New IT Risk Services is a young company, established in April 2011. Its founder is Francesco Metalli, an experienced and multi-skilled specialist in IT audit, IT security, IT governance and project management.
We believe the professional IT service market is characterized by the need to find value-adding professionals who operate at senior level and who are demonstrably able to assist customers.
New IT Risk Services mission is to answer the call for effective advice and consultancy, driven by a business focused approach.
We are currently working with G4S, the largest security provider worldwide. We manage for this customer the whole IT audit life cycle worldwide (120+ operating companies)
What is “new” in our approach?
We operate at senior management strategic level
We follow an holistic vision of information management.
We are result driven. Success is the only benchmark we use
We are experienced with complex multinational and multicultural realities, feeling “at home” wherever we are
We prefer practice v. theory. What counts is what works, and not what is supposed to.
We follow international standards and best practices, but we respect the fact that each reality is different and we adapt to it
We engage with our customers, at all levels, on a daily basis. We operate inside your business, not aside
We are technology agnostic
We are hands on
Information management - IT risk management - IT audit - Programme / project management - IT governance - IT Security - ISO 27001/17799 - COBIT - ITIL - Third party and out sourcing management and contract negotiations - ERP systems and business solutions - Business analysis
18+ years of professional successes in IT auditing, project management, IT security and governance. More than 200 missions accomplished for more than 100 different customers in the advanced service industry during the last 8 years. More than 2000 recommendations issued. We have operated in 65+ countries in Western and Eastern Europe, Africa, Middle East, United States, Central and South America and Asia (including China).
Fluent in English, Italian, Dutch. Basic Spanish. Can read/understand Portuguese and French.
We worked with
G4S, the largest security provider worldwide (www.g4s.com) as Head IT audit
Marcus Evans, (www.marcusevans.com), conference speaker and trainer
Sykes, worldwide business process outsourcing services (www.sykes.com) as Team leader
The Organization for the Prohibiltion of Chemical Weapons, OPCW (www.opcw.org) as IT Manager
The European Police Organization, EUROPOL (www.europol.europa.eu) as Head IT security
Shell (www.shell.com) as Project manager
University of Wales, Post Graduate Certificate in Business Administration
British Standard Institute, ISO 27001 Lead Auditor
ISACA, Certified Information Security Auditor (CISA)
Project management Institute (PMI), Project Management Professional (PMP)
The International Information Systems Security Certification Consortium ISC2, Certified Information Systems Security Professional (CISSP)
Siena University (Italy), degree in European and International law
In the past, we obtained as well:
ISACA, Certified Information Security Manager, CISM (certification expired)
COMPTIA, Certified Project Manager
MICROSOFT, Microsoft Certified System Administrator (MCSA),
Speaker, 3rd Annual Strategic IT audit Conference, 2007, Amsterdam
Speaker and Chairman, 5th Annual Pan-European event, Internal Audit Conference, 2009, Barcelona
Speaker, 3rd Annual IT Governance Conference, 2009, Amsterdam
Speaker, 2dn Annual Master Data Management Conference, 2009, Berlin
Author, Managing Information Risks in Complex IT Systems, published by the Institute of Internal Auditors (www.theiia.org), 2007
Participated to 'An Inside Job', article published by the PM Network, July 2009
During February 2010, Marcus Evans contracted us to train 19 top professionals on ERP projects risk and project management in Singapore.