Somil Goyal
Infra & Security Architect
Noida,UP
Summary
Senior Cloud, Infrastructure & Cybersecurity Architect with 16+ years of experience designing and governing secure enterprise platforms across hybrid, multi-cloud, and on-premises environments. Expertise in Enterprise Security Architecture, Cloud Security (AWS, Azure), Zero Trust, IAM, DevSecOps, Kubernetes/container security, and infrastructure protection. Proven track record of integrating security into CI/CD pipelines, implementing AI-driven security automation and analytics, and aligning security strategy with business risk using frameworks such as NIST, CIS Controls, ISO 27001, and SOC 2. Reduced enterprise risk exposure by 60%+, automated security governance across 200+ pipelines, and led large-scale cloud and security transformation initiatives across enterprise platforms.
Overview
17
17
years of professional experience
8
8
Certifications
Work History
Senior Architect - Security
NICE Interactive Solution
Noida, Utter Pradesh
08.2024 - 03.2026
- Architected infrastructure and application security aligned with Zero Trust and NIST frameworks.
- Integrated WAF architecture to mitigate OWASP Top 10 threats, reducing attack exposure by 40%.
- Deployed DevSecOps controls (SAST, DAST, SCA) across 100+ CI/CD pipelines.
- Led vulnerability management for Fraud/AML products, reducing high-risk vulnerabilities by 40%.
- Automated cloud risk detection using Wiz and Orca for continuous compliance monitoring.
Infra Architect
Pine Labs
11.2021 - 08.2024
- Design, implement, and secure IT infrastructures following well-architected frameworks.
- Build observability systems using ELK, SolarWinds HCO, Grafana, Loki, Prometheus, Istio, Kong, and other cutting-edge OSS.
- Maintain clear communication with clients to ensure alignment between their vision and the final product.
- Develop scalable cloud solutions for improved performance and cost efficiency.
- Optimize hybrid cloud infrastructure using data-driven analysis, achieving significant cost savings.
- Streamline code delivery with Docker and Kubernetes containerization strategies.
- Accelerate application deployment using Docker or Kubernetes for streamlined processes.
- Develop Terraform scripts and Helm charts for automated provisioning.
- Design and optimize microservices architectures, including Istio service mesh.
- Set up CI/CD pipelines (e.g., Jenkins, Gitlab, Github Actions, Azure/AWS Code Pipeline) for continuous deployment.
- Implement monitoring and logging solutions with Grafana, ELK, EFK, and Loki Stack.
- Manage large-scale Kubernetes clusters in cloud environments (EKS, AKS, Kubeadm, Rancher RMS).
Senior Network Advisor
NTT Data
05.2021 - 11.2021
- Led network and cloud security initiatives, ensuring compliance with industry standards and regulations.
- Implemented and optimized network and cloud infrastructure for scalability and security.
- Managed network and cloud migration projects, ensuring seamless transitions to new technologies.
- Provided expertise in handling escalated network and cloud security incidents and developing post-incident procedures.
- Conducted comprehensive security audits and vulnerability assessments across network and cloud environments.
- Designed and implemented network and cloud security protocols and procedures to safeguard infrastructure.
- Orchestrated disaster recovery and business continuity planning for network and cloud-based systems.
- Collaborated with cross-functional teams to integrate security best practices into network and cloud architecture.
- Automated security monitoring and response processes using network and cloud-native tools and technologies.
- Implemented access controls and encryption mechanisms to protect sensitive data across network and cloud environments.
Consultant
HCL Technologies
01.2016 - 05.2021
- Served as Consultant/SME for a leading trading client, specializing in LAN/WAN network and security infrastructure
- Worked with Engineering Counterpart to Migrate data centers from Nexus to ACI infrastructure
- Acted as SME for Riverbed Optimization and consolidation solution
- Assisted with complex cloud migration strategies for applications, databases, storage, and network infrastructure
- Design and deploy robust LAN/WAN networks using best-in-class routers, switches, and firewalls.
- Ensure network scalability, redundancy, and security to meet organizational needs.
- Collaborate with stakeholders to understand requirements and propose optimal network solutions.
- Conduct network performance evaluations and optimize network configurations.
- Implement monitoring tools (e.g., Solarwinds, Cacti, PRTG, Nagios, Zabbix) for proactive network monitoring.
- Configure observability tools (e.g., Solarwinds, Grafana) for real-time insights into network performance.
- Set up dashboards and alerts to ensure uptime and performance metrics meet SLAs.
- Continuously optimize monitoring and observability solutions based on evolving business needs.
Senior Engineer
Ericsson Global
03.2013 - 01.2016
- Conduct capacity planning exercises to ensure network resources meet current and future demands.
- Optimize network performance through load balancing, traffic shaping, and resource allocation.
- Implement scalability strategies to accommodate business growth and seasonal fluctuations.
- Automate routine network tasks and configurations using scripting (e.g., Python, Bash).
- Implement network orchestration tools Ansible to streamline deployment and management.
- Integrate automation frameworks with monitoring and observability tools for enhanced operational efficiency.
- Design and integrate hybrid or multi-cloud network architectures (e.g., AWS, Azure, GCP).
- Implement cloud networking solutions such as VPCs, VPNs, and direct connects.
- Ensure secure and optimized data flow between on-premises and cloud environments.
- Conduct root cause analysis for network performance issues and outages.
- Utilize packet capture and analysis tools (e.g., Wireshark) to diagnose network problems.
- Develop and implement remediation plans to address identified network performance bottlenecks.
- Design and implement network disaster recovery plans and procedures.
Conduct periodic disaster recovery drills to validate network resilience. - Ensure business continuity through redundant network configurations and failover mechanisms.
- Define and enforce network access control policies (e.g., VLAN segmentation, firewall rules).
Senior Administrator
Tech Mahindra Limited
08.2011 - 03.2013
- L2 Network support engineer responsible for early resolution of proactive/reactive incidents using several monitoring tools like Solarwinds, Nagios, Cacti, WAN Killer, Grafana.
- Coordinated with ISPs on WAN issues and liaised with onsite teams for cabling, hardware installation, and activation requirements
- Implemented enterprise routing & switching technologies
- Prepared Roster and SOP documents for the team on repeated issues
- Assisted problem management identifying incidents root cause
- Proactively involved in optimizing network performance through strategic improvements
- Implemented QoS protocols, enhancing overall network efficiency and reducing latency by 20%.
Senior Analyst
HCL Comnet
06.2009 - 08.2011
- Diagnosing and resolving basic network issues to ensure smooth operations
- Providing frontline assistance to end-users, addressing their network-related queries and concerns
- Rapidly responding to incidents, minimizing downtime, and escalating issues when necessary
- Regularly monitoring network performance and conducting routine maintenance tasks
- Maintaining detailed records of network configurations, incidents, and resolutions
- Coordinating with L2 and L3 support teams to escalate complex issues and seek solutions
- Providing support for network hardware, software installations, and upgrades.
Education
B Tech - Electronic & Telecommunication Engineering
Kalinga University (KIIT)
Bhubaneshwar, Orissa07.2008
Skills
Network Design, Implementation, Securing IT Infra, Monitoring, Observability, Optimization & Support
IaC (Terraform, Ansible, Cloudformation)
Scripting (Bash, Python, HTML, CSS, Javascript)
Cybersecurity Frameworks (NIST, ISO 27k)
DevSecOps (SAST, DAST, SCA, Container Scanning, Policy)
Platform Engineering (Microservices, Kubernetes, Docker, Rancher, Openshift)
Security Control and Compliance
Identity and Access Management
ZTNA & CASB
Microsoft Entra ID
Serverless Architecture
Well Architected Security Framework
Data Classification and Security
Data Localization
API Security
Web Application Firewall
OWASP Top 10 Security Vulnerabilities
Vulnerabilities and Patch Management
RBAC
L4 - L7 Firewall
Next Gen Security
Building code compliance
Certification
Cisco - CCNA, CCNP R&S, CCIE Written
Accomplishments
- Awarded 2nd prize in state level C Programming competition.
- Received KIIT scholarship.
- Member of KIIT Alumni.
- Graduated with 80%.
- Member of KIIT Union Club.
Toolsandautomation
- ELK, Grafana, Loki, Prometheus
- Solarwinds HCO
- Microsoft Visio
- Netcool
- Python, Ansible
- Ansible Network Automation
- Upstream Kubernetes (Tanzu, Rancher)
- Docker Containers
Rolessnapshot
- Network L1 Ops Engineer (2 Years)
- Network L2 Ops Engineer (2 years)
- Network L3 Ops Engineer (3 years)
- Network L3 Design & Implementation (5 Years)
- IT Infra Architect (2 Years)
Personal Information
- Passport Number: G6214961
- Father's Name: Mohan Lal Goyal
- Date of Birth: 05/01/85
- Nationality: Indian
- Marital Status: Married
Majorprojectshandled
- Data Center Migration to ACI
- Application Load Balancer/GSLB & WAF Setup
- Cisco ASA/Firepower Migration
- Deployed Monitoring Observability Platform (Solarwinds & Grafana)
- Viptela SDWAN POC
- Cloud Migration & Direct Connect Setup
Disclaimer
I affirm the accuracy of the details to the best of my knowledge and belief.
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Timeline
Senior Architect - Security
NICE Interactive Solution
08.2024 - 03.2026
Infra Architect
Pine Labs
11.2021 - 08.2024
Senior Network Advisor
NTT Data
05.2021 - 11.2021
Consultant
HCL Technologies
01.2016 - 05.2021
Senior Engineer
Ericsson Global
03.2013 - 01.2016
Senior Administrator
Tech Mahindra Limited
08.2011 - 03.2013
Senior Analyst
HCL Comnet
06.2009 - 08.2011
B Tech - Electronic & Telecommunication Engineering
Kalinga University (KIIT)