Several positions have been held during the past 5 years.

E-Risk Manager

April 2001 and April 2002

• Reported to the division's CFO
• Responsible for Division's IT security policies and procedures
• Supervisor for E-banking and E-trading Risk and Security Management
• Responsible for all Operational Risk under Basel 2 rule set for the bank division composed by 5 companies and 700 people workforce
• Responsible for designing, deploying and operating Risk Management methodologies
• Managed 2 direct report and 5 indirect reports

IT Security and Business Continuity

April 2002 and October 2005

• Joined the Global Security and Business Continuity Team
• Reported directly to the Head of Global IT Security
• Project leader on the Business Continuity project
• Supervisor for the Disaster Recovery project involving our Rome and London stock exchange business units
• Responsible for the migration of the Internet banking authentication system from Digital Certificates to the more usable One Time Passwords hardware tokens (ie. RSA SecurID). As such the Bank maintained a high standard of security by saving as much as 5 million Euro per year

Operations Risk Team Leader

October 2005 to October 2006

• Responsible for all Operational Risk involving the development of regional self made applications
• Responsible for designing this newly created unit
• Managed 10 indirect reports dispersed over the Italian peninsula

IT Controls Team Leader

October 2006 to present

• Appointed team leader for IT internal controls
• Responsible for delivering proposals of the new IT control structure
• Responsible for deployment of new controls
• Managing several indirect reports for the different departments within the Operations and IT division

• Part of management team that built from scratch a brand new on-line based banking and trading institution
• Responsible for the Security and Business Continuity setup and operations of this Italian on-line bank and trading start-up
• Adopted a Risk Analysis approach to this newly created financial institution
• Developed the Business Continuity and IT security program
• Proposed and implemented internal controls
• Applied business standards to adhere with local laws
• Managed 5 direct reports

Acted as subject matter expert on Business Continuity, Security Management and Risk Analysis

• Developed Security policies for Telecommunication and E-Retailers companies
• Developed standard compliance processes
• Deployed security procedures
• Acted as interim Security Manager
• Worked on start-up projects and process re-engineering consulting work

Joined ISP as a Security Engineer, promoted to Security Master

• Modeled ISP's IT Security with a Business Continuity approach
• Trained 400 employees on Security awareness
• Management of the Security infrastructure
• Daily management of security controls
• Internal advisor for BS7799
• Risk Analysis know-how (CRAMM, Analyze)
• Streamlined digital signature email system procedures
• Designed and deployed One Time Password for VPN authentication systems
• Supervised and coordinated the activities of personnel engaged in conducting private investigations
• Acted as third line support on security issues
• Experienced Project Management (PRINCE, Project 98, Business Engine)
• VPN management
• Management of Intrusion Detection Systems
• Active membership with the ISP Global Connectivity and Security group
• Active membership with the IETF Working group on IDS

Taken care of the Governament Internet services.

• Daily management of dial up users
• Daily management of LAN and WAN
• Statistical analysis of service availability and performance
• Daily management of the Governament POP made by Cisco routers, Multitech's modems, Digital Alphas running Digital Unix from version 3.2c to 4.0b, SunSparc running Solaris 2.5.1, Intel boxes running Linux from 1.x up to 2.x and Windows NT 4.0
• Deployment of SNMP infrastructure
• Designed and wrote internal applications in C, Perl and shell scripting
• Trained 200 end users and achieved proper education levels and improving their productivity
• Proficient in Cisco routers configuration (IOS 11.x.x), with OSPF routing
• Designed a world wide network based on ATM technology between the NOC at the Governament’s premises, it’s campus and the diplomatic presence spread over 150 countries
• Supplier management
• Security management of the network
• CGI programming for Internet and Intranet services
• ANSI SQL-2 and OQL know-how
• VPN administration

Started as the first ISP located in Rome, Italy, the company during it's 4 years of life mainly focused on 3 areas:

• Network and Security Consultancy
• IT Training and Education (TCP/IP networking, Security, Unix)
• End user hardware and software dealer (import of high end hardware and software; software development)