Executive Profile: Matteo Rizzi

This is the executive profile. Looking for the full version? See the full CV. Looking for the concise version? See the resume.

Cybersecurity Risk Manager & Technologist

Strategic cybersecurity leader specializing in the alignment of technical security research with organizational risk governance. Currently serving as the Cybersecurity Risk Manager at Fondazione Bruno Kessler (FBK), overseeing risk assessment and treatment for critical digital infrastructure. Designated Point of Contact for NIS2 Directive compliance and certified Data Protection Officer, with a proven track record of coordinating security initiatives and fostering cross-institutional collaboration.

Strategic Pillars

Risk Governance & Regulatory Compliance: Lead implementation of cybersecurity risk management plans, focusing on NIS2 (D.Lgs. 138/2024), ISO 27001, and GDPR. Expert in navigating European regulatory frameworks for operators of essential services.
Technological Leadership: Bridge advanced research with operational security, specializing in Zero Trust architectures, cloud-native security, and secure digital identity (EUDI Wallet).
Executive Advisory & Communication: Translate complex technical risks into actionable insights for Boards of Directors and executive stakeholders. Experienced in high-impact training and media engagement.
Third-Party & Supply Chain Risk: Manage and mitigate risks introduced by vendors and external products, ensuring organizational resilience across the entire technical ecosystem.

Professional Highlights

NIS2 Coordination: Appointed Point of Contact for FBK’s compliance efforts, liaising on security measures and ensuring adherence to EU standards for critical information systems.
Healthcare & Utility Advisory: Deliver mandatory NIS2 awareness training to Boards of Directors for healthcare authorities, energy providers, and multi-utility companies (ASUIT, AmAmbiente).
Technical Due Diligence: Conduct cybersecurity assessments for venture capital investments and PNRR-funded initiatives, evaluating technical maturity and security postures of startups and health data infrastructures.
Infrastructure Protection: Oversee the vulnerability management lifecycle and coordinate personnel awareness programs to ensure a cohesive, proactive security culture.
Research & Innovation: Contribute to international security workshops and journals on topics including cloud-native proxy protection and automated TLS security assessment.

Selected Affiliations & Certifications

Cybersecurity Risk Manager, Fondazione Bruno Kessler (FBK)
Certified Data Protection Officer (DPO)
Certified Internal Auditor (ISO 19011 & ISO 17021)
Science Ambassador, FBK Talent Development Program
MSc in Computer Science (Cybersecurity), University of Trento (110 Cum Laude)

For detailed project history and technical publications, refer to the full CV. For a shorter version, see the resume.

Press on the QR to download the PDF