Network Engineer Data Center
Resume:
Nadir Shaikh
Ph no: 224-***-****
Email: **************@*****.***
Summary:
●Experienced Network Engineer: Over 9 years of hands-on experience in network design, implementation, and support, delivering reliable, high-performance networks for global enterprises such as AT&T, Spectrum, and Nestle Purina.
●Comprehensive Routing and Switching Skills: Advanced knowledge of Layer 2/3 protocols, including BGP, OSPF, and EIGRP, and extensive experience configuring Cisco and Juniper devices. Proficient in VLAN management, STP, EtherChannel, and quality of service (QoS) to ensure network efficiency and redundancy.
●Strong Network Security Expertise: Skilled in deploying and managing security technologies such as Palo Alto Next-Gen Firewalls (PAN-OS 10.x+), Cisco ASA, and Fortinet firewalls. Experienced in implementing site-to-site and remote VPNs, access control policies, and advanced threat prevention.
●Cloud Networking Proficiency: Familiar with AWS and Azure networking solutions, including configuring VPCs, Direct Connect, and ExpressRoute. Capable of integrating on-premises and cloud environments to support secure, scalable, and reliable business operations.
●Proven Troubleshooting Capabilities: Expert in diagnosing and resolving complex network issues using tools like Wireshark, SolarWinds, Cisco Prime, and Splunk. Efficiently addresses network performance bottlenecks and connectivity problems, ensuring minimal downtime and service impact.
●Data Center and Infrastructure Management: Experienced in maintaining and upgrading critical network hardware, including Cisco ASR routers, Nexus switches, and F5 load balancers. Successfully managed data center migrations and large-scale network rollouts, emphasizing high availability and performance.
●Project Support and Cross-Team Collaboration: Effectively works with cross-functional teams on network-related projects, coordinating efforts to implement upgrades, improve security, and optimize performance. Capable of balancing multiple responsibilities and delivering on tight deadlines.
●Commitment to Documentation and Knowledge Sharing: Maintains detailed documentation of network configurations, procedures, and troubleshooting guides. Actively mentors and supports junior engineers, sharing knowledge to enhance team skills and efficiency. Stays informed on emerging technologies and best practices in the networking field.
●Network Automation and Scripting: Familiar with using automation tools like Ansible and Terraform to streamline repetitive network configuration tasks and improve overall efficiency. Skilled in writing Python scripts for network monitoring and basic configuration management.
●Vendor and Contract Management: Experienced in managing relationships with network equipment vendors and service providers. Negotiated contracts and coordinated with external support teams to ensure timely delivery of services, hardware replacements, and efficient resolution of escalated issues.
Technical Skills:
Protocols & Standards
LAN, WAN, WLAN, SD-WAN, VRF, VXLAN, VDC, TCP/IP, NAT, PAT, MPLS, IPsec, GRE, DMVPN, IPv4, IPv6, L2TP, SSL VPN, GETVPN, TLS, IKEv2, VoIP, VSS, OSPF, OSPFv3, EIGRP, BGP (including BGP EVPN), VLANs, ACLs, Layer 3 Switching, HSRP, GLBP, VRRP, QoS, AWS, Azure, Google Cloud, TACACS+, RADIUS, 802.1X, PKI, SAML, LDAP, PoE, Zero Trust Security, SDN (Software-Defined Networking).
Cisco Platforms
Cisco routers (ASR 9000, ISR 4000, ISR 1000 series) & Cisco Catalyst switches (Catalyst 9000, 6800, 4500, 3850 series), Nexus 9000, 7000, and 5000 series, Cisco ISR 8800
Firewall
Cisco ASA, Fortinet FortiGate, Check Point (R81.10+), Palo Alto Networks (PAN-OS 10.x+), Cisco Firepower, F5 BIG-IP (ASM, AFM, APM, LTM), FortiManager, FortiAnalyzer, and Palo Alto Panorama
Load Balancers
F5 BIG-IP, F5 iQ, VIPRION, LTM, GTM/DNS, ASM, APM, AFM, F5 2000/3000/4000/5000 series.
Network Tools
Splunk, Cisco Secure Network Analytics (formerly Stealthwatch), Palo Alto Prisma, SolarWinds Orion, Python, SNMP, Cisco Prime Infrastructure, RESTful APIs, Wireshark, Ansible, Terraform.
WAN technologies
MPLS, SD-WAN, Lit Fiber, Dark Fiber, Leased Lines, Ethernet over Fiber (EoF), DWDM, Carrier Ethernet, LTE/5G WAN, Broadband, PPP, DS1, DS3, OC3, T1/T3, SONET.
LAN technologies
Gigabit Ethernet, 10 Gigabit Ethernet, 25 Gigabit Ethernet, 40 Gigabit Ethernet, 100 Gigabit Ethernet, Link Aggregation (LACP), VLANs, VXLAN, 802.1Q, MSTP (Multiple Spanning Tree Protocol), RSTP (Rapid Spanning Tree Protocol), EVPN (Ethernet VPN), SD-Access (Software-Defined Access) and FabricPath.
Security Protocols
IKEv2, IPsec, SSL/TLS, VPN, DTLS, WireGuard, OpenVPN, S/MIME, TLS 1.3, HTTPS, OAuth 2.0, Zero Trust Architecture, MFA (Multi-Factor Authentication).
Operating System
Windows 11, Windows 10, Windows Server 2019, Linux (Ubuntu, CentOS, Red Hat), macOS, Docker, Kubernetes, VMware ESXi and Hyper-V.
Cloud Platforms
AWS (VPC, Direct Connect, Transit Gateway, Route 53, ELB, VPN Gateway, Security Groups, CloudFront, PrivateLink) and Azure (VNet, ExpressRoute, VPN Gateway, Load Balancer, Azure Firewall, NSGs, Traffic Manager, Private Link, Bastion)
AT&T, Redmond, WA
Network Engineer Sep 2022 – Present
●Designed, implemented, and managed enterprise networks across multiple data centers and over 120 remote office locations, serving 15,000+ end users and millions of members through advanced networking technologies.
●Deployed and managed Cisco Nexus switches (9000, 7000, 5000, and 2000 series) to achieve high-performance, low-latency switching in complex data center environments.
●Migrated Cisco ASA firewalls to Palo Alto Next-Gen Firewalls, enhancing network security, traffic analysis, and threat prevention capabilities. Configured Panorama for centralized management and policy enforcement.
●Configured and maintained Palo Alto Networks firewalls, implementing advanced security policies, SSL decryption, App-ID filtering, and high availability configurations.
●Managed and optimized site-to-site IPSec VPN tunnels, coordinating with external vendors and internal teams to ensure secure and reliable connectivity.
●Architected load-balancing solutions using F5 BIG-IP LTM, including setting up profiles, virtual servers, monitors, and iRules to support critical enterprise applications.
●Enhanced SSL/TLS configurations on F5 LTM, optimizing cipher suites and managing digital certificates for secure application access.
●Collaborated closely with IT Security teams to configure network devices for compliance, address vulnerabilities, and enforce Zero Trust security principles.
●Monitored and fine-tuned network performance, proactively resolving issues, upgrading infrastructure components, and managing incidents to minimize downtime.
●Designed and implemented routing policies leveraging BGP and OSPF, working with network engineers to develop resilient and efficient path selection strategies.
●Developed and deployed robust LAN/WAN infrastructures, integrating overlay protocols such as VXLAN and DMVPN to support scalable and secure connectivity.
●Handled comprehensive hardware setups across data centers, including Nexus switches, high-capacity routers, and Palo Alto firewalls, to meet dynamic business needs.
●Led data center migrations, designing new network topologies and configurations to ensure seamless transitions with minimal impact on operations.
●Implemented and managed Cisco Catalyst switches (3750, 3560, 6500 series) and ASR routers, providing Layer 3 switching, advanced QoS, and optimized routing protocols.
●Upgraded data center wireless networks using Cisco 5520 Wireless Controllers, supporting multiple deployment models and enhancing wireless performance.
●Configured access control lists (ACLs) and terminal server setups for efficient network access and device management.
●Managed Cisco Wireless LAN Controllers (5500, 4400 series) and administered Lightweight Access Points, deploying secure and robust WLAN environments.
●Resolved complex OSPF and BGP routing issues for internal teams and enterprise clients, ensuring network reliability and efficiency.
●Configured VLANs, Port Security, 802.1X authentication, Trunking, and RPVST+ across Cisco Catalyst and Nexus switches to maintain a secure and scalable network infrastructure.
Spectrum, CO
Senior Network Engineer Apr 2021 – Aug 2022
●Deployed and managed advanced routing and switching infrastructure, focusing on high-performance solutions using Cisco Catalyst (3850, 3750) and Nexus (5548, 2K) series switches to support Spectrum’s large-scale ISP environment.
●Configured and optimized Layer 2 and Layer 3 network protocols, such as Spanning Tree Protocol (STP), RSTP, PVST+, and MST, ensuring VLAN stability, redundancy, and efficient traffic flow across the enterprise network.
●Utilized Cisco ASR routers (including ASR-1001-X and ASR-1002-X) and Cisco ISR 8800 for optimal, scalable routing across the enterprise, ensuring efficient traffic handling and network stability.
●Managed large-scale BGP and OSPF implementations, designing robust routing policies for optimal traffic distribution and reliability in an ISP environment. Utilized advanced BGP attributes (MED, Local Preference, AS-PATH) to influence route selection and traffic flow.
●Oversaw F5 BIG-IP load balancer (LTM) configurations, setting up virtual servers, custom iRules, and health monitors to efficiently manage and distribute incoming traffic. Conducted ongoing performance monitoring and adjusted pool member settings to maintain application resilience.
●Performed site-to-site and remote VPN configurations using Cisco ASA firewalls and Palo Alto Next-Gen firewalls, ensuring secure and efficient data transmission between remote offices and key data centers.
●Upgraded and administered firewall solutions, successfully migrating from Cisco ASA to Palo Alto firewalls with high availability (HA) configurations, implementing advanced security features for enhanced protection.
●Designed and implemented secure Layer 2/Layer 3 architectures, configuring VLANs, inter-VLAN routing, trunking, and EtherChannel to optimize network segmentation and efficiency.
●Managed and maintained Cisco ASA and Palo Alto firewall policies, handling security rules and VPN setups to secure traffic across multiple networks.
●Conducted deep packet inspection and analysis using Wireshark to troubleshoot network performance issues, identifying and resolving bottlenecks and ensuring optimal service delivery.
●Led the deployment and configuration of AWS-based security solutions, such as firewall ACLs, to facilitate secure remote connectivity to Spectrum's data centers.
●Handled complex hardware environments, including configuring and troubleshooting Cisco 6500 and 4500 series switches, to support high-density and high-speed network demands.
●Monitored network health and performance using SolarWinds and other network management tools, ensuring service uptime and identifying areas for optimization and proactive maintenance.
●Coordinated with cross-functional teams, including security and application groups, to ensure seamless integration of network upgrades and to troubleshoot issues related to traffic latency and load balancing.
●Participated in large-scale network redesigns, optimizing LAN, WAN, and Extranet architectures to support Spectrum’s ISP service delivery and meet increasing bandwidth demands.
●Provided detailed network documentation and training, mentoring junior engineers and supporting operational teams to manage day-to-day network challenges effectively.
Nestle Purina, St. Louis, MO
Network Engineer Feb 2018 – Mar 2021
●Implemented and maintained 24x7 enterprise network services, ensuring high availability and minimal downtime through proactive monitoring and strategic issue resolution.
●Collaborated with engineering teams to validate network device configurations and enforce compliance with corporate standards, continuously improving network performance and security.
●Designed and configured corporate networks, deploying and managing Check Point firewalls (R80.10 and R80.20), ensuring comprehensive security coverage with advanced threat prevention features and aligning security policies with business requirements.
●Migrated from legacy Cisco PIX and ASA appliances to Check Point firewalls, leveraging unified threat management capabilities to bolster network security and streamline policy management.
●Optimized Layer 2 and Layer 3 network environments, utilizing Cisco IOS 12.2/15.x and NX-OS 7.x/8.x on Catalyst 6500 and Nexus 7000/5000 series switches for efficient traffic handling and robust infrastructure support.
●Led data center migrations, transitioning from Cisco Catalyst 6500 infrastructure to a Cisco Nexus-based architecture, achieving improved scalability, reduced latency, and increased network efficiency.
●Configured and managed F5 BIG-IP load balancers (LTM v11.6.x and GTM v12.0.x), setting up virtual servers, pool members, health monitors, and custom iRules to optimize traffic distribution and application availability. Monitored pool member health and performance to ensure seamless load balancing and application resilience.
●Maintained and troubleshot LAN/WAN networks, addressing complex connectivity and performance issues to ensure stable, efficient operations across the enterprise infrastructure.
●Administered and optimized Check Point firewalls, performing policy updates, intrusion prevention configuration, and managing secure site-to-site VPNs. Regularly reviewed and refined firewall rules to improve security and efficiency.
●Configured advanced BGP attributes (e.g., Weight, Local Preference, MED, AS-PATH) to influence and optimize WAN traffic flow, ensuring efficient and resilient routing strategies.
●Managed VLAN configurations, deploying features like STP, Port Security, trunking, and inter-VLAN routing to enhance network segmentation, performance, and security.
●Deployed FabricPath and VDC on Cisco Nexus switches, simplifying the data center architecture and enhancing fault tolerance and scalability.
●Set up and configured Juniper network equipment (MX480, EX8200, EX4500, and EX4200), ensuring adherence to network design specifications and seamless integration into the enterprise network.
●Designed and implemented site-to-site and remote VPNs using IPsec, facilitating secure connectivity between corporate locations and remote employees.
●Redesigned LAN, WAN, and Extranet architectures, improving network reliability, scalability, and performance to support critical business operations.
●Monitored and analyzed network performance with tools like SolarWinds, Cisco Prime Infrastructure, and Wireshark, proactively troubleshooting latency and connectivity issues and generating actionable insights.
●Configured Remote Access VPN solutions, utilizing Cisco VPN clients and IPsec protocols to provide secure remote access for employees.
●Managed user access policies within Active Directory, applying security best practices and configuring permissions to protect corporate resources.
●Implemented and managed AAA solutions with Cisco ACS (version 5.x) and RADIUS/TACACS+ for robust authentication, authorization, and accounting, integrating seamlessly with network devices.
●Worked closely with application and security teams to optimize network configurations, troubleshoot latency issues, and ensure efficient firewall rule management for secure and seamless connectivity.
OMICS International Pvt Ltd, India, Hyderabad
Network Engineer May 2015 – Jan 2018
●Configured and managed Cisco Layer 2 and Layer 3 switches, implementing features such as Spanning Tree Protocol (STP), VLAN configuration, and spanning tree optimizations like PortFast and UplinkFast to ensure network stability and reduce downtime.
●Supported WAN infrastructure running OSPF as the core routing protocol, performing configurations and troubleshooting for reliable inter-site connectivity and network performance.
●Worked extensively with Cisco routers, including 2600, 3600, and 7200 series, configuring and maintaining them to support robust LAN/WAN operations.
●Implemented and secured dynamic routing protocols, configuring OSPF and BGP authentication to maintain route integrity and prevent unauthorized routing updates.
●Configured and troubleshot OSPF and EIGRP, addressing adjacency issues, route redistribution, and link-state behavior to ensure optimal routing efficiency.
●Diagnosed and resolved IOS-related bugs, using historical bug reports and Cisco release notes to guide version upgrades and mitigate known issues.
●Managed various connection mediums, including Fiber and Copper, ensuring proper setup and troubleshooting of connectivity issues to maintain seamless data transmission.
●Developed in-depth expertise in LAN/WAN implementation, focusing on analysis, optimization, and troubleshooting to support enterprise-grade networking environments.
●Configured F5 Load Balancers (LTM and GTM), assisting with load distribution strategies for both local and global traffic to enhance application performance and availability.
●Planned and configured routing protocols such as OSPF, RIP, and static routes, aligning with network architecture designs and optimizing routing paths for efficiency.
●Conducted lab tests and documented technical results, preparing detailed reports on test outcomes to support configuration validation and future project planning.
●Designed IP addressing schemes for clients, ensuring logical, scalable, and efficient allocation to meet organizational growth and address management standards.
●Assisted certification teams, providing support and configuration expertise for LAN/WAN technologies, including Ethernet, Fast Ethernet, and Gigabit Ethernet.
●Configured and optimized spanning tree features, like PortFast and UplinkFast, to enhance network convergence times and prevent loop formation.
●Supported complex Cisco 6500/5500 series switches, performing configuration, maintenance, and troubleshooting for high-density network environments.
●Handled inbound technical support calls, resolving complex customer issues related to Internet connectivity, modem configurations, and CPE router setups (Cisco-Linksys, Belkin, D-LINK, and Dynamode) for home and small office networks.
●Managed and troubleshot LAN and WLAN networks, providing comprehensive support for customer modems (NTL 250, TERAYON, and MOTOROLA) and ensuring consistent network access.
●Set up home networks and offered full support on Virgin Media Security Software (PC-guard), addressing security concerns and optimizing customer network configurations.
●Diagnosed technical support issues, including authentication problems, connection speed fluctuations, email configuration errors, and loss of synchronization, delivering timely and effective solutions.
●Mentored and coached new employees, providing training on networking fundamentals and technical support processes, contributing to team development and operational efficiency.
Contact this candidate