Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Timeline
Generic

YUBA ACHARYA

Euless

Summary

Sr. Network Engineer/Architect with over 14 years of experience in supporting, configuring, engineering, implementing, and troubleshooting (L2/L3) of various network technologies which includes proficiency in routers/switches (Cisco, Juniper, Aristha), Network Security/Firewall (Palo Alto, ASA), Routing Protocol, Wireless (Cisco), and Data Center technology. Successful Senior Network Engineer accomplished in managing enterprise-wide networks for large-scale operations. Plan, implement and continuously improve infrastructure and controls to stay on top of changing operational and security demands. Expert in disaster recovery and business continuity planning.

Overview

17
17
years of professional experience
1
1
Certification

Work History

Senior Network Engineer

CBTS (Client- 7-Eleven)
12.2022 - Current
  • Provide Tier 2 and Tier 3 (Juniper, Cisco, Arista) technical support for 7-Eleven’s network infrastructure
  • Performing network performance monitoring, trending and capacity planning for the LAN, WLAN, MAN and WAN, connectivity, BGP , MPLS and Wireless Broadband and cloud solution (AWS, Azure)
  • Design and implement Aruba SD-Branch solution multisite enterprise production environment
  • Design, Analyze, diagnose, and resolve customer issues within the 7-Eleven network
  • Engineering/deployment, administration/change requests, escalation support/ticket resolution, monitoring and troubleshooting of various technologies including Aruba, cisco and Checkpoint FW and wireless
  • Install and implement network hardware components and cables in data centers and corporate offices
  • Developed and maintained accurate network support documentation in a knowledge repository
  • Worked on IPAM for IP allocation
  • QoS implementation on 7-Eleven retail store and DC devices with business requirements
  • Worked on monitoring Solarwinds and Aruba central, onboarded hundreds devices on Aruba central, create template and manage device configuration
  • Network maintenance and system upgrades, including service packs and patches
  • Ensuring all aspects of the entire enterprise cloud networks are architecturally sound and highly available
  • Resolve incidents directly with end users and record detailed actions in ticketing tool.

Senior Network Engineer

Cognizant (Client- Viatris Pharmaceutical Co.)
06.2021 - 12.2022
  • Designing includes HLD, LLD, SD-WAN solution (SD-Branch solution (Aruba), WAN and LAN
  • Network site integration, Network site assessment, configure new installed Aruba router/ switch, and implementation
  • Worked on monitoring and troubleshooting Aruba central, on boarded hundreds devices on Aruba central, create template and manage device configuration
  • Worked in network operations, supporting L2/L3, BGP, MPLS, SD-WAN network for multiples sites including data/voice/video
  • Managed projects in the Puerto Rico site, the site has built a new network transitioned form cisco to Aruba technology
  • Engineering/deployment- routing switching (Cisco Catalyst, Aristha, Aruba), security (VPNs, Cisco ISE, Aruba CP), firewalls (ASA, Palo Alto), wireless (WLAN, WLC/APs-Cisco, Aruba), and load balancer.

Sr. Network Engineer

Infosys Ltd. (Client-Kellogg Company)
07.2020 - 06.2021
  • Engineering/deployment, administration/change requests, escalation support, and troubleshooting of various network technologies which includes routing (OSPF, EIGRP, BGP, MPLS), switching (Catalyst, Nexus), wireless, security (VPNs, Cisco ACS, Aruba CP), firewalls (ASA, Palo Alto) in an enterprise Data Center level LAN/WAN environment
  • Designing, architecting, deploying and troubleshooting Network & security infrastructure
  • Monitoring (Solar winds, Science Logic, Splunk, Cisco Prime, Aruba Airwave)
  • Worked on change management documentation of network infrastructure design using Microsoft Visio
  • Support for global Kellogg network and handling Priority tickets
  • Provide level3/2 technical support on data/voice/video network related issues
  • Deploying and implementing of SD-WAN solution (Silver Peak)
  • Technologies in network environment include but not limited to routers, switches, wireless, security firewalls and related technologies along with various server/application administration, and remote setup
  • Specific technologies in environment included, Cisco, Juniper, Palo Alto, Aruba, Silver Peak to name a few.

Sr. Network Engineer

Infosys Ltd. (Client- BHP Billiton)
07.2018 - 06.2020
  • SD-WAN solution (Silver Peak, Viptela) MPLS to SD-WAN site migration along with BGP and MPLS
  • Contributed to Network Design, implementation, Installation, documentation and Integration on enterprise network
  • Troubleshooting complex Routing and Switching problems and escalated incidents
  • Leaded sites expansion projects including installing, configuring, deploying and troubleshooting (Wireless, security, routing and switching)
  • Firewall/security- including NAT/PAT, ACL, and ASA/PIX Firewalls
  • (ASA/firepower, Palo Alto)
  • Site cutover project completion - decommission network services and appliances and documentation
  • Worked on change management documentation of network infrastructure design using Microsoft Visio.

Network Engineer

Amazon Data Center
12.2017 - 06.2018
  • Installing, configuring, deploying and maintenance of Juniper/Cisco switches, routers & firewalls
  • Troubleshooting of LAN, WAN, IP Routing, Multilayers Switching
  • Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs
  • Configuring EIGRP, OSPF, BGP, MPLS and Static routing on Juniper M and MX series Routers
  • Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
  • Experience with deploying Fabric Path using Nexus 7000 Devices
  • Experience with configuring OTV between the data centers as a layer 2 extension
  • Experience with configuring FCOE using Cisco Nexus 5548
  • Supporting core layer, distribution layer and access layer issues
  • Implemented site to site VPN in Juniper SRX as per customer
  • Working with MPLS Designs from the PE to CE, designing and deployment of MPLS traffic engineering
  • Technologies in network environment include but not limited to routers, switches, security firewalls and related technologies along with various server/application administration, and remote setup
  • Specific technologies in environment included, Cisco, Juniper, Quanta, Ciena, Citrix to name a few.

Network Engineer

JPMorgan Chase
07.2015 - 12.2017
  • Member of a team of professionals responsible for administration/service requests, escalation support/ticket resolution in an enterprise LAN/WAN environment
  • Technologies in network environment include but not limited to routers, switches, security firewalls, wireless and related technologies along with various server/application administration, and remote setup
  • Responsible for an enterprise level 24/7 LAN/WAN environment that included datacenters, WAN links, and branch locations
  • Specific technologies in environment included, Cisco, Juniper, Palo Alto, Aruba to name a few.

Network Administrator / Engineer

NIBGS
07.2007 - 06.2015
  • Day to day working experience in engineering/deployment, administration/change requests, escalation support/ticket resolution, monitoring and troubleshooting of various network technologies which includes routing, switching, routing protocols (OSPF, EIGRP), security (VPNs), firewalls (ASA, Juniper), wireless (Cisco WLC/Aps, WLAN) and data center technologies
  • In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.

Education

Bachelors of Science in Commerce -

Tribhuvan university

CCI Technical Institute of Arlington -

Technical School
Arlington, TX

Skills

  • Cisco Routers ASRs/ISRs
  • Cisco Catalyst/Nexus
  • Juniper
  • H3C
  • TCP/IP
  • Cisco IOS
  • STP
  • ACL
  • NAT/PAT
  • OSPF
  • EIGRP
  • BGP
  • MPLS
  • VTP
  • ARP
  • TCP/UDP
  • VLAN/Trunking
  • VXLANs
  • Multicast
  • HSRP
  • Portfast
  • VSS
  • VPC
  • Cisco WLC/APs
  • IEEE 8021x & 80211
  • WLAN
  • AP
  • LWAPP
  • Aruba Mobility Master
  • Aruba Controller
  • Aironet Aps
  • Cisco ASA 5500/1000V series firewalls
  • Cisco FWSM
  • Cisco IPS/IDS
  • Cisco ACS
  • Cisco ISE
  • Juniper SRX series
  • AAA - TACACS/RADIUS
  • SSH/SSL/IPSec VPN
  • Port Security
  • Solarwinds/Orion
  • Science Logic
  • Cisco Prime
  • Aruba Airwave
  • Wireshark
  • Cacti
  • Nagios
  • Server
  • Sniffer
  • Ethereal
  • VMware
  • F5 Big-IP LB (GTM/LTM)
  • Cisco AnyConnect VPN mtg
  • Meraki Cloud-Based
  • SNMPv2c
  • SNMPv3
  • DNS
  • DHCP
  • FTP
  • Telnet
  • HTTP(S)
  • PTP
  • SFTP
  • RDP
  • AWS
  • Azure

Certification

  • Cisco Certified Network Expert – Enterprise Infrastructure (Written), CCIE – EI
  • Cisco Certified Network Professional – Routing & Switching, CCNP – EI
  • Silver Peak SDWAN Expert, SPSX
  • Cisco Certified Network Associate - Routing & Switching, CCNA – EI
  • Cisco Security Administrator / Data Center Administrator, CSA / CDCA
  • CompTia A+/Security+/Network+, A+/Security+/Network+

Accomplishments

  • Implemented VLAN Trunking Protocol to reduce administrative overhead and to control VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that extend further across the network than previous generation of switches
  • Daily support and configuration of Cisco ACI and NX-OS in the DC environment
  • Implemented port-profiles in NX-OS for multiple ports and port-types to reduce errors and improve readability
  • Enabled encryption of system passwords and privileged administration to prevent unauthorized IOS user access
  • Implemented secure access and EXEC command interpreter interval to the console and vty ports
  • Created and managed Local VLANs based on department function, and configure ports with static VLAN assignment, static 802.1Q trunks, and dynamic ISL trunking using PAgP for layer 2 forwarding. Utilized VLAN Spanning-Tree in conjunction with PVST+ for compatibility between Cisco and Juniper switches and for root bridge assignment
  • Implemented frame-relay point-to-point and multipoint WAN links between sites to establish connectivity between four sites. Established frame-relay point-to-point connections between three sites to create full mesh network. Implemented hub and spoke network between three sites with the main office as the hub for redundant connections
  • Implemented EIGRP routing for point-to-point and Non Broadcast Multi-Access networks. Prevented neighbor adjacencies forming and sending/receiving routing updates on unnecessary interfaces. Implemented EIGRP MD5 between sites to prevent unauthorized insertion of routes into the domain. Implemented manual EIGRP route summarization to reduce demand on CPU resources, memory, and bandwidth used to maintain the routing tables
  • Implemented multiple area OSPF routing and totally stubby areas to lower the system resource utilization of devices. Implemented NSSA area to allow injection of external routes into the area and propagation into the OSPF domain
  • Implemented backup and recovery of Cisco IOS Images. Perform password recovery on Cisco IOS routers/switches and a Juniper EX2200 Series switch to restore administrative access. Backup and Restore startup-comfit file for the DR
  • Configured e/iBGP peering using directly connected networks and loopbacks with OSPF, ebgp-multihop, and Route Reflectors to provide routing information with debugging diagnostic commands to monitor BGP events
  • Implement an IPSec Site-to-Site VPN between the Cisco ASA5505 at small office location and Cisco 1841 ISR with a security IOS image at the main office. Implemented VPNs for IKE Policy using DES and SHA for encryption and authentication, access-lists to define VPN traffic, transform set using esp-des esp-sha-hmac to traffic protection, crypto-map to configured elements to a peer, and application of the crypto map to appropriate interface or VPN endpoint
  • Implemented of Zone-Based Policy Firewall on the Cisco 1841 ISR for three zones, applying class-maps as traffic crosses a zone-pair, policy maps to apply action to the class-maps’ traffic, zone-pairs, and application of policy to zone pairs
  • Implement a Clientless SSL VPN (WebVPN) to allow users to establish a secure, remote-access VPN tunnel to the Cisco ASA 5505 using a web browser. Prepare the Cisco ASA with necessary configurations to self-signed certificate generation. Generate a general-purpose RSA key-pair for certificate authority identification, configure certificate authority trust point for the WebVPN using self-enrollment, and configure CA trust point interface association
  • Utilized Cisco ASA 5505 Modular Policy Framework to configure and manage layer 3/4 interface service policies, apply inspection and connection limits to services, apply inspection and QoS policing to HTTP traffic. Configure HTTP inspection policy to block restricted sites and file downloads
  • Implemented local voice network using Cisco 2811 ISR (VoIP) with a Cisco Unity Express Network Module (NM-CUE), Cisco Communications Manager Express, Cisco 3550 Switch with POE. Created and managed Data and Voice VLANs and configure ports with static VLAN assignment and 802.1Q trunks for layer 2 forwarding. Configured edge ports for fast transitioning into the forwarding state to fix workstation startup connectivity delays
  • Implemented Unity Voicemail on the Cisco Unity Express Network Module. Configured dial-peer on a Cisco 2811 ISR to define attributes of packet voice network connections to Cisco Unity Express Network Module. Enabled call forwarding on busy/no answer. Implemented Message Waiting Indicators and Voicemail access via SMTP
  • Implemented a wireless network infrastructure providing access to wired LANs to increase mobility and productivity on Cisco WLC 2106, Cisco 3550 switch, Cisco 1130AG and 1121G series APs. Created wireless LANs and configure interface association, security parameters, and radios used. Managed the wireless network through the WLC web GUI
  • Prepared infrastructure for AP registration on same subnet as management VLAN for AP registration on different subnet. Configure AAA policies to allow Self Signed Certifications for APs shipped without a Manufacturer Installed Certificate
  • Utilized Nagios XI (customized dashboard, SolarWinds Orion NPM, CACTI monitoring and graph traffic
  • Used the Wireshark tool to study HTTP, telnet, and SSL traffic
  • IP management Infoblox- IPAM

Timeline

Senior Network Engineer

CBTS (Client- 7-Eleven)
12.2022 - Current

Senior Network Engineer

Cognizant (Client- Viatris Pharmaceutical Co.)
06.2021 - 12.2022

Sr. Network Engineer

Infosys Ltd. (Client-Kellogg Company)
07.2020 - 06.2021

Sr. Network Engineer

Infosys Ltd. (Client- BHP Billiton)
07.2018 - 06.2020

Network Engineer

Amazon Data Center
12.2017 - 06.2018

Network Engineer

JPMorgan Chase
07.2015 - 12.2017

Network Administrator / Engineer

NIBGS
07.2007 - 06.2015

Bachelors of Science in Commerce -

Tribhuvan university

CCI Technical Institute of Arlington -

Technical School

Similar Profiles

CREATE PROFILE
YUBA ACHARYA