YP
Yaswanth Pothula
Sr. Network Engineer
/ Experience

A decade of cutovers, fabric rebuilds, and policy migrations — documented and validated.

Each role below maps to production work I owned end-to-end: scope, design, change-managed execution, and post-cutover validation. Numbers reflect what shipped, not what was planned.

10+ Years8+ Global DC Sites500+ Devices Migrated200+ Tunnels Migrated99.9%+ Continuity
  1. 01 / 04
    Nov 2021 — Present
    New Jersey

    Senior Network Engineer / Infrastructure Engineer

    UBS Inc.
    Selected outcomes
    8+ Global DC sites·500+ devices migrated·200+ tunnels cut over·99.9%+ continuity·~40% faster change cycles
    Arista EOSFortiGate NGFWBGP-EVPN / VXLANJuniper SRXSD-WANPython · Ansible · GitLab
    • Primary architect and lead delivery engineer on the UBS Migration & Design team — owned full-lifecycle cutovers across 8+ international DC sites (EMEA, APAC, Americas), migrating 200+ external-facing VPN, Extranet, and MPLS connections from legacy Cisco/Juniper to next-generation Arista and FortiGate platforms, and leading the majority of third-party Extranet client migrations end-to-end.
    • Drove perimeter and internal firewall migration from Juniper SRX 5400/5800 and NetScreen 5200 to FortiGate NGFWs — rewrote security policies, migrated address objects and NAT rules, and re-architected zone-based security with zero unplanned service impact post-cutover validation.
    • Transformed the DC switching fabric across 500+ devices from Cisco Nexus 7K/9K to Arista 7050CX3 / 7280CR2 — reconfigured L3 routing (BGP, OSPF), VLANs, port-channels, and extended VXLAN/EVPN with BGP EVPN address families and MLAG uplinks for spine-leaf across UBS global DCs.
    • Cut over 200+ IPsec site-to-site VPN tunnels (IKEv1/v2) and Extranet GRE/EBGP/MPLS circuits from Cisco ASA, Cisco 7200, and NetScreen onto Juniper SRX 5800 and FortiGate — rebuilt BGP peering, OSPF redistribution, zone policy, and NAT end-to-end while holding 99.9%+ continuity across every migration window.
    • Deployed FortiGate SD-WAN across the migrated DC border — WAN interface zones on Arista L3 uplinks, application-aware steering, and health monitoring across P2P Extranet and internet VPN links carrying UBS global business traffic.
    • Executed Arista L2/L3 changes through GitLab version-controlled workflows — VLAN provisioning, routing updates, and switch policy modifications across UBS global DC infrastructure.
    • Network SME on automation initiatives — contributed to and validated Python and Ansible workflows for firewall policy lifecycle, address object/group management, and switch port provisioning; reduced manual change cycle time by ~40% on repetitive tasks.
    • Deep L2/L3 troubleshooting across Arista 7000-series, Cisco Nexus 7K/9K, and Juniper EX/QFX — resolved BGP route flaps, OSPF adjacency failures, VXLAN tunnel mismatches, and VPC split-brain in live production.
  2. 02 / 04
    Jun 2018 — Oct 2021
    New Jersey

    Network Engineer

    Akkodis Inc. (Modis Inc.) · Client: UBS
    Selected outcomes
    60+ Extranet clients cut over·150+ IPsec tunnels rebuilt·F5 BIG-IP LTM ownership
    Juniper SRX 5800Cisco Nexus 3KF5 BIG-IP LTMIPsec / GRE / MPLSCisco ASA
    • Primary delivery engineer for all third-party VPN and Extranet migrations across UBS multi-site DC infrastructure — moved 60+ external client connections (GRE tunnels, EBGP sessions, MPLS) from legacy Cisco ASA, NetScreen, and Cisco routers to Juniper SRX 5800 and Nexus 3K, with full validation before legacy decommission.
    • Configured and migrated 150+ IPsec site-to-site VPN tunnels from Cisco 7200 and NetScreen 5200 to Juniper SRX 5800 — aligned IKE policies, PFS groups, and traffic selectors per UBS business unit and external client requirements.
    • Troubleshot OSPF and BGP anomalies across internal DC segments and external peers during active migration windows; reconfigured Cisco Nexus inter-VLAN routing and VPC to support new server deployments.
    • Configured L2/L3 on Juniper EX/QFX and Cisco Nexus — VLANs, trunking, LACP port-channels — in direct support of UBS DC migration activity.
    • Owned F5 BIG-IP LTM across UBS DC — virtual servers, pools, persistence profiles, iRules for content/HTTP/SSL switching, TMOS upgrades, and SSL certificate lifecycle with uninterrupted application delivery.
    • Maintained full change documentation: implementation plans, risk assessments, rollback procedures, and post-change validation reports for every VPN and Extranet cutover.
  3. 03 / 04
    Nov 2017 — May 2018
    New Jersey

    Network Associate

    Aption LLC
    Selected outcomes
    Perimeter ASA → SRX migration·Multi-vendor firewall ops
    Cisco ASA 5525Juniper SRX 4600/5100Palo Alto PA-200/3020/5000Checkpoint R75F5 BIG-IP LTM
    • L1/L2/L3 network support — firewall rule requests (port opens, NAT statements, ACL changes) across Cisco ASA 5525, Juniper SRX 4600/5100, and Checkpoint R75.
    • Executed perimeter firewall migration from Cisco ASA to Juniper SRX — URL filtering policy migration, IPsec tunnel reconfiguration, and IDS/IPS policy alignment for internet-facing and internal traffic.
    • Worked with Palo Alto PA-200/3020/5000 for internet and internal zone filtering; assisted with F5 BIG-IP LTM VIP and pool configuration for application load balancing.
    • Configured L2/L3 features on Cisco Nexus and Juniper EX/QFX — VLANs, LACP, VPC peer links, Virtual Chassis — and supported OSPF/BGP troubleshooting across internal and external segments.
  4. 04 / 04
    Jun 2014 — Jan 2016
    India

    Network Engineer

    Suns Solutions
    Selected outcomes
    Campus & DC L1/L2/L3 ops·Routing-protocol foundation
    Cisco Nexus 3K/4K/5KOSPF · EIGRP · RIPInfoblox / IPAMCisco ASA · NetScreen / SRX
    • L1/L2/L3 support for campus and DC environments — Cisco/Nexus (3K/4K/5K) switches, Cisco 3600/3800 routers, and Juniper EX series across access, distribution, and core.
    • Configured routing protocols (OSPF, EIGRP, RIP, static), VLAN trunking, VTP, STP/RSTP/MST, EtherChannel, WLC/PVST HA; managed IP addressing via Infoblox/IPAM and Windows DHCP.
    • Supported firewall operations on Cisco ASA 5500 and Juniper NetScreen/SRX — ACL management, IPsec VPN troubleshooting, and SRX DC firewall deployments for LAN/WAN filtering.
/ Education & approach

Formal foundation, field-tested method.

M.S., Computer & Information Science
Bellevue University · Nebraska, USA
GPA · 3.86 / 4.0
Operating methodology
Full-lifecycle DC migration · change management with implementation plans, risk assessments, rollback procedures, and post-change validation · firewall policy lifecycle ownership · L1/L2/L3 troubleshooting across multi-vendor estates.
/ Next

Back to the overview, or get in touch.

Home