Minded Security was established in Italy in 2007 with a focus on supporting businesses and organizations to build secure products and services.
The creation of Minded Security Research Lab resulted in some of the most important advancements in software security including the development of the first tool for Flash Security Testing (SWFintruder), and the first tool for Client Side Testing using Dynamic Tainting Analysis (DOMinatorPro).
Our unique expertise on Software Security permits us to support businesses and organizations to build secure products and services.
Minded Security innovative technologies are the culmination of over many years of research and thousands of successful software security consulting engagements at leading public and private organizations throughout the world.
From 2014 Minded Security UK was created to host resources at Level 39 in London to accelerate R&D on application security products and for expanding current products and services in the European market.
Minded Security Team
Matteo Meucci is the CEO and a cofounder of Minded Security, where he is responsible for strategic direction and business development for the Company. Prior to founding Minded Security, Matteo had several consultancy experiences from BT Global Services, INS, Business-e and CryptoNet. Matteo has more than 15 years of specializing in information security and collaborates from several years at the OWASP project: he founded the OWASP-Italy Chapter in 2005 and leads the OWASP Testing Guide from 2006. Matteo is invited as speaker at many events all around the world talking about Web Application Security. Matteo has a master's degree in Computer Science Engineering from the University of Bologna.
Marco Morana is SVP and senior security application security architect and he leads the architectural risk analysis globally for Citi private bank based in London Canary Wharf where he is also responsible for leading the malware risk analysis and the DDoS risk analysis global initiative(s). He is managing director of Minded Security UK and technical advisor of Nok Nok Labs and Confer Technologies, he also mentors cyber-security start-ups at FinTech campus in Canary Wharf. During his 15+ years of distinguished career in security, he specialized in architecting secure applications for major Fortune 500 companies, training and consulting Chief Information Security Officers (CISOs). He is technical advisor for the Cyber ROAD that is EU funded project and he leads the CISO application security guide project for OWASP organization. He co-developed a process called PASTA (Process for Attack Simulation and Threat Analysis) and he also published the first application security guide for CISO funded by OWASP in 2013. He has spoken on cyber-security since 2005 at security conferences world-wide and most recently at the CISO MIS Summits worldwide. He holds a Masters Degree in Computer Systems Engineering from Northwestern Polytechnic University and an Engineering Doctorate in Mechanical Engineering from University of Padova Italy.
Stefano Di Paola is the CTO and cofounder of Minded Security, where he is Head of Research and Development Lab. In the last 7 years Stefano presented several cutting edge research topics, such as DOM based XSS runtime taint analysis, Expression Language Injection, Http Parameter Pollution, ActionScript Security that lead him to be in the Top Ten Web Hacking Techniques initiative for 5 consecutive years (2007-2011). He also published several security advisories and open source security tools and contributed to the OWASP testing guide. Stefano is Research & Development Director of OWASP Italian Chapter.
Giorgio Fedon is the COO and a cofounder of Minded Security, where he is responsible for running daily operations of the company and managing Professional Services. Prior to founding Minded Security, Giorgio was a senior penetration tester and code auditor. As a long-time experienced penetration tester he has solid system and application security knowledge. He is also specialized in finding and exploiting new vulnerabilities in prominent software and this is both for passion and to stay ahead of the new threats and exploitation techniques before are found and disclosed publicly. He participated as speaker in many national and international events talking mainly about web security and malware obfuscation techniques.
Giovanni Mazza is Managing Director in Minded Security, he is responsible for developing new customers to increase sales and building relationships with new and existing customers and business partners. Giovanni is a senior level IT salesman with over fifteen years of experience in important IT companies such as Xerox and Italtel. He has a deep technical background in Security Internet related technologies and business. He developed projects and services in Network Security, Identity Management and Public Key Infrastructure for Large Enterprises in Finance, Industry, GDO and Public Sectors.
Gianrico Ingrosso is a Principal Security Consultant of the Minded Security consultants team. During his experience with Minded Security, he delivered several security assessments, like penetration tests or secure code reviews, for important companies such as banks, TLC and public companies. He also delivers courses about application security and participates as speaker at some of the most important national security meetings. Gianrico has a master's degree in Computer Science Engineering from "Università degli Studi di Napoli Federico II" and a second level Master in information security management for companies and public administrations from the University of Rome "La Sapienza". He also contributed to the third edition of the OWASP testing guide.
Mauro Gentile is a Principal Security Consultant at Minded Security. He holds a Master of Science in Computer Engineering from the University of Rome "La Sapienza". During his work experience with Minded Security, he performed penetration testing activities and source code analysis of web and mobile applications for several important companies. His primary research interests are mainly focused on web browser security and web application security; he responsibly reported vulnerabilities to big companies and participated to bug bounty programs.
Michele Tumolo is a Principal Security Consultant at Minded Security. Prior to Minded Security Michele was a senior penetration tester and code auditor. His primary research field is now mainly focused in web application and mobile application security. In the past he also delivered several works in malware analysis and developed research tools in the kernel programming field.
Fabrizio Bugli is a Principal Security Consultant of the Minded Security consultants team where he delivers secure code reviews and penetration tests of web applications. His work experience include network security activities with National Research Council (IEIIT-CNR), security assessments and penetration tests for worldwide companies. He is also specialized in post-incident analysis, forensics, security review and hardening of systems within complex environments. He holds a Master's Degree in Computer Science from the University of Genoa.
David Cervigni is a Senior Security Consultant of the Minded Security consultants team. He has a strong experience in collaborating closely with developer teams to securing SDLC and DevOps systems. His specialties include secure coding training, vulnerability assessment, manual and automated code review solutions, critical software design and compliance. His experience maturated mostly in the financial sector and in the biggest institutions across Swiss and UK markets. He holds a master's degree in computer science from the University of Camerino.
Federico Fazzi is a Senior Security Consultant at Minded Security. Before Minded Security he has worked as a penetration tester and source code reviewer for several companies. His field of research includes all aspects of application security (mainly focused on Linux based environments). In Minded Security he currently performs penetration testing and source code analysis for multiple kinds of applications for several companies in various industry sectors. He also responsibly reported vulnerabilities and partecipated in bug bounty programs.
Alessandro Braccio is a Senior Security Consultant of the Minded Security consultants team. During his work experience with Minded Security he performed penetration testing activities and source code analysis of web applications for several important companies. He has work experience as a web developer and holds a degree in Computer Science at the Department of Computer and Information Science of Genoa.
Simone Bovi is a Senior Security Consultant at Minded Security where he delivers Web Application Penetration Test, Mobile Penetration Test (iOS and Android platform), Vulnerability Assessment and Network Penetration Test for several enterprise companies and financial institutions. He holds a Master of Science in Computer Engineering from the University of Padova and security certifications as eCPPT and eWPT. He is also interested in researching and practice Wireless Penetration Test and Social Engineering techniques.
Simone Chiale is a Security Consultant at Minded Security. He holds a Bachelor degree in Computer Engineering and a Master degree in Electronic Engineering from the "Università degli Studi di Genova". After one year of experience as a Web Developer at Reply SPA he decided to take another degree focused on Cyber Security so he moved to Edinburgh (UK) to study the "MSc in Advanced Security and Digital Forensic" from the "Edinburgh Napier University". Now he performs Web Application Penetration Tests and Secure Code Reviews for several companies in Minded Security. He also have many interests in security research and in particular on Android OS, which was the main topic during his Master degree dissertation.
Roberto Zanga is a Security Consultant at Minded Security. He is passionate about Cyber Security, especially with Web Application Penetration Test. He also participates in bug bounty programs and received many invites to private bug bounties. In Minded Security he performs Web Application Penetration Test, Mobile Penetration Test, and Secure Code Review for several companies in different industry sectors.
Stefano Maistri is a Security Consultant at Minded Security. He holds a Bachelor degree in Computer Science and a Master degree in Cyber Security and Software Engineering from the "Università degli Studi di Verona". He also participated to the international summer school on Information Security and Protection ISSISP2014. In Minded Security he performs Web Application Penetration Test, Vulnerability Assessment, Network Penetration Test, Secure Code Review and Mobile Penetration Test. He is also interested in malware detection algorithms and malware evasion techniques, which was the main topics during his Master degree dissertation.
Lorenzo Comi is a Security Consultant at Minded Security. He holds a Master degree in Information Security from "Università degli Studi di Milano" and before working at Minded Security he was a Penetration Tester at Emaze SPA. In Minded Security he performs Web Application Penetration Test, Vulnerability Assessment, Secure Code Review and Mobile Penetration Test. Moreover he's passionate about Wireless and IoT Security.
Giuseppe Porcu is a Security Consultant at Minded Security. He holds a Bachelor degree in Computer Science from the University of Cagliari, where he performed a Network Penetration Test for his thesis, then he moved to University of Verona to continue his studies in Software Engineering and Cyber Security. Before working at Minded Security he was an IT Consultant and Full Stack Developer, now he performs Web Application and Network Penetration Tests and other activities focused on Cyber Security. He is also interested in new technologies and Digital Forensics.
Federico De Meo is a Security Consultant at Minded Security and a Ph.D. student at Università degli Studi di Verona. He holds a Master degree in Information Security from Università degli Studi di Verona. In Minded Security he performs Web Application Penetration Test, Vulnerability Assessment, Secure Code Review and Mobile Penetration Test. As Ph.D. student his research topic is the application of formal methods to the secure analysis of web applications, specifically to the automatically generation of attacks that exploit multiple vulnerabilities. He is also interested in Wireless security and Android development.
Martino Lessio is a Web and Mobile developer at Minded Security, where he works on the development of new web applications analysis tools. Martino has a bachelor degree in Computer Science at the UPO University, he is a learning passionate and has a strong background in UI/UX processes related to the e-commerce area, with a strong focus in client side frameworks acquired over several years of employment. He is the co-founder and maintainer of the IziOzi OpenSource project and has strong passions for DIY, motorcycles, music and photography.
Enrico Aleandri is a Full Stack Web Developer at Minded Security, where he works on new suitable products for web security analysis. He is passionate about new technologies, with a special love for the IoT, he holds a strong experience with web development, and web infrastructure design applied to bank and Insurance environments, according with new trends technology. Across the years he moved from the database modelling, to business backend development, to frontend web design.