SECURITY ARCHITECT

Alessandro Gnagni

Security architecture for large-scale, regulated environments.

Rome, Italy

// Security architecture

Resilient, compliant infrastructure—aligned with how teams build and run systems.

I work with organisations on network and perimeter security, cloud and industrial systems—architectures and operations that fit real constraints and delivery pace, without shelf-ware or theatre.

/ Currently at eu‑LISA

How I work

Architectures and controls that fit how teams build and run systems—resilient, compliant, no theatre. What gets deployed is what auditors see.

I focus on closing the gap between regulation and engineering: clear patterns and guardrails so compliance and delivery line up, and security supports rather than blocks.

I’ve done this across government, defence, utilities and telecoms—large, multi-country, mission-critical. I’ve seen the constraints; I help organisations navigate them.

In practice

Large-scale & regulated

Architectures and guidance that work where compliance and availability both matter—government, defence, utilities, telco—with real deadlines and operational constraints.

Network, cloud and industrial

Perimeter, cloud and industrial security in one consistent approach, so organisations don’t have to juggle multiple vendors or fill gaps between them.

Security that ships

Patterns and SOC processes that teams can use. Governance that doesn’t slow delivery to a crawl.

Focus areas

Network & perimeter

Segmentation, secure connectivity and hardened perimeters so the network supports the business instead of being the weak link.

Cloud & modern stack

Security that fits how workloads run in the cloud: IAM, network controls, workload protection and visibility for compliance and control.

Industrial & critical

OT/IT boundaries, monitoring and change discipline so critical systems stay resilient and teams can detect and respond when it matters.

SOC & operations

Monitoring, triage and escalation that scale—so the SOC helps the organisation instead of drowning in noise.

Architecture & governance

Requirements turned into concrete patterns and guardrails so teams know what “good” looks like and can move without constant security bottlenecks.

Experience

Senior Security Architect

eu-LISA · Apr 2025 – Present · Strasbourg, France

European Union Agency for the Operational Management of Large-Scale IT Systems in the Area of Freedom, Security and Justice (Government Agency, 501–1000 employees).

  • Security architecture that lets large-scale EU systems meet legal and operational constraints without blocking delivery.
  • Cross-functional alignment so controls are understood and adopted, not imposed.

Security Architect

Leonardo · Oct 2021 – Apr 2025 · Rome, Italy

Defense and space manufacturing (Public Company, 10,001+ employees), working in engineering and technical domains on security architectures for critical systems.

  • Architectures that keep mission-critical defence and aerospace systems secure by design.
  • Patterns and guardrails that teams could reuse across complex, long-lived platforms.

Senior Network and Security Engineer for Vodafone Group Services

RICOH Deutschland GmbH · Jan 2018 – Oct 2021 · Düsseldorf, Germany

Network and security engineering for large-scale enterprise and carrier-grade environments.

  • Connectivity and security services that supported Vodafone Group with reliability and visibility.
  • More robust, observable platforms so operations could detect and respond faster.

IT Security Consultant

GS-Net Italia s.r.l. · Aug 2014 – Jan 2018 · Rome, Italy

Network Security Consultant and Technical Team Leader of the Security Operation Center at ACEA S.p.A.

  • A SOC that gave the utility clear visibility and faster triage and escalation.
  • Processes and tooling that scaled with the organisation instead of drowning it in alerts.

Systems Engineer

Gf Com srl · Jan 2009 – Dec 2011

Licenses & Certifications

Global Industrial Cyber Security Professional (GICSP)

GIAC Certifications · Issued Jun 2024 · Expires Jun 2028

Credential: View certificate

Validates skills in securing industrial control systems and critical infrastructure.

Professional Cloud Security Engineer

Google Cloud · Issued Oct 2023 · Expired Oct 2025

Credential: View certificate

Focused on designing and implementing secure solutions on Google Cloud.

Citrix Certified Professional – Networking (CCP–N)

Citrix · Issued Dec 2015 · Expired Dec 2018

Credential: View certificate

Demonstrated expertise in networking and application delivery with Citrix technologies.

Selected work

Secure connectivity for multi‑country EU systems

Architectures that balanced availability, performance and regulation for large European environments—so organisations could operate at scale without trading off security for delivery.

Hardening and monitoring for a major utility

Stronger perimeter and SOC—detection and response improved, with processes that fit how the organisation actually works.

Network & security services for Vodafone Group

Reliable, visible connectivity and security services for operations and compliance.

Skills & Languages

Technical skills

  • Security Architecture
  • Network Security
  • Security Operations
  • Cloud Security
  • Industrial Cyber Security

Languages

  • Italian – Native / Bilingual
  • English – Professional working proficiency

Publications & Organizations

OLSR slides and lab for Netkit

2013

Lab and slides (in Italian) showing the OLSR routing protocol for mobile ad-hoc networks in action.

View publication

Ninux.org

Community involvement since 2011

Participation in community networking and open infrastructure initiatives.

Contact

For consulting, collaborations or speaking: reach out below.