About Us

ColendiBank is Türkiye's first AI-powered digital native universal deposit bank, pioneering the integration of advanced technology with accessible financial services. Officially launched in 2024 following the acquisition of a coveted digital banking license, the bank caters to individuals and SMEs with a focus on micro credit and innovative deposit services. As a fully digital institution, ColendiBank leverages a cutting-edge, scalable core banking platform to deliver seamless, secure, and user-friendly experiences. Its commitment to innovation positions it as a leader in redefining digital banking in Türkiye.

Job description

We are looking for an Information Security Manager / Specialist to join our growing information security team in Istanbul. Reporting to the Information Security and IT Compliance Senior Manager, this role will be responsible for safeguarding the confidentiality, integrity, and availability of ColendiBank’s information assets. The Information Security Manager will oversee governance, risk, and compliance activities, ensuring alignment with regulatory requirements (BDDK, KVKK, MASAK) and international standards (ISO 27001, COBIT, NIST). Working closely with business, IT, and cybersecurity teams, this role will drive the implementation of security frameworks, policies, and controls across the Bank.

Key Responsibilities

• Develop, implement, and maintain the Bank’s Information Security Management System (ISMS) in compliance with COBIT and BDDK requirements.
• Ensure adherence to BDDK Information Systems and Electronic Banking Regulation, KVKK, and sectoral cybersecurity obligations (SOME).
• Define and maintain information security policies, standards, and procedures, and ensure their effective communication and enforcement across the Bank.
• Conduct information security risk assessments, define risk treatment plans, and report results to senior management.
• Oversee third-party and outsourcing security compliance, including vendor risk assessments and monitoring.
• Support internal and external audits, penetration tests, and independent IT audits, ensuring timely remediation of findings.
• Collaborate with the Cybersecurity team for incident response and security monitoring, ensuring proper escalation and reporting.
• Deliver awareness training and provide guidance to business and IT teams on information security requirements.
• Prepare and present regular reports on the Bank’s information security posture and risks to management committees.
• Work with enterprise architecture and IT governance teams to embed security by design in new projects and initiatives.

What We’re Looking For

• Bachelor’s degree in Computer Science, Information Systems, or a related field (Master’s preferred).
• Minimum 3–8 years of experience in the banking sector, specifically in information security, IT governance, or risk management.
• Strong knowledge of BDDK regulations, KVKK, ISO 27001, COBIT, and NIST frameworks.
• Familiarity with IT infrastructure and application development processes.
• Demonstrated experience in audit preparation, risk assessments, and regulatory compliance reporting.
• Relevant certifications such as CISM, CISA, CRISC (CISSP is a plus).
• Excellent communication and stakeholder management skills, with the ability to interact effectively with both technical and business teams.
• Fluency in English and Turkish, both written and spoken.

Join Us

At ColendiBank, you’ll play a key role in redefining the retail banking experience. We offer opportunities for professional growth in a collaborative, inclusive environment, contributing to a pioneering journey in the digital banking landscape.

Become a core part of our journey. Join ColendiBank as we build the future of digital banking.

ColendiBank is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.