Brussels Metropolitan Area
Risk and compliance professional with 6+ years of experience across banking and professional services, including roles at Deloitte Istanbul and Deloitte Belgium. My work has spanned third-party risk management, IT governance, ISMS, and regulatory compliance with hands-on experience across DORA, NIS2, ISO 27001, AML/KYC frameworks and vendor contract review. At Deloitte Istanbul I managed end-to-end third-party risk assessments, reviewed vendor SLAs, coordinated with legal on non-standard contractual demands, and supported ISO 27001 external audits on behalf of the Risk Manager. At Deloitte Belgium I served as the primary liaison between leadership, IT teams and business units on ISMS and regulatory risk governance, managed data breach response, and oversaw third-party governance processes — work directly aligned with DORA operational resilience requirements. Since leaving Deloitte I have invested in building practical IT security knowledge through government-funded cybersecurity training at BeCode Brussels and academic study at Howest University. This has strengthened my ability to bridge compliance and technical perspectives — particularly relevant for IT audit, third-party risk, and operational risk roles in financial services. Based in Brussels. Available immediately. Open to opportunities in IT audit, third-party risk management, and operational risk in financial services.
BeCode Cybersecurity Training — Brussels | Feb 2024 – Aug 2024 Government-funded professional training program covering. Linux/Windows administration, networking fundamentals, Python/Bash/PowerShell scripting, threat analysis, log monitoring and packet inspection. Howest University of Applied Sciences — BSc Cybersecurity | Sep 2024 – Jun 2025 First year completed. Did not continue due to commute constraints and family circumstances.
• Served as primary liaison between leadership, business units and IT teams on ISMS, quality and regulatory risk governance, directly supporting operational resilience requirements aligned with DORA and NIS2 frameworks • Led implementation and change management of internal compliance processes and policies, ensuring alignment with ISO 27001 organizational standards • Acted as Confidentiality and Data Liaison in collaboration with the IT Security team, managing data breach response, remediation tracking and IT risk awareness training across the business unit • Oversaw third-party governance processes including vendor risk screenings, procurement controls and internal control reviews • Streamlined conflict and independence checks, reducing review delays by 20% and improving client satisfaction • Supported internal and external audits through compliance documentation, weekly risk reporting and monthly risk dashboards to senior management and partners • Executed engagement risk screenings and stakeholder approval controls within the Opportunity-to-Billing process using SAP CRM
• Managed end-to-end third-party risk assessments for vendors and subcontractors, reviewing SLA terms, evaluating compliance with internal standards, and escalating non-standard contractual demands in coordination with legal counsel • Supported ISO 27001 recurring audit by preparing and presenting compliance documentation to external auditors on behalf of the Risk Manager, ensuring audit readiness across relevant control domains • Monitored risk and compliance policies including ethics, code of conduct and data protection regulations • Conducted AML and fraud controls, SOX compliance support and KYC policy monitoring(OFAC, EU and UN lists)
• Compliance and AML monitoring, Risk assessment, Internal control & policy/procedures follow ups • Data protection regulations follow up • Sanctions controls; OFAC, EU, UN lists • MASAK regulations & FATF recommendations checks and reporting • Swift and correspondent bank communication tracking
Worked as a volunteer that as a archiving of 40-year project, guiding the visiters and asking donation for project in an international enviroment.