I am Simone Onofri, a Cyber Security Professional with over 20 years of experience.
With a strong technical background, I am focused on Project and Program Management of Professional Services such as Red and Blue Teaming and Product Management, designing and managing offensive and defensive products. When managing Projects and Products, I use PRINCE2, AgilePM with Kanban and Scrum, and for Security Services, OSSTMM, OWASP, PTES, NIST, and PCI-DSS.
I have several technical certifications (GXPN, GREM, GWAPT, OSCP, OPSA, CEH); Governance & Compliance: 27001, ITIL, COBIT; Project/Product Management (PRINCE2, AgilePM, CSM, CSPO). I am involved in associations and groups such as ISECOM, OWASP, UNINFO, and W3C and regularly speak at conferences like TEDx, IPMA, OWASP, ISACA, and PMI. I also obtained the MBA Essentials and Data Privacy certificates from the London School of Economics.
I am proud to be on the GIAC Advisory Board, one of the Instructors at the Italian Joint Intelligence and Electronic Warfare Training Center (CIFIGE), and a Technical Consultant for the Public Prosecutor c/o Criminal Court in Rome. I am also one of the authors of OWASP Testing Guide v4, the ISECOM Hackers High School, and the magazine "Il Project Manager". I wrote a book on Attacking and Exploiting Modern Web Applications for Packt Publishing.
With a strong passion about Security, Psychology, Education, Technology and Arts, I like to search and create new links between these topics, putting in practise Pareto's definition of Creativity.