Abstract
Tecnologia e abitudini: cambiamenti comportamentali e sfide di cybersicurezza
In 2025 Istat launched a project to strengthen staff awareness, responsibility, and behaviour in daily data and information management, recognising that security depends not only on technology but also on people, behaviours, and risk perception. The project rests on three pillars: awareness, training, and organisational culture and develops through assessment, tailored training paths, cultural actions, and impact measurement. The first initiative was the test “Can you recognise risky behaviours?”, delivered using an online questionnaire, covering topics such as passwords, data handling, cyber-attacks, AI, and internal policies. Responses defined three profiles to guide training. Most staff showed high awareness and risk perception, though misalignments emerged between self-perception and actual competence. Research combined a static survey of employees and a dynamic follow-up after workshops, revealing differentiated training needs. Participatory workshops translate theory into practice, encouraging micro-behavioural changes that strengthen organisational digital resilience and the overall protection and security system.
Presentazioni
- DOCUMENTO
Video
Bio
Mauro Sodani is a Researcher at the Italian National Institute of Statistics, with over 25 years of experience in ICT and in managing projects supporting official statistics. Within the Directorate for Information Technology, he focuses on risk analysis in privacy impact assessments from an IT perspective, and also works on Business Intelligence platforms and data analysis. He has taken part in numerous international cooperation missions, sharing expertise with other statistical institutes. He holds a degree in Economics from Sapienza University of Rome, a second-level Master’s degree in Education Sciences from Roma Tre University, an Executive Master in IT Governance & Management from LUISS Business School, and a Master’s in Energy Management from LUMSA University. He is currently a volunteer and Director of Training at the PMI Central Italy Chapter, and holds the Project Management Professional (PMP) and Certified in Cybersecurity (CC) certifications.
Abstract
Tecnologia e abitudini: cambiamenti comportamentali e sfide di cybersicurezza
In 2025 Istat launched a project to strengthen staff awareness, responsibility, and behaviour in daily data and information management, recognising that security depends not only on technology but also on people, behaviours, and risk perception. The project rests on three pillars: awareness, training, and organisational culture and develops through assessment, tailored training paths, cultural actions, and impact measurement. The first initiative was the test “Can you recognise risky behaviours?”, delivered using an online questionnaire, covering topics such as passwords, data handling, cyber-attacks, AI, and internal policies. Responses defined three profiles to guide training. Most staff showed high awareness and risk perception, though misalignments emerged between self-perception and actual competence. Research combined a static survey of employees and a dynamic follow-up after workshops, revealing differentiated training needs. Participatory workshops translate theory into practice, encouraging micro-behavioural changes that strengthen organisational digital resilience and the overall protection and security system.
Attribuzione 4.0 Internazionale