Summary
Overview
Work History
Education
Skills
Certification
Projects
Timeline
Generic

Vinod Reddy

Summary

  • Cisco-certified and Palo Alto-certified network engineer with 10 years of hands-on experience in network engineering, troubleshooting Layer 1 to Layer 7 issues, configuring and maintaining complex LAN and WAN networks, and installation and maintenance of routing, switching, security, and load balancer networks.
  • Expert knowledge of Palo Alto firewalls, Cisco SD-WAN, WLC, ISE, Arista-AGNI, DNAC, DNA Spaces, Cisco CSW, Azure Cloud, NGINX, F5, and Netskope.
  • Strong knowledge in designing, implementing, troubleshooting, and documenting LAN/WAN, wireless, VoIP, and troubleshooting routing, switching, wireless, and security.
  • Possesses excellent communication skills and works in fast-paced, deadline-oriented environments.
  • Good knowledge of Python programming.

Overview

9
9
years of professional experience
1
1
Certification

Work History

Sr. Network Engineer

Molina Healthcare
05.2021 - Current
  • Configured and managed SD-WAN across Cisco 8200, 8300, 1000, 2000, and 5000 series devices, performing capacity planning for multiple sites.
  • Provided technical leadership and guidance to the team, troubleshooting and resolving network operation issues.
  • Designed logical and physical network diagrams for remote sites, ensuring optimized infrastructure deployment.
  • Deployed Cisco 9800 Wireless Controllers on Azure, successfully migrating WAPs from 5300 to 9800 controllers.
  • Optimized wireless RF performance using Ekahau for WiFi-6 implementation, enhancing coverage and minimizing interference.
  • Automated LAN deployments with Cisco Catalyst Center (DNAC), developing composite standard and PnP templates for Zero-Touch Provisioning across multiple sites.
  • Integrated Cisco Catalyst Center (DNAC) with DNA Spaces, Wireless Controller, ISE, Syslogs, and Ekahau for streamlined network management.
  • Configured Cisco Secure Workload (Tetration), creating Application Scopes and ADM runs, implementing security policies for micro-segmentation across Tier 1/2/3 applications.
  • Implemented secure access controls, enforcing 802.1X, MAC Authentication Bypass (MAB), and RADIUS/TACACS+ for wired and wireless authentication.
  • Led the migration of network authentication from Cisco ISE to Arista AGNI, enhancing security and performance.
  • Strengthened network security through firewall policies, ACLs, IDS/IPS, and segmentation strategies, reducing vulnerabilities.
  • Implemented Netskope for IoT devices monitoring and integrated it with Arista for dynamic profiling.
  • Developed Ansible playbooks for network automation, reducing manual efforts by 40%.
  • Configure Cisco secure Workload (Tetration) Tool to achieve Micro segmentation on all tier1/2/3 applications

Transport/Network Interconnect Engineer

Dish Wireless
06.2020 - 05.2021
  • Consulted on 5G network architecture design, implementation, and interconnection of IMS and 5G Core nodes.
  • Negotiated vendor and contractor agreements for service provider interconnection and contract compliance.
  • Implemented and managed Cisco ISE for wireless security and access control.
  • Conducted wireless site surveys and RF assessments to optimize network performance.
  • Configured and managed Cisco WLC and Aironet access points for enterprise wireless deployments.
  • Monitored wireless network performance using SolarWinds and other NMS tools.
  • Implemented BGP on core routers and managed network encryption for secure data transport.
  • Performed root cause analysis for wireless network incidents and performance issues
  • Configured IP addressing, OSPF, iBGP, HSRP, VRF contexts, and traffic policies for routers and switches.
  • Deployed IPsec VPN tunnels on firewalls and MPLS circuits to secure data transmission.
  • Managed data traffic flows, conducted capacity planning, and implemented QoS policies for voice and data.
  • Analyzed network requirements, performed bandwidth upgrades, and managed software deployments.
  • Configured and troubleshot BGP, MPLS, SIP, and RTP for ISP interconnect, and VoNR traffic routing.
  • Created peering agreements, technical specifications, MOPs, and ATPs for IP transit services.
  • Developed RFPs for ISP evaluation and defined SLAs and KPIs to ensure network performance.
  • Performed IP traffic engineering (IPTE)to enhance traffic normalization and efficiency.
  • Planned and deployed IP products, including procurement, circuit design, and equipment activation.
  • Created High-Level Design (HLD) and Low-Level Design (LLD) diagrams for LAN, WAN, and voice/data interconnects.
  • Designed and implemented DNS and DHCP serversand managed ISDN/PRI/SIP circuit orders from carriers.

Sr. Network Engineer

City of Hope, CA
01.2020 - 05.2020
  • Led the network architecture and operational teams, providing technical guidance for technology implementation and daily operations.
  • Acted as Tier 4 Network Engineer, responsible for re-architecting and implementing Cisco next-generation firewalls across the network.
  • Integrated SolarWinds with datacenter devices, creating and maintaining Orion maps and real-time server room diagrams.
  • Hands-on experience with Infoblox tools, managing DNS, DHCP, and IP range allocation.
  • Implemented IP addressing schemes, LAN/WAN protocols, and IP services to meet diverse network requirements.
  • Deployed Palo Alto Next-Gen Firewalls with Panorama centralized management and WildFire malware protection.
  • Managed SolarWinds Orion Suite, including Network Performance Monitor and Network Configuration Manager, and fine-tuned notifications and alerts.
  • Configured site-to-site VPN tunnels and DMVPNs for secure data transport.
  • Installed SolarWinds Network Performance Monitor with a focus on traffic analysis, application, and virtualization management.
  • Maintained and supported wireless networks with Cisco ASA controllers and access points, leveraging SNMP traps for proactive monitoring.
  • Updated custom properties in SolarWinds Orion, aligning with Configuration Management processes and procedures.
  • Configured RADIUS authentication for LAN devices and applied AAA commands for device authentication using AD, RSA, and ISE internal users.
  • Implemented Cisco ISE for wireless and wired 802.1X authentication, including endpoint profiling using ISE Endpoint Analysis Tool.
  • Planned, designed, and deployed Cisco ISE NAC in standalone and distributed setups for production environments.
  • Configured Cisco ISE integration with Active Directory, including certificate-based authentication.
  • Deployed ISE-based wired and wireless (WLC) AAA for secure user authentication and policy enforcement.
  • Handled P1, P2, and P3 tickets, ensuring resolution within SLA timelines.

Sr. Network Engineer

DaVita-Denver, CO
10.2017 - 12.2019
  • Developed design proposals and recommendations for new network systems and infrastructure upgrades.
  • Led MPLS and internet circuit migrations across 50 locations, transitioning to a new service provider.
  • Created migration plans, design configurations, and checklists for WAN link migration projects.
  • Directed enterprise network infrastructure implementations, working with engineering teams on data center technologies.
  • Configured, troubleshot, and supported WAN environments, leveraging MPLS, OSPF, EIGRP, BGP, DMVPN, NetFlow, ACL, NAT/PAT, and IP readdressing on routers and firewalls.
  • Installed, configured, and troubleshot Cisco Catalyst 3800, 4500, Nexus 9K/5K/2K/3K, ASR, ISR routers, and ASA firewalls.
  • Implemented advanced network technologies, including vDC, vPC, FabricPath (Spine and Leaf), FEX, VSS, Site-to-Site VPN, and multicast networking in production environments.
  • Configured new site deployments with appropriate routing protocols based on project requirements.
  • Expertise in OSPF, EIGRP, and BGP, performing route redistribution and optimization.
  • Developed Python scripts to automate device configuration and data capture.
  • Led LAN and WAN cutovers, transitioning from legacy devices to Nexus switches, ASR, and ISR routers.
  • Optimized LAN performance on Cisco 3850/4500/6800 switches by implementing VLANs.
  • Provided Layer 3 support for multiple remote site installations.
  • Managed deliverables, vendor coordination, procurement, and circuit maintenance to ensure smooth operations.
  • Performed IOS code upgrades on ASR and ISR routers and configured VRFs on Cisco Nexus and ASR/ISR routers.
  • Extensively configured, monitored, and troubleshot ASA 5540 and 5585 firewalls, implementing ACLs, NAT object groups, failover, and multi-context setups.
  • Configured IP prefix lists and route-maps for granular ISP traffic control.
  • Migrated ASA 5540 firewalls to Firepower 2140 with Intrusion Prevention.
  • Implemented network security best practices, policies, and procedures, ensuring compliance through change control processes.

Network Engineer

Select Portfolio Servicing Inc
West Valley City, USA
11.2015 - 06.2017
  • Developed technical write-ups, migration plans, migration checklists, and Visio network design documentation for a datacenter migration project.
  • Designed rack layouts, performed rack and stack installations, server cabling, and device configurations in the datacenter.
  • Troubleshot network and application performance issues, optimizing LAN/WAN infrastructure for core and remote sites.
  • Configured EIGRP, BGP, IPsec VPN, ACLs, NAT, SNMP, TACACS+, and NetFlow on ISR routers and ASA firewalls.
  • Created and mapped new subnet spaces on Infoblox for remote branch offices.
  • Designed, implemented, and supported enterprise network technologies, including MPLS WAN routing, data center switching, Cisco ASA, and Palo Alto security appliances.
  • Implemented Static, Multicast, EIGRP, vDC, vPC, FEX, VSS, QoS, Spanning Tree, NTP, CDP, SNMP, and Syslogs on Nexus 7K/5K/2K and 4500 series switches.
  • Performed security operations, policy deployments, and monitoring using Web Proxy, Cisco Sourcefire, and Tufin tools.
  • Configured network access servers and routers for AAA security (RADIUS/TACACS+).
  • Performed IOS upgrades on Catalyst and Nexus switches, ISR routers, and ASA firewalls.
  • Deployed and managed BIG-IP F5 LTM Load Balancers for business application load balancing and traffic management.
  • Configured and troubleshot F5 LTM virtual servers, pools, monitors, and profiles.
  • Participated in on-call rotations, providing network support for new application releases.
  • Performed equipment mounting, racking, un-racking, and installations in the datacenter.
  • Collaborated with ISPs and business partners for WAN link activations.
  • Managed fast Layer 3 switched/routed LAN/WAN infrastructure, with access layers using Cisco 3750/3850/Cat 9300 and distribution/core layers with Cisco 4500/6509/6880.

Education

Master of Science - Master of Science: Professional Management in Busi

Campbellsville University
Campbellsville, KY
04-2021

Master of Science - Master of Science: Computer /information Services

Campbellsville University
Campbellsville, KY
05-2020

Master of Science - Computer and information Systems- Information Assurance

Wilmington University
Delaware
01.2015

Bachelor - Electronics and Communication Engineering

Jawaharlal Nehru Technological University
India
01.2011

Skills

  • Routing and Switching
  • Security and Wireless
  • Standard Operating Procedures (SOP)
  • BGP, EIGRP, OSPF, MPLS, VPN
  • AAA architecture,TACACS, Radius
  • Network troubleshooting,Vendor management
  • Network Performance Monitor (NPM)
  • Network Configuration Manager (NCM)
  • Cisco Prime, Cisco Works, Service-Now
  • Infoblox, Wireshark
  • Advanced network switches
  • Routers, DNAC, WLC, Cisco ISE, CSW Tools
  • Python
  • Datacenter infrastructure
  • SNMP, Net Flow, Syslog
  • Proxy Web Filtering
  • LAN switching technologies
  • VPC,VDC, FEX,VRF, VSS
  • QoS, OTV, Cisco nexus device
  • ISE, Cisco ASA, Web proxy, NAT, ACL
  • Access points (WAP)
  • NGFW appliances
  • Infrastructure planning and design
  • Firewalls and endpoint security
  • Firewall management tools
  • Wireless networking support
  • IP addressing and subnetting
  • Routing protocols expertise
  • Firewall security
  • Technical infrastructure migration
  • ITIL framework
  • DNS implementation
  • Load balancing techniques
  • Software-defined networking configuration
  • Layer-2/3 protocols

Certification

  • Cisco Certified Network Professional (CCNP-Route and Troubleshoot)
  • Cisco Certified Network Associate (CCNA Routing and switching)
  • Solar winds certified Professional (SCP)
  • Palo Alto Networks- Accredited Configuration Engineer (ACE)
  • Palo Alto Network Certified Network Security Engineer (PCNSE)
  • Certification of completion -Core JAVA Training

Projects

· Cisco Catalyst Center (DNAC) Implementation – Configured LAN Automation for Zero Touch Provisioning to streamline network deployment.

· Wi-Fi 6 Deployment – Implemented Wi-Fi 6 across 90+ sites, optimizing wireless performance and security.

· Network Acquisitions & Zero-Trust Security – Supported network acquisitions by implementing Zero-Trust Network security controls.

· Cisco Secure Workload (CSW) Implementation– Deployed micro-segmentation security across 100+ applications for enhanced network security.

· Palo Alto Firewall Deployment – Installed and configured Palo Alto firewalls in datacenters, from initial provisioning to policy enforcement.

· Network Automation – Developed automation workflows using Ansible and Azure Pipelines to optimize network configuration and management.

· WAN Modernization – Led ISP circuit migrations and hardware upgrades to improve network performance and reliability.

· SD-WAN Migration – Transitioned Cisco CEdge to VEdge SD-WAN routers, ensuring seamless connectivity between datacenters and remote sites.

· IoT Security Implementation – Deployed Netskope IoT security to monitor, analyze, and detect anomalous device behavior on the network.

· Arista NAC Deployment – Configured MAB and 802.1X authentication to enforce network access control, allowing only trusted devices to connect.

· Datacenter Migration & Network Modernization – Designed and executed datacenter lift-and-shift migration, transitioning from Catalyst VSS (4500/6500) to Nexus (7K/5K/2K) vDC/vPC platforms.

· Firewall Policy Optimization – Conducted firewall cleanup, security rule implementation, and policy management to enhance network security.

· VPN Implementation – Designed and deployed DMVPN, Site-to-Site VPN, and AnyConnect with Dynamic Split Tunneling for secure remote access.

Timeline

Sr. Network Engineer

Molina Healthcare
05.2021 - Current

Transport/Network Interconnect Engineer

Dish Wireless
06.2020 - 05.2021

Sr. Network Engineer

City of Hope, CA
01.2020 - 05.2020

Sr. Network Engineer

DaVita-Denver, CO
10.2017 - 12.2019

Network Engineer

Select Portfolio Servicing Inc
11.2015 - 06.2017

Master of Science - Master of Science: Professional Management in Busi

Campbellsville University

Master of Science - Master of Science: Computer /information Services

Campbellsville University

Master of Science - Computer and information Systems- Information Assurance

Wilmington University

Bachelor - Electronics and Communication Engineering

Jawaharlal Nehru Technological University

Similar Profiles

CREATE PROFILE
Vinod Reddy