Post Job Free
Sign in

Palo Alto Network Architect

Location:
McNair, VA, 20171
Posted:
May 16, 2025

Contact this candidate

Resume:

PROFESSIONAL SUMMARY:

Senior Network Architect with 10+ years of experience designing, deploying, and securing enterprise-grade networks in healthcare, finance, and retail environments. Proven ability in network transformations, cloud integration, and high-availability solutions using Cisco, Palo Alto, Juniper, F5, and AWS. Adept at reducing downtime, improving security posture, and leading scalable infrastructure initiatives.

TECHNICAL SKILLS:

Networking: TCP/IP, VPN, VLAN, BGP, OSPF, EIGRP, MPLS, STP

Hardware: Cisco Nexus/Catalyst, Juniper EX/MX/SRX, Fortinet, Arista

Firewalls: Palo Alto, Cisco ASA/Firepower, Checkpoint

Load Balancing: F5 BIG-IP (LTM, GTM), NetScaler

Cloud/Automation: AWS, Zscaler, Python (basic), Ansible (basic), TCL

Monitoring/Tools: SolarWinds, Wireshark, GNS3, ServiceNow

Protocols: NAT, PAT, SNMP, HSRP, VRRP, IPSEC, SSL VPN

OS: Windows Server, Red Hat Linux, Cisco IOS/NX-OS

CERTIFICATIONS:

Cisco Certified Internetwork Expert (CCIE)

Cisco Certified Network Professional (CCNP)

Palo Alto Networks Certified Network Security Engineer (PCNSE)

Juniper Certified Internet Specialist (JNCIS)

F5 Certified Technology Specialist (F5-CTS)

PROFESSIONAL EXPERIENCE:

OSF Health Care – Network Architect

Remote / Chicago, IL Jan 2024 – Feb 2025

Led phased migration from Cisco Catalyst/Nexus to Extreme Networks, reducing hospital network downtime by 40%.

Upgraded Avaya telephony to Cisco UC, improving communication reliability by 25% for over 1,000 users.

Deployed clustered Palo Alto PA-6050 firewalls, improving segmentation and reducing incident response time by 30%.

Implemented Cisco ISE Guest Services with dynamic VLAN policies for secure access across 15+ facilities.

Managed F5 LTM/GTM and Azure services to ensure 99.99% uptime for patient-facing applications.

Led the migration project from legacy ISC DHCP to modern ISC KEA DHCP, improving scalability and modularity of IP address management.

Designed and implemented high-availability (HA) architecture for KEA servers using Kea’s built-in HA hooks and database backends.

Environment: Cisco Catalyst 9200/9300, Meraki MS250/MR42, Cisco Firepower 1150/1010, F5 LTM/GTM, Palo Alto PA-6050, Cisco ISE, Azure, LAN/WAN, VTP, STP, GLBP, HSRP, SolarWinds, Visio

Arch Technology Solutions – TAAC Support Engineer

Remote May 2023 – Dec 2023

Delivered global support for F5 BIG-IP (LTM, ASM, APM, AFM), achieving 98% SLA adherence.

Automated incident resolution workflows, reducing average response time by 35%.

Authored technical documentation improving Tier 1 resolution by 20%.

Mentored junior engineers and led weekly deep-dive technical sessions.

Environment: F5 BIG-IP (LTM, ASM, APM, AFM), iRules, SSL Offloading, SAML, LDAP, REST API, SNMP, DNS GTM, Linux, Bash, Wireshark, SolarWinds, ServiceNow, Confluence, SharePoint

TC-BRANDS (Callaway Golf) – Sr. Network Engineer

Fort Worth, TX Aug 2022 – Feb 2023

Designed and supported VPNs and firewalls, improving remote access success rate by 30%.

Led data center migration and SQL clustering with zero data loss.

Automated network configuration using Cisco DNA and TCL scripting, improving provisioning efficiency by 40%.

Enhanced security with Cisco ISE and Palo Alto NGFWs for 500+ users.

Developed custom KEA configuration files using JSON syntax, incorporating subnet definitions, lease lifetimes, and client class support.

Integrated KEA with MySQL/PostgreSQL lease backends for persistent lease storage and real-time lease tracking.

Environment: Cisco Nexus 2k/5k/7k, 6500/7200, Cisco DNA Center, Juniper SRX100, Fortinet NGFW, Checkpoint, Cisco ASA, AWS, TCL, BGP, OSPF, HSRP, VPN, SQL Server Clustering

AbbVie Inc. – Sr. Network Security Engineer

Chicago, IL Jul 2020 – Aug 2022

Architected enterprise networks using Cisco Nexus and Juniper MX platforms.

Optimized iBGP/eBGP and MPLS configurations to reduce latency across 20+ global locations.

Secured hybrid environments with Palo Alto firewalls and F5 BIG-IP devices.

Environment: Cisco Nexus 9k/7k, Catalyst 6800/6500, Juniper MX960/EX4600/QFX10008, SRX, Palo Alto 7080, PAN M-600, F5 BIG-IP, MPLS WAN, DMVPN, Route Reflectors

State of Idaho, Dept. of Labor – Sr. Network Engineer

Boise, ID Apr 2019 – May 2020

Migrated data centers and managed SQL clusters with zero disruption.

Implemented VPN/firewall infrastructure across state offices using ASA, Juniper, and Fortinet devices.

Environment: Cisco Nexus 2k/5k/7k, Catalyst 6500/7200, ASA, Juniper SRX100, Fortinet NGFW, OSPF, BGP, EIGRP, HSRP, AWS, Riverbed, Windows Server

Biogen – Sr. Network Security Engineer

Cambridge, MA Dec 2017 – Mar 2019

Managed Cisco/Aruba wireless and site surveys using Ekahau/Air Magnet.

Led firewall and F5 deployments reduced security incidents by 40%.

Environment: Cisco Nexus 2k/5k/7k, Catalyst 4500/6500, ASA 500, Cisco ISE, Aruba Wireless, Ekahau, Air Magnet, Checkpoint, F5 BIG-IP LTM, SQL Server Clustering

Nielsen – Sr. Network Engineer

Tampa, FL Aug 2016 – Nov 2017

Migrated Checkpoint VPN to Cisco ASA, reducing conflicts by 40%.

Deployed Palo Alto PA-3060 firewalls and improved SOC accuracy.

Environment: Checkpoint GAIA R75.40/77.20, Palo Alto PA-3060, Cisco ASA, Juniper SSL VPN, VLAN, SNMP, Wireshark, Riverbed, IronPort, McAfee NAC, ASR9000

Wipro – Asst. Network Engineer

Hyderabad, India Dec 2014 – Aug 2016

Managed routing protocols (MP-BGP, OSPF, EIGRP) and L2/L3 troubleshooting for global clients.

Configured Cisco ASA firewalls and enforced NAT/ACL policies.

Environment: Cisco Catalyst 3750/4500/6500, Routers 2600/3600/7613, ASA 5585-X, Juniper EX/ACX, Checkpoint, SolarWinds, OSPF, EIGRP, RIP, HSRP, VTP, STP

EDUCATION

Bachelor of Science – Acharya Nagarjuna University, Guntur



Contact this candidate