Cybersecurity Engineering · Politecnico di Torino

Security, trust
and cyber risk.

I am Stefano Falco, a Computer Engineering graduate and Cybersecurity Engineering MSc student focused on security governance. I connect technical depth with a clear interest in risk, compliance, digital trust and defensive security.

✉ Contact me in LinkedIn ⌘ GitHub ↓ CV
MScCybersecurity Engineering, ongoing
BScComputer Engineering, Politecnico di Torino
TargetSecurity governance, cyber risk and CISO track
Portrait photo of Stefano Falco
Recruiter snapshot Technical cybersecurity foundations, hands-on labs, clear communication and governance-oriented thinking.
About

Engineering mindset, security direction.

My profile is built around the full cybersecurity lifecycle: understanding systems, identifying weaknesses, designing controls, communicating risk and keeping security aligned with organizational goals.

I am currently pursuing a Master’s degree in Cybersecurity Engineering at Politecnico di Torino, after completing a Bachelor’s degree in Computer Engineering. My interests sit at the intersection of secure systems, cryptography, digital forensics, network security and regulatory-aware cyber governance.

I like cybersecurity work that is both technically grounded and useful for decision-making: not just “finding issues”, but documenting them, prioritizing them, and turning them into concrete mitigation paths.

Long-term direction: become a cybersecurity leader able to translate technical evidence into risk-based decisions, especially in regulated environments.

What I bring

▣ Cybersecurity Engineering ▣ Risk & Compliance mindset ▣ Digital Forensics interest ▣ Cryptography foundations ▣ Network Security ▣ Technical writing ▣ English technical communication ▣ Tutoring & knowledge sharing ▣ IEEE-HKN academic community
Focus areas

Where I am building depth.

I am shaping a hybrid profile: enough technical depth to understand real systems, and enough governance awareness to support business-relevant security decisions.

Governance, Risk & Compliance

Security governance, regulatory awareness, risk-based prioritization, privacy and compliance-oriented controls.

Cryptography & Digital Trust

Applied cryptography, zero-knowledge concepts, self-sovereign identity, transparency and trust-by-evidence thinking.

Network & Wireless Security

VPNs, firewall rules, wired/wireless networking, traffic analysis, protocol behavior and performance evaluation.

Digital Forensics & CTI

Evidence-aware analysis, threat intelligence, incident-oriented documentation and defensive interpretation of attacks.

Systems & Infrastructure

Windows/Linux administration, server maintenance, monitoring, Matrix42, troubleshooting and security procedures.

;

Programming & Automation

Python, Java, C/C++, web technologies, scripting mindset and structured technical documentation.

Selected work

Projects, reports and research notes.

A curated selection of cybersecurity, cryptography, digital forensics, network security and software engineering work. The emphasis is on clear documentation, reproducible reasoning and business-aware security analysis.

Satellite QKD QKD · Standards

Satellite QKD Security Analysis: From Micius to Jinan-1

Security analysis of satellite-based Quantum Key Distribution, covering BB84 decoy-state QKD, Micius timing side channels, Jinan-1 architectural mitigations, trusted-node risks and QKD standardization.

BB84Side channelsThreat modelingQKD standards
GitHub repo →
Cyber risk GRC · Threat modeling

Banking Cyber Risk Assessment

Cyber risk assessment and threat modeling case study for a simulated banking infrastructure, including STRIDE, MITRE ATT&CK, CVE mapping, TARA-style scoring, attack graphs and risk treatment.

STRIDEMITRE ATT&CKRisk scoringControls
GitHub repo →
DFIR case study Forensics · Reporting

Operation Zodiac DFIR Case Study

Digital forensics and incident response case study covering network forensics, Linux host artefact analysis, OSINT, steganography triage, malware static analysis and forensic reporting.

DFIRLinux artefactsOSINTMalware triage
GitHub repo →
Network security GNS3 · IPsec

IPsec VPN Misconfiguration Lab

GNS3-based site-to-site VPN misconfiguration lab covering PSK, PKI, IKEv1, weak crypto, wildcard PSKs, certificate lifecycle issues, Wireshark evidence and remediation.

IPsecPKIWiresharkRemediation
GitHub repo →
QKD simulation Python · Qiskit

QKD Basis Randomization Simulation

Educational BB84-inspired QKD simulation with dynamic basis-pair selection, Eve intercept-and-resend modeling, QBER estimation and Monte Carlo analysis.

QKDQBERMonte CarloJupyter
GitHub repo →
Software engineering Java · Maven

Java OOP Portfolio

Curated Java object-oriented programming portfolio with Maven case studies, unit tests, GitHub Actions and cleaned academic projects. Included as software engineering foundation alongside security work.

JavaOOPMavenGitHub Actions
GitHub repo →
Zero-day research CTI · DFIR

Zero-Day Vulnerabilities: The Underground Market

Defense-focused report on zero-day vulnerabilities, exploit markets, vulnerability equities, historical cases and resilience strategies such as EDR, UEBA, hardening, sandboxing and threat intelligence.

Zero-daysExploit marketsThreat intelligenceIncident response
Open PDF →
Digital trust GRC · Privacy

Beyond the Black Box: Reclaiming Digital Trust

Report on how availability, controllability and transparency can make trust more observable and enforceable, with discussion of Cloudflare, Mastodon, Signal, Web3, SSI and ZKPs.

Digital trustTransparencySSIZKPs
Open PDF →
Wireless lab Wireshark · iperf3

WiFi Lab 2025: Ethernet/WiFi Throughput Analysis

Experimental networking report comparing TCP and UDP goodput across Ethernet and 802.11n WiFi scenarios, using measurements, protocol overhead reasoning and packet-level analysis.

802.11nTCP/UDPWiresharkPerformance
Open PDF →
Experience

Education and practical background.

My path combines academic cybersecurity training with hands-on IT infrastructure experience and communication-oriented roles.

Timeline

Master’s Degree in Cybersecurity Engineering

Politecnico di Torino. Focus on cybersecurity engineering, security lifecycle thinking, cryptography, secure systems, privacy and governance-aware security.

Bachelor’s Degree in Computer Engineering

Politecnico di Torino. Computer engineering foundations: programming, systems, networks, databases, architectures and software design.

Junior Systems Engineer · ACS Service

System administration, network troubleshooting, server mapping and maintenance, security procedures and Matrix42-based IT service management.

ICT Technician · Microlab

Hardware repair, device setup, software configuration, system updates and direct customer-facing problem solving.

Professional positioning

I am especially interested in roles where technical evidence, security governance and regulatory awareness meet: cybersecurity consulting, technology risk, security operations support, GRC, digital forensics and regulated-sector security.

Cyber risk Security governance Compliance-aware engineering Incident documentation Regulated environments CISO long-term track
Toolkit

Tools and technologies.

A compact overview of the technical stack and security topics I use or study across university projects, labs and professional experience.

Python
Java
C/C++
HTML/CSS/JS
Linux / Kali
Windows Admin
Wireshark
Nmap
VPN / Firewalls
GNS3
VirtualBox / VMware
GitHub
Cryptography
Digital Forensics
Security Regulations
Technical Writing
Contact

Let’s connect.

I am open to cybersecurity internships, junior roles, academic collaborations and opportunities involving security, risk, governance, digital trust or technical security analysis.

Write an email
Email copied.
Emailfalco.stefano.2001@gmail.com LinkedIn/in/stefano-falco-763783334 GitHub@StefanoFalco Portfoliostefanofalco.github.io/MyWebSite