Open to opportunities

Dante Verona

@danteverona

Message

Information security leader specializing in ISO 27001 risk management, assurance, and application security.

Italy

Message

What I'm looking for

I’m looking for a security leadership role where I can run ISO 27001 risk and assurance programs, coordinate testing and remediation, and strengthen application security and compliance with clear stakeholder reporting.

I’m an Information Security Expert at AXA, currently serving as a Security Team Leader. I oversee and coordinate external teams to ensure our organization’s cybersecurity needs are met across risk analysis, technical hardening, patching, penetration testing, and ISO 27001-aligned compliance.

Throughout my AXA journey, I’ve implemented an Information Security Risk Framework to provide management information and reporting, and I regularly coordinate security tests across business processes, applications, and IT networks. I deliver second opinions on risks, drive follow-up remediation, and make colleagues aware so security behaviors become part of day-to-day operations.

Before that, I led application security initiatives such as Secure Development Lifecycle Management and Application Security Reviews, acted as a focal point for penetration test campaigns, and contributed to governance and maturity-building across regions. I’m driven by assurance that’s practical—turning risk and evidence into clear decisions for senior stakeholders.

Experience

Work history, roles, and key accomplishments

Current

Security Team Leader

Current

AXA

Jan 2021 - Present (5 years 5 months)

Led information security activities for 4+ years, coordinating external security teams across risk analysis, hardening/patching, penetration testing, and ISO 27001-aligned assurance. Ensured cybersecurity efforts are comprehensive, effective, and aligned to internal ISMS framework.

Information Security Management ISO 27001 Information Risk Management Penetration Testing Application Security Compliance Management Security Governance Vulnerability Remediation Security Testing

Corporate Security

AXA

Jun 2019 - Jan 2025 (5 years 7 months)

Implemented an information security risk framework to provide management reporting and enable risk-based decisions across the entity over 5+ years. Coordinated security testing to identify vulnerabilities across business processes, applications, and IT network, and executed risk second-opinion reviews with follow-up remediation.

Information Security & Risk Management Risk Frameworks Security Testing Vulnerability Assessment Security Awareness Compliance Support

Information & Cyber Security Expert

AXA Italia

Jan 2017 - Jun 2019 (2 years 5 months)

Worked as an information and cyber security expert for 2+ years, owning the information risk management program and PCI/DSS compliance. Managed secure development lifecycle activities and contributed to infrastructure security assurance while collaborating with AXA global security communities.

Information Risk Management PCI Compliance Secure Development Lifecycle (SDLC)SecDevOps Infrastructure Security Policy Writing Compliance Management

Information Security Deputy

AXA Assicurazione

Jul 2012 - Dec 2014 (2 years 5 months)

Served as information security deputy from 2012 to 2014, increasing visibility and awareness of information security risk management. Contributed to security competence center planning and governance model evolution, strengthening IT risk management and IT compliance maturity across the Mediterranean and Latin America region.

Information Security & Risk Management Security Governance Strategic Planning IT Risk Management IT Compliance Regional Security Programs

Business Continuity Senior Analyst

AXA Assicurazioni

Jun 2007 - Jun 2011 (4 years)

Coordinated the AXA MedLa region information risk management program and supported the compliance office as a senior analyst from 2007 to 2011. Developed IT security project proposals and coordinated security penetration testing to support regional security objectives.

Business Continuity Planning Information Risk Management IT Security Project Proposals Compliance Support Regional Security Programs IT Security Governance

IT Security Architect

Capgemini

Dec 2005 - May 2007 (1 year 5 months)

Designed and led security initiatives as an IT security architect from 2005 to 2007, including a SOX minimum security baseline and an access management solution for web and mobile. Coordinated a disaster recovery project for the access layer platform to improve service resilience.

Access Management User Provisioning Disaster Recovery Planning Security Architecture Identity Management

Security Consultant

Finmatica S.p.A.

Jan 2000 - Jan 2004 (4 years)

Provided security consulting for 4 years, leading identity and access management for Banca AntonVeneta using Access Master (BULL-Evidian). Delivered privacy consulting and technical pre-sales for Finmatica security products.

Identity and Access Management (IAM)Access Master (BULL Evidian)Privacy Consulting Pre Sales Solution Architecture

Security Consultant

Intesis

Jan 2000 - Jan 2001 (1 year)

Developed digital signing and timestamping solutions as a security consultant from 2000 to 2001. Worked on software development for security functionality focused on trust and integrity.

Time Stamping Security Software Development Security Consulting Software Engineering

Signal Corps Lieutenant

Esercito Italiano

Mar 1998 - Nov 1998 (8 months)

Led a signal platoon for 9 months in 1998, supporting military signal operations within the Italian Army Signal Corps. Managed platoon leadership responsibilities during operational assignments in Modena.

Platoon Leadership Signal Corps Military Communications Operational Readiness Team Command