Post Job Free
Sign in

Network Engineer Data Center

Location:
Cypress, TX
Posted:
March 29, 2025

Contact this candidate

Resume:

Joshua J

Sr. Network Engineer

Ph No: 346-***-****

Email: ******.*******@*****.***

Professional Summary:

Network Engineer with 9+ years of experience in designing, implementing, and managing secure, scalable, and high-performance network infrastructures across financial, telecom, healthcare, and e-commerce domains.

Expertise in configuring, troubleshooting, and optimizing enterprise network architectures, ensuring seamless connectivity, high availability, and robust security across complex environments.

Proficient in deploying and managing Cisco, Juniper, and Fortinet firewalls, switches, and routers, ensuring secure data flow and policy enforcement across enterprise networks.

Skilled in designing and implementing SD-WAN solutions to enhance network performance, reduce latency, and optimize traffic management for distributed enterprises.

Extensive experience in configuring and managing Palo Alto and Fortinet firewalls, implementing security policies, and ensuring compliance with industry standards.

Hands-on expertise in F5 Big-IP load balancers, including configuring LTM, GTM, and ASM for optimized traffic distribution and application security.

Strong knowledge of Ansible and Terraform for automating network configurations, streamlining deployments, and maintaining infrastructure as code (IaC).

Experience in enterprise network segmentation, micro-segmentation, and Zero Trust security models to enhance data protection and minimize attack surfaces.

Proficient in BGP, OSPF, EIGRP, and MPLS for enterprise and data center networking, ensuring efficient routing and high availability.

Skilled in configuring VPNs, IPSec tunnels, and remote access solutions to provide secure communication for enterprise users and remote branches.

Hands-on experience with NAC solutions like Cisco ISE, ensuring endpoint security, access control policies, and compliance enforcement.

Expertise in configuring 802.1X authentication, VLAN segmentation, and network access policies to enhance security and compliance.

Strong knowledge of network monitoring tools like SolarWinds, Splunk, and Wireshark for real-time analysis, performance tuning, and security threat detection.

Experience in implementing DDoS mitigation strategies, IDS/IPS configurations, and SIEM integration for proactive threat management.

Skilled in data center networking, including Spine-Leaf architecture, VXLAN, and network fabric automation to enhance scalability and efficiency.

Experience in configuring and managing wireless network solutions, including Cisco Wireless Controllers and Aruba Networks for enterprise-grade connectivity.

Proven ability to work with cross-functional teams to design and implement secure network solutions aligned with business objectives and compliance requirements.

Strong expertise in network capacity planning, performance optimization, and proactive troubleshooting to ensure seamless business operations.

Experience in configuring QoS policies to prioritize critical applications and optimize bandwidth utilization across enterprise networks.

Hands-on expertise in network device hardening, patch management, and security best practices to mitigate cyber threats and vulnerabilities.

Experience in Azure networking, including Virtual Network (VNet) design, peering, and security group configurations for cloud-based workloads.

Skilled in Azure ExpressRoute and VPN Gateway configurations to establish secure, high-speed connectivity between on-premises data centers and cloud environments.

Expertise in Azure Load Balancer and Application Gateway configurations to optimize traffic distribution and ensure high availability of cloud applications.

Experience in Azure Firewall and Network Security Groups (NSGs) implementation to enhance cloud security and access control.

Strong knowledge of Azure Monitor and Network Watcher for real-time network performance monitoring, diagnostics, and troubleshooting.

Familiarity with DevOps methodologies and CI/CD pipelines, integrating network automation with tools like Jenkins and Git for seamless deployment.

Expertise in disaster recovery planning, high-availability configurations, and business continuity strategies for mission-critical network environments.

Strong documentation skills, including creating network diagrams, runbooks, and standard operating procedures (SOPs) for efficient operations.

Proven ability to lead network infrastructure upgrades, migrations, and expansions, ensuring minimal downtime and business continuity.

Excellent communication and collaboration skills, working with stakeholders, vendors, and cross-functional teams to drive innovative network solutions.

Technical skills:

Category

Skills and Technologies

Network Architecture and Design

High-availability network infrastructures, F5 Big-IP load balancing, SD-WAN (Cisco Viptela, Fortinet Secure SD-WAN), MPLS, VPN (IPSec, SSL), VXLAN, PBR, QoS, BGP, OSPF, EIGRP

Cloud Technologies

Azure Virtual Network (VNet), ExpressRoute, Azure Firewall, Azure Load Balancer, Cloud-based failover

Network Security

Palo Alto, Fortinet, Cisco Firepower, Zero Trust Security Framework, Cisco ISE, NAC, Multi-factor Authentication (MFA), IPS, IDS, Security Audits, PCI-DSS, NIST

Routing Protocols

BGP, OSPF, EIGRP, MPLS, VXLAN, PBR

Automation and Scripting

Python, Ansible, Terraform, Network Automation, Configuration Management, Compliance Enforcement

Network Monitoring and Troubleshooting

SolarWinds, Wireshark, Splunk, Kentik, ThousandEyes, Network Traffic Analysis, Performance Tuning

Compliance and Regulations

PCI-DSS, ISO 27001, NIST

Disaster Recovery and High Availability

BGP Failover, Dual-homed ISPs, Cloud-based failover, High-availability Configurations, Load Balancing, Disaster Recovery Planning

Load Balancing and Traffic Optimization

F5 Big-IP (LTM, GTM), Citrix ADC, QoS, Traffic Distribution, Global Load Balancing

Wireless Networking

Cisco WLC, Aruba Networks, Wireless Access Points, RF Optimization, Hybrid Workforce Connectivity

Network Segmentation

VLANs, Microsegmentation (Cisco TrustSec, VMware NSX), Network Segmentation Strategies

Cloud Services and Integration

Azure (VNets, ExpressRoute, Azure Load Balancer, Cloud-hosted Applications)

Collaboration and Support

Cross-functional Collaboration, IT Security Teams, Network Issue Troubleshooting, Mentorship of Junior Engineers

API and Third-party Integration

API Connections, Integration with Third-party Services (Cloud-based APIs, Security Integrations)

Network Device Management

Cisco (Nexus, Catalyst, ASA), Juniper, Palo Alto, Fortinet, F5 Big-IP, Cisco WLC, Aruba Networks, Citrix ADC, Cisco AnyConnect, Zscaler ZPA

Performance Optimization

F5 Big-IP, QoS, VPN Optimization, Site-to-Site Connectivity, Traffic Flow Management

Professional Experience:

Enbridge INC, TX Nov 2023 – Till Date

Sr. Network Engineer

Reponsibilities:

Designed and implemented secure enterprise network architectures, ensuring high availability and optimized performance for critical business applications.

Configured and managed Cisco and Juniper routers, switches, and firewalls, enhancing network security, efficiency, and scalability.

Deployed and maintained Palo Alto and Fortinet firewalls, implementing advanced security policies to protect against cyber threats.

Designed and optimized SD-WAN solutions to improve network performance, reduce latency, and enhance connectivity for distributed enterprise locations.

Configured and managed F5 Big-IP load balancers, including LTM and GTM, to optimize traffic flow and application resilience.

Implemented Ansible and Terraform for automated network provisioning, reducing deployment times and minimizing configuration errors.

Designed and secured enterprise VPN solutions, including site-to-site IPSec tunnels and remote access configurations for secure connectivity.

Configured and optimized BGP, OSPF, and EIGRP routing protocols to ensure dynamic, fault-tolerant, and efficient network routing.

Managed network security policies, intrusion detection/prevention systems (IDS/IPS), and SIEM integrations for proactive threat mitigation.

Deployed and maintained Network Access Control (NAC) solutions, including Cisco ISE, for endpoint security and compliance enforcement.

Designed and implemented microsegmentation strategies to enhance security posture and minimize lateral movement within the network.

Configured and maintained Azure Virtual Network (VNet) architectures, including VNet peering and security group policies.

Implemented Azure ExpressRoute and VPN Gateway for secure, high-speed hybrid connectivity between on-premises infrastructure and cloud workloads.

Deployed Azure Firewall and Network Security Groups (NSGs) to enforce robust cloud security policies and access controls.

Optimized traffic flow using Azure Load Balancer and Application Gateway, ensuring high availability and efficient distribution of cloud resources.

Managed wireless network solutions with Cisco Wireless Controllers and Aruba Networks, ensuring seamless enterprise connectivity.

Designed and implemented network segmentation strategies, improving security and traffic management across different business units.

Configured Quality of Service (QoS) policies to prioritize critical applications, ensuring optimal performance and bandwidth efficiency.

Monitored and analyzed network performance using tools like SolarWinds, Wireshark, and Splunk to identify and resolve bottlenecks.

Hardened network devices through rigorous patch management, access controls, and security best practices to prevent unauthorized access.

Developed disaster recovery plans and high-availability configurations, ensuring network resilience and business continuity.

Documented network topologies, configurations, and troubleshooting procedures, streamlining operations and future scalability.

Conducted regular network security audits, ensuring compliance with industry standards and identifying potential vulnerabilities.

Led network infrastructure upgrades, migrations, and expansions, minimizing downtime and improving operational efficiency.

Collaborated with cross-functional teams, vendors, and stakeholders to align network solutions with business objectives and security requirements.

Environment: Cisco, Juniper, Palo Alto, Fortinet, SD-WAN, F5 Big-IP, Ansible, Terraform, VPN, IPSec, BGP, OSPF, EIGRP, IDS/IPS, SIEM, Cisco ISE, Micro-segmentation, QoS, Azure Virtual Network, Azure ExpressRoute, Azure Firewall, Azure Load Balancer, Cisco Wireless, Aruba Networks, SolarWinds, Wireshark, Splunk, Patch Management, Disaster Recovery.

St, Luke’s Hospital, TX Jul 2021 – Oct 2023

Sr. Network Engineer

Responsibilities:

Designed and deployed secure network architectures, ensuring high availability and optimal performance for critical healthcare applications.

Configured and managed Cisco and Juniper network infrastructure, including switches, routers, and firewalls, to support hospital-wide connectivity.

Implemented Palo Alto and Fortinet firewalls with advanced security policies to protect patient data and comply with HIPAA regulations.

Deployed and managed SD-WAN solutions to improve network reliability, enhance remote site connectivity, and optimize bandwidth usage.

Configured F5 Big-IP load balancers, including LTM and GTM, to optimize traffic flow and ensure high availability of healthcare applications.

Automated network configurations using Ansible and Terraform, reducing manual interventions and improving infrastructure scalability.

Designed and secured enterprise VPN solutions, including IPSec tunnels and remote access configurations, for secure communication between hospital sites.

Optimized BGP, OSPF, and EIGRP routing protocols to ensure dynamic and fault-tolerant network connectivity across hospital locations.

Integrated network security policies with IDS/IPS and SIEM solutions for proactive threat monitoring and mitigation.

Implemented Network Access Control (NAC) solutions, including Cisco ISE, to enforce endpoint security and compliance across hospital networks.

Designed and implemented microsegmentation strategies to protect sensitive healthcare systems and minimize cybersecurity risks.

Configured and maintained Azure Virtual Network (VNet) with security policies, ensuring secure and scalable cloud networking.

Deployed Azure ExpressRoute and VPN Gateway for high-speed, secure connectivity between hospital data centers and cloud workloads.

Implemented Azure Firewall and Network Security Groups (NSGs) to enhance cloud security and enforce strict access controls.

Optimized healthcare application performance using Azure Load Balancer and Application Gateway for efficient traffic distribution.

Managed wireless networking solutions, including Cisco Wireless Controllers and Aruba Networks, to ensure seamless hospital-wide connectivity.

Configured VLAN segmentation and Quality of Service (QoS) policies to prioritize critical healthcare applications and emergency communications.

Deployed and maintained network monitoring tools like SolarWinds, Wireshark, and Splunk for real-time performance analysis and troubleshooting.

Hardened network devices with security best practices, ensuring compliance with healthcare industry regulations and standards.

Developed disaster recovery and high-availability plans to minimize downtime and ensure continuous patient care operations.

Created detailed network documentation, including diagrams and SOPs, to support efficient troubleshooting and future scalability.

Conducted regular network security audits to identify vulnerabilities, enforce security policies, and maintain regulatory compliance.

Led network infrastructure upgrades, migrations, and expansions, ensuring minimal disruptions to hospital operations.

Collaborated with healthcare IT teams, vendors, and security experts to align network solutions with patient care requirements.

Provided technical leadership in network security, infrastructure optimization, and automation to enhance hospital-wide IT efficiency.

Environment: Cisco, Juniper, Palo Alto, Fortinet, SD-WAN, F5 Big-IP, Ansible, Terraform, VPN, IPSec, BGP, OSPF, EIGRP, IDS/IPS, SIEM, Cisco ISE, Microsegmentation, QoS, Azure Virtual Network, Azure ExpressRoute, Azure Firewall, Azure Load Balancer, Cisco Wireless, Aruba Networks, SolarWinds, Wireshark, Splunk, Patch Management, Disaster Recovery.

American Express, UT Sep 2019 - May 2021

Network Engineer

Responsibilities:

Designed and implemented secure network architectures to support high-performance financial transactions and ensure compliance with industry regulations.

Configured and optimized Cisco and Juniper routers, switches, and firewalls to maintain high availability and secure enterprise connectivity.

Deployed and managed Palo Alto and Fortinet firewalls with advanced security policies to safeguard sensitive financial data.

Implemented SD-WAN solutions to enhance network efficiency, optimize bandwidth usage, and improve application performance across global locations.

Configured and managed F5 Big-IP load balancers, including LTM and GTM, to ensure seamless traffic distribution and application resilience.

Automated network infrastructure provisioning using Ansible and Terraform, reducing deployment time and improving configuration consistency.

Designed and secured enterprise VPN solutions, including site-to-site IPSec tunnels and remote access configurations for secure corporate communication.

Optimized BGP, OSPF, and EIGRP routing protocols to ensure reliable, low-latency connectivity for financial services applications.

Integrated network security policies with IDS/IPS and SIEM solutions for real-time monitoring and proactive threat detection.

Implemented Network Access Control (NAC) solutions, including Cisco ISE, to enforce endpoint security policies and compliance requirements.

Designed and deployed microsegmentation strategies to enhance network security and minimize the risk of lateral movement attacks.

Managed network performance using SolarWinds, Splunk, and Wireshark to analyze traffic patterns and proactively resolve bottlenecks.

Configured VLAN segmentation and Quality of Service (QoS) policies to prioritize mission-critical financial applications and services.

Hardened network devices with security best practices, implementing strict access controls and patch management to mitigate vulnerabilities.

Developed disaster recovery and high-availability network designs to ensure business continuity and prevent transaction disruptions.

Deployed and managed wireless network solutions with Cisco Wireless Controllers and Aruba Networks for secure enterprise-wide connectivity.

Configured and maintained firewall policies, web filtering, and access control lists (ACLs) to enforce security measures across the enterprise.

Conducted security audits and penetration testing to identify vulnerabilities, ensuring compliance with PCI-DSS and other financial security standards.

Led large-scale network migrations and infrastructure upgrades, ensuring minimal downtime and seamless transitions.

Developed detailed network documentation, including diagrams and operational procedures, for efficient troubleshooting and compliance.

Implemented automation scripts for network health checks, configuration backups, and security policy enforcement.

Provided technical leadership and training for IT teams, ensuring adherence to best practices and security policies.

Collaborated with cross-functional teams, vendors, and third-party security providers to strengthen network resilience.

Designed DDoS mitigation strategies to protect against volumetric and application-layer attacks targeting financial services infrastructure.

Ensured regulatory compliance by aligning network security measures with industry standards, policies, and corporate governance requirements.

Environment: Cisco, Juniper, Palo Alto, Fortinet, SD-WAN, F5 Big-IP, Ansible, Terraform, VPN, IPSec, BGP, OSPF, EIGRP, IDS/IPS, SIEM, Cisco ISE, Microsegmentation, QoS, Cisco Wireless, Aruba Networks, SolarWinds, Wireshark, Splunk, Patch Management, Disaster Recovery, PCI-DSS Compliance, ACLs, DDoS Mitigation, Automation.

Virtusa, India Apr 2017 – Aug 2019

Network Engineer

Responsibilities:

Designed and implemented secure and scalable enterprise network solutions to support high-performance business operations.

Configured and managed Cisco and Juniper routers, switches, and firewalls to ensure optimal network performance and security.

Deployed Palo Alto and Fortinet firewalls with advanced security policies to protect against cyber threats and unauthorized access.

Optimized SD-WAN solutions to improve network efficiency, reduce costs, and enhance application performance across multiple locations.

Configured and managed F5 Big-IP load balancers, including LTM and GTM, for efficient traffic distribution and high availability.

Automated network configurations using Ansible and Terraform to streamline deployments and maintain consistency across devices.

Designed and implemented VPN solutions, including IPSec tunnels and remote access, ensuring secure communication across enterprise networks.

Optimized BGP, OSPF, and EIGRP routing protocols to maintain reliable and redundant network connectivity.

Integrated IDS/IPS solutions and SIEM platforms for proactive threat detection, incident response, and real-time security monitoring.

Deployed Cisco ISE for Network Access Control (NAC), enforcing security policies and ensuring compliance across connected devices.

Implemented microsegmentation strategies to enhance security posture and minimize risks associated with lateral movement in the network.

Configured VLAN segmentation and Quality of Service (QoS) policies to prioritize critical applications and optimize bandwidth utilization.

Utilized SolarWinds, Splunk, and Wireshark for real-time network monitoring, performance analysis, and troubleshooting.

Hardened network devices with strict security policies, access controls, and patch management to prevent vulnerabilities.

Designed and implemented disaster recovery and high-availability network strategies to ensure business continuity.

Managed and optimized enterprise wireless solutions using Cisco Wireless Controllers and Aruba Networks for seamless connectivity.

Conducted regular security audits, penetration testing, and compliance assessments to align with industry best practices.

Developed detailed network documentation, including topology diagrams and standard operating procedures, to support efficient operations.

Led network infrastructure upgrades, migrations, and expansions, ensuring minimal downtime and seamless transitions.

Collaborated with cross-functional teams, vendors, and security experts to align network strategies with business objectives and compliance requirements.

Environment: Cisco, Juniper, Palo Alto, Fortinet, SD-WAN, F5 Big-IP, Ansible, Terraform, VPN, IPSec, BGP, OSPF, EIGRP, IDS/IPS, SIEM, Cisco ISE, Microsegmentation, QoS, Cisco Wireless, Aruba Networks, SolarWinds, Wireshark, Splunk, Patch Management, Disaster Recovery, Security Audits, Compliance.

Indicode Technologies Pvt. Ltd, Hyderabad, India Oct 2015 – Mar 2017

Network Engineer

Responsibilities:

Assisted in configuring and managing Cisco and Juniper routers and switches to support enterprise network operations.

Gained hands-on experience with firewall management, including basic rule configurations on Palo Alto and Fortinet devices.

Supported SD-WAN deployments by monitoring connectivity, troubleshooting issues, and optimizing network traffic flow.

Assisted in setting up VPN solutions, including site-to-site IPSec tunnels and remote access configurations.

Learned and applied basic routing protocols like BGP, OSPF, and EIGRP to maintain efficient network connectivity.

Monitored network security events using IDS/IPS and SIEM tools to identify and respond to potential threats.

Provided support for Network Access Control (NAC) solutions like Cisco ISE, ensuring secure endpoint access.

Conducted basic VLAN segmentation and Quality of Service (QoS) configurations to optimize network traffic.

Used SolarWinds, Wireshark, and Splunk to monitor network performance and troubleshoot connectivity issues.

Assisted in implementing network hardening techniques, including patch management and access control configurations.

Participated in disaster recovery testing and high-availability configurations to ensure business continuity.

Documented network configurations, troubleshooting steps, and best practices to support future scalability.

Supported wireless network setups with Cisco Wireless Controllers and Aruba Networks to ensure stable connectivity.

Worked with senior engineers to deploy and troubleshoot enterprise network infrastructure upgrades.

Collaborated with cross-functional teams to gain a better understanding of network security, automation, and best practices.

Environment: Cisco, Juniper, Palo Alto, Fortinet, SD-WAN, VPN, IPSec, BGP, OSPF, EIGRP, IDS/IPS, SIEM, Cisco ISE, VLAN, QoS, Cisco Wireless, Aruba Networks, SolarWinds, Wireshark, Splunk, Patch Management, Disaster Recovery.



Contact this candidate