grayhunter_09@shadowbox: ~/portfolio
grayhunter_09@shadowbox:~$ cat portfolio_config.json
{
"name": "Mark Ian R. Calibod",
"role": "SOC Engineer II · Network Consultant",
"experience": "15+ years",// security, network, cloud, dev
"location": "Quezon City, PH",
"stack": ["SentinelOne", "Cloudflare", "FortiGate", "Azure"],
"theme": "dark_terminal",// cyan-green on navy
"status": "available_for_consulting"
}
grayhunter_09@shadowbox:~$ ▊
01
About me
// hero_intro.tsx
$ whoami
Hi, I'm
Mark Ian R. Calibod
>SOC Engineer II|
IT Infrastructure & Security Professional | SOC Engineer | Network Consultant
// certs & training
- ▹ Fortinet NSE 2 — Network Security Associate
- ▹ Cisco CCNA — CyberOps
- ▹Ethical Hacking VAPT · Cyber Defense & Threat Hunting · Red Hat RHEL
// about_card.tsx
IT Infrastructure & Security Professional with 15+ years of experience in network administration, system administration, security operations, hybrid cloud (AWS, Azure, GCP, OpenStack), and full-stack development as a vibe coder using modern practices such as “Claude Code.” Currently serving as a SOC Engineer II at Sprout Solutions, where I monitor, detect, analyze, and respond to security threats in real time using Azure Defender, SentinelOne, and by tuning Cloudflare WAF/SWG.
Additionally, I provide consulting services in System and Network Administration, managing diverse enterprise network devices including FortiGate, Cisco Catalyst, Palo Alto, Dell, Aruba, Unifi, and Ruijie.
02
Work experience timeline
$ cat sprout.log
▹Monitor, detect, analyze, and respond to threats in real time across the organization using SentinelOne EDR and Microsoft Defender Advanced Hunting
▹Conduct proactive threat hunting with SentinelOne Deep Visibility, Purple AI, custom STAR rules, and KQL queries to identify IOCs across endpoints and cloud workloads
▹Investigate and document security incidents end-to-end including supply chain threat analysis (e.g., npm package compromise campaigns) with formal IOC extraction and remediation guidance
▹Manage the full Cloudflare security environment — WAF rule tuning, SWG content filtering with tiered blocking and IdP-based identity selectors, and Email Security configurations
▹Analyze multi-phase APT campaigns targeting web applications including subdomain enumeration and CVE exploitation attempts, delivering executive reports and IOC exports
▹Administer Azure Defender for Cloud, configure security policies, monitor posture, and respond to recommendations across the organization's Azure environment
▹Harden Azure and Google Workspace environments with VirusTotal and AbuseIPDB enrichment for threat intelligence
$ cat stitchtech.log
▹Provide expert network consulting for enterprise clients — scalable and secure infrastructure from initial assessment through implementation and handover
▹Manage colocation network infrastructure ensuring high-availability connectivity, rack-level switching, and data center operational standards
▹Design and support IPsec site-to-site VPN tunnels and IPVPN MPLS connections for client WAN environments
▹Oversee firewall management and security operations — rule-set optimization, access control policies, and ongoing security posture assessments
▹Prepare detailed network proposals including BOM, topology diagrams, and technical specifications (FortiGate Security Fabric)
▹Design all-fiber end-to-end network architectures using BiDi single-mode fiber transceivers, StackWise Virtual HA switching, and next-gen firewall integration
▹Conduct site surveys, requirements analysis, and present technical recommendations to client stakeholders
$ cat megaqmart.log
▹Provide strategic IT leadership and hands-on consulting for enterprise infrastructure across multiple retail operations
▹Design and manage multi-VLAN network architecture with Ruijie VSU switching
▹Manage FortiGate firewall policies, Active Directory, DNS, DHCP, and Group Policy (GPO) configuration across the organization
▹Led migration of corporate email services from Google Workspace to Microsoft Office 365 — mailbox provisioning, MX/DNS cutover, Exchange Online administration
▹Administer Synology NAS with least-privilege file access controls mapped via Active Directory user/group membership
▹Configure Synology HyperBackup and Active Backup for Business for scheduled backups and disaster recovery
▹Architected and developed a full-stack Cold Storage WMS using vibe-coding with AI assistance — PHP 8.3, MySQL 8.0, Nginx, Ubuntu on Proxmox (inbound, QC, inventory, outbound, route optimization)
▹Built business-critical modules: AR/payment with credit limits, customer-type pricing (M1/M2/M3), box sticker QR printing, and sales/inventory reporting dashboards
▹Implemented delivery route planner with Google Maps API, multi-strategy auto-optimization, per-driver lanes, and real-time polyline visualization
▹Deployed kiosk-style barcode price checker integrating with Google Sheets for real-time product lookups
$ cat infinit-o.log
▹Level 2/3 support for UK-based clients managing hybrid cloud infrastructure spanning SmartOS, AWS EC2/S3, and Microsoft Azure
▹Monitored and maintained cloud workloads — instance provisioning, performance tuning, automated backup management across multi-tenant environments
▹Implemented security hardening and ensured compliance with client SLAs for uptime, incident response, and change management
▹Collaborated with cross-functional teams on infrastructure migrations and capacity planning to support rapid business growth
▹Troubleshot complex networking and virtualization issues across distributed infrastructure, reducing MTTR for critical incidents
$ cat revo.log
▹Managed client cloud infrastructure on Red Hat OpenStack — instance lifecycle management, tenant networking, Ceph storage provisioning
▹Performed monitoring, troubleshooting, and incident response for OpenStack services (Nova, Neutron, Cinder, Keystone, Glance) in production
▹Automated routine cloud operations using Bash and Python scripts, improving efficiency and reducing manual intervention
▹Awarded "Rookie of the Year" (Dec 2016) for outstanding contributions and rapid technical growth
$ cat icc.log
▹Managed the school's entire network infrastructure — LAN, wireless APs, and perimeter firewall (Cyberoam / Sophos UTM)
▹Administered Windows Server 2008/2012 — Active Directory, DNS, DHCP, and Group Policy for domain-joined workstations
▹Deployed and managed Google Apps (now Google Workspace) for institutional email and collaboration
▹Provided Tier 1/2 support for hardware/software, maintained the school website, and supported multimedia/AV for events
▹Awarded "Superintendent Awardee" by the Diocese of Cubao Education System (Jun 2016) for exemplary IT service and innovation
$ cat netopia.log
▹Hardware and software troubleshooting for PC workstations; maintained server infrastructure including Windows updates and gaming patch deployments
▹Managed daily sales database backups and oversaw system imaging/cloning with Acronis True Image Enterprise Server
▹Delivered customer-facing IT services — document printing, photo editing, internet services, and general technical assistance
03
Skills & tools
Security
[13]SentinelOne EDRWazuh SIEMAzure DefenderCloudflare WAFCloudflare SWGCloudflare Email SecurityMITRE ATT&CKZero TrustVAPTNmapBurp SuiteSQLmapVirusTotal
Network
[14]FortiGatePalo AltoCisco CatalystDellSophosRuijie / ReyeeArubaMerakiUniFiTwingateVLAN / STPOSPFIPsec VPNIPVPN MPLS
Dev w/ Vibe Coding
[9]PHP 8.xLaravelLivewireJavaScriptPythonBashMySQLNginxGit
Infra
[11]AWSAzureGCPOpenStackProxmox VEVMwareSmartOSWindows ServerActive DirectoryLinux (RHEL/Ubuntu)Synology NAS
04
Contact
grayhunter_09@shadowbox: ~/contact