It Infrastructure Operations
Resume:
.
.
Summary
Experienced IT Infrastructure and Security Leader with a strong background in network
architecture, IT operations, and service management. Expertise in leading teams to deliver secure, stable, and SLA-compliant services. Proficient in designing and optimizing large-scale network infrastructures, implementing automation, and ensuring continuous technical innovation. Skilled in cross-departmental collaboration, customer-facing roles, and ITIL process management. Adept at problem-solving and fostering high-performance teams with a focus on security, efficiency, and innovation.
Skills
Routing:
EIGRP, OSPF, PBR, BGP Routing Protocols
Cisco ASR 1002, 1700, 1800, 2800, 3800,
7200, 7613, 7609, Cisco WAAS: WAVE-274-
K9, NME-WAE-522-K9.
Switching:
VLAN, VTP, RSTP, HSRP, LACP, VRRP, VPC
Cisco Catalyst 6513, 6509, ME-3400, 2960,
3560, 3750, 4800, Cisco Nexus 7k & 3k
Wan:
MPLS, P2P, Serial, Ethernet, TDM – E1,
Internet Links
IT Security:
Firewall, IDS, IPS, ACL, NAT, IPsec and SSL
VPN. TCP/IP, IPV4/IPV6
Checkpoint Power 1: 4800, 12400 (NGX
R65, SPLAT R75, GAIA R77, R80.20,
R80.10).
Intrusion Prevention System: IBM NIPS
GX5208-V2
Microsoft Server Technologies:
AD, DNS, IIS, RDS, WSUS, DHCP, PKI
Load balancer:
F5-BIGIP LTM
E-Mail-Security:
Forcepoint DLP
Encryption:
Gemalto HSM, Protect V Manager
SIEM:
RSA Envision, RSA SA
Vulnerability Management:
Nessus, Qualys
Proxy:
Microsoft Forefront TMG 2010, IWSVA
Cloud Platforms:
Basic Azure, AWS, GCP & OCI
Virtualization Platforms:
VMware vSphere ESXi, vCenter, VMware NSX,
vSAN, Hyper-V
Microsoft Endpoint Manager:
SCCM, Controllers
Monitoring:
CA Spectrum & Multiport Collector, Check MK,
Pager Duty
Storage:
NetApp, Hitachi
Vendor Hardware:
Cisco Routers, Nexus Switches, IBM Servers,
DELL Switches, Checkpoint Firewall, F5 Load
Balancer, VMware, Hitachi NAS, NetApp
Storage, HP SimpliVity, IBM NIPS, Cumulus OS,
Proxy -Microsoft Forefront TMG 2010, CA
Multiport Collector
Operating System:
Windows 08,12,16,19,22 \ESXi\Linux
Tools Worked:
Tufin-Secure track, Cisco Works-LMS, Cisco
WAAS CM, IBM Site protector console, F5 EM,
CA Net flow reporter
Sniffer Tracing:
Wireshark packet capture, CA Multiport
collector
Microsoft Office 365 Suite:
Exchange, SharePoint, Teams, DLP
Power BI
Power Apps
JOEL PREETHAM MUNI
IT INFRASTRUCTURE NETWORK SECURITY ARCHITECT
• Mobile: +1-713-***-****
• Email: *********@*****.***
• Address: Houston, TX
.
.
Professional
Experience
Merck KGaA, Rahway, NJ
04/2021 - Current
Infrastructure Demand and Portfolio Manager
Project Details: Business IT Infrastructure Demand Management Project Summary: Partnering with IT Business facing units and Application Technology to plan and deliver infrastructure by supporting business strategy and growth.
• Partner with IT Business Partners, Infrastructure and Application delivery units to capture, document, and smoothly transition Business demands for delivery. The outcome is to maintain a backlog of well documented demands which is going to be used as input for IT Senior Management to prioritize demands for delivery.
• Led the technical design and implementation of large-scale network operations, ensuring compliance with security regulations and audit requirements for critical business services.
• Design and operation of data center networks, carrier backbone, Juniper, Arista.
• IT Security: Next Generation Firewalls (Palo Alto, Fortinet), Web Application Firewalls, VPN, authentication, encryption, dynamic routing protocols.
• ITIL service management, incident management, change management, problem resolution, service provisioning.
• Team management, mentoring, resource planning, recruitment, continuous improvement of workflows.
• Knowledge of cloud technologies and virtualization platforms, collaborative work with interdisciplinary teams.
• Strong analytical, communication, and consulting skills; customer-facing experience.
• Expertise in high-availability environments, infrastructure provisioning, and system optimization.
• Lead the operation of network infrastructure to ensure stable, secure, and SLA- compliant services for internal and external customers.
• Drive continuous optimization of network management within ITIL frameworks, focusing on efficiency and automation.
• Supervise a cross-functional team, providing mentorship and fostering an environment of continuous development and high performance.
• Manage resource allocation, internal workflows, and collaboration with other departments to streamline processes and enhance service delivery.
• Oversee the planning, design, and further development of the network platform, ensuring alignment with overall architectural goals.
• Collaborate with internal project and operations teams, as well as external partners, for holistic service management and operational understanding.
• Implement and validate network platform designs, create test environments, and transition successful projects into live operation.
• Contribute to the development of standard products and the technological evolution of central operating platforms.
• Collaborate with product management in the quotation process and product development lifecycle.
• Ensure the security of network and infrastructure by enhancing system landscapes and mitigating risks.
• Act as the primary contact for customers in the planning, design, and management of security infrastructure, including Next Generation Firewalls.
• Support 2nd and 3rd level teams with the administration and troubleshooting of customer systems.
.
.
• Engage in proactive fault resolution and participate in on-call duties for ongoing support.
• Managed large-scale network infrastructure projects, ensuring design and operational integrity for critical data center services.
• Developed and executed automation scripts to streamline network tasks, improve system reliability, and reduce manual intervention.
• Played a key role in the deployment and ongoing management of security technologies, including firewalls and encryption protocols.
• Led product development initiatives in collaboration with technical and business teams, improving IT service offerings.
• Conducted comprehensive performance reviews of network platforms, identifying areas for optimization and security improvements.
Infosys Limited, Frankfurt, Germany
12/2017 - 12/2020
Senior Technology Specialist
Infosys Limited, Hyderabad, India
10/2014 - 12/2017
Technology Specialist
04/2013 - 09/2014
Technology Analyst
Project Details: Infosys Production Cloud Datacenter Management Project Summary: Infosys offers “Production cloud” as a service for delivering Infosys IP’s/solutions in “outcome” based (SaaS) model or for a fully managed services and offering. Infrastructure standards, Information security policy and Infrastructure management processes will be aligned to Industry best practices such as ISO27001, ISO20K etc.
• Evaluate project requirement and submit proposal with design include network & security compliance. Coordinating with IT Project Managers, Business Analysts & IT Architects for deploying Infrastructure workloads and smooth rollout of projects.
• Leadership of security specialist team providing technical Support for Datacenter critical cryptographic applications related with Application deployment, Data transfer and Security.
• Owned service transition processes and ensure these are communicated and followed throughout the IT function.
• Supported the delivery of key requirements through the Service Transition team by providing ongoing support and expertise.
• Ensured all Service Design and end to end support models are reviewed and implemented for any changed or new services.
• Ensured all process comply within internal security and technology standards.
• Implementing and Managing Multitenant Client on-boarding process.
• Managing operations at PR London DC, on-site support for Frankfurt DR Datacenter in terms of Patch Panel mapping, Routing, Switching, Security, LB, Rack & Stack, Server configuration, Storage migrations, NAS Migrations, Fire safe, Internet Links, P2P Links, MPLS Links and VM Deployment.
• Ensured the effective knowledge transfer of new on boarding client’s workload to support team for 24/7 operation.
• Working with international Infosys teams and providing KT, Remote support for Datacenters at US, Australia and India.
.
.
• Ensure effective Business Continuity Management by performing review of the disaster recovery plans and execution of disaster recovery steps during simulation and actual DR scenarios
• Ensured that all plans/polices are in place for all agreed services & Represented team in Service Readiness Reviews.
Routing, Switching & Security:
• Plan, Design and configure Network and Security Architecture.
• Installation, Configuration, Monitoring, Upgrading and administration of Cisco Router, Switches, Checkpoint Firewall, F5 LB, Cumulus OS and VMware Vcenter.
• Configure and maintain LAN & WAN
• Configuration and administration PBR, OSPF, BGP and EIGRP Routing protocols
• Configuration and administration Switching HSRP, VRRP, VPC and VDC
• Coordination with clients and Establishing S2S VPNs.
• Troubleshooting level 3 issues on network & security.
• Create backup of network and systems configuration and stored it in centralized server as per log retention policy.
• Create availability and capacity reports for network/systems and publish in portal on monthly basis for client review.
• Configuration and maintenance of Forcepoint DLP & Gemalto Thales HSMs & PKI
• Consulting applications about usage and implementation of SSL certificates being issued from PKI and managed PKI (Symantec)
• Evaluation of Operational readiness in terms of TLS configurations & other security aspects
• Attend vendor training for new product enhancement and service offerings
• Testing and evaluating new hardware and software products of network infrastructure and Implementing POC.
• Evaluated and supported in implementation of new security features and technologies
• Monitoring Network & Security devices and ensuring 100% Availability. Web Protection & Proxy:
• Implementation of private cloud reverse proxy solution for accessing URLs over internet from customer infrastructure / internet and SSL certificate management.
• Deploying forward proxy solutions, Integration of Authentication mechanism. Fine- tuning of access policy, URL categorization, SSL inspection and URL Bypassing according to customer regulation and approval
• Configuration, Administration and upgrading Forward Proxy TMG & IWSVA
• Configuration, Administration and upgrading Reverse Proxy F5 Load Balancer- LTM E-Mail Security:
• Implementation Design and configuration of new email security solution using Forcepoint DLP
• Troubleshooting email delivery issues and research.
• Whitelisting and Blacklisting domains and analysis. Vulnerability Assessment and Management:
• Assess the security vulnerabilities in networks/applications and provide a report on the same using Qualys with plan of action
• Remediate the vulnerability according to vendor recommendation.
• Providing consulting to applications across different platforms to enable Transport layer security and remediation of related vulnerabilities Security Compliance and Risk Management:
• Perform security and compliance assessment on client infrastructure
• Support internal and external audit by providing the artifacts
.
.
• Manage risk tracker
• Conducting quarterly router, switches and firewall audits. Security Information and Event Management (SIEM):
• Collect logs from the devices in the network and correlate using RSA SIEM solution.
• Administration of SIEM server and remote Connectors/loggers. Integration of devices to forwards the log to connectors
• Development of the SIEM system and monitoring solution for the devices in the environment
Compute:
• Deploying VM’s using harden templates as per project requirement using VMware. Key Project Achievements:
• On-boarded 10 no of new clients at Hyderabad and 5 at London.
• Successfully migrated Microsoft TMG proxy to IWSVA, moved all workload and tested internet access
• Successfully upgraded Checkpoint firewall from R77 to R80 and F5 LB from 11.6.0 to 13.1.1 without any application down time.
• Proposed IPsec VPN Tunnel over internet between our DC and Client DC and completed successfully to eliminate dedicated connectivity and saved additional overhead cost per month to organization.
• To ensure 100% availability of WAN links, successfully configured IP SLA / HSRP track in WAN routers and tested it successfully.
• Successfully completed Policy Based Routing in Switches to utilize internet links effectively and reduced monthly utilization cost to organization
• Successfully completed Policy Based Routing in Switches to utilize internet links effectively and reduced monthly utilization cost to organization HCL Infosystems Private Limited, Hyderabad, India
03/2011 - 04/2013
Senior Customer Engineer
03/2009 - 03/2011
Customer Engineer
02/2008 - 03/2009
On Job Trainee (OJT)
Project Details: BSNL (Bharat Sanchar Nigam Limited – Telecom) CDR (Call Detail Record) POC PHASE-I & ROP PHASE-II
Project Summary: CDR Based Convergent Billing and Customer Care System. Prior to its Data was collected locally at SSA, centralized data collection & services were achieved after project rollout. BSNL CDR POC Phase-I was Implemented in 4 SSAs Hyderabad, Bangalore, Chennai & Trivandrum and ROP Phase-II was implemented in four states Andhra Pradesh, Karnataka, Kerala & Tamil Nadu were in 1000+ networking equipment’s would carry traffic to the Datacenter.
• Designing and Maintaining Data Cabling, Port mapping, IP Address Schema and vlans of entire Data enter setup.
• Physical Installation, Configuration & maintenance of Cisco Router, Switches and Nortel firewall.
• Configuration of BGP, and OSPF& HSRP Protocols.
• Creation of Routes, Access List in Switches and routers as per requirements.
• Installation and Configuration of Cisco Works LAN Management Solution.
• Preparing and Maintaining Technical Documents.
• Conducting Acceptance Test and Validation Test (AT/VT) and achieving the Signoff Certificates.
.
.
• Monitoring 1000+ devices and ensuring 100% availability.
• Leading team of Andhra Pradesh with 10 engineers, which consists of 21 Telecom Districts.
• Project level implementations tracking & status presentations to BSNL General Managers.
• Conducting SSA Level meetings and explaining new network architecture requirements for data transfer & application access. LAN:
• Maintaining the entire Datacenter Network
• Maintaining the IP Address Schema
• Maintaining the networking devices, 43 No of Cisco ME3400, 2 No of Cisco 6513, 4 No of Cisco 7609, 4No Cisco 7613.
• Creation of Routes and Access List in Switches and routers as per requirements
• Creating and maintaining MAC (port-based Security) for 80 Work station PC
• Installation and Configuration of Cisco Works LAN Management Solution. WAN:
• Connecting 21 Telecom Districts to South Datacenter (Hyderabad)
• Designing the IP Addressing Schema for 21 Telecom Districts
• Installation and Configuration of Cisco 2811, 7609 & 7613 Routers.
• Configuration of E1/T1, STM1 and ISDN PRI & BRI Links
• Connectivity of all SSA to Datacenter via National Internet Backbone
• Configuration of Routing protocols like RIP, IGRP, OSPF, EIGRP, HSRP and BGP Security:
• Installing and configuring of Nortel/Checkpoint firewall with R65 Software. Configuring user authentication from Cisco secure Access Control server and deploying, managing VPNs.
• Prepared Security Policy Documentation for Firewall & Load Balancer.
• Documenting all Change request for Firewall access. Key Project Achievements:
• Successful Go-Live of Hyderabad SSA as part of Phase I
• Successful Go-Live of 21 Telecom Districts as part of Phase II
• Connectivity of all SSA to Datacenter via National Internet Backbone
• Migration of Different types or PSTN Switches Telecom data to Hyderabad South Datacenter.
• Migration of Customer Care services data from all SSAs to Hyderabad South Datacenter
Education and
Training
06/2007
Bachelor of Engineering, Electrical & Electronics Engineering. Aizza College of Engineering and Technology, Jawaharlal Nehru Technological University, India
Organizational
Skills, Honors
and Activities
Managerial Skills:
• Expert Problem Solver: Ability to analyze and resolve complex networking issues, ensuring minimal disruption to business operations.
• Innovative Thinker: Passion for driving network automation, optimization, and the integration of emerging technologies into existing infrastructure.
• Collaborative Team Player: Adept at working cross-functionally with other departments to implement network requirements and solve problems efficiently.
.
.
• Detail-Oriented: Focused on precision and accuracy, ensuring that every component of the network is optimized for peak performance and reliability.
• Adaptable & Willing to Travel: Comfortable with national and international travel to support client projects, ensuring network solutions are implemented effectively onsite.
Key Skills:
• Networking: Juniper, Arista, Cisco
• Security: Palo Alto, Fortinet, Next Generation Firewalls, VPN, SSL/TLS
• Operating Systems: Linux (Command line, Scripting)
• Protocols & Technologies: VPN, Dynamic Routing Protocols, Encryption, Authentication Systems
• Cloud & Virtualization: [Cloud Platform Names (e.g., AWS, Azure)]
• Tools & Methodologies: ITIL, Agile, CI/CD, System Monitoring Accomplishments:
• Received Best Employee Awrad in HCL Infosystems Limited.
• Received CIOs Best Innovation Award in Infosys Limited.
• Received multiple commendations from clients and colleagues for delivering exceptional customer service, resolving issues promptly, and ensuring client satisfaction
• Led a cross-functional team in the successful implementation of a critical project, exceeding project milestones, and delivering results ahead of schedule and under budget
Continuous Learning:
• Pursue continuous learning and personal development through online courses, workshops, and seminars on topics ranging from technology and business to personal finance and mindfulness.
• Actively participate in professional networking events and attend workshops to stay updated on emerging trends and expand professional connections. Certifications
• Project Management Professional (PMP) Certified – February 2025
• Check Point Certified Security Administrator - September 2016
• CA Datacenter Infrastructure Management - May 2015
• Cisco Certified Network Associate (ID: CSCO11900690) – January 2011
• HCL Certified Networking Professional in CCNA, MCSA, LINUX from HCL Career Development Center – December 2007
Languages
English:
Full Professional
German:
Intermediate A2 Level
Contact this candidate