Stas Fainberg

Welcome To My Website

Let's Start

A Little Bit About Myself

Highly skilled and results-driven Cybersecurity Software Engineer with over 7 years of experience in securing critical infrastructure, developing security automations, and implementing robust threat detection and incident response strategies. Expertise in designing and optimizing security systems including SIEM platforms, SOAR platforms, firewalls, endpoint protection and Cloud. Proficient in Python, Bash and PowerShell with a deep understanding of security frameworks such as NIST, ISO/IEC 27001, and GDPR. Proven track record of leading cross-functional teams, driving process improvements, and enhancing security measures through automation and innovative solutions. Adept at threat hunting, vulnerability assessments, and incident management, with a strong focus on reducing MTTD (Mean Time to Detect) and MTTR (Mean Time to Respond).


My name is Stas Fainberg and I am a cyber security software engineer. I own a bachelor's degree (B.Sc) in Computer Science, I hold a CompTIA Security+ certification and I am also a Microsoft Certified IT Professional. I'm currently working as a Cyber Security Software Engineer, developing solutions and integrations in Python for SOAR platform. I am happily married to Olga, my beautiful soul mate, she has a master degree in Global Health Management and she works as a Clinical Research Associate. We have 2 cute little sons and a cute little dog name Jack. We love to travel and do outdoor activities. I also like to play the saxophone, play football and do snowboarding on my free time.

Education

Bachelor of Science in Computer Science
College of Management Academic Studies
2015-2018


Associate's Degree in Electrical & Electronics Engineering
Amal-Bet College
2003-2005



Certifications

CompTIA Security+
CompTIA
2025


Splunk Infrastructure Overview
Splunk
2021


McAfee SIEM 10 Essentials (Technical)
McAfee
2020


MCP: Microsoft Certified Professional
Microsoft
2012


MCITP: Microsoft Certified IT Professional
Microsoft
2010

Technology Summary

Software

Python (JINJA) | Bash | Java | HTML | CSS | JavaScript | jQuery | JSON | BootStrap4 | REST-API | PowerShell | MS SQL | PostgreSQL | Assembly | MIPS Architecture | PyCharm

Cyber Security

SIEM (McAfee, IBM QRadar, RSA Netwitness) | SOAR (IBM Security QRadar SOAR - Resilient) | Firewall (Fortinet, Sophos, CheckPoint) | Anti-Virus (McAfee, ESET, Microsoft Defender) | DLP (Symantec) | SSL | Understanding cyber-based threat techniques and procedures | MITRE ATT&CK | Cyber Kill Chain | Cyber Diamond Model | Incident Response | SOC | NIST | ISO/IEC 27001

Information Technology

MCITP | Linux | VMware | Hyper-V | CCNA | Windows Server (2003, 2008, 2012, 2016) | Active Directory | DNS | DHCP | GPO | WSUS | WDS | Print Server | File Server | Exchange (2007, 2010, 2013) | Office (2010, 2013, 2016, 365) | Backup Exec | ITIL | ITSM

DevOps

Git | GitLab | Docker | Ansible | ARM Template | Terraform

Networking

WireShark | OSI-Model | TCP\IP

Cloud

Azure

Project Management

Agile (Scrum) | Confluence | JIRA | GitLab | Collaboration with cross-functional teams

Projects

Java

Graphical 3D Maze Game
2016

A fun game for people who loves mazes. I built a desktop game application allowing the user to generate a maze based on input (floors, columns, rows) and play to solve it. In addition the user can ask for a hint, if he doesn't know what should be his next move, or the user can ask for a solution to solve the maze and reach out to the trophy if he can't solve the maze by himself. The maze is generated using the following algorithms: DFS, BFS or Best First Search. The solution is also generated using the same algorithms.

Technology: Java, multi-threading, swing, IO streams, networking, design pattern, MVP, github, Eclipse.

Mobile (Android JAVA)

Online Music Playlists Sharing Application
2016

A fun online music playlists sharing application for people who loves music. The application allowing users signing in to create, listen and share their own music playlists or listen to other shared playlists which was shared by other users. The songs on a playlist can be played and listend using the YouTube application API. The shared playlists are apearing on the main page of the application and in addition a user can rate these shared playlists that was created by others.

Technology: Java, Android Studio, Firebase, Cloudinary and YouTube API. Social network was implemented.

.Net/C#

Web Application
2017

A web application which was built for Beit Ekstein company. This web application allowing users to manage apartments, malfunctions in each apartment and the technicians who are fixing those malfunctions. Instructors of Bet-Ekstein can create new apartments based on the company's purchase, the residents of an apartment can raise tickets describing the malfunction they experiencing in their apartment and the technicians who are fixin these malfunctions can close those tickets after solving them.

Technology: APS.NET Core, MVC, EF, LINQ, JQuery, Ajax, Javascript, HTML5, CSS, Facebook API, WebService, github, Microsoft SQL.

C/C++

Network Tic Tac Toe Game
2017

A fun Tic Tac Toe game between online users which are connected to the same local network. In order to play the game, users needs be connected to the main server (UDP socket). After connecting to the server each user can see a list of all online users and he can choose agains which user he would like to play. A TCP\IP socket is created for every game between two users. Both users have the same game status view and each user on his turn can fill the table with the sign was designated to him while the game was created.

Technology: C, C++, TCP and UDP sockets, Multi-Threading. Network interaction, Server & Client.

C/C++

Vacuum Cleaner Robot
2016

Vacuum cleaner robot with learning algorithm which causes the robot (914 Pc-Bot with sensors) to move in space and cover new areas. This robot can move in space by its own and mark the places he visited. The robot has two functions: the first function is to draw a map while it is moving in space, based on the data receiving by it's sensors and the second function is to mark places he visited based on a given map that was loaded to his memory.

Technology: C, C++, Eclipse, STC algorithm, PCBot.

HTML/CSS/JS

My Web Profile

My Web Profile is basically this website you're visiting. I've decided to show my basic web development skills so I designed and built this web page which contains the data from my resume.

Technology: HTML, CSS, Bootstrap4, JavaScript, Sublime Text, github.

HTML/CSS/JS

Shearim - Money Collection Tracking System
2019

A web application for Shearim company (שערים). A Money Collection Tracking System is made for tracking clients and the money they need to pay to Shearim company. User adds clients with data about the payments they have to make. User can track which client made the payment, how much money was paied in general and how much money was left to be paied. The date presented about each clinet is the amount of money he needs to pay, invoice number, the payment method, who made the payment and the payment date.

Technology: Linux, Node.js, HTML, CSS, JavaScript, Jquery, BootStrap4, MySQL.

Experience

Cyber Security Software Engineer

UBS Investment Bank & Wealth Management
2021 - present

Developed automation and integrations in Python and Bash for the SOAR system, adhering to the Software Development Life Cycle (SDLC) in DEV, TEST, SIT, and PROD environments • Developed GitLab CI/CD pipelines to streamline, automate, and enhance software build and testing processes, leveraging a repository manager for packaging and dependency management • Managed the code deployment procedure, including code review, best practice implementation, documentation, setup instructions, packaging, management CAB (Change Advisory Board) approvals, and release management • Designed and implemented SOAR playbooks to automate incident response procedures, built complex automation rules for threat detection and containment, and created end-to-end security workflows to streamline alert triage, investigation, and remediation processes across multiple security tools and platforms • Managed vulnerabilities by periodically scanning, identifying, evaluating, prioritizing, and mitigating them • Handled version/patch management and lifecycle management of multiple SOAR platform instances and environments, working with Ansible • Developed managerial procedures for content management, system administration and change management • Built integrations (API) between internal cybersecurity systems (SIEM, DLP, UEBA), ticketing platforms, and external (3rd party) systems • Built an Azure DevOps pipeline using ARM Templates for deploying, installing and configuring SOAR environments • Maintained direct and regular interaction with stakeholders to ensure systems met defined requirements and functioned optimally • Acted as a team leader, serving as a point of escalation for other engineers, providing guidance and mentoring, and driving process improvements and gap identification (Using SCRUM methodology)


SecOps Lead

TrustNet LTD (MSSP)
2020 - 2021

Directed end-to-end deployments of variety of SIEM platforms across enterprise environments, including hardware provisioning, OS installation, advanced software configuration, and system tuning for optimized threat detection and response • Engineered robust SIEM content by onboarding diverse log sources, developing custom log parsers, indexing critical security data, and crafting high-fidelity correlation rules to detect advanced persistent threats (APTs) and insider threats • Conducted in-depth threat hunting and vulnerability assessments, leveraging automation tools and frameworks to identify, prioritize, and mitigate risks, ensuring compliance with security frameworks such as ISO 27001, NIST, and GDPR • Designed and formalized SOC workflows, playbooks, and incident response plans, integrating best practices for threat intelligence sharing, containment, and eradication strategies • Delivered proactive security analysis by aggregating logs, utilizing vulnerability scanners, and automating responses with tools like SOAR platforms to reduce mean time to detect (MTTD) and mean time to respond (MTTR) • Led large-scale SIEM migration initiatives, including strategy development, data migration, and system optimization, ensuring seamless transitions and zero operational downtime in highly complex environments • Collaborated with cross-functional teams, including penetration testers, vulnerability analysts, project managers, and CISOs, to implement security measures and align incident response strategies with organizational risk tolerance • Developed and deployed Python-based log collection clients and automation scripts, enabling efficient integration of non-standard log sources and streamlining data processing for real-time threat monitoring • Managed cybersecurity best practices, including zero trust architecture, endpoint protection, and continuous monitoring, to fortify clients' security postures against evolving cyber threats


System Administration/System Security Engineer

Bynet-Semech (IT Services Provider)
2017 - 2020

Deployed and optimized enterprise-grade firewalls, implementing granular security policies and access controls to strengthen network defense and reduce security vulnerabilities • Deployed and configured endpoint protection platforms and DLP solutions to safeguard organizational data • Installed, maintained, and managed servers (Windows Server 2012, 2016, and Linux RHEL) ensuring optimal system performance • Executed backup procedures and managed backup systems to ensure data integrity and business continuity • Led IT and cross-platform projects, driving successful project execution and technical innovation • Collaborated with VP's, CTO's, and project managers to align IT initiatives with business goals and ensure smooth project delivery • Managed and mentored teams, tracked progress on business objectives and ensured timely completion of project milestones with high-quality results


System Administration/IT Management outsourcing at UBS Investment Bank

Bynet-Semech (IT Services Provider)
2011 - 2017

Served as the primary point of contact for all core applications and infrastructure issues, ensuring timely resolution and system stability • Enhanced aspects of IT operations by setting strategic long-term goals, driving continuous improvement, and boosting service efficiency • Managed the IT change process, overseeing and executing seamless transitions while minimizing system disruptions • Led incident and request management, escalating and tracking IT-related issues to ensure rapid resolution and minimal downtime • Oversaw HW/SW inventory management and procurement, successfully leading projects in collaboration with overseas support teams and global entities • Provided comprehensive end-user support across multiple platforms, ensuring smooth operations and minimal user disruptions • Integrated and delivered 1st level support for key trading systems (Shaldag, FMR, Leumi Finance, Menta), portfolio management systems (Danel), and market data systems (Super, Bizportal, TradeOne, Bloomberg) • Built an excellent reputation for resolving complex problems swiftly, consistently improving customer satisfaction and driving operational efficiency


Helpdesk/System Administrator

Elad Group
2009 - 2011

Supporting over 800 end users (XP, Win7) in HaSalom and HaMehozi courts in Tel-Aviv • Installing and maintaining server's hardware and software (Windows server 2003, 2008, 2012) • Working with: AD, DNS, DHCP, GPO, Exchange 2003, Print server, File server, WSUS, Hyper-V and Office (2003, 2007) • Working with Backup Exec, NetVault, NetApp Configurations and maintenance • VPN users support (Installing and configuring) remotely and in customer's home • Peripheral support: printers, scanners and faxes maintenance