Network Engineer Palo Alto
Resume:
SUMMARY
Aditya Cecil Pudota
**************@*****.*** +1-530-***-****
www.linkedin.com/in/aditya-cecil
Network Engineer with 4+ years of experience in designing, deploying, and optimizing enterprise networks, specializing in routing
& switching (BGP, OSPF, MPLS), firewall security (Palo Alto, Cisco ASA), cloud networking (AWS, Azure), and network automation
(Python, Ansible). Skilled in network troubleshooting, performance optimization, and ensuring regulatory compliance (GDPR, PCI- DSS, ISO 27001) across multi-site environments.
SKILLS
Routing & Switching: BGP, OSPF, EIGRP, RIP, Static Routing, MPLS, VLANs, VTP, STP, RSTP, Inter-VLAN Routing, EtherChannel, VRRP, HSRP, GLBP
Networking Fundamentals: TCP/IP, IPv4, IPv6, Subnetting, VLAN Trunking (802.1Q), DNS, DHCP, NAT, ARP, ICMP, QoS, Ethernet
Enterprise Networking: SD-WAN, VPN (IPSec, SSL VPN), VoIP (Cisco CUCM, SIP, RTP), Network Optimization
Network Devices: Cisco Routers (4000, 3000, 2900, 2600), Cisco Switches (2900-9500, Nexus 9000), Juniper Routers & Switches, Aruba Wireless Controllers, Cisco Aironet Access Points
Firewalls & Security: Palo Alto, Cisco ASA, Fortinet, Check Point, ACLs, NGFW, SSL/TLS, IDS/IPS, 802.1X Authentication
Identity & Access Management: Cisco ISE, RADIUS, TACACS+, AAA, MFA, NAC
Network Protocols: TCP/IP, UDP, DHCP, DNS, SNMP, HTTP, HTTPS, FTP, SSH, Telnet, NetFlow
Network Monitoring & Troubleshooting: Wireshark, SolarWinds, PRTG, Nagios, Infoblox, ThousandEyes, Tcpdump, Packet Capture
Network Automation & Scripting: Python, Ansible, Terraform, Bash, Cisco DNA Centre
Cloud & Virtualization: AWS Networking (VPC, Direct Connect, Transit Gateway), Azure Networking (VNet, VPN Gateway), VMware vSphere, Hyper-V, SDN Concepts
Compliance & Frameworks: GDPR, PCI-DSS, ISO 27001, NIST, ITIL Foundation
Wireless & ISP Technologies: Wi-Fi (802.11 standards), GSM, UMTS, CDMA
Tools & Utilities: PuTTY, Nmap, Netstat, Nslookup, Traceroute EXPERIENCE
Liberty Mutual Finance Jan 2024 – Current
Network Engineer
Configured and optimized routing protocols (BGP, OSPF, EIGRP) across multi-site WANs, reducing network convergence time by 20%.
Deployed Cisco Nexus 9000 switches for data centre modernization, improving network scalability and resilience.
Implemented SD-WAN architecture to streamline branch connectivity, achieving a 25% reduction in MPLS costs.
Automated routine network tasks using Python and Ansible, decreasing manual intervention by 30%.
Led VPN (IPSec, SSL) deployments to support remote workforce initiatives during enterprise cloud migration.
Integrated Palo Alto and Cisco ASA firewalls for hybrid cloud security, ensuring compliance with PCI-DSS.
Utilized SolarWinds and Wireshark to monitor, analyse, and troubleshoot network performance issues proactively.
Collaborated with cross-functional teams to conduct annual network security audits, meeting ISO 27001 certification requirements.
Cloud4C Oct 2020 – Aug 2022
Network Engineer
Designed VLAN segmentation and inter-VLAN routing for enterprise campus networks, improving security and traffic management.
Supported VoIP infrastructure deployment (Cisco CUCM, SIP Trunking), optimizing voice traffic efficiency across global offices.
Configured and maintained network access control (Cisco ISE, RADIUS, TACACS+), enforcing role-based access policies.
Performed network capacity planning and upgrade assessments to ensure scalability for 1000+ node environments.
Assisted in migrating legacy firewalls to Palo Alto NGFWs, enabling enhanced threat detection and SSL decryption capabilities.
Integrated Infoblox for centralized IPAM (IP Address Management) and DHCP/DNS services, improving address space utilization.
Developed Terraform scripts for automating AWS VPC and Azure VNet configurations in hybrid cloud networks.
Conducted wireless site surveys and optimized Wi-Fi deployments (Cisco Aironet), boosting signal coverage by 40%. Capri Global Aug 2019 – Oct 2020
Network Engineer
Deployed and managed Cisco ISR 4000 series routers and Catalyst 9500 core switches in enterprise branch networks.
Implemented and maintained MPLS circuits and route redistribution strategies for seamless site-to-site connectivity.
Executed Layer 2/Layer 3 troubleshooting using packet capture tools (Wireshark, Tcpdump) to resolve critical network outages.
Hardening of network devices through ACLs and secure SNMP configurations to minimize cybersecurity risks.
Coordinated firewall rule base optimization projects for Cisco ASA and Fortinet firewalls, improving policy enforcement.
Enabled NetFlow data collection and integration with PRTG for real-time network traffic visibility and anomaly detection.
Provided support during disaster recovery (DR) drills, validating network resiliency plans for mission-critical systems.
Participated in ITIL-based change management processes for all network configuration and upgrade activities. EDUCATION
Master of Science in Information Systems Aug 2022 - May 2024 University of Colorado, Denver, CO
Bachelor of Technology in Electrical and Electronics Engineering Aug 2016 - May 2020 GRIET, Hyderabad, India
CERTIFICATIONS
Cisco Certified Network Associate (CCNA) - Certified in the updated version (v1.1) of the exam. PROJECTS
Network Automation and Management Using Python
Automated network tasks such as configuration backups, firmware updates, and monitoring using Python.
Developed scripts using Paramiko, Netmiko, and NAPALM to streamline SSH connections and device management.
Retrieved and saved device configurations, executed firmware updates, and monitored network health (CPU, memory, interfaces).
Improved network efficiency by automating routine tasks across multiple devices.
These Python scripts helped in reducing manual efforts and minimizing errors. Implementing ACLs in Campus LAN
Designed and implemented Access Control Lists (ACLs) to enhance network security and control traffic flow within a college network.
Configured ACLs on Cisco routers and switches to manage and restrict network access based on IP addresses and protocols.
Developed and applied ACL rules to segment network traffic, enforce security policies, and prevent unauthorized access.
Utilized skills in ACL configuration, Cisco networking, network security, traffic management, and IP address filtering.
Contact this candidate