Information Security & Privacy

Work Team


The Observatory is carrying out the International Information Security Survey 2018, an online questionnaire extended to Chief Information Officers (CIOs), Chief Information Security Officers (CISOs), Risk Managers and Privacy & Compliance Managers of International companies involved in all product sectors. If you wish to take part to the Survey please click the button above.


The Information Security & Privacy Observatory, promoted by the School of Management of Politecnico di Milano, intends to address the need for companies to know, understand and handle the new threats to privacy and information security.



The meetings planned for 2018 edition of the Observatory are:

  • 4 closed doors workshops with representatives from user and offer companies aiming to promote debate and share experiences on Information Secruity and Data Protection;
  • A Work program structured in a set of meetings aimed at vertically investigating contract clauses regarding security and continuity of third party delivered IT services.
  • A Conference to present the final results of the Research, with round table sessions and talks given by major players from the business world and supply representatives of Information Security solutions and services.


The activities planned for 2018 edition of the Observatory are

  • a survey extended to Italian companies involved in all product sectors for CISO (Chief Information Security Officer), CSO (Chief Security Officer), CIO (Chief Information Officer), Compliance Manager, Risk Manager, Chief Risk Officer e DPO (Data Protection Officer);
  • conduct an international survey to monitor the state of the art of Information Security and Privacy technologies and strategies;
  • case studies on companies that have implemented solutions in the field of information security and privacy policies, as a way to highlight best practice;
  • conduct a survey to identify main national and international players in Information Security solutions;
  • survey major national and international players of Analytics solutions;
  • the development of frames and methods supporting companies in the roadmap towards a Data Driven Enterprise;
  • a survey of international and domestic startups operating in the area of Analytics that have received funding in the last two years from institutional investors
  • analysis of the main international and domestic start-ups operating in the area of information security & privacy, which have acquired funding in the last two years, carried out in collaboration with the Observatory for Digital Start-ups and PoliHub.


The Observatory will create the following contents:

  • a paper based Report with the Observatory’s main Research results to be distributed at the Conference;
  • a set of digital Reports on the themes examined throughout the year of research;
  • a bi/monthly Press Review for community companies and sponsors collecting all the most relevant Information Security & Privacy news of the Italian and International scenario.



The Observatory proposes to:

  • estimate the Information Security market;
  • identify the main international trends in the field of information security and privacy;
  • undestand the potential impact of EU regulation on data protection;
  • investigate how digital innovation trands impact on information security and on company privacy;
  • analyze cyber risk management
  • monitor the stage of adoption of information security and company privacy systems;
  • study the impact on big, medium and small companies; 
  • understand the role that start-ups play in this sector.
  • identify the success stories.


The research of the Information Security & Privacy Observatory will be based upon empirical analysis, with surveys and study cases that involve CISO (Chief Information Security Officer), CSO (Chief Security Officer), CIO (Chief Information Officer), CRO (Chief Risk Officer), Risk Manager, Compliance Manager e DPO (Data Protection Officer) from Italian companies operating in various product sectors.


The Advisory Board. To foster ongoing debate and drive research towards trends holding greater value for companies the Observatory established a small steering group involving high profile professional figures from the large organizations within key trade sectors.

Advisory Board members of the 2018 edition are:

  • Massimo Cottafavi (Information & Cyber Security Manager, Snam);
  • Mirco Destro (Group CIO, AFV Acciaierie Beltrame S.P.A.);
  • Claudio Frencia (Information System Security Officer, FCA Italia);
  • Elisa Garavaglia (Security Governance, Associazioni Generali);
  • Paolo Grigoletto (Sicurezza delle informazioni e privacy, Infocamere);
  • Sergio Mattioli (Information Security & Data Privacy Director, Robert Bosch);
  • Vinicio Mazzei (Privacy Officer and IT Risk, Security & Compliance Manager, Saipem);
  • Giuseppe Morimondi (Head of ITO Infrastructure & Information Security Officer, Bayer);
  • Riccardo Roncon (CISO, Gruppo ITAS Assicurazioni);
  • Corrado Salvemini (Responsabile Sicurezza delle informazioni, Carrefour Italia);
  • Giampaolo Tacchini (CISO e Responsabile Infrastrutture e servizi ICT, Edison Energia);
  • Enrico Luigi Toso (IT Regulatory Risk & Control Specialist, Deutsche Bank).


Sponsorship opportunities

Every year more than 300 companies join the Digital Innovation Observatories activities, getting in touch with the corporate, institutional and academic decision makers

More Details

Partners and Sponsors

For further information, collaboration and support requests for the other researches of the Information Security & Privacy Observatory, please contact Alessandro Piva (email: alessandro.piva@polimi.it).