Gerardo Costabile

Gerardo Costabile

President, IISFA – CEO, DeepCyber

Logo DeepCyber


Chief Executive Officer of DeepCyber

DeepCyber, created in 2017 and acquired by the Maggioli Group at the end of 2020, specialized in Advanced Cyber Threat Intelligence, Protection and Anti-fraud.

Co-inventor of a patent, filed both in the United States and in Europe, on cyber security (vulnerabilty management) in the IOT/ICS/SCADA sector.

Previously, he was Chief Security Officer of British Telecom and Fastweb spa, Executive Director of the “Forensic Technology and Discovery Services” practice of EY for Western Europe, Chief Information Security Officer of the Poste Italiane Group and investigator in the Fraud Investigation Group of the Guardia di Finanza in Milan.

Member of the Team that captured the first Italian virus writers (2001 and 2003), blocked the two bad actor crews that had hacked NASA, US Army, US Navy and over 1000 government machines worldwide (2001) and did the first investigations in Italy on phishing and money laundering (2005-2006).

In over 25 years of experience in the military, public and corporate international world, he has always had the goal of creating a greater partnership between the public and private sectors, in the activities of his competence. In this direction, in 2009, he contributed to the creation of the European Electronic Crime Task Force, founded by the Italian Post Office, the Postal Police and the United State Secret Service, coordinating its work on a technical-scientific level. He is still a member of the New York Electronic Crime Task Force (NYECTF) of the United States Secret Service.

President of the Italian Chapter of IISFA (non-profit association that brings together specialists in digital forensics), Adjunct professor in cyber security and digital forensics for some universities, he is a speaker in various technical-specialist forums and is also the author of numerous scientific publications on cybersecurity, cyberintelligence, digital forensics, Compliance, Privacy, IT risk management, IT audit, computer crime.

Over the years, he has achieved some international certifications, including: Certified Information Forensics Investigator (CIFI), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC), Certified Hacking Forensics Investigation (CHFI) and AccessData Certified Examiner (ACE) internationally recognized and achieved respectively at the IISFA International (, EC-Council, ISACA ( and Accessdata.