SV
Suresh Vinasiththamby
Network Engineer | 9+ Years Experience | London, UK
Network Automation
Python
Palo Alto NGFW
AWS
Low Latency Networking
Recent System Events
| Time | Severity | Event | Description |
|---|---|---|---|
| 2024-06-01 09:00:00 | CRITICAL | role-change | Joined LMAX as Network Engineer — global low-latency trading environment |
| 2021-02-01 09:00:00 | HIGH | role-change | Joined Motability Operations as Cloud Network Engineer |
| 2020-12-01 09:00:00 | MEDIUM | auth-success | CCNP Security certification obtained |
| 2019-04-01 09:00:00 | HIGH | role-change | Joined Motion Picture Solutions as Network Engineer |
| 2018-12-01 09:00:00 | MEDIUM | auth-success | CCNP Routing & Switching certification obtained |
Device > Setup > Management
Hostname
SURESH-V
Full Name
Suresh Vinasiththamby
Location
London, UK
Email (masked)
v*****h@g***l.com
Mobile (masked)
+44-7***-***-672
Blog
Timezone
Europe/London
DNS
8.8.8.8, 1.1.1.1
NTP
pool.ntp.org
Platform
PAN-OS 11.1.2-h3 (VM-Series)
Personal Summary
A passionate and hardworking network engineer with an exceptional range of technical skills, seeking a diverse, dynamic and challenging environment.
Specialising in cloud networking, next-generation firewall management (Palo Alto / Fortinet), and network automation (Ansible / Python / Terraform).
9+ years of experience spanning NOC, enterprise networking, cloud networking, and security roles across global organisations.
Blog: www.packetswitch.co.uk
Blog: www.packetswitch.co.uk
Device > Licenses (Certifications)
Cisco Certified Network Professional Security
Cisco Certified Network Professional Routing & Switching
Implementing Cisco Network Security (CCNA Security)
Cisco Certified Network Associate Routing & Switching
AWS Certified Advanced Networking – Specialty
AWS Certified Solutions Architect – Associate
Juniper Network Certified Specialist – SP
Juniper Network Certified Specialist – ENT
Juniper Network Certified Associate – Junos
Education
Master of Business Administration (MBA)
BSc (Hons) Business Studies
Network > Interfaces (Work Experience)
| # | Interface Name | Type | Zone | Period | Link State | Comment | |
|---|---|---|---|---|---|---|---|
| 1 | ethernet1/1 | Layer3 | Trust | Jun 2024 – Present | ● UP | Network Engineer @ LMAX | |
| 2 | ethernet1/2 | Layer3 | Trust | Feb 2021 – Jun 2024 | ● DOWN | Cloud Network Engineer @ Motability Operations | |
| 3 | ethernet1/3 | Layer3 | DMZ | Apr 2019 – Feb 2021 | ● DOWN | Network Engineer @ Motion Picture Solutions | |
| 4 | ethernet1/4 | Layer3 | DMZ | May 2018 – Apr 2019 | ● DOWN | Network Engineer @ Adstream | |
| 5 | ethernet1/5 | Layer3 | Untrust | Jan 2018 – May 2018 | ● DOWN | Network Engineer @ Academia | |
| 6 | ethernet1/6 | Layer3 | Untrust | Jan 2017 – Dec 2017 | ● DOWN | NOC Engineer @ Updata/Capita |
Network > Zones (Skill Areas)
| Zone Name | Type | Technologies / Tools | Proficiency |
|---|---|---|---|
| Firewall | Layer3 | Palo Alto NGFW, Panorama, Fortinet FortiGate, Cisco ASA | Strong |
| Cloud | Layer3 | AWS VPC, TGW, GWLB, Lambda, ASG, Direct Connect, Route 53 | Strong |
| SASE | Layer3 | Prisma Access, Global Protect, Service Connections, Remote Networks | Solid |
| Routing | Layer3 | BGP, OSPF, VRRP, HSRP, STP, VRF, TCP/IP, DNS | Solid |
| Switching | Layer2 | Arista, Juniper EX, Cisco Nexus 3k/9k, Catalyst 9200/9500, Cumulus | Solid |
| AAA | Layer3 | Cisco ISE, 802.1X, EAP-TLS, TACACS, RADIUS, MAB, Guest Wi-Fi | Solid |
| Automation | Virtual | Python, Ansible, Terraform, Terragrunt, Jenkins CI/CD, REST API, Netmiko, PanOS-Python | Solid |
| Monitoring | Virtual | Splunk, LibreNMS, SolarWinds, Kentik | Working Knowledge |
Policies > Security (Technical Skills as Rules)
| # | Rule Name | Source Zone | Dest Zone | Application | Service | Action | Level | |
|---|---|---|---|---|---|---|---|---|
| 1 | Palo-Alto-NGFW | Any | Trust | panospanoramauser-idapp-id | application-default | ▮ Allow | Strong | |
| 2 | AWS-Cloud-Networking | Any | Cloud | vpctgwgwlbdirect-connectlambda | application-default | ▮ Allow | Strong | |
| 3 | Prisma-Access-SASE | Any | Cloud | saseglobal-protectservice-conn | application-default | ▮ Allow | Solid | |
| 4 | BGP-Routing | Any | Any | bgpospfvrrphsrp | application-default | ▮ Allow | Solid | |
| 5 | Cisco-ISE-802.1X | Any | Trust | 802.1xeap-tlsradiustacacs | application-default | ▮ Allow | Solid | |
| 6 | Python-Ansible-Automation | Any | Any | pythonansiblerest-apinetmiko | application-default | ▮ Allow | Solid | |
| 7 | Terraform-IaC | Any | Cloud | terraformterragruntgitjenkins | application-default | ▮ Allow | Working Knowledge | |
| 8 | Fortinet-FortiGate | Any | Trust | fortiosfortigate | application-default | ▮ Allow | Solid | |
| 9 | Deny-Outdated-Protocols | Any | Any | telnetftphub | any | ▮ Deny | N/A |
Policies > NAT (Tools & Platforms)
| # | Rule Name | Original (Tool) | Translated (Use Case) | Type | Status |
|---|---|---|---|---|---|
| 1 | Palo-Alto | PAN-OS, Panorama, App-ID, User-ID, Global Protect | NGFW / SASE / Cloud Security | Dynamic IP | Active |
| 2 | AWS | VPC, TGW, GWLB, Lambda, Route 53, ASG, Event Bridge | Cloud Connectivity | Dynamic IP | Active |
| 3 | Python-Libraries | Netmiko, PanOS-Python, Paramiko, Requests | Network Automation | Static IP | Active |
| 4 | IaC | Terraform, Terragrunt, Ansible | Infrastructure as Code | Dynamic IP | Active |
| 5 | CI-CD-Pipeline | Jenkins, Bitbucket, Git | DevOps / CI/CD | Static IP | Active |
| 6 | Monitoring | Splunk, LibreNMS, SolarWinds NCM, IPAM, NetBox | Observability | Dynamic IP | Configured |
| 7 | Cisco | Nexus 3k/9k, Catalyst 9200/9500/3850, Arista | Enterprise Switching | Static IP | Configured |
| 8 | Juniper | SRX110/210/300/1400, EX3300/4600, MX5 | ISP / SP Routing | Static IP | Inactive |
Objects > Addresses (Key Projects)
| Name | Type | Employer | Description | Tags | |
|---|---|---|---|---|---|
| PA-VM-Series-GWLB | Subnet | Motability Operations | Palo Alto VM-Series Firewall deployment in AWS behind Gateway Load Balancer | awspalo-alto | |
| Auto-Scale-VM-Series | Subnet | Motability Operations | Auto-Scaling Palo Alto VM-Series firewalls in AWS | awsautomation | |
| ASA-to-PaloAlto-Migration | FQDN | Motability Operations | Migrated 1000s of firewall objects and rules from Cisco ASA to Palo Alto | migrationfirewall | |
| 802.1X-EAP-TLS | IP Range | Motability Operations | 802.1X EAP-TLS implementation with Cisco ISE | securityise | |
| Meraki-Guest-WiFi | FQDN | Motability Operations | Meraki Guest Wi-Fi deployment and captive portal | wirelessmeraki | |
| MPLS-to-IPSec-Migration | FQDN | Adstream | Migrated branch offices from MPLS to IPSec VPN | vpnmigration | |
| AWS-TGW-VPC-Peering | Subnet | Adstream | AWS Transit Gateway and VPC peering migration | awstgw | |
| 40G-100G-DC-Network | IP Range | Motion Picture Solutions | Resilient 40G/100G connectivity for GPFS storage across multiple DC locations | datacenterinfra | |
| AnyConnect-VPN-Duo-2FA | FQDN | Motion Picture Solutions | Cisco AnyConnect VPN with Duo and Azure 2FA integration | vpnsecurity | |
| NetBox-DCIM-Implementation | FQDN | Academia | NetBox DCIM/IPAM deployment across all active racks and devices | dcimipam |
Objects > Applications (Work History)
| Application (Employer) | Category | Subcategory | Industry | Key Technologies |
|---|---|---|---|---|
| LMAX (Jun 2024–Present) | Enterprise | Trading / Finance | Financial Services | Low-latency trading, BGP, Arista, Palo Alto, Fortinet, AWS DX |
| Motability-Operations (Feb 2021–Jun 2024) | Enterprise | Cloud Networking | Financial Services | Prisma Access, AWS TGW/GWLB, Palo Alto, Python/Ansible/Terraform |
| Motion-Picture-Solutions (Apr 2019–Feb 2021) | Enterprise | Media / Network Eng | Media & Entertainment | MPAA standards, 40G DC, AWS VPC/TGW/DX, Cisco ISE 802.1X |
| Adstream (May 2018–Apr 2019) | Enterprise | Global WAN / AWS | Digital Media | MPLS, IPSec VPN, AWS VPC/TGW, Meraki, Cisco Umbrella |
| Academia (Jan 2018–May 2018) | ISP | SP Networking | MSP | Juniper SRX/EX/MX, IPSec, NAT, NetBox, PHPIPAM |
| Updata-Capita (Jan 2017–Dec 2017) | MSP | NOC / Monitoring | ISP / Telecoms | ADSL/FTTC/FTTP fault management, SolarWinds, Cisco/Juniper CLI |
Monitor > Logs > System (Education & Certification Timeline)
| Receive Time | Serial | Severity | Event ID | Object | Description |
|---|---|---|---|---|---|
| 2020-12-01 09:00:00 | 0001-CERT | CRITICAL | auth-success | CCNP-Security | Cisco Certified Network Professional Security — obtained |
| 2020-06-01 09:00:00 | 0002-CERT | HIGH | auth-success | AWS-ANS | AWS Certified Advanced Networking – Specialty — obtained (now expired) |
| 2020-03-01 09:00:00 | 0003-CERT | HIGH | auth-success | AWS-SAA | AWS Certified Solutions Architect – Associate — obtained (now expired) |
| 2018-12-01 09:00:00 | 0004-CERT | HIGH | auth-success | CCNP-RS | Cisco Certified Network Professional Routing & Switching — obtained |
| 2018-09-01 09:00:00 | 0005-CERT | MEDIUM | auth-success | CCNA-Security | Implementing Cisco Network Security (CCNA Security) — obtained |
| 2018-06-01 09:00:00 | 0006-CERT | INFO | auth-success | JNCIS-SP | Juniper JNCIS-SP — obtained (now expired) |
| 2018-04-01 09:00:00 | 0007-CERT | INFO | auth-success | JNCIS-ENT | Juniper JNCIS-ENT — obtained (now expired) |
| 2017-12-01 09:00:00 | 0008-CERT | INFO | auth-success | JNCIA-Junos | Juniper JNCIA-Junos — obtained (now expired) |
| 2016-06-01 09:00:00 | 0009-CERT | MEDIUM | auth-success | CCNA-RS | Cisco Certified Network Associate Routing & Switching — obtained |
| 2015-06-01 09:00:00 | 0010-EDU | INFO | config-change | MBA | Master of Business Administration — graduated |
| 2012-06-01 09:00:00 | 0011-EDU | INFO | config-change | BSc-Hons | BSc (Hons) Business Studies — graduated |