Daniele Baudone

Daniele Baudone Email and Phone Number

Security Advisor - GRC Director and Information Security Officer - Auditor / Lead Auditor ISO 27001:2022, ISO 22301:2019, ISO 42001:2023, ISO 20000-1:2018 @ SGRC Consulting
Daniele Baudone's Location
Milan, Lombardy, Italy, Italy
About Daniele Baudone

I aim to find the most suitable correspondence between business and security requirements, pursuing innovation through the safe and effective use of ICT to enable the business and ensure reliability, helping organizations enhance their information security posture.I joined Docebo in 2016, when it was still a small company, to build its ICT Security team and a comprehensive and effective information security program. Under my direction, the team grew to over 10 people developing a strong security posture for the entire organization that has successfully supported the company's growth to its current size of about 1000 employees and an ARR of 200 million USD. In the last 2 years at Docebo I have focused on the Governance Risk Compliance area, managing the maintenance of all ISO 2700X certifications, the SOC 2 report, and supporting the further growth of the team as well as the adoption of frameworks such as NIST 800-53, CSF, and AI RMF.I graduated from Pisa University with an M.S. in Computer Science, I have participated in company start-ups and collaborated with consulting firms, and multinational high-tech and cloud services companies, playing the roles of Business Unit Director, Chief Information Security Officer, GRC Director, and Cyber Security Consultant. During my career, I carried out managerial and advisory activities, business development, and directional and technical consulting concerning cybersecurity, ICT risk management and compliance, technological innovation, and strategy development.My skills comprise: - Strong interpersonal and communication skills with the ability to simplify complex topics for understanding and critical decision-making. - People management and team building across global organizations.- Security regulations and standards (GDPR, ISO 2700X, ISO 31000, NIST CSF, NIST 800-53, PCI-DSS, OWASP, COBIT, CIS, AICPA/ISAE300 SOC2, SOX, FedRAMP).- AI risk management and compliance with applicable frameworks and regulations (ISO 42001, NIST AI RMF, EU AI Act).- Governance Risk Compliance strategies and GRC solutions adoption.- Control and risk management concepts and methodologies.- Cloud Security Management, CSPs Shared Responsibility Models, Preventive/Reactive Guardrails, Continuous monitoring, with special regard to Amazon AWS environment.- Business Continuity, Disaster Recovery, ISO 22301, ISO 22317, BIA execution, design and implementation of Business Continuity plans.- Secure SDLC, OWASP, Threat Modelling, SAST and DAST.- Development of ISMS and information security programs.

Daniele Baudone's Current Company Details
SGRC Consulting

Sgrc Consulting

View
Security Advisor - GRC Director and Information Security Officer - Auditor / Lead Auditor ISO 27001:2022, ISO 22301:2019, ISO 42001:2023, ISO 20000-1:2018
Daniele Baudone Work Experience Details
  • Sgrc Consulting
    Principal - Senior Security Advisor
    Sgrc Consulting Aug 2024 - Present
    View
  • Scuola Internazionale Etica & Sicurezza Milano - L'Aquila
    Senior Security Advisor
    Scuola Internazionale Etica & Sicurezza Milano - L'Aquila Aug 2024 - Present
    Milano, Milano, It
    View
  • Docebo
    Compliance Director And Information Security Officer
    Docebo Nov 2016 - Jul 2024
    Toronto, Ontario, Ca
    I started and directed the company's information security department creating the overall ISMS and the team to implement and manage the security controls and practices. Under my direction, the team grew to over 10 people developing a strong security posture for the entire organization that has successfully supported the company's growth to its current size of about 1000 employees and an ARR of 200 million USD. I managed the company security program and the compliance with standards and regulations relevant to information security, privacy, and data protection, as well as the strategy, operations, and budgeting, driving the ICT security strategy and implementation. The scope of responsibility encompasses communications, applications, and infrastructure, including the policies and procedures that apply, secure SDLC, operational compliance to GDPR, ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 9001, AICP/ISAE3000 SOC 2, and other standards and regulations.In the last 2 years at Docebo I have focused on the Governance Risk Compliance area, managing the maintenance of all ISO 2700X certifications, the SOC 2 report, and supporting the further growth of the team as well as the adoption of frameworks such as NIST 800-53, FedRAMP, CSF, and AI RMF.
    View
  • Security Brokers
    Cyber Security Consultant
    Security Brokers Nov 2014 - Nov 2016
    Rome, It
    Provides consultancy on risk management, application security, vulnerability assessment, Capability Maturity Model elaboration, gap analysis, security plan design, presale and technical proposal drafting of ICT Security and Cyber Defense services.
    View
  • Ntt Data Italia
    Senior Security Consultant
    Ntt Data Italia Jun 2015 - Jan 2016
    Milan, It
    Provides information security subject matter expertise and advice on information security risk and control matters, information security management systems (security standards, strategies, security controls, and guidelines), Business Continuity, designing and implementing of security processes and security concepts. Until January 2016 he has been involved in BIA execution and support activities to the Group Business Continuity of Unicredit s.p.a.
    View
  • Bnova Consulting
    Senior Consultant
    Bnova Consulting Jul 2014 - Jun 2015
    Massa, Ms, It
    Consultancy and business development activities focused on technology reselling and implementation of solutions for Business Intelligence and Big Data management.
    View
  • Assioma.Net
    Senior Consultant
    Assioma.Net Mar 2012 - Feb 2015
    Torino, To, It
    Consultancy for client management, business development, project management and delivery supervision of Software Quality Assurance, Testing and SDLC improvement projects.Assioma.net group is an IT consultancy providing development, systems integration services, quality assurance and software testing services for Telecommunications, Finance and Public Administration as well as the Manufacturing and Service Industries markets.
    View
  • Negentis
    Business Consultant
    Negentis Oct 2009 - Mar 2012
    Sesto Fiorentino, Fi, It
    Assists the management of Negentis S.r.l., a systems engineering firm providing software technology for real time business process management, following projects for direct customers and on the development of partnerships for software products of Business Process Management, SOA/EDA middleware, Transaction Billing BSS/OSS.
    View
  • Asint Srl
    Lead Security Consultant
    Asint Srl Apr 2005 - Oct 2009
    Leads the ICT security practice providing consultancy activities of business process computerization and ICT security as Lead Auditor ISO 27001.Manages customers for consultancy projects relevant to the implementation of ISO 9001/14001/27001 - OHSAS 18001 systems.
  • Business-E Srl
    Account Manager
    Business-E Srl 2002 - 2005
    After the merging of Secure Way S.r.l. in Business-e S.r.l. carries out customers management and and project coordination of ICT security solutions and consultancy for customers in Telco, Finance and Industry sectors.Key account manager for Fastweb following the design and commercial coordination of a managed service for remote configuration and maintenance of firewall and VPN based on Stonesoft technology.
  • Secure Way Srl
    Line Of Business Director
    Secure Way Srl 1999 - 2002
    Co-founder of Secure Way S.r.l., a company of It Way SpA group, providing solutions and services for ICT security. Board member and Business Unit Director managing business development in Industry and finance markets, and partnership with ICT Security solutions providers activities related to his role
  • Netix S.R.L.
    Sales Director
    Netix S.R.L. Jan 1997 - Sep 1999
    Plans and executes marketing and sales activities of ICT solutions for industrial automation, customized software development, ICT security solutions and services. I've managed the company sales and marketing team, with direct accounting on key customers and partners.Develops the resellers network for Check Point FireWall-1 software technology whose NetiX has been the first Italian distributor.
  • Progres Sistemi S.R.L.
    Funzionario Commerciale
    Progres Sistemi S.R.L. 1992 - 1996
  • Delphi Spa
    Software Engineer
    Delphi Spa 1989 - 1992

Daniele Baudone Education Details

  • Università Di Pisa
    Università Di Pisa
    Scienze Dell'Informazione

Frequently Asked Questions about Daniele Baudone

What company does Daniele Baudone work for?

Daniele Baudone works for Sgrc Consulting

What is Daniele Baudone's role at the current company?

Daniele Baudone's current role is Security Advisor - GRC Director and Information Security Officer - Auditor / Lead Auditor ISO 27001:2022, ISO 22301:2019, ISO 42001:2023, ISO 20000-1:2018.

What schools did Daniele Baudone attend?

Daniele Baudone attended Università Di Pisa.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.