Michele Colajanni, full professor of computer engineering since 2000, is with the Department of Computer Science and Engineering of the University of Bologna. At the Bologna Business School, he has directed the course in Cyber Security Management, co-directed the Executive Master in Public Management and Innovation, and participated to several initiatives and corporate masters. After graduating in Pisa and obtained a PhD at the University of Rome, he was visiting scholar at the University of Leuven and visiting researcher at the IBM T.J. Waston Research Center, NY. He is author of over 200 publications. Founder and Director of the Cyber Academy for ethical hacker training and of the Interdepartmental Research Centers on Security and Safety, he is involved in multiple research and technology transfer projects at national and international level, coordinates various training courses and dissemination initiatives on cybersecurity and digital transformation, and collaborates with public institutions, private companies and professional associations.
The course provides a global overview about the problem of mapping the cybernetic risks and their management, showing the current regulations and the situation in Italy. The course will focus on the following topics:
1) Introduction to the Cybersecurity problem: Aims and extent of the problem; Incident examples; Corporate Risks; Motivation of the Attackers; Inability to find global solutions.
2) Cybersecurity and Cyberspace: Definitions; CIA properties and attacks against them.
3) Malware and Cyberattacks: Definitions; Case studies and known Malware;
4) Cyberwar: Evolution of the attackers; From the worm to the Advanced Persistent Threat. Numbers and Countries behind the cyberwar.
5) Privacy in communications: End-to-end encoded channels; Encoded e-mails; Visible services not for intelligence purposes.
6) Cyber Risk Management: Definitions; Top-down and bottom-up risk approach. ISO 27001, NIST sp800-53 and other standards; Cybersecurity frameworks; National Framework for Cybersecurity and Essential PMI Management; Italian national regulations.
In a rapidly changing scenario, the PA must act on two levels: modifying internal processes, adapting them to the digital context and prioritizing and adopting IT services for its interlocutors. Such changes require new skills and must be based on a culture that relies on data enhancement, on quality goals, on continuous improvement, and on governance, within the framework of national and European digital strategies and policies. A few relevant topics (cybersecurity, blockchain and digital transformation) will be dealt with during theme-based days.
The Public Value Manager will be able to accompany the growth of the PA in a perspective of development of IT services, in line with the Digital Agenda for Europe and the AgID IT plans. The Manager will know the main enabling technologies of the digital society, cloud and big data, the modes to express requirements, and the methods to support the digital transformation, also in view of the unimpressive reports on the status of implementation of public IT technology plans.