Kedar Pradhan
Enterprise Cloud Engineer
San Antonio,TX
Summary
Dynamic Cloud & Network Security Architect with a proven track record at Amazon Web Services, excelling in secure infrastructure design, enterprise collaboration, and performance-driven cloud solutions. Expert in AWS networking, firewalls, and GenAI-powered automation, I’ve led complex, multi-region deployments that enhanced reliability, reduced latency, and elevated global operations. Utilizes deep networking expertise and stakeholder engagement to build resilient architectures. Knowledge of security governance, hybrid connectivity, and strategic optimization to support business growth and operational excellence.
Overview
13
13
years of professional experience
5
5
Certifications
Work History
Enterprise Solutions Architect
AWS
09.2024 - Current
- Collaborate daily with C-suite leaders and Directors to translate complex business objectives into secure, scalable, and cost-optimized AWS solutions.
- Managed customer relationships and partnered cross-functionally to identify architectural gaps and implement new AWS services enhancing scalability and efficiency.
- Serve as the Networking and Network Firewall Specialist, providing deep expertise across VPC, ELB (ALB/NLB), Route 53 to design secure, scalable, and high-availability cloud architectures.
- Architected and delivered a multi-region, high-availability and security with ALB/NLB + GWLB and Network Firewall solutions serving end-users — reduced latency by 20%, achieved 99.99% uptime, and improved global content delivery reliability.
- Led complex VPN troubleshooting engagements — including IKEv2 negotiation issues, certificate validation (PKI), SSL handshake failures, and policy mismatches — ensuring high availability and minimal downtime.
- Designed and implemented cloud security architectures leveraging AWS WAF, Shield Advanced, Security Hub, and GuardDuty, which increased security posture and improved application resilience for automotive and manufacturing enterprises.
- Led cost optimization initiative with customers to right-size EC2 instances, optimize ALB/NLB architectures, and implement multi-AZ deployments — improving application performance, enhancing high availability, and achieving 30% cost reduction with reduced latency.
- Designed GenAI-powered knowledge assistants with Amazon Q and Bedrock (RAG + Guardrails), reducing customer resolution times by 25%.
- Provided consulting to customers on cloud architecture best practices, data security, and the shared responsibility model, assisting in seamless migration of workloads to and from the AWS Cloud.
- Designed and implemented an Amazon Q Business RAG architecture integrating Salesforce with internal knowledge sources to deliver GenAI-powered customer-support insights.
- Automated real-time notifications through AWS Lambda and Amazon SNS to alert farmers of threshold deviations
Cloud Support Engineer - Networking
AWS
04.2022 - 09.2024
- SME for Elastic Load Balancer (ALB, NLB, GWLB) and AWS Web Firewall (WAF), ensuring the smooth operation, upgrades, and troubleshooting of these services for AWS customers.
- Troubleshooting CloudWatch, Auto Scaling. And Load Balancer issues, assisting customers in resolving challenges related to these services.
- Migrated weak TLS ciphers to stronger ones, assisting customers with SSL, path-based, and host-based routing.
- Streamlined ALB Authentication using Cognito by creating AWS CLI and JSON script configurations, simplifying the setup process for customers.
- Increased implementation flexibility inside team by developing a CloudFormation script for ALB/NLB, enabling efficient deployment and management of load balancers during customer lab reaction.
- Implemented and tested a virtual firewall cluster using Gateway Load Balancer (GWLB) in a lab environment, ensuring the functionality and performance of the solution.
- Created internal articles to bridge the gap between Load Balancer troubleshooting needs and CloudFront, leveraging automation to improve efficiency and knowledge sharing.
- Leveraged CloudWatch and VPC Flow Log Capture to effectively troubleshoot network issues in customers’ environments, ensuring prompt resolution and minimizing downtime.
- Designed and implemented Lambda functions to automate remedial actions for security and infrastructure coding, improving efficiency and reducing manual intervention across the system.
Network Security and Proxy Engineer
Exxon Mobil
06.2018 - 04.2022
- Managed project and Conceptualized network infrastructure new direct outbound location.
- SME for Direct Outbound for Internet and Guest Network Site-activities involved in maintaining, upgrading, and troubleshooting of Firewalls and Web Proxy.
- Designed and implemented routing and firewall rules for opening the connection with SWG Cloud Nodes for PoC Project.
- Built and performed Service Line Testing for new SWG cloud, replacement for Forcepoint.
- Created a new Site to Site VPN , connecting Singapore and Houston Location.
- Implemented and constructed FTD/ FMC Cluster in Lab environment for testing functionality.
- Migrated and implemented new solutions with Juniper SRX, MX.
- Implemented and constructed Reverse proxy on F5 device in our environment.
- Monitoring Tools and Sharpening knowledge
- Using Splunk and Packet Capture on daily basis for troubleshooting network issue in our environment.
- Tested Routing, firewall rules and troubleshooting network issue with help of Thousand eyes.
- Advanced knowledge, design, installation, configuration, maintenance, migration and administration on Juniper SRX device, FTD , ASA Firewalls and Forcepoint.
- Worked in Scrum Agile Environment.
- Working on AWS solution architect certification to enhance my knowledge in Cloud.
Network Security Analyst
Exxon Mobil
04.2017 - 06.2018
- Handled, Managed and maintained tickets to determine causes of problems and took appropriate action for resolution.
- Develop and Create Speed tests for sllow and Ticket generations for standard operating procedures to manage common failure scenarios, increased our work ratio by 50%
- Collaborated in 13/14 Project to redesign the Network and implemented HSRP, HA for Cisco and Palo Alto Firewalls and VRF on Cisco Router at different site location.
- Implemented Security Context - Active/Standby and Active/Active on 55xx-X and FTD providing redundancy in network.
- Configured VLAN Trunk 802.1Q, STP, and Port Security on Catalyst 6500 Switches.
- Configured Static Nat, Dynamic Nat, Inside Global Address Overloading Access-List. Manage the WAN and LAN Switches, backbone and wire management.
- Monitoring Tools
- Log messages using Syslog server and analyze the issues related to high CPU utilization and parameters that can degrade performance of the network.
Network Engineer
Flextronics
05.2013 - 07.2014
- Analyzed user-generated trouble tickets to determine causes of problems and took appropriate action for resolution.
- Key Team Player in device replacement project, migrated legacy Routers with new Cisco routers.
Education
Master of Science - Networking and Communication
California State University
Los Angeles, CA06.2016
Bachelor of Science - Electronics and Telecommunication
University of Pune
Pune, India05.2013
Skills
IoT & AI/ML: Amazon Q Business, Amazon Bedrock, IoT Core, IoT Greengrass, IoT SiteWise, IoT Core
Certification
AWS Certified Solutions Architect – Associate, Amazon Web Services, 2024-08
Timeline
Enterprise Solutions Architect
AWS
09.2024 - Current
Cloud Support Engineer - Networking
AWS
04.2022 - 09.2024
Network Security and Proxy Engineer
Exxon Mobil
06.2018 - 04.2022
Network Security Analyst
Exxon Mobil
04.2017 - 06.2018
Network Engineer
Flextronics
05.2013 - 07.2014
Bachelor of Science - Electronics and Telecommunication
University of Pune
Master of Science - Networking and Communication
California State University