I’m a Senior Security Engineer at Mastercard, responsible for building and leading its Offensive Security Program, while managing a geographically distributed and agile team. In addition, I perform penetration testing and red teaming engagements to evaluate the security of Mastercard’s networks.
Previously, I was a Security Consultant at MWR Infosecurity, working extensively on security assurance projects (with a specialisation in mobile applications), and looking after research for MWR's UK mobile practice. While at MWR, I was heavily involved in research surrounding mobile security: I created Needle (the iOS Security Testing Framework) and the "Offensive iOS Exploitation" training, which I delivered at international security conferences.
I hold a Master's Degree in Engineering of Computing Systems from the Politecnico di Milano University, and international certifications such as OSCP (Offensive Security Certified Professional), CREST CRT (Registered Penetration Tester), and AWS CSA (Certified Solutions Architect - Associate).
I both published and presented at several security conferences including Black Hat, AppSec, DEEPSEC, Bsides, ACSAC, CCS, and NATO's CYCON. I'm a contributor of the OWASP Project and a Technical Reviewer of some IEEE Journals.