Istanbul, Türkiye
Cyber Defense Center Specialist and Management Information Systems student at İstanbul University with 4 years of experience in cyber security operations and 2 years in IT support. Currently responsible for managing threat intelligence operations within the CDC environment, with a focus on proactive threat detection, hunting, and mitigation. Certified in Microsoft Security Operations Analyst Associate (SC-200), Certified Ethical Hacker (CEH) and Cyber Threat Intelligence Analyst (CTIA), with expertise in Cyber Threat Intelligence (CTI), Detection Engineering, and SOC operations. Proficient in leveraging SIEM tools like QRadar, Logsign, ArcSight, and Microsoft Sentinel, as well as XDR platforms such as CrowdStrike, Microsoft 365 Defender and Checkpoint Harmony to develop detection rules, analyze incidents, and ensure robust security monitoring. Has hands-on experience in incident response, threat hunting, and aligning operations with GDPR and KVKK compliance standards.
- Conducted threat hunting and developed detection rules in SIEM platforms such as QRadar and Microsoft Sentinel, as well as XDR platforms like CrowdStrike and Microsoft Defender. - Managed Threat Intelligence operations within the CDC, including research and reporting on newly discovered malware, vulnerabilities, and country/industry-specific threats. Developed IOC and TTP-based detection rules and threat hunting rules to counter emerging threats. - Improved detection rules and performed detailed incident investigations for escalations received from L1 analysts. - Created monthly CDC operation reports for clients, summarizing threat activities, response metrics, and recommendations. - Delivered internal training sessions to upskill team members on advanced threat detection and response strategies.
- Performed detailed analysis of security alerts and incidents, ensuring timely response to critical threats. - Improved SOC workflows and detection mechanisms through automation and process optimization. - Oversaw high-priority incident escalations and provided actionable intelligence to relevant stakeholders.
- Monitored and analyzed security alerts from QRadar, ArcSight, and Logsign SIEM platforms in a shift-based operational environment. Reported confirmed threats to relevant stakeholders with actionable recommendations for mitigation. - Collaborated with the team to refine detection rules and improve alert accuracy across the SIEM tools. - Prepared daily threat intelligence reports covering emerging vulnerabilities, attack vectors, and cybersecurity news to enhance situational awareness within the organization.
- Gained hands-on experience in OSINT, SOCMINT, and threat intelligence analysis. - Completed tasks related to identifying and analyzing emerging threat landscapes.
- Worked with a team on a Python-based tool project. - Worked with Scrum/Agile methodology as a Scrum Master. - Wrote regular expressions to detect nearly 20 different types of personal data such as name-surname, phone number, tax number in various text files. - Research conducted on KVKK and GDPR laws.
- Provided private tutoring services to elementary, middle, and high school students while in university. - Monitored progress and provided feedback to students and their parents to track improvement and address any challenges.