Cyber Journey presents OWASP Italy Day 2025: The Benchmark for Software
Security.
Why is cybersecurity so important?
Few fields have grown as rapidly as cybersecurity, evolving from a niche topic to a global concern at the forefront of businesses, institutions, and media discussions.
Are all cyberattacks really that sophisticated?
When it comes to cyberattacks, the word most often used is “sophisticated.” But is that always the case? Or are there tools and methodologies that can effectively prevent and mitigate them?
During OWASP Italy Day, we will explore both offensive and defensive cybersecurity techniques with experts who tackle these challenges daily.
The OWASP Foundation, through its global community, develops projects, best practices, and solutions to enhance application security worldwide.
Cyber Journey presents OWASP Italy Day
Cyber Journey 2025 is the perfect opportunity to explore the latest cybersecurity challenges, understand emerging trends, and dive into the technological and regulatory strategies needed to protect digital assets.
Once again this year, OWASP Italy Day will put the spotlight on software security, a crucial topic in a digital world where applications are the backbone of both professional and personal activities.
Purpose of the event
Training
Build cybersecurity skills to help an increasingly “connected” society protect itself adequately.
Sharing
Sharing the knowledge of important professionals in the sector, encouraging contamination and the exchange of points of view on this constantly evolving world.
Innovation
Make this event a moment of inspiration and reflection on the new scenarios and new challenges opened by the Cybersecurity market.
PROGRAMME
H 15:30 – 15:50

Check-In
H 15:50 – 16:00

Welcome
H 16:00 – 16:30

Keynote Speacker – In Tool We Trust
Martin Knoblock
VP Security Engineering
Valtech.com
H 16:30 – 17:00

Keynote Speaker – Threat Modeling Digital Credentials: What Could Go Wrong?
Simone Onofri
W3C
H 17:00 – 17:25

Threat Modeling AI and Blockchain Applications: Security by Design for Emerging Technologies
Marco Morana
Avocado Systems
H 17:25 – 17:50

Talk: If you Helm chart is insecure, your pet LLM can fix it, can’t it?
Fabio Massacci
University Professor
Vrije Universiteit Amsterdam, Università di Trento
H 17:50 – 18:15

Threats in Models; Considerations and Impact of AI Supply Chain in Application Security
Fabrizio Bugli
Solutions Engineer Professional Lead
Checkmarx
Ore 18:15 – 18:45

Coffee Break
H 18:50 – 19:10

Giacinto Fiore

Pasquale Viscanti
A Chat with Artificial Intelligence – Simply Explained!
Giacinto Fiore & Pasquale Viscanti
Co-Founder
intelligenza Artificiale Spiegata Semplice & AIWEEK
H 19:10 – 19:35

Evolving Your AppSec Program in
the Era of AI
Henrik Plate
Principal Security Researcher
H 19:35 – 20:00

Building a Product Security Team – lessons from the field
Francesco Paolo Giordano
Senior Product Security Engineer
PagoPA S.p.A.
H 20:00 – 20:25

Threats in Models; Considerations and Impact of AI Supply Chain in Application Security
Inga Cherny
Security Researcher
Cato Networks
H 20:25 – 20:50

DevSecOps: where to move to?
Enrico Trasatti
Cyber Security Manager
Sogei
H 20:50 – 22:15

Greetings and Dinner
H 22:15 – 01:00

DJ PARTY
SPEAKERS

Martin Knobloch
VP Security Engineering at Valtech.com

Simone Onofri
Security Lead at W3C

Marco Morana
Field CISO at Avocado Systems

Fabio Massacci
Docente Universitario at Vrije Universiteit Amsterdam, Università di Trento

Fabrizio Bugli
Solutions Engineer Professional Lead at Checkmarx

Giacinto Fiore
Co-Founder of Intelligenza Artificiale Spiegata Semplice & AIWEEK

Pasquale Viscanti
Co-Founder of Intelligenza Artificiale Spiegata Semplice & AIWEEK

Henrik Plate
Principal security researcher

Francesco Paolo Giordano
Senior Product Security Engineer at PagoPA S.p.A.

Inga Cherny
Security Researcher at Cato Networks

Enrico Trasatti
Cyber Security Manager at Sogei
MODERATOR

Enrica Priolo
AI & Data Lawyer
Lawyer Enrica Priolo is a jurist with acute expertise and intellectual passion for the complex frontier between law, new technologies and human rights.
She has been working for years as a consultant and Data Protection Officer (DPO) for public and private entities, with a specific focus on GDPR, cybersecurity, cybercrime, liability pursuant to Legislative Decree 231/2001 and, with increasing intensity, on the risks and opportunities related to Artificial Intelligence and automated processes. Author of numerous specialist publications and expert trainer for numerous institutes, Lawyer Priolo combines the rigor of legal analysis with a strong communication ability.
MAIN SPONSORS



GOLD SPONSOR

SILVER SPONSORS





end users


OWASP Italy Day is supported by the APPTAKE project, coordinated by Pluribus One, with the goal of helping SMEs develop secure applications. The project, funded under Grant Agreement No. 101128082, is supported by the European Cybersecurity Competence Centre. Info: http://apptake.eu
Event sponsored by the Autonomous Region of Sardinia.
