Summary
Overview
Work History
Education
Skills
Websites
Certification
Personal Information
Technical Core
Timeline
Generic

Ajay Kumar

Bengaluru

Summary

Dynamic Senior Network & Security Engineer with extensive experience at TRUGLOBAL Solutions, specializing in high-availability architectures and robust security frameworks. Proven expertise in Palo Alto and Cisco technologies, coupled with strong leadership skills, driving performance improvements and ensuring 99.99% uptime across global networks. Committed to delivering innovative solutions in complex environments.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Senior Network & Security Engineer

TRUGLOBAL Solutions (Pvt) Ltd.
Bengaluru
04.2025 - Current
  • Orchestrate network operations for 5 global Data Centers across the UK and Canada, providing 24/7 support for a retail network of 2,000+ stores worldwide.
  • Architected a high-availability backbone using Mesh Topologies and VMware VeloCloud SDWAN to optimize traffic flow between Data Centers and global retail outlets.
  • Manage core Data Center switching using Cisco Nexus 9K and Catalyst series (4500/3650), implementing advanced L2/L3 features including STP stacking, VSS, and EtherChannel.
  • Maintain high-performance application delivery using F5 LTM/GTM Load Balancers for internal and external application traffic management.
  • Standardized security policies across the global estate using Palo Alto Panorama and FortiManager, ensuring consistent rule application across hundreds of nodes.
  • Engineered secure global connectivity by implementing Palo Alto Firewalls with IPsec VPN tunnels to interconnect all international branches back to UK/Canada hubs.
  • Designed and deployed Next-Gen Security features including IPS, DLP, DoS protection, AV, and Web Filtering on FortiGate and Cisco ASA platforms.
  • Azure Cloud Security: Manage cloud-native infrastructure including Azure Palo Alto Firewalls, Cloud Router 8000V series, and F5 GTM for global load balancing.
  • Architected a centralized Wireless solution using Aruba Mobility Controllers and high-density Access Points for global store and warehouse environments.
  • Implemented Zero Trust Access using Aruba ClearPass (NAC) with 802.1X, Radius, and TACACS+ to secure internal and guest network onboarding.
  • Conducted RF optimization and roaming troubleshooting to ensure stable connectivity for mobile Point-of-Sale (mPOS) devices in retail environments.
  • Execute proactive performance monitoring using SolarWinds and PRTG, analyzing WAN link health, packet loss, and latency to maintain 99.99% uptime.
  • Lead log analysis and threat hunting via FortiAnalyzer and ArcSight Logger, performing regular firmware updates and security patching across the global fleet.
  • Supervise and mentor cross-functional teams, including Help-Desk Technicians and Desktop Engineers, while managing vendor coordination for hardware lifecycles.
  • Client Portfolio: LVMH & SEPHORA (Global Luxury & Retail Group)

Senior Network & Security Engineer

Systal Technology Solutions (Pvt) Ltd.
Bengaluru
10.2023 - 04.2025
  • Orchestrated IT network and security operations for the WPP global estate, providing senior-level technical leadership and ensuring team presence across critical shifts.
  • Architected and maintained high-availability LAN/WAN solutions utilizing redundancy protocols including HSRP, VRRP, and GLBP.
  • Managed full-lifecycle IOS upgrades and configuration backups for a massive fleet of Cisco routers, switches, and firewalls to ensure hardware compliance and security.
  • Administered enterprise-scale Palo Alto Security infrastructure via Panorama, managing URL filtering, threat prevention rules, and complex security policy creation.
  • Deployed and optimized VPN architectures, including Site-to-Site, Remote Access, and DMVPN (Dynamic Multipoint VPN) to provide secure, scalable connectivity for global agency hubs.
  • Enforced Layer 7 security on FortiGate and Palo Alto platforms, managing ACLs, NAT/PAT, and identity-based access controls to prevent unauthorized network entry.
  • Led network integration projects involving the transition from legacy (OLD) to modern (NEW) infrastructure, ensuring zero downtime during complex migrations.
  • Configured and optimized dynamic routing protocols including BGP, OSPF, and EIGRP, alongside GRE tunneling and IPsec encryption for secure data transport.
  • Standardized Layer 2/3 connectivity, managing VLANs, 802.1Q trunks, VTP, and EtherChannels to optimize internal traffic distribution.
  • Utilized SolarWinds and PRTG for real-time monitoring of network health, proactively resolving performance bottlenecks and latency issues.
  • Conducted deep-packet analysis using Wireshark to troubleshoot application-level performance gaps in collaboration with server and application teams.
  • Leveraged ServiceNow (SNOW) for professional ITIL service management, handling Incident (INC) and Change management for high-impact scheduled activities.
  • Client: WPP (Global Advertising & Marketing Giant)

Senior Network & Security Engineer

CMS (Pvt) Ltd.
Bengaluru
01.2023 - 10.2023
  • Managed Data Center (DC) and Disaster Recovery (DR) operations, ensuring business continuity and seamless failover for critical telecom infrastructure.
  • Administered Cisco Nexus and Catalyst switching (9000, 3650, 2960), configuring VPC, Spanning Tree (PVST+/MST), BPDU Guard, and EtherChannels for a loop-free, redundant core.
  • Configured and optimized Routing Protocols including BGP, OSPF, and HSRP to maintain high-availability gateway redundancy.
  • Managed Cisco ACI (Application Centric Infrastructure), providing basic configuration and troubleshooting within a Software-Defined Networking (SDN) environment.
  • Orchestrated Cisco Meraki Cloud Dashboard, managing a diverse fleet of MX security appliances (MX450/250/100) and MS switches (MS425/250/210) across multiple remote sites.
  • Administered Palo Alto (3250/3220) and FortiGate (1100D) firewalls using Panorama, implementing granular NAT rules, security policies, and port-level security.
  • Deployed Secure Remote Access solutions utilizing FortiClient and Palo Alto GlobalProtect for a distributed workforce.
  • Optimized Application Traffic using F5 BIG-IP (i2800), managing LTM configurations including Virtual Servers, Pools, SSL Certificates, and custom iRules.
  • Managed Zscaler Cloud Proxy, configuring URL filtering, bandwidth control policies, and location groups to ensure secure and optimized web traffic.
  • Engineered Wireless Connectivity using Cisco WLC (9800/5502) and high-density Access Points, ensuring robust RF coverage for campus environments.
  • Enforced Network Access Control (NAC) via Aruba ClearPass, managing policy configurations, user databases, and secure device onboarding.
  • Client: INDUS TOWERS (Telecom Infrastructure)

Windows Server Engineer

Nityo Infotech Pvt. Ltd.
Vadodara
11.2021 - 05.2022
  • Administered Active Directory (AD) environments, managing user accounts, group memberships, and organizational units (OUs).
  • Configured Core Network Services including DHCP and DNS to ensure stable IP addressing and name resolution for enterprise clients.
  • Managed Group Policy Objects (GPO), creating and applying security policies to users and computers to standardize the operating environment.
  • Maintained Virtualized Infrastructures using VMware and Hyper-V, performing basic VM provisioning and resource allocation.

Network Engineer

ACNA Pvt. Ltd.
Vadodara
03.2019 - 02.2021
  • NOC & Data Center Operations: Provided 24/7 support to maintain minimum downtime, monitoring node latency and bandwidth for core infrastructure.
  • Routing & Switching: Managed and configured Cisco routers (1800, 1900, 2800, 3800) and switches (2950, 3550), implementing VLANs, VTP, Access Lists, and Trunking.
  • VPN & Security: Performed basic configuration and troubleshooting for IPsec VPN tunnels and initial rule-sets for Palo Alto and FortiGate firewalls.
  • Field Support & Maintenance: Provided backend technical support to field engineers, managed hardware debugging (LAN/WAN), and maintained strict asset inventory.
  • Backup Management: Responsible for the routine backup of L2/L3 device configurations to ensure rapid disaster recovery.

Education

Master of Computer Applications (MCA) - Cyber Security

Singhania University
Rajasthan India
01.2024

Bachelor of Arts (B.A.) -

RRBMU University
Alwar

Skills

  • Palo Alto (Panorama, GlobalProtect)
  • Network security
  • Fortinet
  • Forticlient
  • Zscaler (ZIA)
  • IDS/IPS
  • WAF
  • NGFW
  • BGP (iBGP/eBGP)
  • OSPF
  • EIGRP
  • HSRP
  • VRRP
  • Segment Routing
  • SD-WAN (Cisco, Silver Peak)
  • Cisco Nexus (9k/7k/5k)
  • Cisco Catalyst (9k/4k/6k)
  • FabricPath
  • VPC
  • VSS
  • STP
  • RSTP
  • MSTP
  • Switch Stacking
  • Port-channel
  • AWS (VPC, Direct Connect)
  • Azure (ExpressRoute, vWAN)
  • Cloud-Native Firewalls
  • F5 LTM/GTM Load Balancing
  • Infoblox (DDI)
  • QoS
  • Multicast
  • Wireshark
  • Splunk
  • SolarWinds
  • PRTG
  • NCM
  • NetFlow
  • nist framework
  • ISO 27001
  • General Infrastructure Hardening
  • Cisco Catalyst 9800/WLC 5520
  • Aruba (AOS 8/10)
  • Meraki Dashboard
  • Wi-Fi 6/6E
  • Ekahau AI Pro
  • Aruba ClearPass
  • RADIUS/TACACS
  • WPA3
  • Dot 8021x
  • Capti-portal/Splash Page
  • Voice over WLAN (VoWLAN)

Websites

Certification

  • CCNA / CCNP (Enterprise/Security), Cisco
  • PCNSE (Network Security Engineer), Palo Alto Networks
  • NSE1, NSE2, NSE3 & NSE4 (Network Security Engineer), FortiNet

Personal Information

Title: Senior Network & Security Engineer (CCNA/CCNP PCNSE NSE4)

Technical Core

Palo Alto (Panorama, GlobalProtect), Fortinet, Forticlient, Zscaler (ZIA), IDS/IPS, WAF, NGFW, BGP (iBGP/eBGP), OSPF, EIGRP, HSRP, VRRP, Segment Routing, SD-WAN (Cisco, Silver Peak), Cisco Nexus (9k/7k/5k), Cisco Catalyst (9k/4k/6k), FabricPath, VPC, VSS, STP, RSTP, MSTP, Switch Stacking, Port-channel, AWS (VPC, Direct Connect), Azure (ExpressRoute, vWAN), Cloud-Native Firewalls, F5 LTM/GTM Load Balancing, Infoblox (DDI), QoS, Multicast, Wireshark, Splunk, SolarWinds, PRTG, NCM, NetFlow, NIST Framework, ISO 27001, General Infrastructure Hardening, Cisco Catalyst 9800/WLC 5520, Aruba (AOS 8/10), Meraki Dashboard, Wi-Fi 6/6E, Ekahau AI Pro, Heatmap Generation, Aruba ClearPass, RADIUS/TACACS+, WPA3, Dot 802.1x, Captive-portal/Splash Page, Real-Time Location Services (RTLS), BLE Asset Tracking, Voice over WLAN (VoWLAN)

Timeline

Senior Network & Security Engineer

TRUGLOBAL Solutions (Pvt) Ltd.
04.2025 - Current

Senior Network & Security Engineer

Systal Technology Solutions (Pvt) Ltd.
10.2023 - 04.2025

Senior Network & Security Engineer

CMS (Pvt) Ltd.
01.2023 - 10.2023

Windows Server Engineer

Nityo Infotech Pvt. Ltd.
11.2021 - 05.2022

Network Engineer

ACNA Pvt. Ltd.
03.2019 - 02.2021

Master of Computer Applications (MCA) - Cyber Security

Singhania University

Bachelor of Arts (B.A.) -

RRBMU University

Similar Profiles

CREATE PROFILE
Ajay Kumar