Fabrizio Bulgarelli


Fabrizio has been a Partner at RSM Italia since 2017, responsible for coordinating all activities corresponding to the Risk Advisory Service and Corporate Governance area.

He has attained the CISA (Certified Information System Audit) certification, the ISO 27001 Lead Auditor certification, the ISO 22301 Lead Auditor certification and the COBIT5 Foundation certification.

He is a member of ISACA, AIIA, Oracle CLUSIT Community for Security and the UNINFO commission.


  • Liaison officer on privacy matters (GDPR and DPO) for the public administrations in Alto Adige and Valle d’Aosta, as well as for banks and international industries.
  • Co-author of the UNI/PdR 66:2019 ‘Requirements for assessment in accordance with UNI 11697:2017 “Professional Profiles for ICT concerning Privacy (GDPR)”’ reference practice, and he is also the author of numerous publications, the most recent being “Consapevolmente Cloud” (Knowingly Cloud), a guide for the companies that must face innovation with clear ideas, of which he is the author and team leader.
  • European Asset Quality Review (AQR) Project conducted by the European Central Bank in collaboration with the Bank of Italy.
  • He chairs and coordinates the projects for business continuity in the public administrations in Alto Adige, in collaboration with the Agency for a Digital Italy (formerly Cnipa/DigitPA).
  • He is involved in studies, coordinating and training professionals, and is a teacher at the Italian Internal Audit Association, and in the past he taught at the Italian IT Auditor Association and the Clusit Security Summit.


  • Information Technology and Security, with audit and compliance interventions for IT systems at important companies in the insurance, banking, industrial and financial sectors, and in public administrations.
  • SOX
  • Solvency II
  • ISAE 3402
  • Planning and migration of the business processes and the definition of policy and company procedures.


  • Banking
  • Insurance
  • Public Administration
  • Industry
  • Finance
  • Fashion
  • Services
News articles

More and more sectors are using Artificial Intelligence

21 May 2021
There are more and more sectors where it is possible to apply AI, thanks to the use of specific tools and algorithms. Let's see some of the main ones: natural language processing (NLP), for text analysis; conversational AI (part of NLP), for customer communication (customer care, infotainment); computer vision or image processing, espe...

GDPR and IA: the importance of managing information assets

28 April 2021
The issue of privacy and protection of personal data involves not only users and consumers, but inevitably also companies which, regardless of their size, have to manage their own information and that of their customers every day. The importance of managing information assets Being able to protect themselves in a safe way, therefore, is funda...

Multiple uses of Artificial Intelligence

26 April 2021
Artificial Intelligence allows to rapidly “read” large amount of data, which can both be used to obtain information and to automatize processes or making them more efficient. Companies are increasingly exploiting AI applications by replacing or supporting human beings in case of repetitive activities or enabling new processes and functions. ...

Cyber security and data privacy: number one risks for companies

3 November 2020
Risk In Focus 2021 – Hot topics  for  internal auditors - survey has been recently published, the result of cooperation of Internal Audit Institues from 10 European countries, under the auspices of ECIIA (European Confederation of Institutes of Internal Auditors) which reports on a yearly base a map of the main risks companies will have...

Data protection and coronavirus (COVID-19)

18 May 2020
The coronavirus disease (COVID-19) outbreak has infected more than 4 million people (May 18th , 2020) all round the world. Its spread has also left businesses counting costs and people losing jobs. The economic implications affected nearly all industries from Customer Service to Operations. The outbreak also significantly affected the...

Business Continuity and Disaster Recovery

22 April 2020
RSM can help you prepare for and survive major disruptions. Fire. Flood. Hurricane. Tornado. Cyberattack. Pandemic. These and other disasters can force your organization to shut down for days, weeks or months. An effective business continuity and disaster recovery plan, however, can help you mitigate physical and financial damage, and get you...