Senior Lead-Cyber Security, | Koç Kariyerim

What awaits you in this role?

We are looking for a passionate Senior Lead-Cyber Security who will join our team at Technology Infrastructure and Cyber Security Directorate.

• Taking a role in Beko Cyber Security practices globally,
• Working actively in Cyber Security projects and processes at Analysis, Design and Operation levels,
• Improving existing processes and technologies,
• Following up regulations and acting quickly and accordingly,
• Keeping Company-wide Information Security Awareness at top level.
• Analyzing risks continuously and acting quickly and accordingly,
• Communicating and cooperating with IT Teams, Legal, HR, Internal Audit, Global Compliance, Global Communication, Production departments and Business Units of subsidiaries, Holding Security Teams and BekoTop Management to achieve cyber security objectives,
• Coordinating and collaborating with Service Providers, Vendors,
• Preparing Cyber Security road-map, policies, procedures,
• Ensuring that all IT Systems are performing at top security levels by continuous controls and coordination,

The position is located in İstanbul, Sütlüce.

How do we describe a perfect match?

• Bachelor’s Degree in Computer, Electronics, Telecommunication Engineering or other related fields,
• Minimum 5 years of experience in Cyber Security,
• In-depth knowledge of penetration testing processes and methodologies.
• In-depth knowledge of common vulnerabilities and threats. (e.g. OWASP Top 10, CVE, CWE)
• Have experience in External Attack Surface Management concepts and processes.
• Have experience in Risk-based vulnerability management, including identification, prioritization, and remediation of vulnerabilities.
• Have hands-on experience in deployment, configuration and management of vulnerability assessment tools such as Tenable, Qualys or Rapid7 Nexpose.
• Have experience in application security concepts and processes such as Dynamic Application Security Testing, Static Application Security Testing, SCA/SBOM and Threat Modelling.
• Having hands-on experience in deployment, configuration and management of application security tools such as Acunetix, OpenText Fortify or Burp Suite.
• Knowledge of Data Privacy Regulations and Applications (e.g. KVKK, GDPR)
• Knowledge of cyber security policies, procedures,
• Knowledge of ISO27001,
• Knowledge of OT Security and IoT security is a plus,
• Having Cyber Security certificates is preferable,
• Excellent verbal and written skills in English,
• Think risk and security-centric,
• Think broadly about business,
• Build strong collaboration,
• Understand the needs of the market & business & customers,
• Have a desire to do outstanding jobs,
• Clear in communicating thoughts and ideas.