Istanbul, Türkiye
• Implement Ziraat Finance Group (including 19 different countries) information security governance processes • Security audit of ZFG information systems • Security consultancy and architectural evaluation for projects. Leading the related committee • Develop information security strategy and roadmap • Follow developments for compliance with the legislation and regulation • Manage, attend internal and external ISO 27001 audit processes • Have an agile coach role in the integration of information security with agile processes • Risk assessments and risk management framework studies
• Had an administrative role at Identity and access management tool, troubleshot issues and maintained operational activities • Security analysis of Data Masking Solution (DDM) on DB environments and maintained operational activities, solved performance and stability problems • Had an administrative role at role management tool RSA VIA • Had a facilitator role at building, improving and maintaining Security Operations Control Process with the coordination of security operational teams within Security Technology Group Process architecture
• Gained experience of log management with the integration of SIEM solution • Contributed to improvements of correlation rules by investigating the possible security scenarios • Had a role of Turkiye Finans Participation Bank CERT member • Managed DLP security solutions • Improved and implemented data protection policies • Risk assessment studies • Role of the development of Security Incident Management Process • Security Awareness Program studies • ISO 27001 compliance studies
• Managing firewall, load balancer, DNS server systems. • Troubleshot of network access and configuration problems • Gained knowledge about infrastracture of Turkcell security network • Took part in the processes of projects, dmz, client segmentation projects, setting up new firewall devices