Sign in

Network Engineer

United States
December 18, 2019

Contact this candidate


Sai Kumar Gurijala


Professional Summary

Network professional with 7 years of experience in routing, switching, firewall technologies, systems design, and administration and troubleshooting

Experience in testing Cisco and Juniper routers and switches in laboratory scenarios and deploy on site for production

Experience on Cisco Catalyst and Nexus and Juniper EX and QFX switches

Experience on Cisco ISR and ASR series routers and CUBEs and Sonus SBCs

Experience on F5, Citrix and Cisco load balancers

Experience on Cisco ASA, Juniper, Checkpoint, PaloAlto and Fortinet firewalls

Experience on IDS, IPS and ISE

Experience on Cisco UCS and VMware ESXi hosts, vSphere, vCloud

Knowledge and experience on Wireless LAN, Access points, WLAN Controllers and Wireless networks

Working on Voice and Data circuits such as Ethernet, T1, T3, SONET and SDH

Experience with design of MPLS MPLS Traffic Engineering and MPLS QOS, DIA and SAB

Working on Datalink Layer protocols such as Ethernet, PPP, HDLC, VLANs, STP

Working on routing protocols such as BGP, OSPF, EIGRP, RIP

Working on Transport Layer protocols such as TCP, UDP

Working on redundancy protocols such as HSRP, VRRP, GLBP

Extensive experience with different networking protocols DHCP, DNS, FTP, VOIP (SIP and SCCP) and Gateway protocols H.323, SIP, MGCP

Experience with 802.1X EAP, RADIUS and TACACS+ for AAA

Hands on experience of Cisco UCM, Cisco UCCX, Cisco UC, Cisco ER, Cisco Expressway C and E, Cisco Jabber and Cisco IM and P

Hands on experience of Singlewire Informacast Paging and Bridge Operator Console

Experience on Cloud services such as Amazon AWS and Microsoft Azure and O365

Experience in Versa, Cisco Meraki and Cisco Viptela SD-WAN technologies

Experience on monitoring tools like SolarWinds, PRTG and Cisco Prime

Familiar with network and application security tools and concepts like SIEM tools (Splunk), Nmap, Wireshark, Nessus

Experience on Remedy, Spceworks and ServiceNow

Coursework and knowledge on programming languages like C, Python and Perl


CenturyLink, Tulsa, OK Nov 2018 – Jun 2019

Network Design Engineer

As a Network Design Engineer, worked on customer’s WAN and LAN designs. Daily tasks were selecting right managed router and provisioning it with suitable routing protocols and redundancy as per customer’s requirements and in compliance of PCI, CPNI, SOX and HIPAA

Worked on MPLS, DIA and SAB WAN designs and worked on EVPL and VPLS designs

Worked on provisioning of service provider’s Managed Router (CPE) which are deployable at customer premises

Configure Cisco IOS based IPS like Control Plane Policing on branch routers

Worked on IPv4 and IPv6 subnetting and provisioning

Configured WAN and LAN on Managed Router (CPE)

Worked on routing protocols such as BGP, EIGRP, OSPF and RIP

Worked on provisioning and configuration of PPP, VLANs and STP

Worked on provisioning of DHCP and DNS and configured them on CPE as per customer’s requirements

Worked on EtherChannel and MLPPP

Worked on SNMP and Netflow

Worked on Multicast

Worked on MPLS Layer 3 VPNs, IPsec VPNs and Policy Based Routing

Worked on Fortinet FortiGate Firewall rules, NAT, PAT and ACLs

Worked on FortiGate Threat Protection, SSL inspection, and ultra-low latency for protecting internal segments and mission critical environments

Worked on BGP Multipath, BGP passthrough and BGP Blackholing

Worked on MPLS Traffic Engineering (QoS) such as DSCP, IP precedence, 802.1P (PCP) and EXP

Worked on Juniper and Palo Alto firewalls and IPsec VPNs and policies

Worked on provisioning of UNIs, NNIs and NIDs

Worked on voice gateways, SIP, PRI and BRI

Worked on provisioning of Amazon AWS, Microsoft Azure and O365 and validation of AWS Account Number and Azure Layer 2 and Layer 3 keys

Worked as a Subject Matter Expert (SME) of SD-WAN

Documented network topologies and technical details using Microsoft Visio, Excel and InfoPath

Environment: Cisco ISR and ASR series routers, MPLS, DIA, SAB, Routing protocols BGP, EIGRP, OSPF and RIP, Ethernet, PPP, DHCP, DNS, EtherChannel, MLPPP, AWS, Azure, O365 and SD-WAN, IPS

Southwestern Vermont Health Care, Bennington, VT Mar 2018 – Oct 2018 Unified Communications Engineer

Worked as a part of Unified Communications team where our tasks were configuring Cisco UCM, Cisco UC, Cisco CCX, Cisco ER, Cisco ISR 4331 for voice gateways, Cisco voice gateway VG350 for analog phones and faxes, Cisco Expressway C and E, Cisco IM and P, Cisco IP Phones and Cisco CSF, dual mode for iPhone, dual mode for Android for Jabber and Cisco Finesse for agents

Worked on Cisco Unified Computing Systems and VMware

Configured Bridge operator Console for Cisco environment and set up BOC attendant console on operators’ workstations.

Worked on Singlewire Informacast Paging system, configured paging gateways and set up paging through Cisco IP phones

Worked on Sonus SBC 2000 series SIP gateway and configured SIP for voice calls and PRIs for Faxes.

Daily tasks were configuring IP phones 7841s, 8841s and 8851s with sidecars and Unified Messaging for users

Configured Cisco Unified SRST for call processing back up redundancy during network failures at remote sites.

Worked on various issues such as UCS hardware issue. Replaced RAID controller and TMM of UCS as they were faulty.

Worked on an issue that inbound calls were failing on redundant WAN connection. Changed transport layer protocol to TCP on the remote GW to communicate with CUCM at main campus as logs were showing communication between GW and CUCM failed.

Worked on Checkpoint firewalls and configured ports to allow traffic between Expressway C and E

Worked on Cisco WLAN indoor Aironet 2800 and 3800 series and outdoor Aironet 1560 series Access Points

Worked on Cisco 8500 series Wireless Controller

Worked on ACLs and NATting

Worked on Microsoft SCCM and SCOM

Worked on Microsoft Internet Information Services

Worked on day to day tickets and resolved them

Worked on documentation, Visios

Environment: Cisco ISR 4300 Routers, Cisco voice gateways VG350, Cisco UCM, Cisco UC, Cisco UCCX, Cisco ER, Cisco IM and P, Cisco Expressway C and E, Cisco Jabber, Cisco UCS, Cisco IP Phones 7841s,8841s and 8851s with Sidecars, Bridge OC, Singlewire Informacast

Philips Healthcare, Bothell, WA Apr 2017 - Feb 2018

Network Engineer

Worked as a part of network team where my daily tasks were configuring Cisco ASR 1000/9000 routers and Cisco 800 series routers

Implemented IPsec SMVPN tunnels from Philips healthcare facility to customer’s end

Worked on migrations of 5000+ VPN tunnels to new Cisco ASR routers from Legacy 7000 series routers

Worked on Cisco IDS/IPS and ISE

Worked on troubleshooting of VPN tunnels to support customer’s end medical devices

Worked on configuring DMVPN hub and spoke routers to support hospital’s onsite routers

Worked on WAN technologies frame-relay and DSL to plot VPN tunnels on ISP’s leased lines

Worked on redundancy protocols HSRP and VRRP to maintain connectivity

Administered Citrix Netscaler and evaluated common crashes, identifying new bugs and new use cases involving Citrix products

Worked on Microsoft Active Directory and SCCM and SCOM

Worked on Blue Coat ProxySG and SSL traffic, content caching and traffic optimization, bandwidth management, streaming media and splitting and caching

Worked on ProxySG Web 2.0 threat protection and Proxy avoidance blocking

Supported and helped customers to implement VPN tunnels, policies, ACLs and NATting on Cisco ASAs, Palo Alto, Juniper, Checkpoint and Fortinet firewalls

Worked on de-configuring and decommission of Cisco Nexus 3000 series switches, Cisco ISR 1900 series routers and decommission of HPE ProLiant data storage devices

Environment: Cisco ASR 1000 and 2000 routers, Cisco ISR 1900 routers, Cisco 800 series routers, Cisco Nexus 3000 switches, HPE ProLiant data storage devices, SMVPN, DMVPN

State Farm Bloomington, IL Jun 2016 – Mar 2017

Network Engineer

Worked as part of delivery team where my daily tasks included code upgrades, prefix-list addition, and access-list addition using python script and on Linux platform

Worked on Automation tool called Autopilot an internal tool used for code upgrades and configuring of new devices at different data centers

Installed and configured LAN and WAN Networks, Hardware and Software on Cisco Routers and Switches

Implemented IPv6 addressing scheme for routing protocols on Cisco ISR routers 2800, 2900, 3800 and 3900 and VLANs on switches

Experienced working with Juniper devices like EX2200, EX4200, EX4500, MX480, SRX650, SRX240 and Juniper J230, M 320 and MX960 routers

Migration and implementation of Palo Alto Next-Generation Firewall series PA500, PA3060, PA5060, PA7050, PA7080

Installed and maintained production servers for client services (Web, DNS, DHCP, Mail)

Worked on BGP routing protocol, configuring BGP sessions and troubleshooting on Nexus 1K, 5K, 7K, Juniper MX-960 routers and cisco ASR routers

Responsible for planning, documenting and implementation of complex Firewall and VPN solutions

Experienced on working with Palo Alto and Fortinet Next Generation firewall with security, networking, and management features such as URL filtering, Anti-virus, IPsec VPN, SSL VPN, IPS, Log Management etc.

Designed perimeter security policy, Implemented Firewall ACL's, allowed access to specified services, Configured Client VPN technologies including Cisco's VPN client via IPsec

Configuring firewall rules in Juniper SRX firewall using cli and NSM

Worked on configuration of new VLANs and extension of existing VLANs onto the necessary equipment to have connectivity between different data centers

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability and

knowledge on implementing and configuring F5 Big-IP LTM-6400 load balancers

Coordinated with the Application Teams to develop effective Application validations involving F5 LTM and GTM components

Worked on Cisco wireless LAN technologies and Switching. Configured Virtual server, service groups, Session persistence, Health monitors and Load balancing methods in new F5 and A10 LTMs. Configured WIDE IP and WIDE IP pool on F5 GTM’s to support load balancing between data centers.

Installation and configuration of Microsoft Proxy Server 2.0 and Inflobox DNS, DHCP and IP Address Management

Worked on Inflobox to update the DNS host and records to assist the part of the migration

Security configuration on Wireless LAN using protocols PEAP, EAP-FAST

Assigning RADIUS and TACAS for new deployments in production environment. AAA for users to implement changes on production devices. Most of these devices are cisco propriety

Generating audit reports by running automated scripts on various devices in order to check the layer 2 issues like errors on the links, port flapping

Implemented IPv4 and IPv6 on PTX platforms

Environment: Routers (1K, 5K,7K, Juniper MX-960), switches (6500/3750/3550 3500/2950), F5 Load balancing (LTM, GTM, APM, AFM, ASM), EIGRP, RIP, OSPF, BGP, VPN, MPLS, Cisco Catalyst Switches, Firewalls (Cisco ASA, Palo Alto), Python, Shell and Perl Scripting

Gannon University Jan 2015-May 2015

Lab Assistant

Assembled computer peripherals and configured operating system on computers for University Labs, student’s PCs and mobile devices (BYOD)

Installed Anti-Virus on computers and monitored vulnerability checks, Phishing and threats

Installed education related applications on computers in Labs and student’s PCs and BYOD

Installed Microsoft Office Suite on computers in Labs and on student’s PCs and BYOD

Installed Cisco Routers and Switches and configured Local Area Network (LAN) in University Campus

Installed Cisco Access Points and configured Wireless Controller for Campus Wireless LAN

Troubleshot software and hardware related issues and LAN issues

Learned about configuration of Cisco Firewalls and threat management

Environment: Assembling computer peripherals, installing Operating Systems, installing Anti-Virus, installing User Applications, and Microsoft Office suite, configuring LAN, troubleshooting software, hardware and LAN issues as well as configuring student’s BYOD and installing OS and Applications, Wireless LAN connectivity

R-Tech Services, India May 2012 – Nov 2014

Network Engineer

Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration

Worked on configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication

Maintain LAN communication between Servers/Workstations

Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls, installing and configuring new juniper SRX series, Checkpoint and Fortinet firewalls to meet day to day work

Adding and removing checkpoint firewall policies based on the requirements of various project requirements

Worked on Layer 4 load balancing to direct traffic based on data from network and transport layer protocols, such as IP address and TCP port

Worked on Layer 7 load balancing and content switching to make routing decisions based on application layer data and attributes, such as HTTP header, uniform resource identifier, SSL session ID and HTML form data

Worked on Citrix Global server load balancing (GSLB) to extends the core L4 and L7 capabilities so that they are applicable across geographically distributed server farms

Installed and configured SSH (Secure Shell) encryption to access securely on Ubuntu and Red hat Linux.

Worked on configuration and implementation of voice gateways (H323/MGCP/SIP), SRST for remote sites, CUCME and CUE distributed design

Performed troubleshooting, fixed and deployed many Python bug fixes of the two main applications that were a main source of data for both customers and internal customer service team

Worked on load balancers like F5 10050s, 10250v, GTM 2000s, 2200s to troubleshoot and monitor DNS issues and traffic related to DNS and avoid DDoS

Deployment of Palo Alto firewall into the network. Configured and wrote access list policies on protocol-based services

Configured network access servers and routers for AAA security (RADIUS/ TACACS+)

Troubleshot protocol-based policies on Palo Alto firewalls and changing the policies as per the requirement and traffic flow

Worked on DNS server involving configuration and resolving DNS related issues

Wrote rules for NAC servers as per the authentication and authorization of systems within the company.

Monitoring the network access points with the help of IBM Q Radar and Cisco prime infrastructure.

Implemented and troubleshot IPsec VPNs for various business lines and making sure everything is in place

IPv6 is implemented at a larger scale using cisco ASR 7200 and 9000 series routers delivering flexible service

Installing and configuring new cisco equipment including Cisco 1900, 2900, 3900 series routers, Cisco catalyst switches 6807, Nexus 7010, Nexus 5500 and Nexus 2k as per the requirement of the company

Worked on regular troubleshooting of BGP, EIGRP routing protocols

Adding and modifying the servers and infrastructure to the existing DMZ environments based on the requirements of various application platforms

Developed CTI applications with CTIOS

Managing and providing support to various project teams with regards to the addition of new equipment such as routers, switches and firewalls to the DMZs

Worked on Blue Coat ProxySG Web 2.0 threat protection, content filtering and inline threat analysis

Worked on Pulse Connect Secure SSL VPN gateways

Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment

Involved in developing code using C and Linux.

Worked on server side to implement the capture the packets. Unit testing and bug fixing

Debugging and optimizing the code for better system performance.

Problem Solving and maintain documentation throughout the project life cycle

Work with project team members to resolve the issues identified in testing

Environment: Routers (Cisco 1900, 2900, 3900, ASR 7200, 9000), Switches (Cisco catalyst switches 6807, Nexus 7010, Nexus 5500 and Nexus 2k), Firewalls (Juniper SRX, Cisco ASA, Palo Alto), F5 Load balancer, Cisco Voice (H323/MGCP/SIP, CUCME, CUE), protocols BGP, EIGRP, OSPF and DNS server and C programming

TeJas Networks, India July 2010 - Nov 2011

Network Engineer

Worked on Cisco Catalyst routers 3700 and 7200 and Cisco Catalyst switches 2900 and 4900

Worked on Cisco's Nexus line of products, including Application Centric Infrastructure (ACI), Application Policy Infrastructure Controller (APIC), Software Defined Network (SDN) solution, as well as the Cisco Nexus 9000, 7000, 5000 and 2000

Installed and configured Cisco Nexus 7010, 5010 and 5020 switches, and 2000 and 2200 fabric extender. Configure FabricPath for high availability and Virtual Port Channel (vPC) to connect to Cisco legacy switches.

Worked on Global Server Load Balancing, Content Switching, SSL Offloading, Dynamic routing with Netscaler.

Key contributions include troubleshooting of complex LAN and WAN infrastructure

Worked on Cisco WI-FI Access Points and Controllers and Wireless LAN infrastructure

Created private VLANs and preventing VLAN hopping attacks and mitigating spoofing with snooping and IP source guard

Worked on Juniper SSG550 firewall and unified threat management and IPsec VPNs based on ScreenOS

Enabled STP enhancements to speed up the network convergence that include Port-fast, Uplink-fast and backbone-fast

Other responsibilities included documentation and change control

Responsible for Configuring Site-to-Site VPN on Cisco routers between headquarters and branch locations

Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls

Installation and configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware and software client and PIX firewall

Involved in troubleshooting of DNS, DHCP and other IP conflict problems

Used various scanning and sniffing tools like Wireshark

Worked on specified, prototyped, developed and tested an object-oriented, multiplatform C++ framework containing support to data structures, common algorithms sockets, threading.

Worked in Microsoft Visual Studio integrated development environment (IDE) and used to develop C++ algorithms

Environment: Cisco Routers, Switches and Firewalls, IPsec VPNs, DNS, DHCP, STP, Data Center technologies, Wireshark and C++ framework


Bachelor of Technology in Electronics and Communication Engineering, 2012, Jawaharlal Nehru Technological University, Hyderabad, India.

Master of Science in Electronics and Communication Engineering, 2016, Gannon University, PA, USA

Contact this candidate