Mario Ciccarelli
Mario Ciccarelli

Mario Ciccarelli

Vice President

Mario Ciccarelli is a vice president in Kroll’s Cyber Risk practice, based in the Milan office. He has over 16 years of experience in providing cyber security services throughout Italy and southern Europe. Prior to joining Kroll, Mario led the Incident Response team for an Italian IT Service provider, where he oversaw the detection, analysis and containment of an incident. He dealt with incidents involving hacking, credit card theft, malware and criminal groups carrying out ransomware attacks.

Prior to this role, Mario worked for a management consultancy, where his role involved continuously developing the cyber security strategy, helping clients reinforce their security posture and comply with a range of regulations to meet compliance constraints required by the business. He also designed security architectures and defined best practices and standards for secured networks, services, assets and tools.

Mario began his career as a system engineer with focus on cyber security, penetration testing and, systems and network hardening projects. After almost two decades of practice, he joined major payment services company in Italy as an Information Security Officer – CISO Deputy, where he became accountable and fully conversant with the Payment Card Industry certifications. In this role, he managed a team of security experts in charge of implementing security features and providing support in high-profile and escalated security incidents. He oversaw and assisted in performing ongoing security monitoring and continuous improvement of information systems, including risk assessment, gap analyses, new security capabilities assessments and recommendations. He conducted research and analysis of emerging and on-the-edge technologies and related cyber security implications; he also scouted and tested new cyber security offensive and defensive approaches and technologies. He oversaw regulatory compliance, established and implemented cyber security-related policies and established and oversaw the organization's security architecture.

In his previous roles, Mario has handled several notable projects, which include finding, reverse engineering and dismantling a previously unknown Apache rogue module, named p0sT5n1F3r. Mario shares his passion for reverse engineering and malware analysis within the information security community by attending and presenting in conferences and meetups. His published papers include: “Going Deep - A Guide to Reversing Smoke Loader Malware,” for SentinelOne and a report, p0sT5n1F3r - Reverse Engineering of a Breach, in 2019.

Mario is a telecommunications engineer from the University of Naples Federico II. He trained for the Advanced Exploit Development for Penetration Testers (SEC760) and holds the Global Information Assurance Certification (GIAC) Exploit Researcher and Advanced Penetration Tester (GXPN) certifications. Additionally, he is a Win32 Exploit Developer certified by Corelan, Mikrotik Certified Network Associate and Zabbix Certified Specialist. He is also an Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP) and Offensive Security Wireless Professional (OSWP).


Ciccarelli /en/our-team/mario-ciccarelli /-/media/kroll/images/headshots/vice-presidents/mario-ciccarelli.jpg people {010E62CD-5FFC-47D2-9A88-ACC26BCD8EAC}{058CEC4B-AB74-4982-A8CC-B399FCB93BB2}{911A8E3E-0E6C-4303-A7D0-63E02AA205CF}{EF1B7ABE-2357-44B0-BBE4-F8D4CDA62BAC}{7A48DD95-1A63-4784-842F-A2BE81EAFE13}{41DDB890-9D90-40C4-91B5-6EA832C9060A}{6AE34745-2D7F-4BA8-AB90-FD5CF83E8DC7}{7EC13A8A-F86F-4AEB-8B10-1EE5D7371F2D} {70E25357-B690-49B8-948F-958DAD26DCD4}

Stay Ahead with Kroll

Data Protection Officer (DPO) Consultancy Services

Kroll's data privacy team provide DPO consultancy services to help you become and stay compliant with regulatory mandates.

Virtual CISO (vCISO) Advisory Services

Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.

Notification, Call Centers and Monitoring

Kroll’s data breach notification, call centers and monitoring team brings global breach response expertise to efficiently manage regulatory and reputational needs.

Cyber Risk Assessments

Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.

Computer Forensics

Kroll's computer forensics experts ensure that no digital evidence is overlooked and assist at any stage of an investigation or litigation, regardless of the number or location of data sources.

Cyber Litigation Support

Whether responding to an investigatory matter, forensic discovery demand, or information security incident, Kroll’s forensic engineers have extensive experience providing litigation support to help clients win cases and mitigate losses.

Optimized Third-Party Cyber Risk Management Programs

Manage risk, not spreadsheets. Identify and remediate cybersecurity risks inherent in third-party relationships, helping achieve compliance with regulations such as NYDFS, FARS, GDPR, etc.

Kroll Responder

Stop cyberattacks. Kroll Responder managed detection and response is fueled by seasoned IR experts and frontline threat intelligence to deliver unrivaled response.