Download PDF

Summary

Experienced Network Engineer with 11+ years in designing and managing large-scale enterprise and service-provider networks. Expertise in BGP, MPLS, OSPF, and Versa SD-WAN, focusing on campus, WAN, and network security. Led legacy-to-next-generation network migrations, ensured network stability, and delivered high-availability infrastructure in multi-vendor settings.

Work experience

2019-April-04Current

Senior Network Engineer

Yale University

  • Designed, implemented, and managed enterprise-grade wired and wireless networks, covering LAN, WAN, campus, and branch connectivity using modern switching, routing, and security platforms.
  • Strong hands-on expertise with Cisco, Juniper, Aruba (HPE), Extreme Networks, and next-generation security platforms including Palo Alto Networks and Fortinet (NGFW/UTM).
  • Extensive experience with software-defined and controller-based networking, including Cisco DNA Center, Cisco ISE (NAC), and SD-WAN architectures for scalable and policy-driven network operations.
  • Designed and implemented IP addressing, routing, switching, and security architectures, supporting high availability, segmentation, and secure enterprise communications.
  • Deep hands-on experience configuring and troubleshooting BGP and OSPF, including enterprise and service-provider MPLS VPN expansion and migration strategies.
  • Hands-on experience with VXLAN and EVPN architectures for scalable Layer-2/Layer-3 overlay networks, enabling network segmentation, multi-tenancy, and control-plane learning over IP underlay fabrics.
  • Expertise in VLAN architecture and inter-VLAN routing using Layer-3 switches and firewalls, including 802.1Q trunking, SVIs, EtherChannel (LACP), and loop-prevention mechanisms such as STP/RSTP/MST.
  • Strong understanding and implementation of modern Layer-2 technologies including STP, RSTP, MST, and advanced troubleshooting of spanning-tree and VLAN-related issues.
  • Designed and supported MPLS VPN and QoS-based architectures to ensure traffic prioritization for business-critical applications.
  • Proficient in Juniper switching and security platforms, including Junos OS and SRX firewalls, with hands-on configuration and troubleshooting.
  • Hands-on experience deploying secure tunneling and VPN technologies, including:
  • Site-to-Site IPsec VPN
  • GRE tunnels
  • DMVPN
  • Policy-based and route-based VPNs
  • Strong protocol knowledge across enterprise networks:
    OSPF, BGP, EIGRP, HSRP, VRRP, GLBP, NAT/PAT, ACLs, VTP, SNMP, SSH, DNS, DHCP, NTP, ARP, and EtherChannel.
  • Implemented high-availability and redundancy designs, including gateway redundancy protocols, ISP failover using object tracking, and link aggregation for maximum uptime.
  • Advanced experience with network security policies, including:
  • URL/Web filtering and application control
  • Department-based access control
  • Content filtering and threat prevention using UTM/NGFW features
  • Designed and managed NAT architectures (Static NAT, Source NAT, Destination NAT, Port Forwarding) for secure public–private network integration.
  • Implemented centralized network monitoring and observability, using Syslog, SNMP, packet analysis tools, and proactive fault isolation techniques.
  • Actively involved in network testing, validation, and migration planning, developing test plans and executing LAN/WAN deployment strategies with minimal downtime.
  • Provided enterprise-level operational support, troubleshooting complex network issues, improving stability, and maintaining 99.99% infrastructure availability.
  • Experience with modern Cisco campus platforms, including:
  • Catalyst 9400 – Inter-VLAN routing, ACLs, LACP, port-based security
  • Catalyst 9300 – Wireless AP integration, user-based access control
  • Legacy WLC Aruba 7240 - Client monitoring and MAC-based policies and moving on Cisco 9300 WLC
  • Legacy WLC environments (5508) – Client monitoring and MAC-based policies
2018-Nov-052019-March-22

NETWORK OPTIMIZATION ENGINEER

ZAYO GROUP

  • Circuit grooming and facility consolidation.
  • Design, implement and administer IPv4/IPv6 enterprise network infrastructure utilizing Juniper routers.
  • Work with Juniper EX-4500, EX-4200, EX 3200, EX-2200 series Ethernet switches & Juniper Fabric QFX3500. MX 480, MX960 routers and Juniper Layer-3 EX4200, EX4300 & EX3200 switches and with IOS upgrade of Juniper devices.
  • Design network and create physical and logical network layout diagrams.
  • Write and maintain technical documents describing implemented technologies and architecture.
  • Optimize the network devices such as routers and switches.
  • Provides high-level technical support for Security, storage, and data network systems.
  • Troubleshooting on network trouble tickets.
  • Keep checking the ongoing activities during Maintenance downtime.
  • Configured and managed BGP peering sessions with multiple ISPs and Internet Exchange Points (IXPs) to optimize network routing and latency.
  • Network using BGP routing protocol, MPLS network.
  • Migration of network circuits.
2017-Aug-142018-Nov-03

VERSA SD-WAN ENGG

CenturyLink/Lumen Technologies

  • I am responsible for working on a wide range of issues across multiple platforms/ products, mostly focusing on Layer 1-3 issues.
  • Design and implementation of HA/failover configs, bgp route
  • redistribution, FW/security policies/NAT, overall routing, VPN (site to site, and SSL end client), etc.
  • Layer 1-3 troubleshooting
  • Implement routing configurations
  • Heavy BGP troubleshooting between Core devices.
  • Implemented IP SLA and SD-WAN traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Open Shortest Path First (OSPF).
  • Configuring Virtual Chassis for Juniper EX-4500, EX-4200, EX 3200, EX-2200 series Ethernet switches & Juniper Fabric QFX3500.
2013-Aug-192016-Jan-11

NETWORK SPECIALIST

INTEC INFONET PVT LTD

  • Managed enterprise LAN/WAN, MPLS VPN, and multi-vendor network environments.
  • Configured BGP/OSPF routing policies and MPLS VPN expansion strategies.
  • Implemented VLANs, STP/RSTP/PVST, inter-VLAN routing, and trunking.
  • Designed MPLS VPN and QoS architectures using Cisco multilayer switches.
  • Configured GRE tunnels, IPsec VPN, DMVPN, and redundancy protocols (HSRP, VRRP, GLBP).
  • Provided technical support for customer network issues improving uptime to 99.99%.

Internship

Network Trainee: Intec Infonet Pvt Ltd. 2012-06 to 2012-08

Project:

Rapid Metro Gurgaon Ltd.

(RMGL) / Tihar Prison Jail (India)

  • Configured both Layer 2 & layer 3 Switches and inter VLAN communication between all the 9 stations.
  • Configured VLAN and routing protocols according to client’s requirement on Extreme Switches. 
  • Learned Network fundamentals and Firewall configuration. Grasping the basic networking concepts and Cisco & Juniper Technology.

Education

2016-Jan2017-May

Masters in Cybersecurity

Fort Hays State University

  • Master's in Cybersecurity / Jan 2016-May 2017 Fort Hays State University. Hays, Kansas (USA).
2010-June2013-May

Bachelor's in Computer Engineering

Echelon Institute of Technology

  • Bachelor's in computer Engineering / June 2010 - May2013 Echelon Institute of Technology. Faridabad (India).
2006-June2009-May

Diploma in Computer Engineering

Bits Polytechnic Paluwas

  • Polytechnic (Diploma) / June 2006 - May2009 Bits Polytechnic. Bhiwani (India).

SKILLS

  • Routing, Switching & Fabrics
  • BGP, OSPF, EIGRP, IS-IS, Static Routing
  • MPLS, VRF, IP SLA
  • VLAN, STP, RSTP, MSTP
  • VXLAN & EVPN
  • Network Platforms & Vendors
  • Cisco (Catalyst, Nexus, WLC)
  • Juniper Networks (MX, EX, QFX, SRX)
  • Aruba Networks, HP Switching
  • Extreme Networks
  • Arista Networks
  • SD-WAN & Network Automation
  • Versa SD-WAN (design, failover, operations)
  • Ansible (Network Automation)
  • Python (basic automation & scripting)
  • Security & Firewalls
  • Palo Alto Networks NGFW & Panorama
  • Fortinet (FortiGate, VPN, UTM)
  • IPsec VPN, SSL VPN, Site-to-Site VPN
  • Wireless & NAC
  • Cisco Wireless LAN Controller
  • Cisco DNA Center
  • Cisco ISE (NAC, 802.1X, Policy Enforcement)
  • Ruckus, Juniper Mist
  • Network Services & Tools
  • DNS, DHCP, IPAM (BlueCat)
  • ServiceNow
  • Wireshark
  • LogicMonitor
  • GNS3, EVE-NG
  • Operating Systems & Cloud
  • Linux, Windows, macOS
  • AWS (Networking fundamentals)

Certifications

  • * Juniper Networks Certified Associate, Junos (JNCIA-Junos) JUNIPER-JPR00276621
  • * Microsoft Server 2008 (070-640) - SR6587802 Microsoft ID.
  • * CCNA R&S CSCO13192563
  • * CCNP R&S CSCO13192563