L2 Network Engineer with 16 years of experience in firewalls, ISE, routing, switching (BGP, OSPF, VLAN, STP), and load balancers. Skilled with Cisco, Palo Alto, Fortinet, F5, and NetScaler, ensuring secure and efficient network operations.
Send a job offer directly to this candidate
L2 Network Engineer with 16 years of experience in firewalls, ISE, routing, switching (BGP, OSPF, VLAN, STP), and load balancers. Skilled with Cisco, Palo Alto, Fortinet, F5, and NetScaler, ensuring secure and efficient network operations.
Consultant / L2 NOC Engineer | ATOS Global IT Solutions and Services Private Limited
Pune, India | 21.04.2022 – Present
Deliver comprehensive operational support for global Health and Government sector clients, overseeing a complex network infrastructure of 330+ devices spanning Data Centre, WAN, and LAN environments. Specialize in routing operations, security enforcement, automation, and centralized network control, ensuring 24/7 performance and compliance.
o Manage enterprise routing protocols with a focus on BGP and OSPF, including route redistribution, neighbour relationship monitoring, and route filtering.
o Troubleshoot Layer 3 issues related to routing loops, flapping, and path selection across multi-site environments.
o Conduct routing performance analysis and validation during change activities and maintenance windows.
o Maintain and troubleshoot VLANs, trunking, STP, EtherChannel, and spanning tree optimization.
o Participate in loop prevention and broadcast containment tasks to maintain network integrity.
o Perform L2 administration and operational support for Palo Alto Networks firewalls, ensuring secure and compliant network access.
o Manage security policies, NAT rules, and application-based firewall rules, including rule validation and impact analysis.
o Monitor and troubleshoot IPSec and SSL VPN tunnels, resolving connectivity and performance issues.
o Analyze traffic flows using App-ID, User-ID, and logs to identify and remediate security and access issues.
o Handle firewall commits, configuration backups, and policy audits in line with change management processes.
o Investigate and respond to security incidents, blocked traffic issues, and policy violations.
o Support firewall software upgrades, patching, and HA monitoring under approved maintenance windows.
o Design, implement, and optimize advanced load-balancing and content-switching architectures, including iRules (F5) and policy-based traffic steering (Citrix).
o Lead complex troubleshooting of application delivery issues involving SSL offloading, persistence, TCP optimization, health monitors, and asymmetric routing.
o Perform end-to-end SSL lifecycle management, including certificate installation, renewal, cipher hardening, and compliance alignment.
o Architect and maintain high-availability and disaster recovery setups (Active/Standby, Sync-Failover, GSLB readiness).
o Execute platform upgrades, migrations, and capacity planning with zero or minimal downtime.
o Analyze packet captures and logs using tcpdump, Wireshark, and native ADC diagnostics to resolve P1/P2 incidents.
o Collaborate with application, firewall, routing, and security teams to resolve cross-domain performance and availability issues.
o Create and maintain L3-level design documents, SOPs, and RCA reports.
o Cisco Identity Services Engine (ISE) L2 Operations & Support o 802.1X Authentication (Wired & Wireless)
o RADIUS & TACACS+ Configuration and Troubleshooting o Network Access Control (NAC)
o Device Profiling & Endpoint Visibility o Guest Access & BYOD Policy Configuration o Posture Assessment & Compliance Checks o Policy Sets, Authorization Profiles & Authentication Rules
o Incident Analysis & Network Access Security Events
o Leverage Cisco DNAC for centralized monitoring, device inventory, software image compliance, and topology visualization.
o Utilize DNAC’s assurance and telemetry features to proactively identify routing anomalies and performance bottlenecks.
o Managed DNA Center for network-wide provisioning, monitoring, and policy management, improving operational efficiency by 20%
o Managing Cisco ACI fabric (Spine-Leaf), VXLAN, VPC, FabricPath.
o Monitor routing paths, network health, and device performance using SolarWinds, CA Spectrum, CAPM, HPNA, and Wireshark.
o Develop and maintain Python and Shell scripts to automate routine NOC tasks such as configuration backups, route validation, and log analysis.
o Plan and perform IOS/firmware upgrades across Cisco routers, switches, and firewalls in coordination with change control processes.
o Assist in vulnerability assessments and implement mitigation measures aligned with security standards.
o Maintain detailed documentation including routing topology maps, SOPs, device inventories, shift reports, and RCA reports.
o Utilize ServiceNow for ITIL-based incident, problem, and change management.
Tools & Technologies:
Cisco IOS/NX-OS, Cisco ISE, Cisco DNAC, FortiGate, ASA, F5 LTM, Citrix NetScaler, Infoblox, SolarWinds, Spectrum, CAPM, HPNA, Python, Shell Scripting, Wireshark, SNMP, Syslog, ServiceNow (Incident / Change Management)
