Compugen IncSr. Network and Security Administrator, Managed services - at FortisBC
May. 2015 - May. 2019Surrey, British Columbia- Provided day-to-day maintenance/support of PaloAlto PA-5020 HA, Multi-VSYS firewall infrastructure, PaloAlto Panorama and GlobalProtect VPN client
- Worked on PaloAlto APP-ID, User-ID, security profiles like Anti-virus, Threat Prevention, URL-filtering, Wildfire, Zone Based firewalling, DNS Sinkholing and other security features
- Configured and maintained IPSEC/SSL VPN's on PaloAlto Firewalls
- Performed PaloAlto Rule changes, templates and object creation, configuration changes, OS upgrades, CLI troubleshooting and audits
- Performing packet captures using PaloAlto Firewalls, Wireshark and TCPDUMP
- Identified the vulnerabilities and non-compliant issues in the network and applications using Nessus vulnerability scanners and SolarWinds SIEM tools.
- Designed and Implemented Cisco NextGen IPS Appliance (FirePOWER 7000) for threat mitigation and implemented Cisco FireSIGHT Management Center FS2000
- Implemented, monitored, and enforced IT-related procedures, processes and practices.
- Ensured that company meets all security standards for internal or external audits
- Managed and assisted other IT team members in system support and integration tasks.
- Administered and maintained Cisco Identity Services Engine 2.1 for secure network access via wireless and wired infrastructure (802.1x)
- Performed daily maintenance of corporate Cisco wireless network infrastructure consisting of three WISMs, 450 indoor/outdoor WAPs and Cisco PRIME 2.1
- Maintained and supported HA Infoblox DHCP/DNS infrastructure (GRID)and IPAM
- Managed and supported secured/controlled admin users’ access to network infrastructure devices utilizing Cisco ACS 5.2
- Provided day to day network services and infrastructure support for networking devices, (3750x, C1811, ME3600X, Riverbed 5050H, C4500x, 2960, 6513E, ACE 4710, Cisco Prime NCS 2.0, ACS5, N5K 5548, UCS-FI06296UP)
- Supported corporate MPLS, FlexVPM and L2L VPN infrastructure for 3 datacenters and 45 + remote locations.