Resume

James Oryszczyn

Cybersecurity Architect / Security & Infrastructure Architect — Milwaukee, WI
(414) 303-2182 · ✉️ james@tbjconsulting.com
LinkedIn: https://www.linkedin.com/in/jamesoryszczyn/

About

I’m a cybersecurity and infrastructure architect with 30 years building secure, reliable platforms across complex enterprise environments. I design and deliver security architecture that reduces risk without breaking the business—especially across Zero Trust, identity, Microsoft security, and operational security maturity.

I bring deep hands-on engineering experience, strong stakeholder communication, and the ability to turn “strategy” into deployable, supportable systems.

Architecture Focus Areas

  • Security architecture & secure-by-design delivery
  • Cloud security & Zero Trust architecture
  • Identity architecture: ADFS → Entra ID, SSO (SAML), conditional access patterns
  • Microsoft security architecture: Sentinel, Defender XDR, Defender for Cloud, Purview/DLP
  • Detect & respond (SIEM/SOAR/XDR) roadmap and architecture
  • Data protection architecture (DLP, classification, controls)
  • Endpoint protection architecture and operational maturity
  • AI security architecture (secure AI adoption, governance, controls)
  • Incident response readiness & security operations maturity
  • Vulnerability management, patch automation, and measurable risk reduction
  • Disaster recovery / business continuity architecture and execution
  • Security audits, policy, and compliance alignment
  • Frameworks: NIST, ISO 27001, CIS Controls

Selected Architecture Outcomes

  • Implemented Illumio Zero Trust to reduce attack surface and strengthen controls
  • Automated patch management to reach ~90% automation, reducing vulnerability exposure
  • Helped deploy Microsoft Sentinel and strengthened detection/response capability
  • Architected Microsoft Purview to replace Digital Guardian DLP
  • Migrated SAML SSO apps from ADFS → Entra ID
  • Hardened Microsoft tenant using Defender for Cloud, Conditional Access, and Defender XDR
  • Improved vulnerability management with Microsoft Defender for Vulnerability Management aligned to CIS/NIST
  • Led major modernizations: Exchange → Exchange Online/M365, Cisco Call Manager → Teams Voice
  • Delivered a 30-day data center move with zero downtime
  • Managed $2M capital and $15M expense budgets
  • Completed 200+ IT security audits to meet rigorous client requirements
  • Led a cross-functional team of 31 across network, security, applications, and local support

What I’m Proud Of (Business Building)

I’ve built companies from scratch and grown them through results, relationships, and repeatable delivery—not hype. Those years shaped how I architect security today: practical, measurable, and designed to survive real-world constraints.

  • Built and scaled JSO Technology from the ground up, growing revenue from $200 to $3.2M
  • Created a managed services model that produced $50K/month in recurring revenue
  • Developed a managed firewall service supporting 15 clients at the time of sale
  • Led both the business and technical sides—sales, delivery, operations, and a team of 10
  • Earned the MMAC Future 50 Business Award (2011) and achieved 30% YoY growth for three consecutive years
  • Founded TBJ Consulting and grew it from 3 to 30 clients in four years
  • Built trusted partner relationships with major vendors (including Palo Alto Networks, Fortinet, and Nimble Storage) to deliver solutions customers actually used

Experience

SC Johnson — Racine, WI

Information Security Architect (Sep 2025 – Present)

Own security architecture and roadmaps across Detect & Respond, Data Protection, and Endpoint Protection, and serve as the security architect for AI initiatives. Partner with engineering and product teams to define target-state capabilities, prioritize security investments, and ensure solutions are deployable, supportable, and aligned to business risk.

Selected contributions

  • Build and maintain multi-year roadmaps for Detect & Respond capabilities (e.g., SIEM/SOAR/XDR alignment, detection use cases, response workflows, operational maturity)
  • Define architecture standards and reference patterns for Data Protection (e.g., classification, DLP strategy, control design, governance alignment)
  • Lead endpoint security architecture direction for Endpoint Protection (baseline controls, hardening patterns, operational requirements)
  • Act as AI security architect: establish security requirements and guardrails for AI use cases, including data handling, access controls, monitoring, and governance
  • Produce executive-ready architecture artifacts (target state, gaps, sequencing, risks) to drive investment decisions and measurable security outcomes

Quarles & Brady LLP — Milwaukee, WI

Director of Security and Network Services (Aug 2015 – Sep 2025)

I led teams responsible for secure, reliable IT operations across security, network, application, and local support functions. My work focused on reducing risk, modernizing platforms, improving operational maturity, and delivering measurable outcomes through automation, standardization, and strong partnerships.

Selected accomplishments

  • Implemented Illumio Zero Trust and modern security controls
  • Automated patching and reduced vulnerability exposure
  • Led enterprise migrations (Exchange Online/M365, Teams Voice)
  • Deployed Microsoft Sentinel and strengthened threat detection
  • Architected Microsoft Purview to replace legacy DLP tooling
  • Moved a data center in 30 days with zero downtime
  • Led multiple high-impact infrastructure and identity modernization initiatives

TBJ Consulting LLC — Eagle, WI

Consulting Engineer / President (Jul 2011 – Aug 2015)

Founded and grew an IT consulting business from 3 to 30 clients in four years, delivering cybersecurity, network infrastructure, and Microsoft solutions.

Selected accomplishments

  • Designed and implemented advanced architectures with partners like Palo Alto Networks, Fortinet, and Nimble Storage
  • Delivered VMware deployments/upgrades for HA and scalability
  • Replaced legacy switching environments with Juniper for improved reliability and cost efficiency
  • Implemented backup/DR solutions and led Microsoft Exchange/AD migrations

JSO Technology LLC — Milwaukee, WI

Founder / Lead Security Engineer (Jan 2002 – Jul 2011)

Built and scaled a consulting and managed services business while serving as lead security engineer.

Selected accomplishments

  • Built a managed firewall service supporting 15 clients at the time of sale
  • Implemented a managed services offering generating $50K/month in recurring revenue
  • Led sales and technical operations, managing a team of 10
  • Earned the MMAC Future 50 Business Award (2011)
  • Achieved 30% YoY growth for three consecutive years
  • Grew revenue from $200 to $3.2M

Certifications

  • CISSP
  • CISM
  • CEH
  • CDPSE™
  • CRISC
  • CCSP (Issued Nov 2024 – Expires Nov 2027)
  • SANS GSNA (Expired)
  • SANS GCWN Gold (Expired)

Education

  • M.S. Cybersecurity — Western Governors University (In progress / Expected 2026)
  • B.S. Cybersecurity & Information Assurance — Western Governors University (Issued Mar 2025)
  • A.A.S. — DeVry Institute of Technology, Addison, IL (Jun 1996)

Connect

james@tbjconsulting.com
LinkedIn: https://www.linkedin.com/in/jamesoryszczyn/

Additional Information

  • I write cybersecurity posts focused on practical solutions to common IT and security challenges.
  • I stay active in the IT community—sharing lessons learned, trading ideas, and contributing to real-world best practices.