It takes curiosity and preparation

Chittaro: great opportunities from the world of security

di Francesco Unali

22 May 2022 - He is one of the leading Italian security experts and a member of the board of directors of the Master in Homeland Security UCBM. To Andrea Chittaro, president of AIPSA, the association of corporate security professionals and Chief Security Officer of Snam, asked us a few questions about the future of cybersecurity in the light of the first Censis-DeepCyber ​​Report on Cybersecurity in Italy. Because more and more effective protection from cyber risks will mean well-being of people and serenity of families and businesses.

Cybersecurity now affects everyone: citizens, businesses and governments. If security software is already widespread, according to the Censis report, over a third of Italians have not taken steps to protect their IT devices and only 1 out of 4 knows what cybersecurity is. What is missing for it to firmly enter the culture of our country?

A true systems approach is essential. That starts from primary education up to universities. While large companies have been equipping themselves for some time, acceptable awareness needs to be raised at the PMI level. As for the culture of individuals, I would say that we are even further behind. Unfortunately, to date, full awareness of cyber risk matures in a reactive phase rather than a preventive one.

Cybersecurity is also an economic sector in which to gain work experience. What opportunities can this world offer to a recent graduate?

Important opportunities for those who are willing to make a significant commitment supported by deep passion and a spirit of service. Today the market is looking for figures that are still not easy to find in terms of quality and skills. Also in this case it is necessary to think of study paths that combine the theoretical part with field experiences. Several highly trained young people work with me. What unites them is curiosity and the desire to compete with the operational reality that we support every day.

The pandemic like the war has highlighted the real level of preparation of organizations. In the light of the last two years, in your opinion, are Italian companies able to adequately manage IT risks?

It is difficult to give an answer as it is difficult to define the meaning of "adequately". First of all, I believe that companies must structure an organization with a budget and skills. Subsequently, develop procedures and programs to include the entire corporate population in defense strategies. I repeat, cyber security is not a technological issue. Instead, it must become a pervasive and widespread culture. Where everyone feels like a protagonist in the first person.