Istanbul, Türkiye
With over 10 years of experience, I have had the privilege of working across various industries, honing my expertise in infrastructure, networking, and security engineering. My specialization includes Cisco and Extreme networking, virtualization, and backup solutions. I am skilled in firewalls and IPS like Juniper Netscreen and Fortigate, WAFs such as F5 and Fortiweb, and tools like Splunk, SIEM Qradar, and ELK for SOC management. I have also created effective methodologies for applying these tools in organizations to enhance operational security and performance. Over the past 7 years, I have expanded my capabilities to include DevOps and cloud technology, acquiring hands-on experience with AWS, Gitlab CI/CD, Docker, Ansible, and Kubernetes. My goal is to be a leading infrastructure and security engineer. I am driven by a commitment to continuous learning, adapting to technological changes, and delivering innovative, secure solutions for business resilience.
• Performed threat analysis in a 24/7 environment, mitigating and managing all threats and risks to the company and gaining 99% security in data. • Reducing application layer attacks by 80% with F5 WAF. • Reduced false positives in Splunk ES Notables by 90%. • Implemented a comprehensive patch management process tailored to the organization’s model. When a vulnerability was identified, it was systematically tracked using an inventory system I established and integrated with Jira. This ensured clear assignment of responsibilities, with designated responsible, accountable, and system administrator roles for each system. The process included automatic assignment of issues to system owners following periodic scans, supported by standardized statuses and customized workflows. This approach improved the speed of vulnerability remediation by approximately 60% • Successfully and drastically improved the response time to incoming incident response tickets by 15% through an automated process that assigns/designates a specific ticket to the most qualified network engineer. • Led sessions to instruct engineers on the best practices around Security architect, switching, routing, DNS, and Development Infrastructure Architect. • Managed and created rules and policies for 4,000 end-users in the data protection area, IPS, facilitating the efficiency and ease of operations. • Designed security solutions to protect the company's IT infrastructure against cyber-attacks, reducing the number of security incidents by 89%. • Oversaw operations and handled daily resource allocation and duty assignments in a 4-analyst SOC monitoring 200+ enterprise and commercial client networks.
• Coordination and communication within the team and with customers • Selecting and deploying appropriate CI/CD tools • Strive for continuous improvement and build continuous integration, continuous development, and constant deployment pipeline (CI/CD Pipeline) • Installation of virtual IT infrastructure using VMware ESXi and Vsphere. • Installation and configuration of Vsphere Vcenter for management of VMware environments. • Proactively maintain and develop all Linux infrastructure technology to maintain a 24x7x365 uptime service • Engineering of systems administration-related solutions for various project and operational needs • Maintain best practices on managing systems and services across all environments • Fault finding, analysis and of logging information for reporting of performance exceptions • Proactively monitoring system performance and capacity planning • Manage, coordinate, and implement software upgrades, patches, hot fixes on servers, workstations, and network hardware • Create and modify scripts or applications to perform tasks • Provide input on ways to improve the stability, security, efficiency, and scalability of the environment • Collaborate with other teams and team members to develop automation strategies and deployment processes
• In the startup environment, due to the lack of sufficient manpower, we had to perform the tasks of several people for example personally I had to Design, implementation and monitoring our infrastructure caring about cloud service, VMware, Firewalls, Waf, Operation Systems and etc. • Organized and led four Capture The Flag (CTF) competitions, each involving over 150 participating teams. Managed all aspects from start to finish, including challenge design, logistics, and execution, showcasing leadership and technical event management skills. • Develop technical aspects of the company’s strategy to ensure alignment with its business goals • Discover and implement new technologies that yield a competitive advantage • Help departments use technology profitably • Supervise system infrastructure to ensure functionality and efficiency • Build quality assurance and data protection processes • Use stakeholders’ feedback to inform necessary improvements and adjustments to technology • Implementing various development, testing, automation tools, and IT infrastructure • Planning the team structure, activities, and involvement in project management activities. • Setting up tools and required infrastructure • Defining and setting development, test, release, update, and support processes for DevOps operation • Monitoring the processes during the entire lifecycle for its adherence and updating or creating new processes for improvement and minimizing the wastage • Encouraging and building automated processes wherever possible • Identifying and deploying cybersecurity measures by continuously performing vulnerability assessment and risk management • Incidence management and root cause analysis
• Involve in building and configuring Ubuntu Linux servers using kick start server as required for the project. • Maintaining maximum uptime and maximum performance capacity for enterprise production, QA, and UAT/staging. • Expertise in AWS, experience in implementing new AWS instances, and working with EBS and s3 storage, IAM. • Launching and configuring Amazon EC2 cloud servers using AMIs (Linux/ubuntu) designed and implemented scalable, secure cloud architecture based on Amazon web services. • Setting up the scripts for the creation of new snapshots and deletion of old snapshots in s3 worked on setting up the life cycle policies to back the data from AWS s3 to AWS Glacier worked with Amazon IAM console to create custom users and groups working with various AWS ec2 and s3 CLI tools. • Supporting an AWS cloud environment with 100+ AWS instances multi-region and configured elastic IP and elastic storage with peer and transport with site 2 site VPN with bare metal environment. • Cloud and system virtualization platforms and tools (AWS, VMware, Docker). • Building and configuring of ec2 instance on the AWS cloud platform, the configuration of elastic load balancer (ELB) for traffic control for the ec2 and s3 instances. • Architecting cost-effective infrastructure by utilizing various AWS services and options. • The building of high availability and fault-tolerant infrastructure by utilizing various Amazon regions and availability zones. • Designing the application layer of the product with ec2, RDS, and elastic cache, and configuring AWS cloud watch for application monitoring. • Installation of virtual IT infrastructure using VMware ESXi and Vsphere. • Installation and configuration of Vsphere Vcenter for management of VMware environments.
Administered network and security hardware and software. Network and security teams’ leadership. Consulted with customers and presented appropriate network and security solutions. Installed security devices including IDS, IPS, web application, and data protection firewalls Composed team training materials about FortiGate firewalls, Juniper IDS/IPS, and Juniper NSM.
• Project manager (create business requirement Plan, R&D, and choosing the best solution and installing it) for implementation of LOG Management in Sepah Bank. • As a member of the ISMS implementation team I have worked on asset inventory, risk measurement and documentation. • WAF administrator and policy optimization. • Installing and teaching F5 LTM and ASM security solutions • Migrate Waf from Fortiweb To F5 ASM • Installing and teaching Fortinet security solutions • Installation of virtual IT infrastructure using VMware ESXi and Vsphere. • Installation and configuration of Vsphere Vcenter for management of VMware environments. • WAF security policies Optimization and configuring it in proper settings which prevent and detect cyber-attack for reducing customer risk and Increasing customer confidence. • As member of team the implement security awareness for employee • installed and configured Dockerized splunk enterprise in distributed installation with all component contains: two Indexer Cluster with one master, two Search Head Cluster, a Deployment Server, a License server, and a (Universal/Heavy) Forwarder. • Log Auditing and Cyber threat hunting with Splunk apps, SPL search engine, and other solutions such as Bro Ids, Moloch, Suricata (pcap analyst)