Jorge Orchilles is a published author with industry contributions including Common Vulnerability Scoring System (CVSS) and a Penetration Testing Framework. Jorge leads the offensive security team in a large financial institution, is a SANS Certified Instructor and author with his new course Security 564: Red Team Exercises and Adversary Emulation debuting at SANS Network Security 2019 and serves on the Board of Directors of the ISSA South Florida Chapter since 2010. He holds post-graduate degrees from Stanford and Florida International University in Advanced Computer Security & Master of Science respectively. Jorge speaks English, Spanish, and Portuguese in decreasing order of fluency. He also loves to watch and play soccer. For more about Jorge A. Orchilles please visit his LinkedIn page and follow him on Twitter.
Jorge Orchilles has been involved in Information Technology since 2001. He began his career as a network and system administrator for a small private high school. Realizing his passion for IT, he founded The Business Strategy Partners in 2002 providing consulting services to residential, small, and medium businesses. While gaining work experience, he was a very involved, full-time student in Florida International University (FIU). He founded the FIU MIS Club and was later contracted to work on the University’s Active Directory Migration Project. After successful and on time completion of the project, he was employed by Terremark in 2007, a datacenter and cloud service provider acquired by Verizon. Jorge helped build and secure Terremark’s Infrastructure as a Service (IaaS) solution first called Collocation 2.0 and then “The Enterprise Cloud” in 2008. Jorge developed a large interest in Information Security and was promoted to a Security Operations Center Analyst position in 2009. After a year of defending critical infrastructure for federal and commercial customers, he moved to an offensive analyst position with a large, global financial institution in 2010. Since then, Jorge has performed hundreds of application and infrastructure vulnerability assessments and penetration tests. His leadership gained him various promotions and opportunities to lead various teams within the offensive information security team of over 140 ethical hackers including the Advanced Penetration Team (Red Team), the Coordinated Vulnerability Disclosure program, and the Cloud Security program.
Jorge is a contributing author to A Framework for the Regulatory use of Penetration Testing in the Financial Services Industry published by the Global Financial Markets Association and the Common Vulnerability Scoring System (CVSS) v3.1 published by FIRST.org He is also the author of Microsoft Windows 7 Administrator’s Reference published by Syngress in 2010.
Jorge contributes to the information security community by serving on the Board of Directors of the South Florida Chapter of the Information Systems Security Association (ISSA) since 2010, including 3 years as Chapter President. Jorge also served as an Advisory Board member for Intralinks (acquired by Synchronoss for $821 Million) as the Information Security Adviser. Jorge is a SANS Certified Instructor teaching various SANS courses since 2010.
Jorge has a post-graduate degree in Advanced Computer Security from Stanford University, Master of Science in Management Information Systems from Florida International University, and a Bachelor of Business Administration in Management Information Systems from Florida International University.
Jorge holds various certifications from SANS GIAC, ISC2, ISACA, EC-Council, Cisco, Microsoft, and CompTIA: GIAC Exploit Researcher & Advanced Penetration Tester (GXPN); Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM);· GIAC Penetration Tester (GPEN); GIAC Certified Forensic Analyst (GCFA); GIAC Certified Incident Handler (GCIH); EC-Council Certified Ethical Hacker (C|EH); Core Impact Certified Professional (CICP); CompTIA Security+ 2008 Edition; Cisco Certified Design Associate (CCDA); Cisco Security Solutions and Design Specialist (CSSDS); Microsoft Certified Technology Specialist: 70–620 — Microsoft Windows Vista: Configuring; Microsoft Certified Professional: 70–282 — Designing, Deploying, and Managing Network Solutions, 70–284 — Implementing and Managing Microsoft Exchange Server 2003, 70–228 — Installing, Configuring, and Administering Microsoft SQL 2000.
Jorge speaks English, Spanish, and Portuguese in decreasing order of fluency. He also loves to watch and play soccer. For more about Jorge A. Orchilles please visit his LinkedIn page and follow him on Twitter.