Hi! My name is Giorgio. I hold a Ph.D in Information and Communication Technology at the University of Trento with a thesis entitled “Leveraging Security Data for a Quantitative Evaluation of Security Mitigation Strategies”. I currently work at Airbus in the CERT group, focusing on Cyber Threat Intelligence.
Previous to that, I was a security researcher working with Prof. Fabio Massacci in the DISI Security Group at the University of Trento. During this period, I visited the Cambridge Cybercrime Centre at the University of Cambridge and the Information Security and Cryptography Group at the CISPA Helmholtz Center for Information Security.
I am an acknowledged author of the First.org CVSS v4.0 framework.
Ph.D. Information and Communication Technology, 2023
University of Trento
M.Sc. Computer Science, 2018
University of Trento
B.Sc. Information Engineering, 2016
University of Brescia
La threat intelligence e il contrasto agli Advanced Persistent Threats. Seminario Confindustria Trento 2023.
Software Updates Strategies: a Quantitative Evaluation against Advanced Persistent Threats. ICSE Journal-First 2023, 45th International Conference on Software Engineering.
Software Updates Strategies: a Quantitative Evaluation against Advanced Persistent Threats. Huawei AI4SEC Research Seminar 2023.
Why are you not updating? The effectiveness of Software Updates against Advanced Persistent Threats Campaigns. SFScon 2022.
Estimating cyber risk from experiments with cyber ranges and CTFs. SRA Annual Meeting 2019.
Cyber Security Risk as an Experimental Discipline: a Proposal Building upon Capture the Flags. Poster Session Usenix Security 2019, 28th USENIX Security Symposium.
Cyber Security Risk as an Experimental Discipline: a Proposal Building upon Capture the Flags. Poster Session EuroS&P 2019, 4th IEEE European Symposium on Security and Privacy.
The course aims at advancing students’ concrete knowledge of attacks on operating systems, networks, and applications with a significant spur of creativity. Security notices (and even proof of concept exploits) are a little more than research ideas. They tells that something may be possible but do not explain the details (for obvious security reasons). The students must use their creativity to understand what can possibly work and transforms the gaps and holes in the description into a workable product.
Duties: Teaching assistant
Course type: M.Sc.
Location: University of Trento
The CyberChallenge.IT is a national Capture The Flags training program for young talents. The training focuses on the technical, scientific, and ethical introduction to issues related to cybersecurity, alternating theoretical lessons and exercises on various topics such as cryptography, malware analysis, and web security.
Duties: Local organizer
Location: University of Trento