Shows
Agent of InfluenceEpisode 070 - Advancing Exposure Management - Jorge OrchillesAdvancing Exposure ManagementHear from Jorge Orchilles, Senior Director at Verizon, on the shift from traditional vulnerability management to modern exposure management and the critical role proactive security plays in staying ahead of threats.+ + +Find more episodes on YouTube or wherever you listen to podcasts, as well as at netspi.com/agentofinfluence.2025-05-2838 min
Hacker Valley BlueBecoming a Purple Team Ambassador with SCYTHE’s Jorge OrchillesJorge Orchilles, Chief Technology Officer at SCYTHE and Principal SANS Instructor, brings his expertise in purple teaming to the pod this week to talk about the uniquely human and the understandably technical parts of red and blue collaboration. As the Purple Team Ambassador at SANS, Jorge lives for all things purple team, pioneering the purple team framework used in different SANS courses. This week, Jorge talks about transitioning from tech to security and remembering we all are working for the same goal.
Timecoded Guide:
[00:00] Growing up in tech & discovering the cybersecurity world
...2022-12-1548 min
The Cipher PodcastAdversary Emulation: Know Thy Enemy and Know YourselfOrganizations should understand what happens when they are breached, in order to measure the value or their tools and understand how long it takes for them to detect threat actors. SCYTHE is an Adversary Emulation tool that enables organizations to do this in a repeatable and secure way. CTO Jorge Orchilles joins the episode to discuss how this methodology and tool differs from other cybersecurity practices, how it can help organizations improve, and what a Purple Team is.Learn more about SCYTHE at www.scythe.io.2022-01-2432 min
the CYBER5Using Automation for Stronger Cyber Threat Intelligence, Red Team, and Blue Team Collaboration with Scythe CTO Jorge OrchillesEpisode 23 of the podcast covers automation for stronger cyber threat intelligence, red team, and blue team collaboration. (01:25) Question 1) Explain the difference between attack simulation techniques and MITRE ATT&CK techniques and elaborate what is more useful for a blue team. (03:04) Question 2) Is an attack simulation more useful to a blue team than threat intelligence? (06:27) Question 3) In your opinion, should MITRE ATT&CK start incorporating red team techniques into their framework(s)? Why or why not? (07:56) Question 4) What's a role automation can play to better remediate between numerous stakeholders following a red team? What are some of the challenges...2020-09-1022 min
The Purple Team PodcastEliza-May Austin & Jorge Orchilles talk Purple-Teaming and process automationLinkedin | Twitter | Scythe.io
Jorge Orchilles is the Chief Technology Officer of SCYTHE and co-creator of the C2 Matrix project. He is a SANS Certified Instructor and the author of Security 564: Red Team Exercises and Adversary Emulation. He was a founding member of MITRE Engenuity Center of Threat-Informed Defense. He is a Fellow at the Information Systems Security Association (ISSA) and the National Security Institute. Prior, Jorge led the offensive security team at Citi for over 10 years.
Jorge Orchilles co-authored the Common Vulnerability Scoring System (CVSS) and A Framework for...2020-08-0220 min
Cyber Security Interviews#036 – Jorge Orchilles: Offense Informs DefenseJorge Orchilles, author of Microsoft Windows 7 Administrator’s Reference, holds a Masters of Science in Management Information Systems from Florida International University, leads a security team in a large financial institution, and serves on the board of the Information Systems Security Association South Florida Chapter.Jorge has been involved in the Information Technology field since 2001. Realizing his passion for IT, he founded The Business Strategy Partners – IT Consultants branch in 2002 and eventually went on to Terremark (now Verizon) as a system administrator. He developed a interest in Information Security and was eventually promoted to a Security Operations Cent...2017-09-2546 min