Bocconi Achieves ISO/IEC 27001 Certification: Stronger Safeguards for Data and Information

12 Jun 2025, by Ezio Renda

An accomplishment confirming the University’s commitment to data protection, privacy, cybersecurity and compliance with the new NIS2 directive

Bocconi University has been certified ISO/IEC 27001, issued by the CSQA certification body, the leading international standard for cybersecurity, which requires compliance with 93 norms concerning the technical and organizational measures in place to shield information systems.

This achievement marks the endpoint of a track involving many technological projects, beginning in 2021. These initiatives have aimed both to strengthen the university's network and systems defenses and to enhance organizational awareness of cyber risks and self-protection capabilities. With this latest step, Bocconi goes furthest in the adoption of a robust and effective information security management system—an increasingly crucial component for ensuring the confidentiality of student and stakeholder data in compliance with GDPR regulations, as well as for maintaining institutional resilience in the face of mounting cyber-threats.

“In addition to its own data, the University also treats data belonging to students and many external partners. It is essential for us to ensure the confidentiality, integrity, and availability of this valuable informational asset and to demonstrate to our stakeholders that we have systematically and thoroughly implemented all best practices in the field of cybersecurity,” explains Riccardo Taranto, Managing Director of Bocconi University. “Achieving this certification assures us we are on the right path and makes us want to continue with even greater determination.”

“We are proud to have certified Bocconi University according to the ISO/IEC 27001 standard,” - explains Maria Chiara Ferrarese, Managing Director of CSQA. - “This international standard confirms the adoption of an information security management system that meets the highest cybersecurity requirements. The certification recognizes the structured and rigorous path undertaken by the University to protect sensitive data and information, in line with the challenges posed by the new NIS2 directive and with globally defined best practices. Bocconi represents excellence not only in the academic field but now also in terms of digital resilience and the safeguarding of information assets.”

The certification is part of a broader digital transformation strategy that the University has been pursuing for years, involving innovation in internal processes and the adoption of digital technologies across all activities. Bocconi is currently the only university in Italy—and among the few worldwide—to have obtained this certification across the full scope of its administrative processes.

Now that Bocconi falls under the scope of the new NIS2 directive, ISO/IEC 27001 certification will also ensure compliance with the requirements introduced by the new regulation.

Bocconi Achieves ISO/IEC 27001 Certification: Stronger Safeguards for Data and Information

University

Looking Ahead: The Department of Computing Sciences Launches the Trevisan Prize

AI and Biology: The Bocconi Team Wins the Phagos × AWS Hackdays 2025

In Memory of Marzio Achille Romani

The 2025 Edition of ‘A Scuola di Inclusione’: Solidarity Van Comes Out on Top

Bocconi University Dedicates Piazza Sraffa 13 Building to Leonardo Del Vecchio and Celebrates His Humanity and Philanthropic Legacy

Bocconi and OpenAI Join Forces to Transform AI in the Social Sciences

B4i Launches Its XII Startup Call

Open Science: Tools and Strategies for Informed Publishing

Inside Milan: The Paradoxes That Shape the Future

Bocconi Opens Its Doors to the Talents of the Future