Cybersecurity Senior Manager
Ernst & Young
Total years of experience :15 years, 8 Months
EY is a global leader in Assurance, Tax, Consulting and SaT (Strategy and Transactions) services.
• Cybersecurity risk and program management and transformation
• Cybersecurity technology architecture design, implementation and operation
• Data protection and privacy (per regulations such as GDPR, KVKK)
• Digital identity management
• Third party security management
• Service Organizations Control Reporting (SOC1/2/3)
• Threat intelligence and management
• Vulnerability assessment (attack & penetration testing, red team testing)
• Cybersecurity compliance (ISO27001, PCI-DSS, NIST, and regulatory compliance)
• Security incident management
• IoT / OT Security - Security of industrial control and automation systems such as SCADA and other critical
infrastructure components
• Crisis management, business continuity and disaster recovery
I
I took part in the planning and execution of IT/BG audits at Demirören Media Group within Demirören Investment
Holding.
• Managing the IT audit team,
• Supervising IT processes,
• Overseeing compliance of IT applications with company procedures and government regulations,
• Inspection of compliance with authority regulations (ISO 27001, ISO 22301 etc.)
• Preparation and submission of IT audit reports to the committee
Rootcon Information Technologies Inc. is a company that provides technical consultancy, penetration tests, security operation center and technical installation services to companies,
In this context, I took part in the following subjects within the company:
Providing consultancy, system installation and training services in technical standards such as ISO 27001 Information Security Management System, ISO 22301 Business Continuity Management System, ISO 27701 Personal Data Management System, ISO 20000‑1 Information Technologies Service Management System, Technical requirements of the Personal Data Protection Law,
Making company documentation, internal audit, gap analysis, risk analysis and implementations within the scope of projects,
Providing consultancy to companies within the scope of Security Consulting Services.
Structuring the unit, establishing the team, managing the team and planning the tests within the scope of Penetration Tests,
Within the scope of SOC services, structuring the unit, establishing the team, managing the team and systems and serving the companies
Implementation of Cyber Security Projects in companies.
Implementation of security systems such as Firewall, SIEM, DLP, EDR to SOC structure and companies.
Managing business development processes
Managing price and bidding processes
Managing the technical team of 15 people and following the company management process.
I took part in about 100 projects,
Some of the companies that I took part in the training and consultancy processes;
Hamitabat Thermal Power Plant ‑ Tailwind Airlines ‑ TIKA ‑ TKDK ‑ FujiFilm ‑ Harput Holding ‑ Fraport‑Tav Antalya Airport ‑ BOSSA ‑ Dalaman Airport ‑ Penti Clothing ‑ Yıldız Holding ‑ Turkish Grund Services ‑ IC Holding ‑ Zafer Airport ‑ Turkish Engine Center
Kiwa Meyer Certification Services Inc. is a company that provides certification and testing to companies,
I worked as ISO 27001 Information Security Management Systems Program Coordinator. In this context,
ISO 27001 Information Security Management System, ISO 22301 Business Continuity Management System, ISO 27701 Personal Data Management System, ISO 20000‑1 Information Technologies Service Management System etc.
Planning, conducting and training the audits in the standards of which I am the lead auditor, creating and technical approval of the audit reports,
Managing business development processes
Providing technical support to sales processes
At the same time, the management and development of the company's information technology infrastructure, (Firewall, EndPoint, Server, Switch managements.)
I participated in approximately 300 man/day firm audits,
Some of the companies that I took part in audit processes are;
Ozyasar Holding ‑ Temsa ‑ GEFCO ‑ Aktek ‑ Yeniköy‑Kemerköy Thermal Power Plant ‑ Dogan Energy ‑ Bayegan ‑ Aktül Paper ‑ Aydın Industry ‑ Mavi Jeans ‑ Aydin Textile
I worked as an IT Manager at Taşyapı İnşaat company.
Cyberoam Firewall installation and configuration, File server configuration, Mail server configuration, Domain setup and deployment within the company, Switch configurations and commissioning,
Managing system, network and hardware failures,
Making purchases for the IT department.
Creation of IT department budgets,
Making backup plans,
Reporting projects to senior management systems,
Establishment and operation of the IT infrastructure of the factory of Deha Biodizel, which is part of Taşyapı, in Kocaeli,
In addition, planning and configuring system infrastructure security in critical projects such as Ercan Airport, Göztepe SSK and Okmeydanı SSK within the company,
I have been on duty.
I worked as a subcontractor within the body of Erenköy State Hospital,
I managed the fiber transition project in the hospital,
Providing end‑user support,
Installation and operation of systems such as File Server, Active Directory, Mail Server,
Making backup plans,
Managing and maintaining network active systems such as Firewall, Switch and Antivirus,
Providing infrastructure support and troubleshooting within the scope of the Hospital Information Management System,
Reporting projects to senior management systems,
I took part in the issues.
I left my job to do my military service
Providing end‑user support,
Installation and operation of systems such as File Server, Active Directory, Mail Server,
Making backup plans,
Managing and maintaining network active systems such as Firewall, Switch and Antivirus,
Making IT purchases
Reporting projects to senior management systems,
I took part in the issues.
URL removed due to policy violation. Please contact support for further information.