We are looking for a Information Security Specialist at HangiKredi, which is Turkey's leading platform in the banking products comparison and application category since 2006, constantly renewing itself with its dynamic and financial assistant vision, visited by three out of every four people who conduct online loan research every year.

QUALIFICATION

• Experience in establishing and operating an ISO 27001 Information Security Management System (ISMS)
• Technical knowledge sufficient to work effectively with technical teams (network security, system administration, access management, log management, etc.)
• Intermediate level of English (for following documentation and written communication)
• Bachelor’s degree in Computer Engineering, Management Information Systems, Information Security or related fields
• Professional experience in information security, cyber security, auditing or system administration
• Strong skills in analytical thinking, problem solving, process follow-up and documentation
• Strong corporate communication and collaboration skills
• High motivation, strong sense of responsibility and work discipline

JOB DESCRIPTION

• Establishment, implementation and continual improvement of the ISO 27001 Information Security Management System (ISMS)
• Preparation and maintenance of ISMS documentation (policies, procedures, instructions, risks, controls)
• Execution of information security risk assessment and risk treatment processes
• Planning, execution and follow-up of actions for internal audits within the scope of the ISMS
• Ensuring coordination with technical teams in relation to information security controls
• Supporting security incident management processes
• Preparing and carrying out internal information security awareness activities
• Monitoring relevant legal legislation, regulations and customer requirements
• Making the necessary preparations for external audits, certification and customer audits

PREFERRED QUALIFICATIONS

• ISO 27001 Lead Auditor certifications
• Knowledge of regulations such as KVKK and GDPR
• Knowledge of security technologies such as SIEM, DLP, IDS/IPS, vulnerability scanning tools etc.
• Knowledge of the application security lifecycle
• Familiarity with SOC operations and security incident management processes

WHAT WE OFFER?

• The opportunity to work with a young and dynamic team
• An environment open to innovation, where you can continuously develop yourself
• The chance to be part of a data-driven, customer-focused working environment
• The opportunity to work in an environment with constant development-oriented internal and external training
• The chance to be part of a workplace with comprehensive orientation and on-the-job training for quick adaptation
• Meal card benefits shared with employees during remote or office working processes
• Complementary private health and personal accident insurance benefits
• The opportunity to benefit from gifts shared on special occasions

Kişisel verileriniz, kanuna uygun olarak ve aydınlatma metninde belirtildiği şekilde işlenecektir. Aydınlatma metnine https://www.hangikredi.com/aydinlatma-metni-ise-alim linkinden erişebilirsiniz.