Network Engineer Palo Alto
Resume:
Bourehima nakanebo
Email: *****************@*****.*** Phone: 762-***-****
Linkedin: www.linkedin.com/in/bourehima-nakanebo-bb88b018b
IT Professional with 6+ years of experience in implementation/deployment, administration/service requests, documentation, management/ change management (hardware refresh), maintenance, support/Escalation, analysis, investigating and troubleshooting various network technologies that includes proficiency in Routing ( IOS, IOS XE), Routing Protocols (OSPF, EIGRP, BGP, Redistribution, Summarization, and Static Routing.), Switching (LLDP/CDP, VTP, Spanning-tree, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, LAG, LACP,Cisco devices, Cisco Catalyst), Redundancy protocols (Ether-channels, HSRP, VRRP), Security (NAT, ACL, VPN,IPSEC), monitoring (SolarWinds), Syslog
Cisco Routers (i.e. Cisco 8600, ISR-4300) Cisco Catalyst/Nexus Switches (i.e. 9400, 6800, 5548, 9300) using IOS/IOS-XE/NX-OS,AWS, Palo Alto 440,3440 and 3250
Technical Certifications & Skills
Certified CompTIA Network+ N+
Certified CompTIA Security+ Sec+
Certified CompTIA CysA+ CysA+
Palo Alto training
Technical Skills Detail
Routing/Switching Technologies - Cisco Routers ASRs/ISRs, Cisco ISE,Ci,Wirelksco R&S, Cisco Catalyst/ Routers & Switches, WAN, LAN, TCP/IP, Cisco IOS, Spanning Tree Protocol, BPDU, CDP, ACL, NAT, PAT, RIP, RIPv2, OSPF, EIGRP, BGP, MPLS, VTP, SNMP, SMTP, ARP, Static Routing, VLAN Trunking, HSRP, SVI, CEF, EtherChannel, Portfast.
Security/Firewalls Technologies – Next-generation firewalls, Cisco Security Manager Suite, Cisco ASA 5500 series firewalls, Cisco FWSM, Cisco IPS/IDS, Cisco ACS, Advanced Firewall Manager (AFM), AAA, TACACS+, RADIUS, SSH, VPN, IPSec, SSL/IPSec, Data Loss Prevention, Data Management Zone, Pretty Good Protection (PGP), Public Key Infrastructure (PKI), Internet Key Exchange Policy, Port Security, MAC Address Filtering. DNS security, Enterprise Data Loss prevention, IOT Security, Next-Generation Firewalls.PaloAlto CISCO ISE,UMBRELLA,XDR,CISCO FIREPOWER
Monitoring/Data Center Technologies/APPS - Wireshark, Remedy, SolarWinds, Sniffer, Ethereal, Orion, SNMPv2c, SNMPv3, DNS, DHCP, FTP, HTTP(S), SMTP, tunneling protocols, PTP, SFTP, RDP.
Professional Experience
Walmart Network Security Engineer Fev 2024 to present
Member of a team of professionals responsible for design, deployments, implementations, analysis, configurations, and troubleshooting in an enterprise LAN/WAN environment for datacenters, corporate, and branch offices.
Install, configure, and maintain Cisco routers, switches, and Palo Alto firewalls, along with HP/Aruba switches, Wi-Fi access points, and SilverPeak SD-WAN infrastructure, ensuring seamless network operations.
Implementing Zero Trust, Securing the Network, the Cloud workload and leveraging Threat Intelligence & security.
Coordinate and support data and telecommunications circuits to guarantee optimal performance and reliability
Specific Technologies handled include but not limited to Cisco R&S, Cisco ISRs/ASRs, Cisco Catalyst, Cisco ASA.
Intrusion Prevention policies,IDS
Site-to-site and remote-access VPN connectivity(PaloAlto)
Palo Alto
I upgraded Palo Alto firewall from version 10.1 to 11.Configure Palo Alto from Zero for branches and Data Center.Configure inside zone and outside,set up the rules.Configure NAT and U NAT.
I use Palo Alo 440 for for our data center and 3250 for branches.Manage around 50 Palo Alto using PANORAMA
Walmart(Georgia) Network Engineer Nov 2017 – Juin 2023
implements engineering standard documenting engineering designs, and participating in project
Experience with Cisco wireless land controllers, implementation, troubleshooting, and problem resolution
Performs network maintenance and upgrades as require, Perform troubleshooting and support for SG Corporate network, IP addressing/subnetting/VLSM and CIDR Adept in current Security technologies
Design and update comprehensive network diagrams to reflect evolving network architecture across all company locations
Implement and maintain robust security measures based on zero-trust frameworks, ensuring the integrity and confidentiality of network data
Technologies in network environment include but not limited to routers, switches, and related technologies along with various server/application administration, system reimaging, Visio
Document new and existing network deployments according to standard
Ensure access control rights to all individuals are properly authorized and evidenced
Member of a team of professionals responsible for installations, configurations, ticket resolution, and troubleshooting in an enterprise Network and systems, servers, printers, workstations, applications, antivirus, switches, routers, firewall,
Monitor network performance closely, proactively responding to issues to maximize reliability, resilience, and security
Implement and maintain robust security measures based on zero-trust frameworks, ensuring the integrity and confidentiality of network data
Monitor entreprise security by implementing Network access control
Implement security architectures using Cisco ASA, Firepower, ISE
Port security to control access to switch and prevent attack such DoS at layer 2
Network Access Control for intrusion control
Use Splunk to monitor and update network status
Python and powershell for routing automation
Daily network monitoring using SolarWinds to check network heath status, to be proactive and efficient
In data center configure spine and leaf technology to reduce network latency and improve hop count.Switches 95k is configured as a spine and switches 93 k as a leaf. This is to reduce the downtimes and failover, increase bandwitch. Connect spine switch to the leaf switch and configure VPC between APIC and leaf switch.
Configure VRF to create multiple instances of routing table
Master of Science in Accounting & Audit ESCO-IGES Burkina Faso, 2012 - 2013
Bachelor of Science in Economics University of Ouagadougou Burkina Faso, 2003 - 2007
Contact this candidate