• Compliance & Risk Partner responsible of the Deloitte Central Mediterranean Risk Advisory Q&RM Function

• IT Risk Partner providing Risk Consulting Services to Customers in Financial Institutes; Telco-Media and Energy Companies• Compliance & Risk Partner responsible of the internal Q&RM Function, focused on guaranteeing the Company compliance to the rules (external or internal) related to its own operating context, and on evaluating, managing and reducing the risks associated with the provision of professional services

Roles:• IT Risk Director providing Risk Consulting Services to Customers in Financial Institutes; Telco-Media and Energy Companies• Compliance & Risk Director responsible of the internal Q&RM Function, focused on guaranteeing the Company compliance to the rules (external or internal) related to its own operating context, and on evaluating, managing and reducing the risks associated with the provision of professional services IT Risk Consulting Services – ICT processes –• IT Governance: IT costs and investments analysis, IT performance and Service Level Agreement analysis• Design and audit of Processes, Assets and Data, to reduce the risks and to identify specific controls• Assessment and re-engineering of IT processes• Data Analytics: obtaining information with high-added value through the definition of appropriate dashboards• Design and implementation of Security infrastructures in ICT context• Privacy: 675/96 Law and DPR 318/99 and further updatesRisk Intelligence – business processes –• GRC (Governance & Risk Compliance): developing and reengineering the design of Internal Control System• D.Lgs. 231/07 “Anti Money Laundering”: development of the Organization and Operating Model and managing the AUI (Archivio Unico Informatico)• D.Lgs. 231/01: design of Internal Control System to manage and monitoring the Company risks• L. 262/05: design of the function of Manager in Charge (Dirigente Preposto) to the Company accounting books• L. 263/06: projects related to the implementation of the “Nuove disposizioni di vigilanza prudenziale” for Banks• Sarbanes-Oxley Act: activities of documentation and testing of internal controls• Basilea III and Solvency II: development of a methodology to identify and evaluate ICT risks and to model a Business Contingency Plan fit to changing crisis scenariosAccount Audit Support Activities– ICT processes –• Due Diligence• ICT Audit

IT Risk Manager providing Risk Consulting Services to Customers in Financial Institutes; Telco-Media and Energy CompaniesIT Risk Consulting Services – ICT processes –• IT Governance: IT costs and investments analysis, IT performance and Service Level Agreement analysis• Assessment and re-engineering of IT processes• Design and implementation of Security infrastructures in ICT context• Privacy: 675/96 Law and DPR 318/99 and further updates

In the Consulting Division:• Coordination of the EDP organizing and technical reorganization of an important Bank in Padova. Audit of Data Security;• Coordination of the Banca Commerciale Italiana (COMIT) Project “Management Center of the financial EDI (standard EEG4) messages”;• Project Leader for the design and management of a COMIT test environment finalized to the Year 2000 Project. In the EDP Division:• Preparation and cost quantification for technical proposal towards Division Customers;• Group Leader for the technical analysis of Disaster Recovery Project of COMIT;• Design and implementation of Quality System ISO 9001 for the EDP Division;• MVS, CICS, VTAM and Storage manager. Internal trainer regarding the Operating Systems.