Ahmet Donmez

Head of IT Audit at Getir, ISO27001 Lead Auditor

Amsterdam, North Holland, Netherlands

About

Experience

  • Getir (6 yrs)
    • Head of Technology Audit
      Feb 2024 - Present · 2 yrs 6 mos

      ◦ Establishing Getir's Internal Audit, IT Audit, Information Security, and Fraud departments, contributing to the establishment of a robust IT control environment ◦ Leading the company-wide establishment of IT audit awareness ◦ Developing and communicating cybersecurity IT Risk Management strategy and three-year roadmaps to leadership ◦ Collaborating with cross-functional teams (IT, finance, compliance, audit, legal) to implement cybersecurity processes and security controls, ensuring regulatory compliance and a strong IT control environment ◦ Providing expertise in enterprise cybersecurity risk management for applications, devices, and compliance ◦ Adding business value through the standardization, implementation, and execution of assessments and risk mitigation strategies ◦ Preparing the annual IT audit plan, conducting audits, and producing IT audit reports for the Management Board ◦ Recruiting and supervising senior and staff auditors, providing leadership, coaching, and support ◦ Coordinating with external auditors for interim and year-end audits

    • Technology Audit Manager
      May 2023 - Feb 2024 · 10 mos

    • Technology Audit Manager
      Jan 2022 - May 2023 · 1 yr 5 mos

  • Doğuş Yayın Grubu (5 yrs 3 mos)
    • Senior IT Auditor / Data Privacy Officer
      Feb 2018 - Aug 2020 · 2 yrs 7 mos

      Project and Process Management&Control&Development and Information Risk Management Auditing IT & Business systems and controlling processes and improving . ◦ Determining functional and managerial failures, risk points and deficiencies on the systems and business processes, providing support and coaching to related business units to improve them. - Controlling and arranging authorizations on the systems and organizational structures of business. ◦ Providing support to prepare business procedures and process work-flow charts. ◦ Auditing projects and determining functional and managerial failures, risk points and deficiencies on the project tools and project management processes and providing support to improve. ◦ Compliance with the Turkish Personal Data Protection Law

    • IT Auditor
      Jun 2015 - Feb 2018 · 2 yrs 9 mos

      Responsible for IT Audit and business process management

  • IT Auditor at KPMG
    Jun 2014 - Jun 2015 · 1 yr 1 mo

    Engaging in teams performing BRSA related process audit and COBIT based information systems audit in banks and other financial institutions ◦ Engaging in teams performing general information technology controls audit and application controls audit in various industries including telecommunications, pharmaceuticals, finance, production and retail ◦ Engaging in teams performing audit and non-audit projects in line with the sector’s needs including compliance to regulations, attestation services and process improvement

  • Android Developer at Etiya Information Technologies
    Jun 2013 - Nov 2013 · 6 mos

    Developing new Android Mobile Applications

  • Network Specialist at Provus A MasterCard Company
    Jun 2012 - Oct 2012 · 5 mos

    Configuration and maintenance of IBM servers Taking a role in developing of Provus Intranet System