Marcello Filacchioni, Autore presso Red Hot Cyber

Red Hot Cyber

Cybersecurity, Cybercrime News and Vulnerability Analysis

Author: Marcello Filacchioni

ICT CISO and Cyber Security Manager with over twenty years of experience in the public and private sectors, he has led IT security projects for leading companies. Specialising in risk management, governance and digital transformation, he has collaborated with international vendors and innovative start-ups, contributing to the introduction of advanced cybersecurity solutions. He holds numerous certifications (CISM, CRISC, CISA, PMP, ITIL, CEH, Cisco, Microsoft, VMware) and teaches pro bono in the field of cyber security, combining his passion for technological innovation with his commitment to spreading the culture of digital security.

Profilo LinkedIn

Areas of Expertise Cyber Security Strategy & Governance, Vulnerability Management & Security Operations.

Current Positions

CISO & Head of Cybersecurity – BSG: Responsible for defining security strategy, risk management, and compliance; leading cyber operations; and supporting the business through an integrated approach that combines governance, technology, and people.
Pro Bono Lecturer and Public Educator

Core Competencies

Cyber Security Governance & Strategy: roadmap definition, security models, GRC, CISO advisory
Risk Management & Compliance: ISO/IEC 27001, NIS2, DORA, GDPR, NIST; audits and remediation
Certifications: CISM, CRISC, CISA, PMP, ITIL, CEH, Cisco, Microsoft, VMware
Security Operations: SOC, incident response, threat detection, vulnerability and patch management
Leadership & People Management: multidisciplinary team leadership, mentoring, skills development
Business & Stakeholder Management: pre-sales, RFPs, budgeting, KPIs, C-level engagement

Initiatives and Contributions

Red Hot Cyber: Author of articles published on Red Hot Cyber.
Collaborations: Strategic, executive, and operational support to private companies, public administrations, and startups in the design, implementation, and governance of integrated cybersecurity and risk management programs. Activities include security posture assessment, cyber and operational risk management, compliance with international regulations and standards (e.g., ISO/IEC 27001, NIS2, NIST Framework, DORA), governance model design, protection of critical assets and sensitive data, strengthening organizational resilience, coordination with internal and external stakeholders, and support for executive decision-making and oversight bodies, including in digital transformation and technological innovation contexts.

Professional Vision

Cybersecurity is a strategic business enabler and a core component of modern organizational governance. His vision as a CISO is centered on embedding cybersecurity into corporate decision-making, transforming cyber risk from a purely technical concern into a driver of resilience, operational continuity, and sustainable growth. He promotes a structured, measurable, and sustainable approach to risk management based on effective governance models, compliance with international standards and regulations, protection of critical assets, and the conscious adoption of technological innovation. In his model, the CISO’s role is to guide organizations in building secure and resilient digital ecosystems, while fostering a strong security culture, stakeholder dialogue, and a long-term vision capable of anticipating emerging threats and supporting responsible digital transformation.