Post Job Free
Sign in

Senior Network & Security Engineer

Location:
Bengaluru, Karnataka, India
Posted:
October 22, 2025

Contact this candidate

Resume:

Summary

GOVIND KUMAR CHOUDHARY

SENIOR NETWORK ENGINEER

Bangalore Phone: +91-700******* Email: *********@*****.*** LinkedIn: www.linkedin.com/in/govindiem/ Experienced and result-oriented Senior Network & Security Engineer with over 9+ years of proven expertise in network security, cloud networking, and enterprise infrastructure management. Adept at designing, deploying, and optimizing complex network architectures with a strong emphasis on security, scalability, and performance. Demonstrates in-depth proficiency in network analysis, troubleshooting, automation, and documentation of advanced network systems. Skilled in incident management and effective cross-functional collaboration, ensuring consistent and seamless service delivery. Highly adaptable to emerging technologies, with a strong commitment to continuous improvement and operational excellence.

• Network Architecture & Design: End-to-end planning, design, and migration in hybrid cloud/on- premises environments. Expertise in creating HLD & LLD documentation.

• Routing & Switching: Extensive experience with VLAN, VTP, VLAN, ARP, STP, HSRP, VRRP, OSPF, EIGRP, BGP, MPLS, VRF, DMVPN, GRE, Port Channel, and LACP.

• Network Security & VPNs: Proficient in configuring Cisco ASA/FTD, FortiGate Firewalls, IPS/IDS, WAFs, and VPN solutions (Site-to-Site, SSL). Working knowledge of Cisco ISE, NAC, and Umbrella.

• Cloud & SDN: Proficient in AWS, Azure, and GCP with hands-on expertise in Cisco DNA Center, SD-WAN, and ACI for cloud-integrated, software-defined networking solutions.

• Multi-Vendor Infrastructure: Skilled in Cisco, Arista, PaloAlto, Fortinet, HPE, Meraki, Aruba, BIG IP F5 & Radware Alteon Load Balancers.

• Wireless Technologies: Proficient in deploying and managing Cisco WLCs (5520, 9800), Cisco APs (2800, 3800, 1700), Aruba, and Meraki MR series access points, with strong expertise in wireless security, optimization, and troubleshooting.

• Automation & DevOps: Strong in network automation using Python and Ansible; basic understanding of Terraform, GitHub, and CI/CD pipelines.

• Monitoring & Tools: Proficient with SolarWinds, Splunk, Zabbix, Cisco DNAC, StealthWatch, Riverbed, Wireshark, NetBrain, Infoblox, BMC TSIM, ServiceNow, Visio and CA Tools. Senior Network Engineer, CME Group July 2025 – Present

• Designed and optimized enterprise-grade network architectures aligned with business and security objectives; delivered highly available and scalable hybrid connectivity across data centers and cloud (AWS/GCP).

• Supported mission-critical workloads by managing Cisco Nexus/Arista switches, FortiGate/Palo Alto firewalls, and F5 BIG-IP load balancers for high-performance traffic management.

• Implemented and troubleshot routing protocols (OSPF, EIGRP, BGP), multicast technologies (PIM-SM, IGMP), and Layer 2 protocols (VLAN, STP, RSTP, HSRP, VRRP).

• Automated configuration, patching, and compliance workflows using Python and Ansible, improving operational efficiency and reducing manual errors by 40%.

• Led troubleshooting and RCA for complex L2–L7 incidents; resolved routing, BGP, and VPN-related performance issues with minimal downtime.

• Collaborated with cross-functional teams and cloud architects to integrate Azure networking (VNet, ExpressRoute, VNG) into existing on-prem architecture.

• Documented end-to-end configurations, topology, and process flows, ensuring traceability and compliance readiness.

Core Competencies

Professional Experience

Senior IT Engineer, Harman India May 2021 – July 2025

• Lead support for Network Vulnerability Compliance, Security Enablement, and global network migrations.

• Conducted end-to-end assessments and IOS upgrades across thousands of routers, switches, firewalls, and load balancers.

• Deployed and configured Cisco routers, switches (Catalyst & Nexus series), ASA/FTD firewalls, Meraki wireless, SD- WAN, VPN, and Cisco Umbrella.

• Designed and configured centralized control and data policies on Cisco vManage, optimizing traffic flow and enforcing compliance/security requirements.

• Provided L3 support and on-call troubleshooting for S2S and remote access VPNs and Radius integrations.

• Managed BGP, OSPF, VRF, and MPLS routing across enterprise backbone; implemented VLAN, VXLAN, and port- channel configurations for data center resiliency.

• Experience on working with DC technologies like VDC, VPC, FEX and Fabric Path, MLAG and VXLAN.

• Designed and maintained IT documentation including network diagrams and inventory using Microsoft Visio.

• Configured and managed Cisco ISE/NAC for secure port access across enterprise networks.

• Hands-on experience with F5 BIG-IP (LTM, GTM, ASM, APM) for high availability and traffic optimization.

• Managed AWS infrastructure: EC2, VPC, TGW, Route Tables, IAM, Security Groups, and CloudWatch monitoring.

• Administered Meraki switches, WLCs, and APs (models 3800, 2800, 1700).

• Enforced DNS security policies via Cisco Umbrella for global and project-specific access control.

• Automated network tasks using Python scripting and Ansible playbooks for device provisioning and upgrades. IT Associate Consultant, ITC Infotech July 2019 - May 2021

• Provided global support for network and security infrastructure, handling P1/P2 incidents, change requests, and upgrades across routers, switches, firewalls, and VPNs.

• Configured and troubleshot Cisco ASA (5520/5515), including site-to-site VPNs, NAT, IPS modules, and high availability (HA) setups.

• Performed IOS upgrades and managed routing protocols (OSPF, BGP, EIGRP), VLANs, and switch configurations.

• Supported Meraki switches, access points, and basic cloud networking in AWS and Azure.

• Built and maintained NetBox-based network inventory across multiple sites.

• Partnered with architecture teams to plan and execute migration and upgrade projects with minimal business impact

• Configured route redistribution and summarization across multiple routing domains to optimize network performance and reduce routing table size.

• Managed Cisco wireless solutions (WLC, LWAP, Standalone AP) for enterprise-grade Wi-Fi networks.

• Worked closely with Cisco TAC on hardware failures, RMAs, and global device replacements.

• Developed automation scripts for backup and port status validation, reducing manual operations by 30%. Network Security Administrator, Tata Consultancy Services (TCS) Oct 2016 - July 2019

• Delivered secure and stable enterprise networks by managing Cisco/HP routers, switches (Catalyst 9200, 9300, 3850, 4500E, 2960X, 6500), FortiGate NGFWs (3000D, 3040B, 110C, 100D), and Wi-Fi infrastructure.

• Performed regular upgrades and patching across firewalls, routers, switches, and load balancers (Radware Alteon, Array) to ensure ISO compliance and audit readiness.

• Monitored and analyzed security threats using HP ArcSight SIEM; presented findings and mitigation strategies in client-facing weekly security reviews.

• Deployed and managed IPSec and Client-less SSL VPNs, securing access to production environments while maintaining performance and accessibility.

• Designed and implemented resilient L2/L3 topologies, including HSRP, VRRP, STP, and VLAN-based segmentation.

• Administered OSPF and BGP routing protocols for optimal path selection and dynamic route exchange.

• Configured SSL certificates and advanced load-balancer policies (URL/path-based redirection) to enhance application availability and intelligent traffic distribution.

• Enforced AAA, NAC, and MAC-binding policies for wireless access control, strengthening endpoint authentication and minimizing unauthorized access.

• Supported Akamai CDN integration to improve delivery of web content and site performance across global locations.

• Handled incident analysis and RCA, ensuring SLA compliance and reducing critical issue recurrence.

• Awarded on the spot award two times for excellent contribution in completion of major projects.

• Received appreciation from the client on Completing Customer bulk request in a short span.

• Migrated 1000+ of network devices (routers, switches, firewalls) to meet new security and compliance standards.

• Designed and implemented multi-site SD-WAN using Cisco Viptela, boosting network performance and reliability.

• Set up secure cloud-to-on-prem connectivity with AWS Transit Gateway and IPsec VPN for hybrid cloud integration. B.Tech (Computer Science & Engineering)

Institute of Engineering & Management, Kolkata (W.B.U.T) July 2012 to June 2016 – 8.56 DGPA

• Languages: English, Hindi.

• Certifications: AWS Certified Solutions Architect – Associate (SAA-C03), Cisco Certified Network, Associate (CCNA) R&S

(Cisco ID: CSCO13477422), CCNP Route - IT IS Advance Key Achievements

Education

Additional Information



Contact this candidate