prafull gautam
Network & Cloud Security Engineer
About
Results-driven Network & Cloud Security Engineer with over 7 years of professional experience in enterprise network security, firewall administration, cloud infrastructure design, and secure connectivity solutions. Skilled in architectural design, implementation, and advanced troubleshooting of secure network environments across AWS and Azure platforms. Demonstrates deep hands-on expertise in FortiGate, Palo Alto, and SonicWall firewalls, VPN technologies, BGP routing, endpoint security, and zero-trust access frameworks. Experienced in managing large-scale enterprise infrastructures, handling formal incident and change management processes, and leading seamless migrations from on-premises environments to cloud architectures. Actively expanding operational capabilities with automated scalability using Python and Ansible.
Skills & Expertise (25)
Work Experience
Senior Executive Network Engineer
Softenger (Client: Amdocs)
Apr 2026 - Present
Manage end-to-end enterprise network and security operations across multi-tenant, large-scale production environments. Oversee Microsoft 365 enterprise administration, including secure governance, access permissions, and lifecycle management for Teams and SharePoint infrastructure. Monitor, investigate, and remediate high-priority security incidents and vulnerabilities using Microsoft Defender. Administer Azure Mobile Device Management (MDM) platforms and configure strict endpoint compliance and conditional access policies. Provide critical operational support for Azure Data Factory environments and manage secure cloud data integration workflows. Utilize SolarWinds platform for comprehensive network monitoring, performance metrics tracking, and infrastructure visibility. Direct daily operational activities, serve as top-tier escalation support, and drive complex incident resolution to ensure optimal network uptime.
Executive Network Engineer
AffinityX
May 2021 - Apr 2026
Led cross-functional migration activities from legacy on-premises physical infrastructure to AWS and Microsoft Azure cloud environments. Configured and managed foundational AWS cloud infrastructure services including VPC design, Transit Gateway routing, VPC Peering, and AWS Direct Connect circuits. Managed Azure secure services including Conditional Access policies, Microsoft Intune endpoint management, SSL VPN portal configurations, and Azure identity management. Configured, optimized, and troubleshot advanced network protocols and architectures including BGP routing, HSRP redundancy, IPsec VPN tunnels, and high-availability SSL VPN solutions. Administered Palo Alto, FortiGate, and SonicWall next-generation firewalls, executing policy creation, strict NAT rule design, and comprehensive security hardening. Designed, tested, and implemented highly secure wireless infrastructure networks utilizing enterprise-grade 802.1X authentication and Radius servers. Deployed and maintained enterprise endpoint security solutions across a distributed workforce, utilizing Zscaler (ZIA), Microsoft Defender, and ESET. Performed detailed packet captures, protocol decode, and deep traffic analysis using Wireshark for advanced network troubleshooting and diagnostics. Managed day-to-day ITIL-aligned operations covering structured incident management, formal change management workflows, firewall rule modifications, and critical production support. Collaborated closely with global Tier-3 engineering groups and senior enterprise architects during major infrastructure incidents and critical system implementations.
Network Engineer
SOIPL (Internet Service Provider)
Nov 2018 - Jan 2020
Installed, configured, and managed high-performance MikroTik core servers and localized network routing devices across the network footprint. Configured, maintained, and actively monitored edge routers, enterprise switches, managed wireless access points, and multi-tier VLAN infrastructure. Executed complex logical network segmentation initiatives involving secure VLAN creation, tag trunking, and seamless subnet migrations. Administered next-generation firewall capabilities including application control (App-ID), user content safety (Content-ID), web URL Filtering, High Availability (HA) state sync, and GlobalProtect remote access. Configured and stabilized Site-to-Site IPsec VPN tunnels and custom Client-to-Site VPN connectivity solutions for remote users. Created and managed firewall configuration objects, network address translation (NAT) policies, user authentication policies, and explicit application override rules. Assisted senior infrastructure teams in rapidly identifying, isolating, and troubleshooting critical network outages and security-related incidents.
Education
Master of Computer Applications (MCA) — Artificial Intelligence - Manipal University (Online Platform)
- 2025 · Afghanistan
Bachelor of Engineering (BE) — Electronics & Telecommunication - Sanjay Ghodawat University
- 2020 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (25)
Click a skill to find developers with the same skill