Data Center Network Engineer
Resume:
Bhoopal Bardor
Network Engineer
Email: **********@*****.***
Contact: +1-512-***-****
LinkedIn: https://www.linkedin.com/in/bhoopal-bardar/
PROFESSIONAL SUMMARY:
Experienced in building private cloud infrastructures and deploying standardized validated designs leveraging Dell Technologies and VMware, with hands-on experience in Azure, GCP, and AWS cloud technologies and VPC services.
Hands-on experience with Amazon Web Services (AWS), including IAM, S3, EC2, EBS, EKS, Route53, and VPC services, along with Azure cloud, where I migrated applications from NSX private cloud to Azure, utilizing cloud-native security features to optimize the overall infrastructure.
Operational experience with SDN, Cisco ACI, VXLAN, VTEPS, VNI, Bridge Domain, Arista Cloud Vision, EVPN, MP-BGP, and Spine and Leaf Architecture, enabling seamless network automation and configuration across data center environments.
Enthusiastic about implementing network automation in configuration, documentation, troubleshooting, and workflow integration using Python and Ansible. Experienced with API integration for network automation to improve operational efficiency.
Implemented SD-WAN (Viptela & Versa) technologies to optimize efficiency and scalability across Enterprise LAN and WAN environments, with experience in Viptela and Velocloud SD-WAN elements such as vManage, vBond, vSmart, vEdge, and vCO.
Operational experience in Cisco ACI for data center automation, integrating VXLAN, VTEP, VNID, EVPN, and Bridge Domains into existing infrastructures, and successfully integrating Cisco ACI fabric with Cisco Nexus 7000s and ASRs for MPLS environments.
Worked on security solutions including web traffic security with proxies, web application firewalls, and perimeter security for Internet, Extranet, DMZ, and internal server farms, alongside proxies like MWG, Bluecoat, and Zscaler to provide enhanced network security.
Extensive experience with firewall technologies including ASA, Firepower, Checkpoint, FortiGate, Palo Alto, and FortiGate Appliances (90G and 1100E), running the latest FortiOS for robust network security.
Experienced in setting up and troubleshooting SSL VPN solutions using Cisco AnyConnect, Juniper Pulse Secure, and Zero Trust Network Access, ensuring secure remote access across enterprise environments.
Experienced in interior and exterior routing protocols like RIP, OSPF, EIGRP, IS-IS, and BGP, with hands-on work on Cisco, Juniper, and Arista routers, alongside legacy and high-end switching technologies in campus and data center environments.
Experience with Campus Wireless environments with access points, Wireless LAN controllers (WLC), Anchor Controllers, Authentication policies, BYOD policies, and integration with RADIUS, including hands-on experience with Aruba and Cisco WLAN environments.
Expert in application delivery controllers, local and global load balancing techniques, and redundancy solutions for mission-critical internal, vendor, and public-facing applications using F5 LTM, GTM, APM, Citrix NetScaler, Cisco ACE, and A10.
Worked in multi-vendor environments, including Cisco, Juniper, Arista, Dell, Cumulus, and HP/Aruba gear in data center and campus environments, enabling seamless interoperability and effective network management.
Proficient in high availability options for mission-critical applications, ensuring redundancy and failover capabilities for both internal and external network infrastructures, maintaining network uptime and reliability.
Experienced with network monitoring tools like SNMP, Log collectors, Splunk, ticketing tools, and a strong understanding of workflows in corporate environments such as Financial, Healthcare, and Retail clients, using Sumo Logic and Thousand Eyes for detailed network diagnostics.
Proficient in managing Infoblox DNS and DHCP servers, IPAM, and internal/external grids, with comprehensive knowledge of ServiceNow change management processes, including submitting change requests, assessing risks, and implementing network changes in compliance with established workflows.
CERTIFICATIONS:
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Network Associate (CCNA)
EDUCATION DETAILS:
Southeast Missouri State University, Cape Girardeau, Master of Science in Computer Science
Vel Tech Rangarajan Dr. Sagunthala R&D Institute of Science and Technology, Chennai, Bachelor of Technology, Computer Science& Engineering
TECHNICAL SKILLS:
Cloud & Virtualization Technologies
AWS (Transit Gateway, Direct Connect, Network Load Balancer), Microsoft Azure (Traffic Manager, DDoS Protection, Load Balancer), Zscaler (ZIA, ZPA), VMware (vSphere, NSX, ESXi), Citrix ADC, Cisco ACI, and Cisco Nexus Cloud.
Routers
Cisco ISR 4000 Series (ISR800, ISR1900, ISR2900, ISR3900, ISR4321, ISR4331, ISR4351, ISR4431, ISR4451), ASR 9000 Series (9006, 9010, 920), ASR 900 Series (ASR920, ASR900), IR Series (IR 809, IR 1101), Cisco 5000 Series, Juniper MX960, and Arista 7800R Series
Switches
Cisco Catalyst Series (9400, 9300, 9200, 8500, 8300, 8200), Cisco Nexus Series (9500, 9300, 3000, 5000, 7700 [7706, 7710, 7718], 3k, 5k, 9300), Cisco Meraki Series (MS390, MS250-48P), Arista 7000 Series (Cloud-grade switches), Cisco 8000V Edge Software.
Wireless
Cisco WLC, 802.11 a/b/g/n/ac/ax, 802.1X Authentication, EAP/PEAP, Aruba ClearPass, Ekahau, Cisco ISE, Air Magnet, AirWatch (VMware Workspace ONE), Aruba Central, Cisco DNA Spaces, Cisco, Aruba Wireless LAN, 802.11 a, b, g, n, ac, 802.1X Auth, 2.4 and 5 GHz, EAP/PEAP, Aruba AirWave & Aruba ClearPass
Firewall
Palo Alto Networks (PA-2K, PA-3K, PA-5K, PA-7K Series), Cisco (Firepower, ASA 5500 Series), Fortinet (FortiGate 6000 Series), Symantec Blue Coat (ProxySG), Check Point Firewalls.
Load Balancers
F5 Networks (BIG-IP LTM, BIG-IP GTM), Citrix NetScaler ADC, Cisco (CSM, ACE), A10 Networks ADC, Azure Load Balancer (Cloud-native).
WAN technologies
MPLS, SD-WAN, PPP, OC3, SONET, L2VPN, L3VPN, VPLS, Frame Relay, ISDN, ATM, leased lines, DS1, DS3, T1/T3, SONET.
LAN technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet,40 & 100 GBE, Port- channel, VLANS, VTP, STP, RSTP, MST,802.1Q
Security Protocols
IKE, IPSEC, SSL-VPN, ACL, NAT, PAT, URL Filtering, SSL Forward Proxy, Blocklists, VPN, Port-Security, SSH, AAA, Prefix-Lists, Zone-Based Firewalls, HIPAA Standards, Ingress & Egress Firewalls, Content Filtering, Load Balancing, IDS/IPS, SNMP Trap
Networking Protocols
RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, SNMP, VPC, VDC, MLAG,
Operating System
CAT IOS, IOS XE, XR, NX-OS, Junos, PANOS, F5 BIGIP OS, Linux, Windows
Network Monitoring & Management Tool
Wireshark, Splunk, SolarWinds (NPM, NCM, SAM), Cisco DNA Center, NetScout, Thousand Eyes, Nagios, Zabbix, Infoblox, ManageEngine OpManager, Dynatrace, Datadog, Logic Monitor, Grafana, Prometheus, PRTG Network Monitor, Cisco Prime, Netcool, SevOne, EMC Smarts, Endpoint Security, Loadmaster, HAProxy, WhatsUp Gold.
PROFESSIONAL EXPERIENCE:
Role: Network Engineer October 2022 – Present
Client: Optum, United States of America
Responsibilities:
Expertise for the SD-WAN Viptela, SD-LAN and WAN optimization technologies for efficient delivery of the application data across LAN and WAN.
Experienced in leveraging programmability and automation capabilities through NETCONF, RESTCONF, and model-driven telemetry to optimize network operations and enhance scalability in SD-WAN and modern network architectures.
Working with VMWare SDWAN VeloCloud Orchestrator Platform for Cloud-Hosted Application Server Management.
Resolved complex networking issues across MPLS and hybrid environments, performing detailed packet captures and traffic analysis.
Integrated Cisco ACI with Nexus 7000s and ASRs for MPLS, using Nexus 9000 NX-OS and ACI features like VXLAN, EVPN, VTEP, and Application Profiles to enable scalable and secure data center and WAN infrastructure.
Setup Cisco ACI Fabric (Spine/Leaf/APIC) Configure ACI APIC controller and Migrated workloads from existing switched network to ACI.
Experienced with data center technologies including Cisco ACI, and Nexus family switches as well as Arista Cloud Vision for network management and monitoring in hybrid environments.
Implemented high-availability solutions with Nexus switches using VPC and VDC, minimizing downtime and enhancing redundancy in multi-tenant environments.
Configured Cisco Software-Defined Access (SD-Access) on Cisco Catalyst 9000 Series switches, enabling secure and scalable network segmentation.
Implemented and managed Palo Alto firewalls (NGFW) and Panorama, configuring threat prevention, URL filtering, GlobalProtect, SSL VPN, and IPSEC VPN to enhance network security and enable secure remote access.
Configured and maintained Palo Alto and Cisco ASA firewalls, implementing advanced security policies, intrusion prevention, and IPsec tunnels (AES 256).
Working with a successful Cisco Partner to migrate from Palo Alto 5050 firewalls to Cisco Fire Power 9300 firewalls with throughput up to 1.2Tbps crushing the current slow Palo Alto 5050s.
Configured virtual routers on Palo Alto firewalls, adding NAT rules and security policies, and leveraged Illumio for network segmentation and traffic filtering through Illumio Central Manager.
Optimized and secured network infrastructure by configuring, managing, and troubleshooting Palo Alto and Juniper firewalls, auditing and streamlining firewall rules to enhance policy compliance and operational efficiency.
Configured and managed FortiGate 90G/1100E firewalls, implementing security policies, VPNs, and traffic filtering. Enhanced network security with HA, IPS, real-time monitoring, and FortiAnalyzer for centralized logging.
Deployed F5 BIG-IP GTM to manage global traffic and ensure high availability across data centers and leveraged F5 ASM’s automated learning mode to adapt security policies, reducing false positives and enhancing web application security.
Implemented Citrix NetScaler ADC to optimize application delivery with load balancing, SSL offloading, and application firewall features, while utilizing Citrix NetScaler AppFlow for traffic analysis, identify performance bottlenecks and security threats.
Implemented and managed Infoblox for DNS, DHCP, and IP Address Management, automating provisioning with Infoblox APIs to reduce errors. Ensured high availability and security compliance, enhancing network reliability and uptime.
Utilized network monitoring and analysis tools such as SolarWinds, Cisco Works, Riverbed, Wireshark, and NS3 to perform network monitoring, analysis and provide network topologies.
Designed and documented workflows, monitoring flows, and performance monitoring concepts using Visio and process documentation tools.
Implemented Cisco ISE 3.x for role-based access control and security, configuring 802.1X authentication on Cisco Catalyst 9300 switches to enforce network policies based on user and device identity.
Applied network automation tools like Ansible and Python scripting for configuration management, automating repetitive tasks, deploying critical applications, and proactively managing changes using Ansible Tower.
Created reusable and modular Terraform codebases to standardize infrastructure across multiple environments, optimizing deployment efficiency and ensuring consistent application of security and compliance policies.
Designed and deployed Infrastructure as Code (IaC) templates using Terraform and CloudFormation, automating cloud resource provisioning and compliance
Managed AWS Cloud resources, including EC2, Route53, RDS, and Lambda, configured AWS Security Groups for traffic control and migrated VMs and applications to enhance scalability and security.
Configured AWS Direct Connect (DX), Transit Gateway (TGW), and Local Gateway for secure and efficient data ingress, leveraging route tables to optimize traffic flow.
Configured and troubleshooted GRE tunnels for secure and efficient data transmission across multi-site networks.
Configured ExpressRoute and VPN connectivity to Microsoft Azure Cloud, deploying Azure IaaS VMs and PaaS services into secure VNets and subnets.
Set up Google Cloud for scalable domain resolution, implemented GCP firewall rules for traffic control, and optimized content delivery using GCP Cloud CDN to enhance performance and reduce latency.
Optimized MPLS VPN networks by configuring BGP routing policies and establishing BGP peering with external ASNs on Arista 7500R Series switches, enhancing traffic flow and network resilience.
Configured OSPF and BGP on Juniper Routers and SRX Firewalls and monitored OSPF neighbor relationships and state transitions using SolarWinds NCM for proactive troubleshooting.
Configured EIGRP query boundaries on Cisco ASR 9000 Series to minimize the scope of EIGRP queries and enhance network stability.
Configured and managed network infrastructure using Cisco DNA Center (DNAC), directing system setups to optimize network performance, automation, and policy-driven.
Skilled in deploying and managing Cisco Meraki solutions, including Meraki MX firewalls, MS switches, and MR access points, focusing on performance optimization and compliance through Meraki Dashboard monitoring, traffic shaping, and security policies.
Configured and deployed Juniper MX480s, EX9200, EX4300, EX4600, and SRX5800s, as well as Juniper MX Series 240s & 9600s, and Cisco Nexus 9k & 7k series, ensuring alignment with design specifications.
Proficient in various communication protocols, including Ethernet, Wi-Fi, Bluetooth, and cellular networks, with hands-on experience in their integration and troubleshooting.
Managed and deployed enterprise wireless communications (WLC) for data centers, optimizing performance and security with Wi-Fi Alliance products and Cisco Catalyst 9100 Series APs, while reducing cabling costs.
Skilled in implementing Quality of Service (QoS) policies to optimize network performance for VoIP, video streaming, and business-critical applications. Configured traffic prioritization using DSCP and CoS, applied traffic shaping and policing techniques, and ensured low latency and jitter for real-time communication services.
Led the deployment, troubleshooting, and optimization of networking systems such as Local Area Networks (LANs), wireless networks, VoIP systems, IP-based Public Address/Intercom systems, and IP video surveillance systems, improving operational efficiency.
Deployed and managed services using TCP/IP protocols like HTTP, FTP, and DNS, and configured TCP/IP settings for a multi-site network to ensure smooth connectivity.
Developed and integrated ZTNA-based micro-segmentation strategies with SIEM tools to isolate sensitive applications, minimize lateral threats, and enable real-time monitoring and automated responses.
Deployed applications and hosted websites on AWS cloud, planned and developed migration designs, managed storage area network servers in a VMware environment, and integrated Splunk with AWS using Puppet to collect data from all EC2 systems.
Replaced Checkpoint VPN and Bluecoat Proxy with Zscaler to boost network security and performance, implementing Zscaler Internet Access (ZIA) with features like secure web gateway, DNS security, and threat protection.
Enhanced network threat detection and response by deploying, managing, and tuning IDS/IPS solutions, integrating external threat intelligence feeds, and analyzing security logs to proactively mitigate potential incidents in collaboration with the Information Security team
Proficient in utilizing ServiceNow for network engineering tasks, including incident management, change management, and configuration management.
Role: Network Engineer (Firewall & Security) September 2020 – July 2022
Client: Mazda Irvine, CA USA
Responsibilities:
Worked on checkpoint & Palo Alto implementation and installation of Application and URL filtering, thereat prevention, Data Filtering.
Good experience in Checkpoint Firewall Operations and implementations across a diverse network with many levels of required security configurations.
Created Azure Virtual Firewalls, VPNs, VLANs, Load Balancers and Route Tables. Implemented Checkpoint firewall rules according to business requirements and verifications.
Configured Cisco ASA 5500-X Series firewalls, implementing advanced security policies, intrusion prevention, and VPN services for secure network access.
Integrated Blue Coat ProxySG with Blue Coat Reporter to generate detailed reports on web usage, security incidents, and compliance, providing comprehensive visibility and analysis.
Utilized Splunk Machine Learning Toolkit (MLTK) to develop predictive models for network performance and security, enabling proactive management and threat prevention.
Utilized Cisco ISE profiling features to dynamically identify and classify network devices, automating access policy enforcement and improving network visibility.
Provided level 2 and 3 support for F5 LTM and APM, optimizing traffic and application delivery, while configuring VIPs, troubleshooting, and performing packet captures to ensure optimal performance.
Managed 500+ network devices, including Juniper SRX Firewalls, F5 Big-IP Load Balancers, and Nexus devices, ensuring high availability and performance.
Implemented A10 Thunder TPS for DDoS protection, leveraging advanced threat detection and mitigation technologies to safeguard network and application infrastructure.
Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
Led data center migration from legacy systems to new Cisco ACI fabric infrastructure, configuring and managing Cisco ACI for scalable, flexible network solutions.
Experienced in implementing and managing Cisco DNA Center (DNAC) for network automation, assurance, and optimization.
Skilled in implementing and managing Viptela SD-WAN and Silver Peak SD-WAN, along with Cisco devices such as ASR 1000, Nexus 9000, and ASA 5500, optimizing performance and ensuring network reliability.
Configuring networks using routing protocols such as RIP, OSPF, EIGRP and BGP and manipulating routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
Manage and maintain LAN/WAN networks, ensuring data center connectivity, while using tools like Splunk, SolarWinds, and PRTG for monitoring, troubleshooting, and documenting network issues to ensure optimal performance.
Conducted packet-level analysis and troubleshooting with Wireshark and other network diagnostic tools to resolve SevOne-related performance monitoring issues.
Leveraged Python and Ansible to automate network configurations, optimize operational efficiency, and streamline service migrations, reducing manual intervention for faster and more reliable deployments.
Implemented and deployed Aruba wireless infrastructure with 500/510 Series APs and Aruba Mobility Controllers, utilizing 802.11ax (Wi-Fi 6) for seamless, high-performance connectivity and continuous service.
Proficient in documenting incident resolution processes and maintaining accurate records within the ServiceNow platform.
Designing and directing system configuration and installation to accommodate network needs of client.
Involved in migration of switches from catalyst 6500 E to catalyst 4500-X, 9500 and Nexus 9k, 7k & 9k.
Extensive troubleshooting on a case-by-case basis with deep understanding of networking/firewall concepts.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Involve in technical enhancement and deploy new changes using change management and incident management.
Redundancy & Management HSRP, VRRP, Wireshark, SolarWinds, SNMP, CISCO Works, GNS3, Riverbed.
Managed DHCP, DNS and IP address through Infoblox, and Admin for Internet sites access through Zscaler.
Worked on Azure AD SAML authentication for Zscaler authentication and AD group-based policies.
Experience with Firewall administration, Rule analysis, Rule modification.
Provided personalized support and guidance to end-users during the setup process, promoting efficient utilization of new technology resources.
Conducted network modeling and analysis to construct a reliable, high-performance integrated network and recommend new solutions to improve the resilience of network operation.
Role: Network Infrastructure Technician Engineer July 2019 – August 2020
Q2 Software
Responsibilities:
Assist in redesigning the campus LAN, routing protocol, IP telephony, IP addressing scheme for client.
Lead the installation and configuration of corporate wide rollout of the Cisco Catalyst 3550, 3560, 3750, switches including VLAN configuration, VTP, 802.1q, Spanning-Tree protocol, Ether Channel, & FHRPs such as HSRP & GLBP. Provide technical expertise in troubleshooting of IP routing protocols including OSPF, EIGRP, BGP, & route redistribution.
Configured and managed port-channeling and trunking to optimize network bandwidth, enable redundancy, and ensure seamless communication across multiple VLANs in enterprise environments
Converting ASA version 8.x to 9.x. address security hardware refresh and migration activities using Python and Ansible scripts.
Install, configure, maintain, & manage network security processes of ASA Firewalls from the CLI. Monitor device activities & WAN (Frame Relay &MPLS) utilizing Cisco Works, SNMP coordinate new circuit installations.
Develop standard operating procedure (SOP) documentation. Upgrade Cisco Routers and Switches IOS using TFTP. Configured and supported multiple remote site installations.
Used Wireshark for network traffic analysis and troubleshooting, resolving packet-level issues to optimize performance.
Diagnose & resolve complex layer 1, 2 & 3 connectivity using Wireshark analyzer & recommend solution for better performance.
Managed Incident and Change Management processes using ServiceNow, ensuring efficient ticket resolution and IT service delivery.
Contact this candidate