Raffaele Ruggeri

Raffaele Ruggeri

Cyber Security Specialist

Who am I ?

4 minute read

Raffaele Ruggeri

👨‍💻 Who I Am

I am a Cyber Security Specialist with extensive experience in Red Teaming and Penetration Testing. I currently work at Bip in the Cyber Security department, where I simulate real-world cyber-attacks to test company systems’ security and train defense teams.

🎓 Background

I graduated in Computer Science from La Sapienza University of Rome and have always been passionate about computing and Cyber Security. Today, I am part of the Cyber Defense Excellence Center at BIP - Business Integration Partners S.p.A., where I engage in highly technical activities across various areas of cyber security, with a particular focus on penetration testing and vulnerability assessment.

In addition to my current role, I have previous work experience as an Ethical Hacker at Aditinet Nomios and as an ICT Security Specialist at S3K. During the years 2022/2023, I held the position of evaluator in a CEVA laboratory in the Cyber Security sector at Sipal S.p.A.

I have sought challenging experiences over the years to immerse myself in the field I am most passionate about. Notably, I participated and reached the finals in the CyberX - mind4future training program competition, organized by Leonardo S.p.A. and Cyber4.0, which allowed me to expand my knowledge in the CyberSec field. image-center Additionally, years ago, I won the national Hack@2021 competition focused on optimization problem-solving, organized by Math2B srl. Finale hack@2021 Code image-center

📚 Education

  • Bachelor’s Degree in Computer Science - [La Sapienza], [2023]
  • Master’s Degree in Cyber Security (on going) - [La Sapienza], [2026]
  • RomHack Training 2023: image-center
  • TCM Security Academy:
    • Beginner’s Guide to IoT and Hardware Hacking image-center
    • Practical Web Hacking image-center
    • Practical Phishing Campaigns image-center
    • Rust 101 image-center
  • Udemy:
    • Introduzione alla malware analysis: Un approccio pratico image-center
    • Ethical Hacking & Pentesting in Active Directory Pratico! image-center
    • BLOCKCHAIN INNOVATION MANAGER image-center
  • Coursera:
    • Cyber Threat Hunting image-center
    • Security Operations Center (SOC) image-center

💼 Work Experience

Cyber Security Consultant - Bip S.p.A. (Red Team)

[July/2024] - Present

  • Conduct advanced penetration tests and targeted attack simulations
  • Perform vulnerability management for a prominent insurance company
  • Develop custom tools to automate testing activities

Ethical Hacker - Aditinet Nomios

[February/2024] - [July/2024]
I was a key member of the ethical hacking team at Aditinet Nomios.
In this role, I was responsible for leading the execution of assigned projects, coordinating the team’s work, and ensuring that the set objectives were achieved. The main activities of the team included:

  • Open Source Intelligence (OSINT);
  • Vulnerability Assessment;
  • Penetration Testing;

ICT Security Specialist - S3K S.p.A.

[September/2023] - [February/2024]
I worked in the ethical hacking team at S3K, focusing on OSINT activities, Vulnerability Assessment, and Penetration Testing in the areas of Web Applications, Mobile, and Infrastructure. Additionally, I supported SOC activities by assisting first-level analysts with their daily tasks and collaborating with second-level analysts to fine-tune SIEM rules and the data collection infrastructure.

Security Evaluation Specialist - SIPAL S.p.A.

[March/2022] - [March/2023]

  • Evaluation of ICT products and systems
  • Compliance verification activities against a specific security standard (e.g., Common Criteria)
  • Assessment of Security Targets
  • Assistance with Common Criteria
  • Consulting on the preparation of documentation necessary for an evaluation.

🛠 Technical Skills

  • OSINT
  • Red Team Operations
  • Malware Development
  • Exploit Development
  • Bug Hunting
  • Malware Analysis
  • Advanced Phishing
  • Radio Communications Interception
  • Hardware Hacking

🔬 Personal Projects

  • PTS - Portable Transceiver System: the project aims to facilitate communication between two Android devices in areas without coverage through direct radio communication.
  • Sapienza CTF: “Sapienza CTF” is the workbook of the ACSAI Cyber Security course
  • pix2text-hotkey: A lightweight script for performing HCR/OCR on formulas, pages, and text extracted directly from clipboard images using hotkeys
  • nessus2csv: a script for exporting all the data from the nessus scan file into csv format
  • TelegramGrabber: Python script capable of downloading chats from Telegram groups and channels and saving them in an SQLite database.
  • ATC - Air Traffic Control : Air Traffic Control is a visualization software that, paired with Dump1090, identifies and calculates the coordinates of the aircrafts.

🎯 Hobbies & Interests

  • Electronics: Tinkering with electronic projects, building small devices, and experimenting with embedded systems.
  • Capture The Flag (CTF): Participating in CTF competitions to hone my penetration testing and problem-solving skills.
  • Calisthenics: Practicing bodyweight exercises to improve strength, flexibility, and overall fitness.
  • Programming: Exploring new programming languages and contributing to open-source security tools.
  • Reading: Staying up to date with the latest in cyber security, ethical hacking, and technology trends.

📈 Future Goals

Continue enhancing my skills in Cyber Security and exploring new research areas like machine learning applied to security.

Categories:

Updated: