I am an assistant professor (RTD-A) at the Department of Electronic, Computer Science and Biotechnology (DEIB) of Polytechnic University of Milan, Italy, and a Visiting researcher at the Engineering and Social Informatics Research Group (ESOTICS) of the University of Bournemouth. I was a post-doctoral research fellow at Politecnico di Milano (2017-2021) and at the University of Trento (2016-2017) at the department of Information Engineering and Computer Science (DISI), where I also received my Ph.D. in 2016.
In 2023 I got the National Scientific Habilitation (Abilitazione Scientifica Nazionale – ASN) for computer science (Informatica – 01/b1) and computer science engineering (Ingegneria informatica – 09/h1)
I am eligible for RTT positions reserved for researchers external to Politecnico di Milano since I attended a Ph.D. course and carried out research activities, on the basis of a formal assignment (excluding free activities), at universities or research institutes, Italian or foreign, other than the Polytechnic of Milan, for more than 36 months.
My main research interest is the design of secure socio-technical systems. I have investigated different aspects of this research field, such as security requirements elicitation and definition, security requirements enforcement, secure business process definition, verification of procedural constraints and generation of secure code.
Currently, I coordinate the working group on Security, Privacy and Ethics of the Italian Project Heath Big Data. I am involved in the TEADAL European project as the leader of the task on security policies engineering. I was involved in DITAS, a European project for data and computation movement in fog computing. Before, I coordinated the effort of my research group at the University of Trento for VisiOn, a European project for the creation of a platform for visualization and enforcement of privacy requirements, and in PACAS, another European project for participatory architectural change management in ATM systems. I was also involved in Aniketos, another European project about the security of service compositions at design time and runtime, and in ERC-Lucretius, an ERC project focused on designing software systems that evolve in response to changes in their requirements.