Security Engineer Sd-Wan

VINAY MAHANKALI

Tampa, FL *************@*****.***

Network & Cloud Security Engineer with over 4 years of experience in designing, automating, and testing network environ- ments. Proven expertise in executing comprehensive lab and field tests, including testbed configuration, automation, and detailed reporting. Adept at identifying network issues and collaborating with cross-functional teams, ensuring adherence to defined test procedures and standards.

Technical Skills

•Networking: LAN, WAN, SD-WAN, Routing & Switching, VLANs, Cisco, Avaya, PRS, Juniper, Arista, Aruba, Nexus, Cisco Meraki, VoIP

•Security: Palo Alto, Zscaler, Cisco ASA, VPNs, Zero Trust, SASE, IPS, URL Filtering, DNS Security

•Cloud: AWS, Azure, Multi-Cloud, Hybrid Cloud, IaaS, PaaS, SaaS

•Automation: Python, Ansible, Terraform, PowerShell, REST APIs, Cisco DNA Center, Network Automation, VBScript, Perl

•Monitoring/Tools: Splunk, Wireshark, Solar Winds, Net Flow, AWS Cloud Watch, Azure Monitor, GNS3, EVE-NG

•Virtualization: VMware, Hyper-V, Proxmox, Virtual Lab Automation

Professional Experience

AT&T Feb 2025 - Present

Network Security Engineer Remote

Project: Hybrid Network Security & SD-WAN Deployment

•Developed Cisco Viptela SD-WAN across 100+ sites, reducing WAN latency by 25% using BGP and QoS policies.

•Automated AWS VPC and Arista switch configurations with Ansible and Terraform, cutting deployment time by 40%.

•Deployed Zscaler ZIA for SASE, securing 10,000+ users with Zero Trust and URL filtering policies.

•Configured Palo Alto firewalls with AI-driven threat detection, integrating Splunk to reduce incident response by 30%.

•Optimized LAN infrastructure with Cisco DNA Center and Aruba switches, improving provisioning by 20%.

•Integrated SaaS-based network security monitoring tools for client-facing cloud environments IaaS/PaaS.

•Supported Avaya VoIP system during transition to Aruba/Cisco WLAN infrastructure for hybrid clients.

•Automated policy compliance reports using custom scripts in VBScript and Perl, aiding legacy system integrations.

•Logged detailed field test configurations and audit results in the Problem Reporting System (PRS) for regulated enterprise clients.

•Developed Python scripts for REST API automation of Cisco Meraki and Zscaler policy updates, saving 10 hours weekly.

•Managed Juniper SRX firewalls and Cisco Nexus switches, enhancing east-west traffic for 50+ data centers.

•Implemented cloud-native security in AWS and Azure, using IAM and NSG for least-privilege access across 500+ accounts.

•Monitored WAN and SD-WAN health with SolarWinds and Cloud Watch, creating dashboards for 50+ metrics.

•Deployed Aruba WLAN and VoIP solutions, ensuring seamless connectivity for 200+ endpoints.

•Conducted routing/switching optimizations (OSPF, BGP) on Cisco ISR/ASR routers, improving failover reliability.

•Mentored engineers on Wireshark and Python-based diagnostics, boosting team efficiency by 15%.

Cisco Systems Apr 2023 - Nov 2024

Network Automation Engineer

Project: Global SD-WAN Automation & Secure Access Transformation

•Engineered and deployed Cisco Viptela SD-WAN across 80+ branch locations using Ansible, Terraform, and Python, accelerating rollout timelines and improving configuration consistency.

•Implemented Zero Touch Provisioning (ZTP) for LAN automation by integrating Cisco DNA Centre APIs, significantly reducing manual intervention and provisioning time.

•Configured and secured Cisco Meraki MX firewalls and access points to support scalable SD-Branch architecture, ensuring robust edge security and seamless connectivity.

•Automated end-to-end network provisioning, including ZTP, policy deployment, and firewall updates, via custom Python automation scripts, enhancing operational efficiency and reliability.

•Developed real-time monitoring dashboards using Splunk and SolarWinds to proactively track SD-WAN health, latency, and throughput metrics, enabling faster issue resolution.

•Optimized WAN routing performance by fine-tuning BGP and OSPF protocols for high availability, fault tolerance, and improved global traffic distribution.

•Integrated Cisco SD-WAN with Zscaler ZIA, delivering SASE-compliant secure internet access and cloud-based threat protection across distributed sites.

•Supported deployments and lifecycle management of Cisco ISR/ASR routers and Nexus switches, contributing to enterprise core and edge network stability.

•Authored modular, reusable automation playbooks to streamline repetitive SD-WAN workflows, reducing human error and enabling rapid scaling.

•Authored comprehensive test documentation and runbooks to standardize field testing procedures and ensure consistent operations across engineering teams.

Amazon Mar 2022 - Aug 2022

Network Process Associate Bangalore, India

Project: Corporate Network Optimization & Cloud Migration

•Optimized WAN performance, reducing packet loss by 15% via Wireshark and Cisco routing (BGP, OSPF) analysis.

•Automated AWS VPC and Azure VNet configurations with Terraform and Python, accelerating deployments by 20%.

•Configured Zscaler ZPA for Zero Trust access, securing 5,000+ endpoints during cloud migration.

•Deployed Cisco Meraki SD-WAN and access points, improving connectivity for 30+ corporate sites.

•Integrated Palo Alto firewalls with Amazon Guard Duty, enhancing threat visibility by 25% using Splunk.

•Developed Ansible playbooks to automate Arista switch and Juniper router configurations, reducing errors by 30%.

•Monitored LAN/WAN health with Solar Winds and Azure Monitor, building dashboards for 50+ network metrics.

•Configured Aruba WLAN and VoIP endpoints, ensuring reliable SIP trunks for 100+ users.

•Supported Cisco Viptela SD-WAN failover testing, maintaining 99.9% uptime across hybrid networks.

•Conducted security audits on AWS Route53 and Azure DNS, mitigating 10+ domain-based threats.

•Trained Tier 1 staff on Python-based log analysis, improving first-call resolution by 15%.

•Managed inventory of Cisco and Aruba CPE devices, coordinating upgrades for 50+ units.

Infosys Jan 2021 - Mar 2022

Network Process Executive Bangalore, India

Project: Enterprise Lab Infrastructure Management

•Designed LAN/WAN testbeds with Cisco, Juniper, and Arista devices, supporting 50+ network simulations.

•Automated lab provisioning with Ansible and Python scripts, reducing SD-WAN test setup time by 30%.

•Configured Cisco Viptela vEdges and Palo Alto firewalls in GNS3/EVE-NG for secure test environments.

•Tested Zscaler ZIA policies and Juniper SRX firewalls, validating IPS for 20+ enterprise scenarios.

•Deployed Aruba switches and WLAN setups, ensuring connectivity for 10+ lab environments.

•Developed Terraform scripts to simulate AWS VPC and Azure VNet deployments, accelerating cloud testing.

•Optimized routing/switching (OSPF, EIGRP) on Cisco and Juniper routers, improving lab traffic flow by 15%.

•Monitored testbed performance with Wireshark and Solar Winds, resolving 90% of issues within SLA.

•Supported Cisco Meraki and VoIP configurations, ensuring reliable SIP trunks for virtual endpoints.

•Created network diagrams and Python-based documentation, improving QA team on boarding by 20%.

•Tested cloud-native SaaS applications in AWS EC2 and Azure VMs, validating performance under load.

•Used PRS to document firewall rule changes and Cisco/Juniper lab issues during SD-WAN evaluations.

•Automated firewall rule testing with REST APIs, reducing manual validation time by 25%.

Academics

St. Leo University, FL

Masters, Cyber Security

GCET, India

B. Tech, ECE

VIET, India

2024

2021

2018

+1-813-***-****

Professional Summary

linkedin.com/in/vinaymahankali

Diploma, ECE

Contact this candidate