Sneha Banavath
Pittsburgh,PA
Summary
Experienced Senior Network Engineer with a proven track record in managing and optimizing network security technologies, specializing in Palo Alto Networks, Zscaler, and Cisco ISE. Skilled in deploying and maintaining Next-Generation Firewalls, and Zero Trust Exchange solutions. Proficient in troubleshooting complex network issues and implementing automationtools.Demonstrated ability to lead projects and resolve complex issues, ensuring network integrity and performance.
Overview
8
8
years of professional experience
1
1
Certification
Work History
Network Security Engineer
HCL America
07.2023 - Current
- Managed Palo Alto firewalls, including Threat Prevention, URL Filtering, IPSEC, and SSL VPNs, ensuring high-security standards.
- Demonstrated expertise in integrating zone-based policies and leveraging the WildFire feature in Panorama 7.1 for advanced threat detection and response.
- Efficiently created zones, configured rules, and maintained policies on PA-3020 and PA-5220 Palo Alto firewalls, enhancing network security and control.
- Conducted thorough testing on Sourcefire IPS/NGFW appliances and utilized open-source Snort for reliable intrusion prevention.
- Developed and implemented Snort rules to validate Sourcefire sensor functionality, generating packet captures to support security measures.
- Customized threat signatures and Data Filtering using the Content ID module, and designed Palo Alto firewall installations with comprehensive filtering and threat prevention capabilities.
- Configured and managed robust IPSEC and SSL VPNs on Palo Alto Firewalls, ensuring secure remote access.
- Conducted regular backups and upgrades on various firewall platforms, including Palo Alto and Cisco ASA, maintaining operational integrity and security.
- Led successful firewall migration projects from Cisco ASA to Palo Alto platforms using the Palo Alto conversion tool, streamlining the transition and optimizing network security.
- Configured PAN Device High Availability in Active/Standby mode, ensuring continuous protection and service availability.
- Implemented Palo Alto's advanced threat prevention features such as App-ID, Anti-spyware, Anti-bot, and URL filtering, alongside the WildFire service, to fortify security measures against evolving cyber threats.
Senior Network Engineer
State Farm
08.2019 - 06.2023
- Led the design and implementation of the Zscaler Zero Trust Exchange, including Zscaler Internet Access, Private Access, Digital Experience, and Deception, enhancing security posture for a multinational corporation with a distributed workforce.
- Achieved seamless integration across various global regions through meticulous planning and phased rollouts, ensuring optimal user experience without compromising security.
- Demonstrated deep understanding of the network security ecosystem by effectively managing a Security Operations Center (SOC) for a leading financial institution.
- Expertly navigated the interrelations of information security domains, integrating Zscaler services with SIEM and endpoint protection platforms, which significantly improved threat detection and response times.
- Spearheaded the deployment and management of Zscaler cloud security solutions for a technology firm, transitioning from traditional on-premises security appliances to a cloud-based model.
- Expert in configuring, managing, and troubleshooting Zscaler, DataPower, CA Proxy, and Squid Proxy, with hands-on expertise in network protocols such as HTTP, SMTP, FTP, DNS, enhancing the firm’s agility and security.
- Enhanced network performance by designing and implementing advanced network solutions.
- Reduced downtime for essential systems by proactively identifying and resolving network issues.
- Streamlined troubleshooting processes by creating detailed documentation of network infrastructure, configurations, and topologies.
- Optimized network security with the implementation of firewalls, intrusion prevention systems, and access control mechanisms.
Senior Network Engineer
Caterpillar
08.2018 - 07.2019
- Expertly implemented Cisco ISE to enforce Network Access Control (NAC), skillfully managing network access policies to regulate device access based on user identity, device type, and location. This ensured a robust security posture by accurately identifying and controlling devices entering the network, enhancing the organization's overall security framework.
- Demonstrated proficiency in configuring and managing various authentication and authorization methods with Cisco ISE, including 802.1x, MAB (MAC Authentication Bypass), and comprehensive guest access solutions.
- Leveraged policy definitions to authorize users and devices effectively, ensuring secure and compliant access to network resources.
- Led the development and management of guest access policies using Cisco ISE, enabling secure and temporary network access for visitors with limited privileges and predefined restrictions. This initiative significantly improved the security and usability of network resources for guests, balancing accessibility with stringent security measures.
- Specialized in device profiling with Cisco ISE, identifying and profiling a wide range of network devices from computers to IoT devices based on their characteristics and behavior. This capability facilitated enhanced network visibility and security, allowing for tailored policies and security measures for diverse device types.
Network Engineer
Bank Of America
09.2016 - 03.2018
- Implemented VLANs, Spanning Tree protocols (PVST, R-PVST, MSTP) to ensure loop-free network environments, and managed trunking and port channels, leading to robust and efficient network infrastructures across departments.
- Successfully designed and executed Data Center Migration, developed MPLS VPN network expansion strategies, significantly enhancing inter-office connectivity within the North America region.
- Configured VLAN switch 802.1q tagging, ether channels, and Spanning Tree for robust Access/Distribution and Core layer switching architectures, resulting in increased network stability and performance.
- Managed configuration of network devices including Cisco 7609, 7606, and Catalyst 6505, 4500, 3550 switches with various VLANs; streamlined OSPF routing, and optimized ASA Firewall and MPLS switching for VPN stability.
- Led the WAN link transition from TDM circuits to MPLS and updated encryption from IPSec/GRE to GetVPN, which bolstered network efficiency and security.
- Enhanced network security through the configuration of Cisco Secure RADIUS/TACACS and performed regular upgrades and backups of Cisco router configuration files to a TFTP server.
- Maintained a comprehensive inventory of all network hardware and implemented Management and Monitoring using SSH, Syslog, SNMP, NTP, ensuring high operational standards.
- Conducted network performance evaluations focusing on Layer 3 routing and Layer 2 switching, which contributed to informed decision-making and network optimization.
- Configured and troubleshot complex LAN/WAN infrastructures, including DNS Server Router Protocols, BGP, OSPF, and Layer 2/3 Switches Routers ASA Firewall, significantly reducing downtime.
- Expertly handled troubleshooting of LAN/WAN, EIGRP, OSPF & BGP routing protocols, and resolved TCP/IP issues, ensuring reliable connectivity in multi-protocol Ethernet environments.
- Improved network performance by identifying and resolving bottlenecks, optimizing configurations, and implementing best practices.
- Reduced downtime with proactive monitoring of network devices and rapid troubleshooting.
Education
Master of Science - Electrical Engineering
Northwestern Polytechnic University
Fremont, CA05.2016
Bachelor of Science - Electrical, Electronics And Communications Engineering
JAWAHARLAL NEHRU TECHNOLOGICAL UNIVERSITY
India05.2014
Skills
- Firewalls: Palo Alto Networks (Panorama, PA Firewalls), Cisco Firepower (FMC,FTD) Firewalls
- Network Security Solutions: Network-Based Anti-virus, URL Filtering, DLP
- Cloud Security: Zscaler (ZIA, ZPA, ZDX, ZD)
- Network Access Control: Cisco ISE (NAC, Authentication/Authorization)
Certification
CCNP, PCNSE
Timeline
Network Security Engineer
HCL America
07.2023 - Current
Senior Network Engineer
State Farm
08.2019 - 06.2023
Senior Network Engineer
Caterpillar
08.2018 - 07.2019
Network Engineer
Bank Of America
09.2016 - 03.2018
Master of Science - Electrical Engineering
Northwestern Polytechnic University
Bachelor of Science - Electrical, Electronics And Communications Engineering
JAWAHARLAL NEHRU TECHNOLOGICAL UNIVERSITY
Similar Profiles
Snehasish SarkarSnehasish Sarkar
Support Specialist at HCL AmericaSupport Specialist at HCL America
Arthur CooperArthur Cooper
IT Manager at HCL AmericaIT Manager at HCL America
Abhishek ShrivastavaAbhishek Shrivastava
Solutions Principal – Capital Markets at HCL AmericaSolutions Principal – Capital Markets at HCL America
Saurabh SawhneySaurabh Sawhney
Network Engineer Consultant at HCL AmericaNetwork Engineer Consultant at HCL America
Talia JunTalia Jun
Nail Technician at Self-employedNail Technician at Self-employed