This presentation will (try to) analyze those mistakes commonly done by MoDs while dealing with the so-called “Cyberwar”. Cyberwar is not a terminology I agree with, since it’s not regulated (could it ever be?). Instead, I prefer to speak about “Information Warfare” or, “Information Offensive Operations”.
During this presentation I will pass through cultural, practical, logistics and narrow-minds issues I’ve been able to observe in the last five years, while training various military units in different countries.
Raoul “Nobody” Chiesa was born in Torino, Italy. After being among the first Italian hackers back in the 80’s and 90’s (1986-1995), Raoul decided to move to professional InfoSec, establishing back in 1997 the very first vendor-neutral Italian security advisory company; he then left it in 2012, establishing “Security Brokers”, a visionary joined stock company providing niche, cutting-edge security consulting services and solutions.
Raoul is among the founder members of CLUSIT (Italian Information Security Association, est. 2000) and he is a Board of Directors member at ISECOM, OWASP Italian Chapter, and at the Italian Privacy Observatory (AIP/OPSI); he has been one of the coordinators of the Working Group “Cyber World” at the Center for Defence Higher Studies (CASD) between 2010 and 2013 at the National Security Observatory (OSN) at Italy’s MoD. He is a former member of the ENISA Permanent Stakeholders Group (2010-2012 and 2013-2015), a independent “Special Advisor on Cybercrime and Hacker’s Profiling” at the UN agency UNICRI, and a Member of the Coordination Group and Scientific Committee of APWG European chapter, the Anti-Phishing Working Group, acting like a “Cultural Attachè” for Italy. Since July 2015 he’s a Board Member at AIIC, Italian Experts Association on Critical Infrastructures.
Raoul publishes books and white papers in English and Italian language as main author or contributor, a worldwide known and appreciated Key Note and Speaker, and he’s a regular contact for worldwide medias (newspapers, TV and bloggers) when dealing with Information Security issues and IT security incidents.