Cyber Journey presents OWASP Italy Day 2025: The Benchmark for Software
Security.
Why is cybersecurity so important?
Few fields have grown as rapidly as cybersecurity, evolving from a niche topic to a global concern at the forefront of businesses, institutions, and media discussions.
Are all cyberattacks really that sophisticated?
When it comes to cyberattacks, the word most often used is “sophisticated.” But is that always the case? Or are there tools and methodologies that can effectively prevent and mitigate them?
During OWASP Italy Day, we will explore both offensive and defensive cybersecurity techniques with experts who tackle these challenges daily.
The OWASP Foundation, through its global community, develops projects, best practices, and solutions to enhance application security worldwide.
Cyber Journey presents OWASP Italy Day
Cyber Journey 2025 is the perfect opportunity to explore the latest cybersecurity challenges, understand emerging trends, and dive into the technological and regulatory strategies needed to protect digital assets.
Once again this year, OWASP Italy Day will put the spotlight on software security, a crucial topic in a digital world where applications are the backbone of both professional and personal activities.
Purpose of the event
Training
Build cybersecurity skills to help an increasingly “connected” society protect itself adequately.
Sharing
Sharing the knowledge of important professionals in the sector, encouraging contamination and the exchange of points of view on this constantly evolving world.
Innovation
Make this event a moment of inspiration and reflection on the new scenarios and new challenges opened by the Cybersecurity market.
PROGRAMME
H 15:30 – 15:50
Check-In
H 15:50 – 16:00
Welcome
H 16:00 – 16:30
Keynote Speaker – In Tools We Trust
Martin Knobloch
VP Security Engineering
Valtech.com
H 16:30 – 17:00
Keynote Speaker – Threat Modeling Digital Credentials: What Could Go Wrong?
Simone Onofri
W3C
H 17:00 – 17:25
Threat Modeling AI and Blockchain Applications: Security by Design for Emerging Technologies
Marco Morana
Avocado Systems
H 17:25 – 17:50
Talk: If you Helm chart is insecure, your pet LLM can fix it, can’t it?
Fabio Massacci
University Professor
Vrije Universiteit Amsterdam, Università di Trento
H 17:50 – 18:15
Threats in Models; Considerations and Impact of AI Supply Chain in Application Security
Fabrizio Bugli
Solutions Engineer Professional Lead
Checkmarx
Ore 18:15 – 18:45
Coffee Break
H 18:50 – 19:10
Giacinto Fiore
Pasquale Viscanti
A Chat with Artificial Intelligence – Simply Explained!
Giacinto Fiore & Pasquale Viscanti
Co-Founder
intelligenza Artificiale Spiegata Semplice & AIWEEK
H 19:10 – 19:35
Evolving Your AppSec Program in
the Era of AI
Luca Compagna
Security Researcher Consultant
Endor Labs
H 19:35 – 20:00
Building a Product Security Team – lessons from the field
Francesco Paolo Giordano
Senior Product Security Engineer
PagoPA S.p.A.
H 20:00 – 20:25
DevSecOps: where to move to?
Enrico Trasatti
Cyber Security Manager
Sogei
H 20:25 – 22:15
Greetings and Dinner
H 22:15 – 01:00
DJ PARTY
SPEAKERS
Martin Knobloch
VP Security Engineering at Valtech.com
Simone Onofri
Security Lead at W3C
Marco Morana
Field CISO at Avocado Systems
Fabio Massacci
Docente Universitario at Vrije Universiteit Amsterdam, Università di Trento
Fabrizio Bugli
Solutions Engineer Professional Lead at Checkmarx
Giacinto Fiore
Co-Founder of Intelligenza Artificiale Spiegata Semplice & AIWEEK
Pasquale Viscanti
Co-Founder of Intelligenza Artificiale Spiegata Semplice & AIWEEK
Luca Compagna
Security Researcher Consultant for Endor Labs
Francesco Paolo Giordano
Senior Product Security Engineer at PagoPA S.p.A.
Enrico Trasatti
Cyber Security Manager at Sogei
MODERATOR
Enrica Priolo
AI & Data Lawyer
Lawyer Enrica Priolo is a jurist with acute expertise and intellectual passion for the complex frontier between law, new technologies and human rights.
She has been working for years as a consultant and Data Protection Officer (DPO) for public and private entities, with a specific focus on GDPR, cybersecurity, cybercrime, liability pursuant to Legislative Decree 231/2001 and, with increasing intensity, on the risks and opportunities related to Artificial Intelligence and automated processes. Author of numerous specialist publications and expert trainer for numerous institutes, Lawyer Priolo combines the rigor of legal analysis with a strong communication ability.
MAIN SPONSORS
GOLD SPONSOR
SILVER SPONSORS
end users
OWASP Italy Day is supported by the APPTAKE project, coordinated by Pluribus One, with the goal of helping SMEs develop secure applications. The project, funded under Grant Agreement No. 101128082, is supported by the European Cybersecurity Competence Centre. Info: http://apptake.eu
Partners
Thanks to the collaboration with the Italian Chapter of ISC2, the event has been accredited as useful for the purpose of obtaining CPE (Continuing Professional Education) credits for the maintenance of professional certifications such as CISSP, CSSP, CISA, CISM and similar that require continuous training. It is possible to request the certificates by sending an email to [email protected]
LOCATION
Frontemare, Viale Lungomare del Golfo, 150 – 09045 Quartu Sant’Elena (Cagliari)
Event sponsored by the Autonomous Region of Sardinia.
