Param's technology company, ParamTech, comprises a specialized team of 250 experts dedicated to providing infrastructure and consulting services across various fields, including issuing, acquiring, digital wallets, mobile applications, information security, fraud prevention, artificial intelligence, credit infrastructures, and test automation within the fintech ecosystem.

By offering end-to-end technology solutions to key players in the industry, we empower new entrants in the ecosystem to design their financial futures and achieve growth, while continuing to be a reliable technology partner for everyone.

As we strengthen our journey, we are looking for new team members to join our dynamic work environment and share their enthusiasm and expertise with us. If you are eager to work in an innovative setting, we look forward to your application!

Qualifications

• Bachelor's Degree from the relevant departments of the universities, Computer Science/Electrical/Electronics Engineering/Mathematics Engineering etc.,
• Minimum 6 years of experience as Information Security Specialist,
• Experience in Network Security Technologies and LAN, WAN, WLAN, VPN etc.,
• Experience in DLP and SIEM technology is preferred,
• Knowledge in Cloud Security,
• Knowledge about PCI DSS, KVKK, ISO 27001 and local regulations,
• Having at least 1 preferred Certificate in Information Security,
• Strong communication skills, prone to teamwork,
• Experience with SAST, DAST, SCA, IAST, IaC, SBOMs and Secret Management,
• Expertise in utilizing various security tools such as Burp Suite, OWASP ZAP, Acunetix, Fortify, and Checkmarx, along with vulnerability scanners,
• Experience with security requirements for APIs. (SOAP, REST, GraphQL etc.)
• Experience with Manuel Source Code Analysis and Penetration Testing of Mobile and Web Applications,
• Experience with container security, such as Docker and Kubernetes,
• Strong knowledge and experience in information security technologies such as Firewall, WAF, IPS, VPN, SSL Inspection, and DDOS Protection,
• Ability to understand and implement industry standards and best practices for information security,
• Experience in using monitoring and detection systems for security incidents (SIEM),
• Proficiency in using network security testing tools like Nessus, Nmap, etc.,
• Knowledge and experience in cloud security technologies (AWS, Azure, Google Cloud),
• Managing Cloud Security Technologies with related Vendors,
• Executing FW demands and troubleshooting access problems,
• Establishing Site-to-Site (S2S VPN) connections between sites and organizations,
• Managing network security technologies within the scope of best practices, secure accesses, and least privilege rights,
• Incident response to Cyber Attacks and mitigation actions,
• Evaluation of new Technologies and POC studies in the scope of Network Security,
• Participating in penetration tests and vulnerability management,
• Being a contact in IT Projects for architecture assessments and security requirements,
• Being familiar with Information Security Technologies such as SIEM, DAM, PAM, EDR, etc.

Job Description

• Perform manual and automated penetration testing on applications to identify and exploit vulnerabilities,
• Integrate and automate application security testing tools (SAST, DAST, SCA,IaC, Network Scans),
• Devise, implement, and monitor vulnerability response processes to efficiently remediate critical and zero-day vulnerabilities,
• Assess potential security vulnerabilities within our applications, and work with development teams to ensure remediation in our established SLAs,
• Provide training to development teams on secure coding practices and awareness of emerging security threats,
• Stay abreast of emerging application security trends and threats, researching new attack vectors to update vulnerability management strategies accordingly,
• Utilize scripting languages (Python, Ruby, Bash, etc.) to build automation tools as needed,
• Manage DLP, SIEM, PAM, EDR, IAM, DAM , SCC , Mail Gateway Security Tools,
• Improve General Security of Networks , Cloud and Systems,
• Provide Single Point of Contract for the General information Security.

For details

• Visit: https://www.paramtech.com.tr/tr/
• Follow us on LinkedIn: https://www.linkedin.com/company/paramtech/
• Follow us on Medium: https://medium.com/paramtech
• Follow us on Instagram: https://www.instagram.com/paramtech.com.tr/
• Follow us on X: https://x.com/paramteknoloji

"Perks Awaiting You at Param!"

🚗 Road Support

🍽️ Meal Support

🏥 Personalized Health Insurance

🎂 Birthday Leave

🎁 Welcome Kit

👋 Buddy Program

💻 Training via ParamHub

🍹 Fun Breaks

💳 Param Card Benefits

🏆 Param Advantages

🌟 Referral Bonus

📚 Report Card and First Day of School Leave

👶 Welcome Gift for New Family Members!

🎙️ Your Voice Matters

" 6698 sayılı Kişisel Verilerin Korunması Kanunu kapsamında işlenen kişisel verileriniz ile ilgili detaylı bilgilendirmeye https://hr.param.com.tr/tr/aydinlatma-metni adresinde yer alan aydınlatma metnimizden ulaşabilirsiniz."