Robert Orozco , Mba, Cissp Email & Phone Number

San Antonio, TX, US

Alexandria, New South Wales, AU

• Applied secure-by-design principles and best practices to protect Breville's global hybrid environment spanning Azure, AWS, and on-premises infrastructure.
• Implemented Azure Identity Protection with User Risk and Sign-in Risk policies, enforcing MFA through Conditional Access Policies to secure high-risk accounts and applying company-wide MFA enforcement for enhanced.
• Managed and optimized Microsoft Defender solutions, including Defender for Cloud, Cloud Apps, Servers, Storage, Endpoints, and Key Vault.
• Built and operationalized a Security Operations Center (SOC) at Breville using Azure Sentinel,integrating data connectors, custom log ingestion mechanisms and implementing custom analyticrules for real-time threat.
• Enabled Security Orchestration, Automation, and Response (SOAR) capabilities through AzureSentinel logic apps, automating incident response workflows to enhance operational efficiency andreduce response times enabling.
• Implemented robust vulnerability assessment solutions for web applications, cloud environments,servers, and endpoints using tools like Tenable, Qualys, Defender for Endpoint & Servers, andMicrosoft Defender.

https://orobi.io

Mclean, VA, US

• Implemented and maintained robust security measures to protect network infrastructure and systems, including firewalls, intrusion detection systems, proxies, and vulnerability management processes, ensuring a secure.
• Oversaw third-party risk assessment procedures, vetting SaaS and new applications to ensure secure integration into the network while mitigating potential risks to the organization.
• Utilized cryptography, Public Key Infrastructure (PKI), and key management to implement secure encryption protocols, manage digital certificates, and oversee the generation, storage, and rotation of cryptographic keys.
• Designed and implemented comprehensive security controls to protect the organization's infrastructure, ensuring robust defense against cyber threats and alignment with industry best practices.
• Developed a Python-based program to automate secure email delivery for multiple security functions, improving operational efficiency and reliability.
• Conducted advanced incident response operations using Splunk SIEM, investigating and resolving network-related security alerts to safeguard critical infrastructure.

Whittier, CA, US

• Implemented and managed security infrastructure using Cisco products, including Cisco AMP, Umbrella, Meraki, and multiple ASA Firewalls, to enhance threat detection, secure network access, and ensure end-to-end.
• Configured and managed Cisco Identity Services Engine (ISE) to enforce secure network access policies, implement role-based access controls, and enhance endpoint visibility and compliance.
• Conducted comprehensive vulnerability scans using Qualys to identify, prioritize, and remediate security gaps across servers, endpoints, and web applications, ensuring a robust and secure environment.
• Extensive experience in cloud and on-premises security engineering, designing and implementing robust security architectures, access controls, and threat mitigation strategies to protect hybrid environments.
• MonitorednetworklogsandsecurityeventsusingSolarWindsLogEventManager(SIEM)to identify and respond to potential threats.
• Conducted incident response operations for alerts generated by Sophos Antivirus, SCEP, Cisco AMP and Defender for Endpoint antivirus solutions, ensuring rapid detection and remediation.

Arlington, Virginia, US

• Directed a team of four, overseeing daily department operations, analyzing workflows, establishing priorities, developing security standards, and managing project timelines.
• Accountable for the operation, installation, and maintenance of computer, network, and telecommunications systems valued at over $20 million.
• Configured Cisco routers, switches, and IPS/IDS systems to support secure operations on SIPRNET and NIPRNET networks.
• Appointed as custodian for the distribution and destruction of COMSEC Firefly and PPK keys, ensuring compliance with security protocols.
• Implemented and maintained antivirus clients and definitions on over 600 endpoints, ensuring software security and compliance with patching requirements.
• Engaged in incident response, disaster recovery, and business continuity planning to maintain operational resilience.

- Push out patches, updates, hot fixes, and packages using System Center Configuration Manager (SCCM) to resolve vulnerabilities on the network.- Monitor industry websites or publications for information about patches, releases, viruses, or potential problem identification. (CVE's, IAVM's, OWASP)-Use the Assured Compliance Assessment Solution (ACAS) to.

Master Of Business Administration - Mba

Bachelor'S Of Science, Information Technology & Networking

Associate Of Science - As, Information Technology And Networking

Associate Of Arts - Aa, Professional Focus