Jorge Orchilles is SCYTHE’s Chief Technology Officer and co-creator of C2 Matrix project. He is a published author who holds post-graduate degrees from Stanford and Florida International University in Advanced Computer Security & Master of Science, respectively. Jorge led the offensive security team at Citi for 10 years; is a SANS Certified Instructor; author of Security 564: Red Team Exercises and Adversary Emulation; founding member of MITRE Engenuity Center of Threat-Informed Defense; CVSSv3.1 working group voting member; co-author of a Framework for the Regulatory Use of Penetration Testing in the Financial Services Industry; ISSA Fellow; and NSI Technologist Fellow. Jorge speaks English, Spanish, and Portuguese in decreasing order of fluency.
Jorge Orchilles has been involved in Information Technology since 2001. He began his career as a network and system administrator for a small private high school. Realizing his passion for IT, he founded The Business Strategy Partners in 2002 providing consulting services to residential, small, and medium businesses. While gaining work experience, he was a very involved, full-time student in Florida International University (FIU). He founded the FIU MIS Club and was later contracted to work on the University’s Active Directory Migration Project. After successful and on time completion of the project, he was employed by Terremark in 2007, a datacenter and cloud service provider acquired by Verizon. Jorge helped build and secure Terremark’s Infrastructure as a Service (IaaS) solution first called Collocation 2.0 and then “The Enterprise Cloud” in 2008. Jorge developed a large interest in Information Security and was promoted to a Security Operations Center Analyst position in 2009. After a year of defending critical infrastructure for federal and commercial customers, he moved to an offensive analyst position with a large, global financial institution in 2010. Since then, Jorge has performed hundreds of application and infrastructure vulnerability assessments and penetration tests. His leadership gained him various promotions and opportunities to lead various teams within the offensive information security team of over 140 ethical hackers including the Advanced Penetration Team (Red Team), the Coordinated Vulnerability Disclosure program, and the Cloud Security program.
Jorge is a contributing author to A Framework for the Regulatory use of Penetration Testing in the Financial Services Industry published by the Global Financial Markets Association and the Common Vulnerability Scoring System (CVSS) v3.1 published by FIRST.org He is also the author of Microsoft Windows 7 Administrator’s Reference published by Syngress in 2010.
Jorge contributes to the information security community by serving on the Board of Directors of the South Florida Chapter of the Information Systems Security Association (ISSA) since 2010, including 3 years as Chapter President. Jorge also served as an Advisory Board member for Intralinks (acquired by Synchronoss for $821 Million) as the Information Security Adviser. Jorge is a SANS Certified Instructor teaching various SANS courses since 2010.
Jorge has a post-graduate degree in Advanced Computer Security from Stanford University, Master of Science in Management Information Systems from Florida International University, and a Bachelor of Business Administration in Management Information Systems from Florida International University. Jorge holds various certifications from SANS GIAC, ISC2, ISACA, EC-Council, Cisco, Microsoft, and CompTIA:
Jorge speaks English, Spanish, and Portuguese in decreasing order of fluency. He also loves to watch and play soccer. For more about Jorge Orchilles please connect with him on LinkedIn and follow him on Twitter.