Istanbul, Türkiye
Ahmet Manga is a cybersecurity professional with over 8 years of experience and currently serves as Cyber Defense Center Team Lead at Hepsiburada, one of the leading e-commerce platforms in Türkiye. In this role, he leads a dedicated team that operates SOC functions and manages SIEM & SOAR infrastructures, while providing strategic direction and hands-on expertise to ensure effective incident response and digital forensics practices that safeguard the organization’s critical assets. Throughout his career, Ahmet has developed strong expertise in SOC management, threat detection, incident response, and digital forensics processes. He has successfully led diverse security projects and teams, balancing technical knowledge with strategic oversight. His responsibilities also extend to project management, ensuring that cybersecurity initiatives align with business goals and deliver measurable results. Ahmet holds the GIAC Security Professional (GSP) certification together with the following GIAC certifications: ‣ GIAC Experienced Forensic Analyst (GX-FA) ‣ GIAC Experienced Cybersecurity Specialist Certification (GX-CS) ‣ GIAC Certified Forensic Analyst (GCFA) ‣ GIAC Reverse Engineering Malware (GREM) ‣ GIAC Cyber Threat Intelligence (GCTI) These certifications highlight his advanced skills across incident response, digital forensics, threat hunting, threat intelligence, and malware analysis disciplines, underscoring his commitment to technical background and continuous improvement. He has also taken part in NATO Locked Shields exercises as a member of the Türkiye national team.
- Establishing security strategy by considering cyber threats, regulations and needs - Leading a dedicated team working on Log Management, Cyber Threat Detection, Incident Response, Threat Intelligence, Security Operation Center and Digital Forensics. - Responsible of Managing and Operating Security Operation Center Infrastructure (SIEM, SOAR etc.), Cyber Security Proactive Services (including cyber threat intelligence program, threat hunting and threat detection program) and 7/24 Security Operation Center - Reporting to upper management, including the CIO, on security threats, exposed security incidents, and metrics. - Responding to Security Incidents - Providing SME on Incident Response tasks
- Responding to Security Incidents as a Level 3 Analyst - Providing SME on Incident Response tasks - Creating Threat Detection Rules for new TTPs, critical vulnerabilities, malware variants (Sigma, Yara, SIEM Rules) - Creating and Managing Digital Forensics, Incident Response, Threat Intelligence and Threat Hunting policy and procedures - Managing and performing scenario-based and intelligence (IoA)-based threat hunting activities. - Creating threat profiles and keeping up to date - Tracking APT group activities and campaigns - Creating strategic and operational Threat Intelligence Reports - Digital Forensics (Host/Network/Memory) - Hands on experience with forensics tools such as KAPE, F-Response, Forensic Explorer - Reverse Engineering and Malware Analysis - Analysis malicious file using static and dynamic analysis techniques - Creating and simulating TTX scenarios - Creating an Incident Response Playbook - Prioritizing identified threats and taking proactive measures to mitigate risks. - Determining Metric and KPI
- Responding to Security Incidents - Windows Forensics - Network Forensics - Reverse Engineering and Malware Analysis - Performing Threat Hunting Activities - Cyber Threat Intelligence - Cyber Threat Detection