Support Routing protocols BGP, OSPF, MPLS. Troubleshooting firewall rules in Cisco ASA, Checkpoint, and Zscaler. Troubleshoot and support Layer two 10 gig Ethernet technologies and ether channel. Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 appliance, Experience in designing MPLS VPN and QoS for architecture using Cisco multi-layer switches. Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Load Balancers& Cisco Firewalls. Expert knowledge of all facets of Citrix NetScaler and NetScaler Gateway ADC Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks. Experience on dealing with Aruba Wireless products including Access Points, Mobility Access Switches and Outdoor mesh routers. Deploy and manage with advanced security and network management tools like Aruba ClearPass Policy Manager, Aruba Airwave and cloud-based Aruba Central. Engaged in complex deployments of Avaya VoIP, Cisco, Foundry, Sun systems, EMC, Tandem, HP and Bay equipment for 9 Data Centers across the US. Highly creative problem solver with strong analytical ability, debugging and troubleshooting skills. Install, manage and maintain structure cable infrastructure for Data Centers and Office buildings nationwide for data/voice, satellite TV and wireless access points. Full configuration management of CMTS E6000. Management of node - moves across full CMTS lifecycle. Excellent in documentation and updating client s network documentation using VISIO. Performed switching technology administration including Vlans, inter-Vlan routing, trucking, port aggregation and link negotiation. Certifications: Cisco Certified Network Associate (CCNA) Cisco Certified Network Professional (CCNP) Core Competencies: Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation). Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP, IS-IS, RIP, SD-WAN WAN Protocols: HDLC, PPP, MLPPP Circuit switched WAN: T1/E1 T3/E3/OCX (Channelized, Fractional & full). Packet Switched WAN:ATM, FRAME RELAY, MPLS VPNs Security Technologies: Cisco FWSM/PIX/ASDM, Juniper SRX, Palo Alto, Checkpoint, F5 Load Balancer, ASA firewall Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600 Security Firewalls: ASA, Checkpoint, Palo Alto, Zscaler. Redundancy and management: HSRP, VRRP, GLBP, RPR, NSF/NSR, Citrix NetScaler, Wireshark, Solarwinds, SNMP Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS) Layer 2 technology: VLAN, HSRP, VRRP, GLBP, STP, RSTP, PVST+, MST, PVLAN, Optimizing STP (Port Fast, Uplink Fast, Backbone Fast, Root Guard, BPDU Guard) Layer 3 Switching: CEF, MLS, Ether channel (PAGP & LACP, Load Balancing) Switches: Cisco Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500, Arista 7500, 7050,7300 series, Cisco2948/3560/4500/3560/3750/3550/3500/2960 Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Red hat, Opens use, Fedora), Windows Servers 2003/2008Windows MS-Office, NSX-T v 2.5, VMware ESX 5.1, VMware Vsphere client, Microsoft Azure, office 365, Python Professional Experience Client: Comcast, Philadelphia, PA Jan 2023 Present Network Security Engineer Responsibilities Configuring rules and maintaining Palo Alto firewalls & analysis of firewall logs using various tools. Worked with Palo Alto firewalls PA3020, PA5020 using Panorama servers, performing changes to monitor/block/allow the traffic on the firewall. Worked to help clean up legacy FW policies and create migration path from current ASA to next gen Palo Alto firewall. Implement SSL VPN solutions including Palo Alto Networks Global Protect with single and multiple gateway solutions including integration of PKI certificates. Integrate multiple vendor IPSEC site to site VPNs, including Palo Alto Networks, Cisco ASA, and Juniper SRX firewalls. Worked on wild fire advanced malware detection using IPS feature of Palo Alto. Worked on Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering). Maintained and created scripts in Python that assisted in pulling in the necessary data to meet audit and reporting requirements. Configured Connectors along with Zscaler TAM And DAS team. Configuration of Cisco WAP s which includes AIR-AP1131/1141/1242.36xx-A-K9, Cisco WLC 4400,5000,6500 series and Cisco Switches 2k,3k and 5k series, Cisco Catalyst 6509 core switch, Cisco ASR 1001,1002, Cisco Routers 1941,2800(2811,2851),2800,4xxx series, HP Procurved/Aruba L2/L3switches 26xx,29xx,3500yl,6k series. Responsible for performing predictive wireless designs/site surveys with AirMagnet Planner (Cisco 3500/3600/3700/ Aruba 105 access points) and conducting physical wireless site surveys with AirMagnet Survey. Replacing Checkpoint VPN and Bluecoat proxy with Zscaler and worked on implementing Zscaler in Production. Migrating existing Routing configuration to SD-WAN. Configure and deploy CISCO routers and VOIP soft phones for VPN connectivity from remote locations and confirm connectivity with field engineers and lead escalated troubleshooting issues to resolution. Establish AWS technical credibility with customers and external parties. Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices. Worked extensively on Cisco ASA 5500(5510/5540) Series ,Nexus 7000 Series. Configured and optimized Aruba SD-WAN solutions to enhance network performance, security, and reliability. Designed and implemented scalable network solutions, focusing on routing, switching, and SD-WAN technologies. Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity. Implementing NSX-T in Greenfield environment and migrating workloads. Upgrading NSX-V to NSX-T with migration Coordinator. Maintain a thorough understanding of the basics behind the Internet and its interworking's (DNS, Firewall zones, ACL's, IP Routing, SSL, VPN, Content Filtering, etc.) Solid experience with designing and deploying security solutions for Network Access Control as well as experience with Firewalls, IDS/IPS, WAF, Proxies, DLP, DDoS, and Malware inspections solutions In depth knowledge and understanding of the Internet and its design (DNS, Security, IP Routing, HTTP/HTTPS, IPSEC, VPN, Email Routing, Virus Protection etc. Establishing a baseline ISE security rules/policy working with other service lane members Extensively worked on virtual F5 LTM module on VMware for application testing. Maintain Test automation cases, debugging failures in Jenkins and adding new test cases using Perl. Participate in DOCSIS planning/deployment operations, network architecture design and engineering. Design network test cases from existing DOCSIS test data to improve stb/cpe performance. Troubleshooting various protocols not inclusive to BGP, OSPF, and HSRP. Testing of DS1 and Ethernet layer 1 & 2 issues from customer CPE throughout the Level 3 core. Monitored and analyzed network security threats using Palo Alto Panorama for centralized firewall management. Designed and deployed Aruba SD-WAN solutions to improve network performance, reliability, and security. Configuration, troubleshooting and decommissioning on access / Common Platform Enumeration (CPE) platforms: Alcatel-Lucent 7750, 7210, 7360 and 5620. Integrated Palo Alto Next-Generation Firewalls (NGFWs) with Aruba SD-WAN to create a robust security framework. Testing tools and tools such as JIRA, HP Application Lifecycle Management, Iperf, Nmap and Averna DOCSIS packet capture. Design and deployed F5 LTM and GTM load balancer infrastructure per business needs from the ground up approach. Performed troubleshooting and monitoring of Aruba SD-WAN environments using Aruba Central and Orchestrator. Experience in working and designing configurations for VPC, VPC Domain, Vpc peer-gateway, VPC peer-switch, auto-discovery, VPC single sided, VPC double sided, NX-OS, Vfr, Otv, fabric path. Assist with the maintenance of Firewalls, Routers, Switches, Virtual Switches, Call Manager, Unity, Voice Gateways, VPN configuration, Wireless Controllers, Servers, and Security appliances for access to vital business applications in our private cloud and hosted. Expertise in BGP, OSPF, HSRP, and QoS to ensure efficient traffic flow and network redundancy. Developed monitoring tools using Python 3.x for the Network. Also developed deployment interface using Python 3.x for the network. Integrated and managed Palo Alto firewalls, IPSec VPNs, and security policies for enhanced network protection. Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K. Experience configuring, installing, and troubleshooting centralized network infrastructure such as routers, switches, ASA Firewalls, Juniper NSG, Firepower (FMC-4000, FMC-2000) etc. Strong knowledge on migration of DDoS attacks, IPsec & SSL implementation on Cisco and Palo Alto firewalls. Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations Documenting all the projects in word documents and plotting network Design in the Visio. Client: Cigna, Franklin Lakes, NJ Jul 2021 Dec 2022 Network Engineer Key Responsibilities: Involved in migration of network from cisco catalyst switches/ASA firewalls to Palo Alto. Install, upgrade and configure Next-Gen Palo Alto Firewall series PA-200, PA-500 Migrated the policies from Cisco ASA to Palo Alto Firewalls Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout Experience on dealing with office 365 including hosting Lync web Conferencing and assisting in installing office applications. Worked on SD-WAN technologies (Viptela, Meraki, Velo cloud and Silver Peak). Worked on Source Fire and Palo Alto IPS/IDS Systems. Provided Desktop Support for internal users Handle Service-Now tickets related to Cisco ASA & Zscaler, & VPN along with the connectivity issues and provide support when any issue is raised. Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation. Experience with design and implementation of Data center migration. Deployed and optimized Palo Alto Threat Prevention, URL Filtering, and Wild Fire for enhanced cybersecurity. Implemented IPSec VPNs and Global Protect for secure remote access and site-to-site connectivity. Selecting appropriate AWS service to design and deploy an application based on given requirements. Automated network implementations and tasks and designed monitoring tools using python scripting. Migrated complex, multi-tier applications on AWS. Defined and deployed monitoring, metrics and logging systems on AWS. Migrated existing on-premises applications to AWS. Experience on coordinating and monitoring entire organizations Authentication, Authorization and Accounting (AAA) systems. Configured and maintained DOCSIS-based broadband networks. Performed RF signal analysis and troubleshooting for DOCSIS services. DOCSIS 3.0/3.1/4.0, CMTS, Cable Modem, RF, Upstream/Downstream, Channel Bonding, QoS, PNM, TLV Encoding, Network Provisioning, HFC Networks. Maintained detailed network architecture diagrams, configurations, and process documentation. Optimized upstream and downstream channel bonding for improved performance. Configured and troubleshooting Aruba Wireless products like Access Points and Mobility Access Switches. Installed Riverbed WAN optimizer software to run applications via WANs to multiple branches across east coast. Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices. Deploy and update firewalls (Fortinet, Juniper, Cisco), support managed security appliances and manage VPN services for access to vital business applications. Configured and managed Palo Alto firewalls to enforce security policies and protect enterprise networks. Configured and optimized Aruba Edge Connect for seamless WAN connectivity across multiple branch locations. Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair. Implementation of Juniper Firewall, SSG Series, Net Screen Series ISG 1000, SRX Series. Worked on Juniper Net Screen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG 200. Experience on cisco wireless management systems which includes cisco 8540 Wireless controller, cisco 5520 Wireless LAN controller, and virtual wireless controllers. Integrated Aruba SD-WAN with cloud services (e.g., AWS, Azure) for secure and scalable hybrid cloud connectivity. Implemented traffic steering policies in Aruba SD-WAN to prioritize critical applications and optimize bandwidth usage. Implemented firewall policies, intrusion prevention, and security best practices to safeguard network infrastructure. Hands on experience on Cisco ISE and various network security concepts like SSH, IPsec, firewall polices and 802.1x Worked on Network Automation using python scripting Hands on experience working on Ansible Automation environments, supporting containers, Dockers and writing Python Scripts for Pre-ingest, post-ingest, migration tests. Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalysts Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability Work on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability Secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures. Deploying and decommissioning Cisco switches, Cisco Meraki Products and their respective software upgrades. Experienced with Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240. To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures. Provided proactive threat defense with ASA that stops attacks before they spread through the network. Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls. Created Visio Dean / Visio Documentation to give complete picture of network design for each building. Experience in Configuring, upgrading and verifying the NX-OS operation system. Data Vision, Frenchtown, NJ May 2019 Jun 2021 Sr. Network Engineer Key Responsibilities: Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies. F5 Big-IP load balancer configuration, layer 7 load balancing using I-Rules (TCL) Windows Server Administration (Windows 2000, 2003 & 2008). Performed installation and upgrades of office 365 Business as per the changes recommended by the network architect. Performed Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network. Conducted F5 Big-IP load balancer configuration, layer 7 load balancing using I-Rules (TCL). Extensive experience with F5 load balancers- LTM, GTM series like 6400, 6800, 5000 and 2000 for the corporate applications and their availability Worked on Palo Alto firewall migration tool. Implemented Proactive Network Maintenance (PNM) for DOCSIS networks. Troubleshooting the Juniper SRX100 and a hundred and ten series, Juniper NetScreen routers with Site-Site VPN, and firewalls for Supervalu Retail sites. Understanding of CMTS (Cable Modem Termination System) and Cable Modems. Identify, design and implement flexible, responsive, and secure technology services. Experience with Firewall Administration, Rule Analysis, Rule Modification. Implemented Positive Enforcement Model with the help of Palo Alto Networks. Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing. Creating and provisioning Juniper SRX firewall policies. Created standard access lists to allow SNMP, NTP and logging servers. Worked with CMTS vendors like Cisco, ARRIS, Casa Systems. Experience with network monitoring tools (e.g., PRTG, Wireshark, SNMP-based monitoring). Implemented QoS (Quality of Service) and traffic shaping in DOCSIS networks. Documented new VPN enrollments in a database and create standard procedures for further improvement. Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches. Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN. Provided proactive threat defense with ASA that stops attacks before they spread through the network. Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms. Co-ordinated with the Data Network and Security team and came up with possible solutions. Experience on dealing with Infoblox traffic control products to simplify DNS load balancing operations Scripting for automation of processes for Windows Servers. Familiarity with main script languages like Power Shell, PHP, Shell, Perl, Python Managed and maintained Fortinet Firewalls through IPv4 policies, traffic shaping, IPS, web filtering, interfaces, and routing Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards. Monitoring and troubleshooting network issues between client site and 85 remote sites with legacy switches and routers. Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required Configuration and maintenance of EIGRP and BGP network on router 7200 and 6500 MLS. Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane. Configuration and management of NEXUS network in the existing network infrastructure. Created LAB setup with 7k and 5K NEXUS switches and Arista 7K for application testing. Barnes Jewish/Christian health care, St. Louis, MO May 2017-Apr 2019 Network Engineer Responsibilities: Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problem Managing enterprise BGP setup by configuring and troubleshooting BGP related issues. My responsibility Worked as part of a team to manage Enterprise Network Infrastructure as a Tier 3 Support Engineer. Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues. Configuring and Upgrading Junos Space Virtual Appliance. Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability Experience in converting PIX rules over to the Cisco ASA solution. Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide security and controlled/restricted access. Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure. Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches Responsible for maintaining the entire Routing and switching domain across the campus / Branch to Head Office and also the Layer-2 campus network across the remote branches, which included configuring VLANs and Trunks, Spanning Tree protocol, Port-Security, VLAN-MAPs and DOT1X for switches and Wireless. Audible, Newark, NJ Mar 2014 - Apr2017 Jr. Network Specialist Responsibilities: Assisted in troubleshooting LAN connectivity and hardware issues in the network of 100 hosts. Involved in analysis of client requirements to provide solutions for network design, configuration, administration, and security. Basic and advanced F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers Troubleshooting complex Checkpoint issues, Site-to-Site VPN related. Performed upgrades for all IP series firewalls from R75-R77 Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP. Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP. Created a backup and recovery policy for software application and verified peripherals are working properly. Monitor performance of network and servers to identify potential problems and bottleneck. Performed RIP & OSPF routing protocol administration. Worked extensively on Checkpoint firewalls for analyzing firewall change requests and implementing changes into existing firewall policies, maintaining security standards Involved in interaction with support services to reduce the downtime on leased lines. Primarily involved in Troubleshooting issues on a day-to-day basis & provide solution that would fix the problems within their Network. Monitor the operability and reliability of the network. Maintenance and troubleshooting of connectivity problems using Ping, Trace route. Managed the IP address space using subnets and variable length subnet masks (VLSM). LAN cabling in compliance with CAT5 standards. Worked along with the team in ticketing issues. Keywords: ffive hewlett packard microsoft Colorado Missouri New Jersey Pennsylvania South Dakota