Raoul Chiesa

Biography

Raoul "Nobody" Chiesa was born in Torino, Italy, in 1973. After being among the first Italian hackers back in the 90's (1986-1995), Raoul decided to move to professional InfoSec, founding in 1997 @  Mediaservice.net Srl, a vendor-neutral and well known security consulting company. The company operates worldwide, being as well the  oldest ISECOM Training Partner for the OPST, OPSA, OPSE and OWSE  international security certifications. The company's Red Team held also  the following industry certifications: PCI-DSS QSA, PCI-DSS ASV, ISO/IEC  27001 Lead Auditor, CISA, CISSP, ITIL, SANS GCFA, ECCE.

Raoul is among the founder members of CLUSIT - the Italian Information  Security Association - and he is a Board of Directors member at ISECOM,  CLUSIT, OWASP Italian Chapter, Italian Privacy Observatory (AIP/OPSI).  Both Raoul and its security team work on research areas such as X.25 and  PSDN networks, VoIp Security, Malware Analysis, Social Engineering,  SCADA & Industrial Automation, Home Automation, Satellite communication,  Mobile Security, SS7 threats and much more.

Since 2003 he started its cooperation with the UN agency "UNICRI"  (United Nations Interregional Crime and Justice Research Institute),  working on "HPP", the Hackers Profiling Project run by ISECOM and  UNICRI; in 2005 he has been official recognized as a cybercrime advisor. Nowadays his role at UNICRI is "Senior Advisor on Cybercrime".

Since February 2010, Raoul Chiesa is a Member of the ENISA Permanent  Stakeholders' Group (PSG). The PSG is composed of 30 high-level experts  who have been appointed by  the Executive Director of ENISA to serve as a sounding board for all relevant stakeholders on issues concerning network and information  security. The mandate of the Members of the PSG is 2,5 years.

Presentation: Auditing the hacker's mind: from the hacking underground to nowadays cybercrime and underground economy - a full analysis

Imagine being able to preview an attacker's next move based on the traces left on compromised machines. That's the aim of the Hacker's Profiling Project (HPP), an open methodology that hopes to enable analysts to work on the data (logs, rootkits, and any code) left by intruders from a different point of view, providing them with a profiling methodology that will identify the kind of attacker and therefore his modus operandi and potential targets.

- InfoSec - Information Security, what does it mean?
- Cybercrime: how history can help us.
- Profiling the Enemy: Looking into the hackers' world .
- HPP: the Hacker's Profiling Project.
- What has changed? From curious teens up to professional fraudsters and organized crime.
- References: books you MUST read!