Interview with Roberto Ranaldo: “Sharing experience openly is something I value greatly.”
Swiss FS-CSC relies on the commitment of its members. For a period of three years, Roberto Ranaldo, Head of IT & Security Risk and Governance at SIX Group, has fulfilled the role of head of our Risk Management chapter. In this interview, the engineering manager and risk specialist talks about what it involves and working in a team of experts.
Roberto, you’ve been active within the Swiss FS-CSC since the very early days. How did that come about?
The SIX Group is a founding member of the Swiss FS-CSC and we’re involved in a number of its boards and chapters. For me, the role as head of the Risk Management chapter was an opportunity and a challenge. It was something new, something that took me out of my comfort zone.
You’ll still be offering your expert services to the chapter. What motivates you to carry on working for the association?
Being part of the chapter gives me a unique opportunity to share experience across institutions, be part of a team and expand the network. And also, if I can contribute to the cyber resilience of the Swiss financial centre, I’m happy to do that.
What are the issues you deal with in the Risk Management chapter?
The Risk Management chapter deals with systemic cyber risks. They don’t just affect individual institutions: they can potentially damage the entire financial centre. For example, a critical service provider can be a gateway to financial institutions. We’ve also been looking into the interdependences between institutions, such as insurers processing their payments via banks. And we’ve tackled current threats and regulatory topics. Our focus is always on protecting the financial centre as a whole, and not just individual institutions.
Can you tell us a little about working in the chapter?
Working in the chapter is all about interacting with others. A range of institutions are represented: banks in supervisory categories 1 to 5, insurers, infrastructure operators like us, service providers – that’s great, and crucial when it comes to developing cross-sector scenarios.
Until now, we’ve had virtual meetings every two weeks to discuss our progress. There have also been physical get-togethers. We’ve arranged workshops to discuss theoretical issues and methodology. Sharing information and discussing issues face to face have proved to be important and valuable.
We’ve set up sub-groups to examine the various risk scenarios in greater depth and define possible actions: asking what the Swiss FS-CSC’s response could be and what measures the regulator and the federal government could take.
Individual chapter members bring up specific questions. They ask “how do you do that?” – it’s very practice-based and a good benchmark. Sharing experience openly is something I value greatly, and it also brings huge benefits to the Swiss FS-CSC as a whole.
What was your remit as head of the chapter?
The head sets the agenda, coordinates and motivates members to participate actively. I was fortunate in that there were always people ready to get involved with content and present their solutions, for example. My job also included liaising with other chapters and the Steering Board.
What qualities does the new head of the Risk Management chapter need?
They need curiosity and an openness to new perspectives. They should be prepared to get stuck in, enjoy coordinating, moderating and working with a group to solve complex cyber challenges. A background in cyber or IT risk or business continuity management is definitely an advantage, if not a necessity.
Roberto, thank you for talking to us and for all you’ve achieved as head of chapter. We hope you’re able to continue a fascinating and constructive dialogue with our experts.