Network engineering with security and automation focus: campus/WAN, SD-WAN, routing, firewalls, DDI, and Python-driven operations.
trace / resume

Professional Summary

show summary

Senior Network Engineer with 9+ years of experience designing, deploying, and supporting enterprise Layer 2/3 networks in regulated environments. SD-WAN and branch/campus expertise across Cisco Meraki, Cisco Viptela, and VMware VeloCloud with routing (BGP, OSPF, EIGRP) and segmentation (VRFs). Security-focused background with Cisco ISE (802.1X), Palo Alto firewalls, and VPNs; automates operations using Python, Netmiko, Ansible, and REST APIs.

Work History

show experience
Senior Network Engineer
03/2021 to CURRENT
NYU Langone Health - New York, NY
  • Designed and deployed enterprise Layer 2/3 networks across campus and WAN environments.
  • Migrated distribution layer from Catalyst 6800 VSS/HSRP to Catalyst 9500 StackWise Virtual to improve resiliency and simplify operations.
  • Performed switch and router OS upgrades and trained newly onboarded Cognizant team on execution and validation.
  • Implemented VRF-based segmentation for firewall-bound traffic to support compliance requirements.
  • Built Meraki networks from scratch and standardized configurations across 6 Meraki platforms (MX67, MX68, MX75, MX95, MX450, MS150).
  • Designed hub-and-spoke Meraki Auto VPN/SD-WAN with HA and dual uplinks; validated failover and application reachability.
  • Delivered SD-WAN connectivity across 3 platforms (Meraki, Viptela, VeloCloud) based on site requirements.
  • Automated configuration audits and reporting using Python and Meraki Dashboard API; reduced repetitive manual effort by approximately 30 percent.
  • Supported Infoblox DDI administration including DNS record updates and DHCP scope changes for cutovers and endpoint onboarding.
  • Authored MOPs and deployment runbooks for site turnups, cutovers, and firmware upgrades with rollback and validation steps.
  • Deployed Cisco ISE 802.1X for role-based access control and improved endpoint posture enforcement.
  • Administered Palo Alto firewalls including NAT and VPN (site-to-site and GlobalProtect).
  • Created site-to-site VPNs and migrated IKEv1 to IKEv2 across approximately 100 sites.
Network Engineer
05/2017 to 01/2021
Altice Group - New York, NY
  • Executed network changes and troubleshooting to improve reliability and service delivery for enterprise customers.
  • Led migration from Catalyst 6500 to Nexus switching using vPC/VDC patterns to improve scalability and reduce maintenance downtime.
  • Configured and supported OSPF and BGP in production including neighbor setup, routing policy, and incident troubleshooting.
  • Provided light support for F5 BIG-IP LTM including virtual servers, pools, health monitors, and basic troubleshooting during incidents and changes.
  • Deployed and maintained firewalls (Cisco ASA/Firepower, Palo Alto) and managed site-to-site and remote-access VPNs.
  • Created AWS VPCs and launched EC2 instances to support network and security services.
  • Deployed Palo Alto VM-Series in AWS and integrated connectivity with on-premises Palo Alto firewalls.
  • Created and migrated AWS-to-on-premises site-to-site VPN from IKEv1 to IKEv2.
  • Performed packet analysis using Wireshark and captures to isolate latency, MTU, and routing issues.
Network Engineer
03/2015 to 02/2017
Tech Astha - Ahmedabad, India
  • Planned and executed multi-site network deployments and integrations.
  • Implemented VLAN and redundancy designs using PVST/RSTP and HSRP/VRRP/GLBP; supported VTP environments.
  • Configured routing protocols (RIP, EIGRP, OSPF, BGP) and built GRE tunnels and IPsec site-to-site VPNs.
  • Performed packet analysis with Wireshark to diagnose and resolve connectivity and performance issues.

Skills

show skills
  • VLANs
  • Trunking
  • STP (PVST+, RSTP)
  • EtherChannel / port-channel
  • Nexus vPC / VDC
  • BGP
  • OSPF
  • EIGRP
  • HSRP / VRRP / GLBP
  • VRFs
  • Route redistribution
  • QoS fundamentals
  • Meraki Auto VPN
  • Hub-and-spoke
  • HA
  • Dual uplinks
  • Cisco Viptela
  • VMware VeloCloud
  • Palo Alto (policy, NAT, VPN)
  • Palo Alto VM-Series (AWS)
  • Cisco ISE (802.1X)
  • IPsec
  • IKEv1 / IKEv2
  • GRE
  • ACLs
  • AWS (VPC, EC2)
  • Infoblox DNS/DHCP/IPAM
  • DNS zones / records
  • DHCP scopes
  • F5 BIG-IP LTM
  • Python
  • Netmiko
  • Ansible
  • REST APIs (Meraki Dashboard API)
  • JSON/YAML
  • Git
  • Flask
  • Tkinter
  • Wireshark
  • tcpdump
  • SNMP / Syslog
  • Monitoring (SolarWinds, PRTG, netMRI, NetBrain)
  • Change control
  • MOPs / runbooks

Certifications

show certs
CCNP Security (Cisco)
ActiveF5WPKC3L540LPTXJ
CCNP Enterprise (Cisco)
ActiveMMV01SHHMP4Q1SWY
CCIE R&S Written (Passed, 2019) - Qualified for CCIE Lab (pre-2020)
Legacy-
Cisco Meraki Solutions Specialist
Active0a7b78fdc86a47ceb73e1ccf6903923b
CCNA (Cisco)
ActiveGM77ESVHECVEQQ9C
VCP-DCV 6.7 (VMware)
ActiveVMW-02477413Q-02455801
PCNSA (Palo Alto Networks)
InactiveTHHEL6H112V113SX
JNCIA-Junos (Juniper Networks)
InactiveMMYDP6R58BQ1153F
CCDP (Cisco)
LegacyPR6EPHYDSQK0NF5J
CCNA Data Center (Cisco)
Legacy438164170118GQZI
CCNA Security (Cisco)
Legacy438393066772FNCH

Education

show education

Bachelor of Science (B.S.) - Physics

Mewar University, India (01/2015)

Achievements

show achievements
  • Cisco Live 2025 - 2nd place, CCIE Techtorial
  • Languages - English, Hindi, Gujarati