Simone Segnalini

Partner

Simone Segnalini is Partner at RSM Società di Revisione e Organizzazione Contabile S.p.A. and serves as Digital, Risk & Transformation Leader with development responsibilities both nationally and internationally.

He is an Engineer, registered with the Order of Engineers of the Province of Rome since 2009.

With over 17 years of professional experience, including 2 years in Brazil, Simone has gained experience in a leading consultancy firm, supporting both national and international companies in identifying and managing risks arising from new regulations or the use of technologies, and in developing projects in the areas of Governance, Audit & Compliance.

He has extensive experience as a leading manager of international and multidisciplinary teams, aimed at improving business processes and information systems and evolving internal controls — helping organizations effectively manage risks and respond promptly to a continually evolving regulatory environment.

Simone Segnalini is responsible for:

• Assessment of IT processes and related control mechanisms in accordance with major international best practices (e.g., COBIT, ISO 27001, ITIL, NIST — Cybersecurity)
• Supporting the compliance of IT processes with relevant regulations and standards (e.g., NIS2, ISO 27001, ISO 27017, ISO 27018, ISO 20000-1, ISO 27701)
• Outsourcing of the role of Data Protection Officer (DPO) and providing support in the field of privacy / GDPR
• Outsourcing of the role of Chief Information Security Officer (CISO) or appointed CSIRT contact (under NIS2 framework)
• Assessment and design of business continuity plans, including through Business Impact Analysis (BIA)
• Assistance to the Internal Audit function via full outsourcing or co-sourcing activities, with special focus on IT, Privacy, Business Continuity & technical audits
• Evaluation and implementation of processes and related controls under SOx (Sarbanes-Oxley Act) and Italian Legislative Decree 262/2005
• Assessment of the appropriate design and effectiveness of the internal control system within administrative-accounting processes, with a specific focus on IT General Controls (ITGC) and data management
• Data and process analysis aimed at efficiency improvements and process re-engineering, also through innovative solutions and dashboards for continuous auditing / continuous monitoring
• Project assurance during the implementation of ERP systems or during complex business restructuring or regulatory / procedural changes
• Support for the implementation of corporate applications for business process evolution, including Oracle NetSuite (Italian localization), financial reporting & consolidation, and ESG reporting

Career

• Digital, Risk & Transformation Leader and Oracle NetSuite Italy Leader, RSM Società di Revisione e Organizzazione Contabile S.p.A.
• Innovation Manager (in compliance with AICQ SICEV regulation — UNI 11814:2021)
• Project Management Professional (PMP®), active member of the Project Management Institute (PMI)
• Lead Auditor ISO 27001:2022 — Information Security, Cybersecurity and Privacy Protection (Information Security Management System)
• Lead Auditor ISO 20000-1:2018 — IT Service Management System
• ITIL Foundation — Information Technology Infrastructure Library
• Lead Auditor ISO 9001:2015 — Quality Management System
• Lead Auditor ISO 14001:2015 — Environmental Management System
• Lead Auditor ISO 45001:2018 — Health & Safety Management System
• Lead Auditor ISO 50001:2011 — Energy Management System
• Lead Auditor ISO 37001:2016 — Anti-bribery Management System.

Expertise

• Cybersecurity & Privacy Implementation & Compliance
• Internal Controls & SOx (Sarbanes–Oxley) Audit
• Data Analytics & Process Mining
• Process Digitalisation & Electronic Invoicing
• Enterprise System Risks (for major ERPs) and International Instructor of the course “Auditing SAP: Configurations and Security”
• European Single Electronic Format (ESEF) and Inline XBRL

Sectors

• Automotive
• Energy & Utilities
• Financial Services
• Food & Beverage
• Logistics & Handling
• Manufacturing
• Oil & Gas
• Telecommunications