About Me

💼 I am a Director of Security and Certified Chief Information Security Officer (C|CISO) with over 13 years of experience building security functions from the ground up at Fortune 500 companies, pre-IPO startups, and high-growth organizations. I specialize in establishing security programs that enable business growth, securing multi-million-dollar deals through compliance initiatives (HIPAA, SOC2, PCI DSS), and building cross-functional teams that position security as a strategic partner across engineering, product, legal, and go-to-market functions.

✍🏻 I write about cloud security, technical leadership, and security strategy. I am the author of The CloudSec Engineer, a book on how to enter, establish yourself, and thrive in the Cloud Security industry.

🔖 I curate CloudSecList, a newsletter that keeps over 12,000 security professionals informed about current happenings and news related to the security of cloud-native technologies, and CloudSecDocs, a website collecting and sharing my technical notes and knowledge on cloud-native technologies, security, technical leadership, and engineering culture.

🎤 I served on the committee that created the Certified Kubernetes Security Specialist (CKS) certification, worked as a maintainer of Cartography (a CNCF-incubated security tool), and presented research at top-tier security conferences including Black Hat, KubeCon, OWASP AppSec, DEEPSEC, BSides, ACSAC, CCS, and NATO's CYCON. I mentor young professionals through the Lead the Future program, a non-profit helping Italian talents pursue STEM careers.

Accolades

AWS Community BuilderLead the FutureAlumni Politecnico di MilanoCNCF STAG30 Small Business IT Influencers Worth Following in 2022

Certifications

Certified Chief Information Security Officer (C|CISO)Certified Information Systems Security Professional (CISSP)Certified Cloud Security Professional (CCSP)Certified Kubernetes Security Specialist (CKS)AWS Certified Security - Specialty (AWS SCS)GCP Professional Cloud Security EngineerMicrosoft Certified: Azure FundamentalsHashiCorp Certified: Terraform AssociateHashiCorp Certified: Vault AssociateOffensive Security Certified Professional (OSCP)