Istanbul, Türkiye
• Assessing vulnerabilities, doing penetration tests and performing vulnerability management(Netsparker, Burp, Open-source security tools etc…) • Reviewing source code in terms of security (Checkmarx, Fortify) • Developing and establishing the security policies, procedures, guidelines, baselines and standards to ensure information security. • Performing risk assessments of ongoing or future projects to evaluate compatibility with the security measures. • Performing patch management process and conducting risk assessment • Interpreting information security threats and analyzing new threats and provide consultancy to related parties evaluate compatibility with the security measures and legal compliances (PCI DSS, SOX, BDDK, etc...)