Antonio Lobuono

• Team Leadership & Strategy: Led a multidisciplinary CyberSecurity team to meet strategic objectives, optimizing operational efficiency.
• Cybersecurity & Risk Management: Developed cyber defense strategies based on MITRE ATT&CK, NIST, and ENISA, reducing risks and safeguarding critical assets.
• Incident Response & Automation: Streamlined incident response processes, reducing response times by 30%, and integrated SIEM solutions (Splunk, QRadar) to enhance threat detection.
• Advanced Threat Intelligence: Established a Cyber Threat Intelligence (CTI) system using tools like MISP, Flashpoint, and Intel 471 for proactive monitoring and predictive analysis.
• Collaboration & Reporting: Strengthened organizational security through customized policies and partnerships with law enforcement, delivering clear reports and strategic metrics to senior stakeholders.
• Threat Detection: Recognize attacker tools, tactics, and procedures to improve threat detection and response.

Key Achievements:

• Reduced threat detection and mitigation times by 25%.
• Optimized EDR/XDR solutions, improving threat response capabilities.
• Developed and implemented security policies, enhancing overall business resilience.

• Team Leadership: Guide the CyberSecurity Team to achieve organizational goals.
• Risk Management: Assess and understand Cyber Threats and Vulnerabilities.
• Strategy Development: Create and execute Cyber Defence strategies aligned with frameworks like NIST and MITRE ATT&CK.
• Incident Management: Oversee timely identification and resolution of security incidents.
• Continuous Improvement: Stay updated on emerging threats and enhance security posture.
• External Engagement: Build relationships with industry partners and law enforcement.
• Reporting: Prepare reports on security incidents and threat intelligence for senior management.

• Incident Response Coordination: Lead and coordinate incident response activities to mitigate risks during cybersecurity attacks.
• Threat Intelligence Project Management: Manage projects on Social Network Monitoring, Antifraud measures, VIP Protection, Deep/Dark Web surveillance, and Phishing protection.
• Cyber Security Solution Design: Design and implement cybersecurity solutions, including SIEM tools (e.g., Splunk, RSA Security Analytics, QRadar).
• Threat Management: Oversee threats detected by Endpoint Protection solutions like EDR, MDR, and XDR (e.g., CrowdStrike, TrendMicro).
• Cyber Threat Intelligence (CTI): Define CTI processes, adopt tools (e.g., MISP), and monitor threats for effective mitigation.
• Engineering of Threat Intelligence Tools: Engineer and maintain Threat Intelligence tools (e.g., Open-CTI, Flashpoint, Intel 471) for daily analyses and assessments.

• Lead the Cyber Defence Team and manage incident response activities.
• Develop and implement a comprehensive threat intelligence strategy.
• Design and optimize cybersecurity solutions, including SIEM and endpoint protection.
• Collaborate with cross-functional teams to integrate security best practices.
• Stay updated on cybersecurity trends and regulatory requirements.
• Define cybersecurity policies and compliance measures.

• Design and implement cybersecurity architectures for network protection.
• Configure Layer 2/3 devices (Cisco, Huawei) and backbone devices (DSLAM, BNG).
• Manage routing and switching protocols, including BGP, OSPF, and MPLS.
• Provide expertise in IP internetworking and LAN switching protocols.
• Collaborate with teams to integrate security measures across systems.

• Cybersecurity Architecture: Design and implement tailored frameworks for organizational needs.
• Network Maintenance: Oversee maintenance of routers, switches, and load balancers for enhanced security.
• Authentication Management: Manage 802.1x authentication systems for secure access.
• Performance Monitoring: Lead monitoring and propose optimizations for network performance.
• Firewall Configuration: Manage next-gen firewalls (IPS/IDS) for perimeter protection.
• Protocol Analysis: Analyze OSI model application protocols for effective content inspection.

• Execute troubleshooting and configuration of Cisco devices to ensure robust network security.
• Maintain and optimize anti-malware systems (Symantec, Sophos, FireEye) to protect against cyber threats.
• Design and engineer network security components, implementing next-generation firewall systems (IPS/IDS) for enhanced perimeter and internal defense.
• Identify and analyze attacker tools, tactics, and procedures to inform and strengthen the security strategy.
• Develop and maintain documentation for security solutions, ensuring alignment with industry standards and best practices.
• Monitor network performance and execute optimization strategies for increased efficiency.
• Maintain secure access controls through Active Directory management, including Group Policy and user configurations.
• Ensure seamless operations and security through effective systems and change management.
• Create automation frameworks for rapid response to malicious activities, enhancing incident response capabilities.