I’ve been an information security and privacy consultant since 1999. I then improved my knowledge also in the quality, service management, business continuity and other disciplines. I work on ISO/IEC 27001, ISO/IEC 27701, ISO 9001, ISO/IEC 20000-1, ISO 22301 and other international standards.
I also carry on audits (of first, second and third party) and I design and deliver training sessions on the same subjects.
I published the book “Information security”
(last edition in 2022). Since 2008 I have delivered a newsletter on the subjects above (https://www.cesaregallotti.it/Newsletter.html
and on LinkedIn) and I have written my professional notes on https://blog.cesaregallotti.it
. I have worked, as Italian expert, in the ISO/IEC JTC 1 SC 27 WG 1 and WG 5 for the standards ISO/IEC 27001, ISO/IEC 27002, ISO/IEC 27003, ISO/IEC 27701 and others.