[ Hello, I'm ]

Tinku Ghosh_

CCNP ENCOR certified · Securing networks · Automating with GenAI

LAN / WAN / SD-WAN · Firewall Security · AI-Driven Automation
|

CCNP ENCOR-certified Network & Security Engineer with 5+ years across three pillars — core networking (LAN/WAN/SD-WAN/Wireless), firewall security (Fortinet · Palo Alto · Cisco ASA), and AI-driven automation using Python, Ansible & GenAI/LLM scripting.

5+ Years Experience
20K+ Endpoints
25% Ops Reduction
View Experience Get In Touch
Tinku Ghosh
Vibe Coder
Speed Cuber
Technoholic
Available for Opportunities
Resume

About Me

Tinku Ghosh
Tinku Ghosh Tech Lead @ Cognizant

CCNP ENCOR-certified Network & Security Engineer with 5+ years across three core pillars — (1) core networking: LAN, WAN, SD-WAN, wireless, routing & switching, (2) network and firewall security: Fortinet, Palo Alto, Cisco ASA, vulnerability remediation, Zero Trust, and (3) AI-driven automation using Python, Ansible, REST APIs, and GenAI/LLM-assisted scripting.

Tech Lead managing 20,000+ endpoints across Cisco, Fortinet, Palo Alto, Aruba, and Meraki platforms — sustaining 99.5% SLA compliance and reducing operational workload by 25% through GenAI-assisted automation, IoC/EDL threat blocking, and zero-touch NetDevOps integrations.

CCNP ENCOR Kolkata, India Open to Opportunities GenAI / NetDevOps
5+ Years Experience
20K+ Endpoints Managed
99.5% SLA Compliance
25% Workload Reduction

Technical Skills

Core Networking & Protocols

TCP/IPMPLSBGPOSPFEIGRP VLANSTPDNSDHCPNAT ACLQoSIPsec VPNSSL VPN HSRP/VRRPEtherChannelLAN/WAN

SD-WAN & Wireless

Cisco SD-WANCisco SD-AccessMeraki SD-WAN Cisco WLCAruba WLC802.11ac/ax Aruba CentralMeraki WirelessRF Health Monitoring

Network Devices & Platforms

Cisco CatalystCisco MerakiCisco Prime Cisco DNACJuniperAruba HP/HPECisco WLCInfoblox (DNS/DHCP/IPAM)

Firewall & Security Platforms

Fortinet FortiGatePalo Alto PAN-OSCisco ASA NACIDS/IPSZero TrustSIEM concepts NessusQualysServiceNow SecOps SolarWindsPRTG

AI & Network Automation

GenAI / LLM ScriptingPrompt Engineering PythonAnsibleREST API PostmanJenkins CI/CDNetDevOps AI-Assisted Coding (Cursor)

Operating Systems & Methodology

Cisco IOSJunosFortiOSPalo Alto PAN-OS ITIL Change MgmtIncident Response (P1/P2) Root Cause AnalysisSLA Management

Work Experience

Tech Lead — Network Engineering, Security & Automation

Cognizant Technology Solutions

Oct 2022 – Present
  • Lead end-to-end network operations across 20,000+ endpoints — covering core networking (LAN/WAN/SD-WAN/Wireless), firewall security, and AI-driven automation — sustaining 99.5% SLA
  • Designed network segments for new branches: IP addressing, OSPF/BGP routing policies, HSRP/VRRP HA, EtherChannel, and Cisco SD-WAN / SD-Access deployments
  • Tuned QoS, routing, and wireless parameters via NMS dashboards (latency, packet loss, interface utilization, wireless health); maintained device health, IOS upgrades, and config backups
  • Handled P1/P2 incidents on LAN/WAN/Wireless — diagnosed VLAN/STP/trunk, OSPF/BGP neighbor, TCP/IP, DHCP/DNS, NAT/ACL/QoS issues using Wireshark, NetFlow, syslog, SNMP
  • Managed firewall policies on Fortinet FortiGate & Palo Alto PAN-OS — rule reviews, IDS/IPS tuning, NAT/VPN, IPsec site-to-site, SSL VPN, remote-access profiles
  • Performed vulnerability assessment & remediation against Nessus and Qualys scans — patched outdated firmware, hardened weak cipher suites, corrected multi-vendor misconfigurations
  • Operationalized threat intelligence by implementing IoC External Dynamic Lists (EDL) across the Meraki Organization for real-time, automated threat blocking
  • Designed & deployed GenAI-assisted automation reducing manual ops workload by 25% — LLM-driven config audits, ticket summarization, and remediation suggestions
  • Authored Python and Ansible playbooks (with AI-assisted code generation) for config backups, baseline audits, password rotation, pre/post-change verification, bulk ACL/VLAN pushes
  • Built API-driven NetDevOps integrations (Meraki ↔ ServiceNow, Postman, REST APIs) for auto-generated alerts, ticket creation, and zero-touch configuration deployment

Network Engineer

Allied Digital Services Ltd

Nov 2021 – Oct 2022
  • Managed 40+ branch offices connected via MPLS, BGP, and OSPF from headquarters
  • Administered complete wireless network infrastructure including WLC and Access Points
  • Monitored network traffic and implemented firewall policies for security compliance
  • Performed firmware upgrades across various network devices
  • Identified, tested, and resolved network loops and vulnerabilities
  • Handled escalated P1/P2 tickets from L1 support; utilized PRTG for monitoring

Onsite Network Support Engineer

InterTouch Hospitality Technology

Jan 2021 – Nov 2021
  • Managed and monitored routers, switches, firewalls, gateways, Zone Directors, and Access Points
  • Ensured maximum network uptime through proactive monitoring and maintenance
  • Configured VLANs, port configurations, and switch settings for hospitality environments
  • Expanded network infrastructure based on client requirements; resolved guest network issues

Automation Projects

CLI Automation

Config Backup & Audit System

Eliminated hours of manual device auditing per week — automated config backups and baseline compliance checks across the entire fleet, cutting audit labour costs by ~70% and catching misconfigurations before they cause outages.

PythonAnsibleCisco IOS
CLI Automation

Password Rotation Automation

Replaced a full day of manual quarterly work across hundreds of devices with a single scheduled script — saving the team 8+ engineer-hours per cycle while enforcing zero-gap compliance with security policy.

PythonNetmikoParamiko
CLI Automation

Pre/Post Change Verification

Automated state snapshots before and after every change window, reducing post-change validation time by 60% and enabling faster rollback decisions — directly protecting SLA and minimising costly unplanned downtime.

PythonAnsibleNAPALM
AI / GenAI

Baseline Audit with LLM Anomaly Detection

LLM-driven anomaly detection across multi-vendor configs to surface drift, misconfigurations, and policy violations automatically — flagging risk hours before manual review would have, and dramatically lowering the cost of compliance audits across the fleet.

PythonGenAI / LLMMulti-vendor
AI / GenAI

AI-Assisted Jinja2 Config Deployment

Robust configuration rollouts using AI-generated Jinja2 templates — produces standardised, audit-ready configs across vendor mix, slashing template authoring time and removing the human-error class of issues that trigger costly P1 outages.

Jinja2AnsibleGenAI
API Automation

Meraki-ServiceNow Integration

Wired Meraki MX uplink failures directly into ServiceNow ticket creation — removing manual L1 monitoring shifts and cutting mean-time-to-ticket from 15+ minutes to under 60 seconds, saving on-call overhead and accelerating resolution.

Meraki APIServiceNow APIPython
API Automation

IoC EDL for Meraki

Automated threat-intel feed ingestion into Meraki security policies — blocking known malicious IPs organisation-wide in real time, eliminating manual firewall rule updates and reducing potential breach exposure cost significantly.

Meraki APIPythonThreat Intel
API Automation

Automated Firmware Management

Centralised firmware tracking and upgrade orchestration across the entire device estate — cutting per-device upgrade effort by 80%, eliminating version-drift risk, and freeing engineers from repetitive maintenance to focus on higher-value work.

REST APIPostmanJenkins

Certifications & Credentials

Cisco

CCNP Enterprise Core

350-401 ENCOR · Cisco Certified Specialist

Implementing and operating enterprise network core technologies — dual-stack, virtualization, infrastructure, network assurance, security, and automation.

CompTIA

CompTIA Network+

N10-006 · Industry-standard networking foundation

Validates core skills in networking concepts, infrastructure, operations, security, and troubleshooting across multi-vendor environments.

Education & Interests

Masters in Network Administration

Jetking Infotrain Ltd

Advanced networking, security architectures, and enterprise infrastructure management.

Bachelor of Commerce

University of Calcutta

Foundation in analytical thinking, business processes, and quantitative reasoning.

Hobbies & Interests

AI-Assisted Coding
Ethical Hacking
Network Automation Research
Speed Cubing

Get In Touch

I'm always open to discussing new opportunities, automation challenges, or network security topics.

Email tinkughosh96@outlook.com
Phone +91 980-445-6377
LinkedIn linkedin.com/in/tinkughosh
Location Kolkata, West Bengal, India