Looking for the latest information security and privacy insights from EXTEND? Follow us on LinkedIn.

Antonella Commiato

CTO and Chief Information Security Officer

CTO | CISO | Speaker | Mentor | Cybersecurity by Design

Experienced and innovative technology and security leader. 10+ years of information security expertise, accompanied by decades of IT project management, software development, and enterprise architecture experience.

A take-charge leader, strategist, and decision-maker who produces results by collaborating and building consensus with cross-functional teams and clients. Brings a unique array of technical, business, and vCISO experience to help organizations tackle information security problems, reduce cyber risk, and meet regulatory requirements.

Helps board members and the C-suite understand their cyber risk landscape, identify security and privacy issues, prioritize investments to defend against cybercriminals and accidental breaches, and implement a plan to significantly improve the maturity of their security and privacy programs.

Partners with the C-Suite, information security, and IT teams to:

  • Understand cybersecurity threats and issues in the context of their business,
  • Evaluate existing security posture; identify security “value points” and improvement opportunities,
  • Differentiate and prioritize security investments based on an organization’s risk appetite and strategic business goals,
  • Establish a rigorous, disciplined approach to the management of information security,
  • Incorporate security by design across an information architecture, and
  • Design and implement infosec programs, including frameworks and enabling tools and technologies, tailored to their needs.

Holds a variety of certifications, including Certified Data Privacy Solutions Engineer (CDPSE). CMMC Registered Practitioner, IBITGQ ISO 27001 Certified ISMS Lead Implementer, Auditing the Cybersecurity Program, Information Systems Cybersecurity PCT, OneTrust Fellow of Privacy Technology, OneTrust Certified GRC Professional, Project Management Professional (PMP), Scrum Master, Java Programmer Certification.

An active member of ISACA, ISSA, ISC2, Girls in Tech Los Angeles, PMI, AITP, and IAPP. Board Member of the OWASP Los Angeles Chapter.

Specialties: Cyber Risk Analysis & Management, Cybersecurity Transformation, Information Security Program Management, IT and Security Strategy, Security Program Methodologies, Enterprise Architecture, Security by Design, Security Tools and Technologies, Information Governance, Compliance Management, Security Metrics, Security Controls, Security Consulting, IT and InfoSec Audit, IT Security Policies, Change Management, Agile Methodologies, and Cross-Functional Leadership


BA, Computer Science and Mathematics, University of Central Missouri

Masters, Cybersecurity and Information Assurance, Penn State University
Scroll to Top
Skip to content

By continuing to use the site, you agree to the use of cookies. Learn More

We use cookies to personalize content and ads, to provide social media features and to analyze our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.