Senior Network Engineer Cisco ACI & MPLS Expert

Bipin Rai

Germantown, MD ***** +1-202-***-**** *********@*****.*** linkedin.com/in/bipin-rai-

b7301899 U.S. Permanent Resident (Green Card)

PROFESSIONAL SUMMARY

Results-driven Network Engineer with over 8 years of experience designing, implementing, and troubleshooting complex service provider and enterprise infrastructures. Proven expertise in Cisco ACI, MPLS, and BGP within large-scale multi-tenant environments. Adept at network automation using Python and Ansible to reduce downtime and improve operational efficiency. Strong track record of delivering high-availability solutions for data centers and terrestrial backbone networks.

CORE SKILLS

PROFESSIONAL EXPERIENCE

Hughes Network Systems Germantown, MD Network Infrastructure Engineer 2023 – Present

• Infrastructure Management: Administer a complex WAN/LAN environment across 3 global data centers, supporting a terrestrial backbone of 40+ Gateways.

• Protocol Optimization: Configure and troubleshoot BGP, IS-IS, and OSPF to ensure seamless routing across the core network.

• Cisco ACI Migration: Led the migration of legacy VLAN-based application environments into a modern ACI fabric, improving scalability and security segmentation. Routing/Switching BGP, MP-BGP, EIGRP, OSPF, IS-IS, Segment Routing, VXLAN, STP, HSRP/VRRP

Service Provider MPLS (LDP, RSVP-TE), L3VPN, VPLS, Metro Ethernet, EVPN, MVPN, QoS, PBR, BFD

Data Center/Cloud Cisco ACI (Fabric Discovery, Tenant/VRF/BD/EPG), VMware VDS Integration, Cisco SD-WAN, AWS

Automation/DevOps Python, Ansible, RESTCONF/NETCONF, YANG Security/VPN IPsec, SSL VPN, DMVPN, ACL, NAT, DNSSEC Monitoring/Analysis ScienceLogic SL1, PRTG, Splunk, Kentik, NetFlow, SNMP, Wireshark, Nagios.

Hardware Lifecycle Device Decommissioning, E-waste Disposal, Patching, Upgrades. Hardware Platforms Cisco IOS-XR (ASR9k, NCS), IOS-XE (CSRv, c8000v), ASA, Juniper MX/SRX, Fortinet, Aruba, Ciena

Service management

Platform Salesforce, Infoblox

• Automation: Developed Ansible playbooks for automated leaf/spine switch configuration, compliance auditing, and routine network backups.

• Tier 3 Support: Provide 24/7 expert-level support for critical production issues, maintaining high network uptime for satellite and terrestrial services.

• Key Project – ACI Expansion: Upgraded ACI controllers and expanded leaf capacity using Ansible; configured back-to-back VPCs to integrate legacy hosts into the fabric.

• Key Project – Hardware Refresh: Designed an MP-BGP/LDP topology using Cisco C8000v to replace end-of-life VXR-7200s, utilizing PBR for multi-VRF selection. Secure64 Software Corporation Denver, CO System Engineer 2019 – 2023

• DNS Security: Implemented DNSSEC with automated key rollovers, achieving 100% compliance with corporate security policies.

• Network Design: Authored High-Level (HLD) and Low-Level Designs (LLD) for DNS infrastructure migrations and Proof of Concept (PoC) environments.

• Modernization: Migrated legacy BIND servers to Secure64 architecture, centralizing management via SecureManager and IPAM.

• Threat Mitigation: Enforced RPZ (Response Policy Zones) to block malware, phishing, and C2 server communications at the DNS layer.

• Security Hardening: Conducted regular vulnerability scans and OS hardening for Linux-based networking appliances.

Classic Tech Pvt. Ltd. Kathmandu, Nepal Network & System Engineer – IP Transit 2015 – 2019

• Core Architecture: Designed and implemented MPLS L2/L3 services, significantly reducing latency and improving stability for ISP customers.

• BGP Engineering: Managed BGP peering with upstream transits and IXPs; implemented Route Reflectors to simplify network scaling.

• Traffic Engineering: Performed routing policy tuning and capacity upgrades on core uplinks to handle growing FTTH traffic demands.

• MPLS Backbone Expansion: Redesigned the core network using RSVP-TE tunnels, increasing bandwidth capacity and reducing failover convergence times.

• Service Administration: Managed Linux-based services including DNS, Web, PPPoE, and Mail servers.

IID Pvt. Ltd. Kathmandu, Nepal Junior Network Engineer – IP Infrastructure 2013 – 2015

• Technical Support: Provided Tier 1/2 support for routing and switching incidents; assisted senior engineers with complex troubleshooting.

• Operations: Managed VLAN creation, trunking, STP configuration, and port security across a multi-vendor access layer.

EDUCATION

Bachelor of Science in Network Technology

Sikkim Manipal University – Sikkim, India

TRAINING & CERTIFICATIONS

• CCNP Enterprise (Cisco Certified Network Professional)

• JNCIP-SP (Juniper Professional - Service Provider Routing & Switching)

• JNCIS-SP (Juniper Specialist - Service Provider Routing & Switching)

• JNCIA-SEC (Juniper Associate - Security)

• JNCIA-Junos (Juniper Associate - Junos)

Contact this candidate