Ankara, Ankara, Türkiye
https://furkankisik.medium.com
•Consulting for cybersecurity solutions internally and externally. •Consulting the software teams for secure software development lifecycle and improve their security awareness. •Analyze security needs and plan security activities considering security-by-design and defence-in-depth approaches. •Take active role for defining and applying internal security policies. •Manage vulnerabilities, cybersecurity issues and planning control and actions. •Implementation security hardening to Siemens environment. •Preparing Feasibility Study and Solution Architect during project lifecycle. •Implementation network discovery and network monitoring tools to customer environment. •Re-design and Architecture for Power Companies' ICS /SCADA environments with cybersecurity focus Analyzed requirements and specifications, then designed network and solutions security-by design with best practices like IEC 62443, NERC CIP, NIS2. Prepared solution descriptions and reports. Consult delivery teams for implementing security controls like network and application security, identity and access management, network monitoring, malware protection, inventory analysis. Did security hardening with best practices and CIS benchmarks. •Endpoint Security Solutions Implementation for Power Companies’ ICS /SCADA environments Consulting determines the most suitable Endpoint Security solution (EDR, AV, DLP) for companies, ensuring the installation and configuration of malware protection and device control.
•Conducted internal network penetration testing, vulnerability management, and vulnerability remediation for servers and clients. •Performed web apps penetration testing, vulnerability management, and vulnerability remediation for internal and external applications (DAST, SAST). •Developed and implemented Secure Software Development Life Cycle. •Provided consultancy for suitable security solutions, such as Data Loss Prevention (DLP), Database Firewall (DBF), and Database Activity Monitoring (DAM) tools for the ministry's environment. •Created SIEM rules to detect attacks in the ministry's environment in collaboration with SOC teams. •Mitigated the attack surface using the Cyber Attack Simulation Tool (PICUS). •Developed and implemented security policies and procedures. •Delivered training and awareness programs for employees on information security best practices.
•Post-sales and pre-sales activities •Consulting for cybersecurity solutions to diverse industries, including finance, government, and telecommunications. •Installation, Configuration and Administration for Symantec Endpoint Security Solution (EDR, ATP), Symantec Data Loss Prevention (DLP), Symantec Messaging Gateway (SMG), Infoblox DNS Firewall, Forescout Network Access Control (NAC), Vulnerability Scanner (Nessus, Acunetix).
•Web app security documentation •Penetration Testing Methodology •Developing web app security testing lab
I joined Work & Travel program. I worked as a grocery clark in Publix Super Market South Caroline, USA.