The World of BookMyShow 

Launched in 2007, BookMyShow, owned and operated by Big Tree Entertainment Pvt. Ltd. (founded in 1999), is India's leading entertainment destination with global operations and the one-stop shop for every entertainment need. The firm is present in over 650 towns and cities in India and works with partners across the industry to provide unmatched entertainment experiences to millions of customers. 

Over the years, the company has evolved from a purely online ticketing platform for movies across 6,000 plus screens, to end-to-end management of live entertainment events including music concerts, live performances, theatricals, sports and more. Some of the key properties that BookMyShow has brought to its markets include U2's The Joshua Tree Tour, NBA's debut games in India, Disney's Aladdin, Cirque du Soleil BAZZAR as well as international artists such as Coldplay, Ed Sheeran, and Justin Bieber. BookMyShow is invested in providing the best user experience, whether on-ground or online. 

The company has developed 'BookMyShow Stream', India's largest home-grown transactional video-on-demand (TVOD) platform.

Role Overview

We are looking for a Network Administrator to own the design, operation, and security of our enterprise network. The role demands deep, hands-on expertise across next-generation firewalls, cloud-delivered security (SASE), enterprise switching, and wireless infrastructure. The ideal candidate is an independent problem solver who takes complete ownership of issues from detection through resolution, drives root-cause analysis on complex incidents, and works fluently with OEMs and managed service vendors to keep the network secure, available, and performant.

Your Profile

• Network & Security Operations: Administer, monitor, and harden the enterprise network covering perimeter firewalls (Fortigate, Palo Alto), Zscaler ZIA/ZPA tenants, LAN switching (Cisco), and wireless (Aruba).
• Policy Management: Design, review, and maintain firewall rule bases, security policies, URL filtering, SSL inspection, IPS/IDS profiles, and Zero Trust access policies on Zscaler.
• Incident & Problem Management: Take end-to-end ownership of network and security incidents. Lead troubleshooting on complex, cross-domain problems until full RCA and permanent fix.
•  Change & Configuration: Plan, peer-review, and execute network changes following change management standards. Maintain accurate configuration baselines, version control, and rollback plans.
• Network Access Control: Operate and tune Cisco ISE for 802.1X, MAB, posture, and profiling across wired and wireless access.  Monitoring & Observability: Configure and maintain SolarWinds NMS for proactive monitoring, alerting, capacity reporting, and SLA dashboards.
• Wireless & Mobility: Manage Aruba controllers, access points, RF design, SSID/VLAN segmentation, and guest/BYOD onboarding.
• Data Center Networking: Support VMware virtual networking (vSwitch/dvSwitch, port groups) and Brocade SAN fabric switching in coordination with the server and storage teams.
• Vendor & OEM Coordination: Be the single point of contact for OEMs, ISPs, and managed service partners. Drive ticket escalations, RMA, root-cause delivery, and contractual SLA adherence. 
• Documentation: Maintain HLD/LLD, network diagrams, IP plans, runbooks, SOPs, and post-incident reports.
• Compliance & Audit: Support internal and external audits ( PCI-DSS) with evidence on access controls, change records, and security baselines. 
• Continuous Improvement: Identify recurring issues, automate routine tasks where possible, and recommend architectural enhancements to improve resilience and security posture.

Technical Skills

• Fortigate & Palo Alto: HA cluster design, virtual systems / VDOMs, NAT, IPSec/SSL VPN, BGP/OSPF over firewalls, threat prevention, WildFire/FortiSandbox, Panorama and FortiManager operations, log forwarding to SIEM.
• Zscaler ZIA: Tunnel/PAC/ZCC deployment, SSL inspection, URL & cloud app policies, DLP, sandboxing, bandwidth control, and Nanolog Streaming.
•  Zscaler ZPA: App connector deployment, app segmentation, posture & device trust, browser access, and integration with IdP for SSO/MFA.
• Cisco Switching: Catalyst platforms, VLAN/VTP, STP variants, EtherChannel, QoS, port security, troubleshooting at packet level.
• Aruba Wireless: ArubaOS / Mobility Controllers / Aruba Central, AP provisioning, RF tuning. 
• Network Security Fundamentals: Strong grasp of segmentation, Zero Trust principles, defense-in-depth, identity-aware access, SSL/TLS, packet capture analysis (Wireshark/tcpdump), and security hardening of network devices.

Vendor & Stakeholder Cordination:

• Drive technical engagements with OEMs and managed service providers.
• Track and enforce SLAs for hardware replacement, support cases, and link/circuit outages with ISPs.
• Participate in technical evaluations, PoCs, BoM reviews, and contract renewals from a technical standpoint. 
• Coordinate scheduled maintenance, firmware upgrades, and hotfix rollouts with vendors and internal stakeholders.

Your Checklist

• Bachelor's degree in Computer Science, Information Technology, Electronics, or related discipline (or equivalent experience).
• 4 to 6 years of hands-on enterprise network administration experience, with at least 1 year on next- gen firewalls and Zscaler.
• Strong ownership mindset — picks up issues without being asked and drives them to closure.
• Excellent analytical and complex problem-solving ability; comfortable working through ambiguous, multi- layered incidents.
• Calm and structured under pressure during major incidents and maintenance windows.
• Clear written and verbal communication with technical peers, leadership, and vendors. 
• Collaborative mindset — works effectively with security, server, application, and helpdesk teams.
•  Disciplined about documentation, change control, and knowledge transfer.