Network Security & Network Automation Engineer
Resume:
Rohan Chavan
***********.****@*****.*** • +1-334-***-****
SUMMARY
Network Engineer with 4+ years of experience designing, implementing, and securing enterprise and data center networks. Proven expertise in firewalls (Palo Alto, Fortinet), SD-WAN, cloud networking (AWS/Azure), and network automation. Strong track record of improving network performance, enhancing security posture, and automating infrastructure using Terraform, Ansible, and Python.
EXPERIENCE
T-Mobile, Network Engineer
Dec 2024 - Present
Configured Palo Alto firewalls (PA-5410, PA-3440) in HA mode, strengthening network security and implementing zone-based protections.
Integrated Panorama logging with SOC workflows, enhancing threat detection and incident response
Automated Prisma SD-WAN deployments using Terraform with remote state management
Configured User-ID integration with Active Directory and LDAP for identity-based policies
Upgraded Panorama versions (10.1 to 10.2), ensuring system stability and compliance
Worked on deploying Fortinet FortiGate 1000F firewalls, improving VPN performance and edge security
Managed Forti Manager and Forti Switch infrastructure for centralized control and LAN optimization
Engineered and maintained Cisco Nexus 9000/7000 series switches in data center environments
Designed hybrid cloud connectivity using Azure ExpressRoute for low-latency access
Implemented Azure Front Door and Load Balancer with WAF policies for secure traffic distribution
Configured BGP/MPLS routing on Cisco ASR1000 series platforms to support enterprise WAN connectivity
Optimized Cisco ACI multi-pod architecture for scalable data center networking
Resolved SD-WAN issues (Prisma + Panorama), reducing tunnel downtime and improving reliability Managed Zscaler ZIA policies (URL filtering, SSL inspection, DLP) improving web security compliance.
Automated network configurations using Terraform and Ansible, reducing manual provisioning effort and improving deployment consistency
Configured Cisco Meraki MX appliances for secure branch connectivity
Implemented Cisco ISE policies for role-based access control
Managed DNS, DHCP, and IPAM using Infoblox NIOS
Optimized F5 BIG-IP configurations for load balancing and SSL offloading
Analyzed Splunk SIEM logs to support incident investigations and compliance reporting
Microsoft, Network Engineer
Dec 2021 - Jun 2023
Managed IDS/IPS systems to enhance network security and monitor traffic patterns
Configured and administered Palo Alto Panorama (M-Series) for centralized logging and policy control
Upgraded and maintained Palo Alto firewalls (PA-5050, PA-3020)
Implemented Fortinet HA solutions, ensuring high availability and minimal downtime
Integrated Forti Analyzer for centralized logging and reporting
Automated network configurations using Ansible, Netconf, and Python for Cisco and Juniper devices
Configured routing protocols (BGP, OSPF) across enterprise networks
Managed Cisco ISE for network access control and authentication policies
Migrated legacy data center architecture to Cisco ACI (Spine-Leaf), improving scalability
Implemented SD-WAN (Cisco Viptela) to replace traditional MPLS networks
Experienced in Zero Trust architecture with segmentation and encryption policies
Managed AWS networking (VPC, Flow Logs, routing) for cloud environments
Configured F5 BIG-IP (LTM, GTM) for global and local traffic management Implemented SSL VPN and SSO solutions using F5 APM
Accenture, Network Support Engineer
Sep 2020 - Nov 2021
Managed Check Point firewalls (R80.20, R81) for enterprise security policy enforcement
Configured VLANs, trunking, EtherChannel, and VTP for network segmentation
Implemented site-to-site VPNs across multi-vendor environments (Cisco, Palo Alto)
Configured F5 ASM and Zscaler proxies for application and internet security
Designed high availability solutions using HSRP, VRRP, and GLBP
Troubleshot LAN/WAN issues, improving network uptime and performance
Managed VSS and stacking solutions for scalable switching infrastructure
Supported data center migrations (Cisco to Juniper MX/ASR/Nexus platforms) Maintained network logs and performed regular audits for operational stability
EDUCATION
Auburn University at Montgomery
Master of Science • Computer Information Systems & Cybersecurity • 2023 - 2025
LICENSES & CERTIFICATIONS
Cisco Certified Network Associate - Networking
Cisco • CSCO15150673 • Issued Apr 2026
Splunk Enterprise Security Certified Admin
Splunk • Cert-413551 • Issued Dec 2025
Splunk SOAR Certified Automation Developer Splunk • 323814941 • Issued Nov 2025
CompTIA Network+
CompTIA • COMP001022907314 • Issued Nov 2025
CompTIA Security+
CompTIA • COMP001022907314 • Issued Oct 2025
CompTIA Linux+
CompTIA • COMP001022907314 • Issued Nov 2025
Microsoft Azure Administrator
Microsoft • FFA9048CF760122 • Issued May 2026
SKILLS
Networking: BGP, OSPF, MPLS, TCP/IP, VLANs, VXLAN, SD-WAN, Cisco ACI
Security: Palo Alto, Fortinet, Check Point, Zscaler, IDS/IPS, Zero Trust, SIEM, SOAR
Cloud: AWS, Azure, VPC, ExpressRoute, Direct Connect, NSG, Route 53
Automation: Python, Terraform, Ansible, NETCONF, RESTCONF, Scrapli, Nornir, Splunk, GitHub Actions, CI/CD
AI & GenAI: Generative AI, LLMs, RAG, AI Agents, AIOps, Security Automation, Detection Engineering
Contact this candidate