I am a computer engineer "lent to the PA" and I deal with audit and information security.
Always fascinated by technology and human capacity to study and find solutions to the real problems, I always undertook scientific studies.
In time I was able to improve my skills in IT, particularly in the IT security and information security.
Thanks also to the study route and the professional experience I gained knowledge that allowed me to meet many people and to lend my services for various activities.
Here is a quick exposure of my major studies and my professional activities.
In 2014 I acquired the certification Certified in Risk and Information Systems Control (CRISC)
In 2013 I attended the course Advanced Training on CyberSecurity - Security and protection of personal and institutional data.
In 2012 I acquired certifications ISACA Certified Information Systems Auditor (CISA) and Certified Information Security Manager (CISM)
From 2011 to 2012 I followed the training in-house ISACA Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA) and Certified in the Governance of Enterprise IT (CGEIT) - (ISACA - AIEA) and in the same year I took part in the training course in-house CIA REVIEW COURSE I - II (IIA - AIIA)
In 2011 I got the qualification to the profession of engineer
In 2010 I took a degree Computer Engineering while in 1998 I graduated as an Industrial Technician in Informatics.
Professional experiences have started a long time ago, but I report only the most important.
In 2014 I worked as a teacher for the training course on "Technologies Professional customer relationship management, e-learning and VoIP" - Management of innovative processes in companies and different consulting and collaboration on technical and administrative implementation of a ERM model, for risk management in business processes and presentation technology and organizational innovation projects, also co-financed by Community funds (LIFE +, CIP Eco-Innovation, etc.)
In the same year I was a speaker at the seminar Supplementary training course on "Public Communication and e-government" titled "The continuity in government and Disaster recovery plans: cases and experiences"
From 2011 to 2013 I worked the rapporteur for training on information security, business continuity in the PA, on Internal Audit and business process reengineering.
From 2007 to 2009 I served as a employee for the management of the IT infrastructure of a law firm and from the same year I carry out the task of IT Auditor for a public administration.
From 2001 to 2004 I gave technical and administrative support to various private health companies, while from 2005 to 2009 I held several consultations on IT, privacy and technological innovation for law firms and corporations.
Different technical skills I gained both in the company that independently, acquiring excellent knowledge of Microsoft operating systems (Client and Server), Linux (Suse, Ubuntu, Slackware etc.) And Mac (OSX).
Excellent knowledge of application software and office suite and the DBMS (Access, MySQL).
Good knowledge of programming languages: Java, HTML, CSS, PHP and network infrastructure.
Experience developed independently in the field of security through the use and implementation of servers, firewall, web server, mail server and network deployments between Linux servers and Windows clients.
Good knowledge of Web structures and some experience in web design through use of specific software.
Excellent knowledge in the field Hardware.
Good knowledge of issues about privacy and adjustment of workstations digital
Particular attention to issues relating to information security (ISO 27002, COBIT).
Good knowledge of project management methodologies (PCM, PRINCE2, PMI) acquired independently and during training.
Also I am a member of several associations and committees:
Since 2009, member of the Committee for Information Security (my agency)
Since 2011, member of the Italian Information Systems Auditor AIEA - Chapter of ISACA Milan
From 2013 are accredited to registry of Engineers Province of Cosenza, and from 2012 are entered in the Register of trainers of the Province of Cosenza.Since 2014, member of the Association Italian Internal Auditor (AIIA)
Since 2015 member of the Committee to guarantee for equal opportunities, enhancement of the welfare of those who work and against discrimination
I am part of the Italian Translation Committee CISA and COBIT - AIEA