About Me
💼 I am a Director of Security and Certified Chief Information Security Officer (C|CISO) with over 13 years of experience building security functions from the ground up at Fortune 500 companies, pre-IPO startups, and high-growth organizations. I specialize in establishing security programs that enable business growth, securing multi-million-dollar deals through compliance initiatives (HIPAA, SOC2, PCI DSS), and building cross-functional teams that position security as a strategic partner across engineering, product, legal, and go-to-market functions.
✍🏻 I write about cloud security, technical leadership, and security strategy. I am the author of The CloudSec Engineer, a book on how to enter, establish yourself, and thrive in the Cloud Security industry.
🔖 I curate CloudSecList, a newsletter that keeps over 12,000 security professionals informed about current happenings and news related to the security of cloud-native technologies, and CloudSecDocs, a website collecting and sharing my technical notes and knowledge on cloud-native technologies, security, technical leadership, and engineering culture.
🎤 I served on the committee that created the Certified Kubernetes Security Specialist (CKS) certification, worked as a maintainer of Cartography (a CNCF-incubated security tool), and presented research at top-tier security conferences including Black Hat, KubeCon, OWASP AppSec, DEEPSEC, BSides, ACSAC, CCS, and NATO's CYCON. I mentor young professionals through the Lead the Future program, a non-profit helping Italian talents pursue STEM careers.














