Information Security Management / Security Engineer

If you have passion for technology as we do and want to be part of a great team which leads innovation in Fintech, join us.

Who We Are?

We Create World Class Financial IT Services

We are a leading technology company which provides technology infrastructure, software development, big data and data analytics, internet applications, integration, system management, security management, project management and enterprise applications services to Garanti BBVA branded institutions.

We are an agile team, developing revolutionary and innovative products. We develop emerging financial technologies and end-to-end high-tech solutions with our expert development teams. #teknolojidekitutkuyukeşfet

Many reasons which will make you say I love working at TAMİ

We have a passion for technology, we think big and we continuously explore and seek improvement, we trust the power of empowerment. We are an academy for talents. Thus, we are “one team” and always achieving together.

The place we call “our office” has no more boundaries. We stand for a positive team culture shared and lived together and anywhere.

So, what awaits you at TAMİ?

• Flexible working hours,
• A buddy who will guide and accompany you during your onboarding process,
• Career development opportunities on a well-defined career path,
• Local and global career opportunities,
• A great number of online courses and technical trainings (Kampüs Garanti BBVA, Coursera, Linkedin etc) that will support your development,
• Personalized development plan for you,
• Birthday off day,
• Private health and life insurance,
• Practice classes in English and Spanish,
• Discount on master programs,
• Online well-being program

Your Impact

TAMI Application Solutions Information Security team works passionately to shape the technologies of the future.

They value being a team, learning from each other and producing together. Since they are excellent teammates, they are proficient in positive interpersonal communication, taking responsibility and valuing different ideas.

They are creative and productive. Their business is based on innovation and is only limited by their dreams. Now they are looking for new teammates with whom they will achieve together.

In that team;

• Work with technical and business teams to secure TAMİ’s digital channels, infrastructure, services according regulations and business strategy
• Develop, update, and implement company information security policies.
• Determining information security requirements in projects, applications, developments and processes and ensuring their implementation
• Giving guidance to technical teams regarding information security, especially in application development. Establish secure application development practices in terms of Information Security
• Identify potential security vulnerabilities and implement solutions to minimize risks.
• Use security monitoring tools to track and analyze potential threats.
• Organize internal user training and awareness programs.
• Report, investigate, and resolve security incidents.
• Ensure compliance with legal and industry standards (ISO 27001, GDPR, etc.).
• Report on information security risks and provide recommendations to senior management.
• Manage data encryption, access control, and firewall configurations.
• Contribute to the preparation of business continuity and emergency response plans in coordination with the business continuity team.
• Working in harmony with the Garanti BBVA Corporate Security Teams to ensure that Garanti BBVA corporate security policies and standards are implemented within TAMI.
• Continuously improve the Information Security strategy for TAMI, in line with business objectives
• Determining the security needs of application, data and infrastructure projects
• Perform security and risk assessments of ongoing or future projects to evaluate compatibility with the security measures for mobile, web, electronic channels, social media, ATM, Call Center, wearable technologies and payment applications

How do we describe the perfect match?

• BS in Computer Engineering, Electrical and Electronics Engineering or equivalent disciplines
• Preferably having at least 3 years of hands-on experience information security and application security areas
• Experience on designing and reviewing security requirement and solutions
• Experience on digital channel security will be a plus
• Experience on OWASP security best practices and Secure SDLC processes
• Experience on designing and reviewing security controls and solutions
• Experience on development and security tests are plus
• Knowledge and understanding of revelant legal and regulatory requirements BDDK, TCMB, COBIT, SOX, PCI DSS, KVKK, ISO27001, GDPR and OWASP methodology
• Knowledge and understanding of authentication and access technologies
• Preferably having related certifications ( CISA,CISM, ISO27001 etc.)

Çeşitlilik yaklaşımımız

Çeşitliliğin gücüne inanan ve herkesin işe katkısını önemseyen uluslararası yaklaşımları dikkate alıyor, kapsayıcılığın işimizin gelişmesine farklı açılardan katkı sağladığına inanıyoruz. Çeşitliliğin temsil edildiği kuruluşlar başarılarını artırırken, kişilerin kendilerine değer verildiğini hissettiği iş ortamlarında çalışan bağlılığı ve verimliliğinde daha olumlu sonuçlar elde edildiğini görüyoruz. Eşit istihdam sağlamayı görev edinen bir kurum olarak çeşitliliği destekliyoruz.

Çalışanlarımızın mesleki ve kişisel gelişimine fırsat sunan, kendilerini en iyi şekilde göstermelerini sağlayan, gelişimlerine odaklanan işbirlikçi ve kapsayıcı bir çalışma ortamı yaratmak için yeni adımlar atmaya devam ediyoruz.