The adoption of AI and machine learning within security systems introduced solutions that improve effectiveness and efficiency in the prevention and control of risk situations, but also new opportunities for data analysis. As a matter of fact, it allowed to process large amounts of information in real time, as well as the rapid identification of patterns, faces and behaviour. A great opportunity, but one that exposes to the risk of data theft.

ANORC plays a substantial role in facilitating the adoption of such technologies, providing operators with skills and best practices for implementing up-to-date protocols, but also for developing a data security-sensitive corporate culture.

In light of this, what are the possibilities offered by innovation and the related risks for security professionals?

According to Alessandro Selam, Director General of ANORC: “If we consider the opportunities, the possibilities are endless. Technology allows us to create, develop and control a wide range of aspects, including security and data manipulation. However, appropriate programming based on the logic of data management is required right from the phase in which we create the information. In order to be able to securely capture information, it is essential to have professionals who are able to protect such data, just as they used to do with sensitive company documentation. Therefore, ANORC has a dual role, as it represents the reference market and enhances the skills of those registered in its professional lists, ensuring compliance with deontological rules and facilitating the choice and protection of users in accordance with competition rules. As a matter of fact, ANORC was founded in 2007 as a market representative, while later, pursuant to Law 4 of 2013, ANORC Professioni was established with the task of protecting consumers in relation to these professions. The two souls of ANORC are committed to the digitalization and protection of information and document heritage in the public and private sector, promoting institutional dialogue together with training and professional updating, because we believe that document systems must be structured according to standards that guarantee maximum reliability and security. For the personnel of an entity that processes data, information and documents, it is essential to be informed and aware of what they are dealing with. A very high percentage of unauthorised access and intrusion is caused by personal behaviour, therefore training and awareness of people are crucial to prevent such risks.”

This increasing complexity brought about by digitalization requires skilled professionals who are trained to understand digital technologies, analyse data, and apply best practices to guarantee their integrity, the security of goods and people, as well as privacy. What kind of training is needed?

In this respect, Selam emphasized that: “Specific training is certainly needed. At the international level, there are regulations and safety standards, such as the ISO norm related to the so-called 27000 'family'. The quality of the services offered is fundamental, especially when dealing with public administrations. In Italy, for example, anyone wishing to provide digital preservation services must be included in a particular section of the public list of suppliers. To be accredited on this particular public list, it is necessary to possess certain quality and safety certifications. Likewise, professionals should be able to certify their skills and professionalism in the areas in which they work. For this reason, ANORC Professioni was accredited by the Italian Ministry of Economic Development to certify the quality of services offered by professionals on its lists on the basis of the evaluation of curricula and the outcome of interviews. At ANORC Professioni we reward professional experience by recognising formal, non-formal and informal training.”

What will be ANORC's role at SICUREZZA in pulling the strings of this complex system?

“We would like to bring our experience in the field of document management – explained Selam – both at the private and public level: it is something that plays a fundamental role, and we would like to share it with those who will attend the Cyber Security Arena. We will also bring our experience in corporate information management, as well as an insight into data security.”