Param's technology company, ParamTech, comprises a specialized team of 250 experts dedicated to providing infrastructure and consulting services across various fields, including issuing, acquiring, digital wallets, mobile applications, information security, fraud prevention, artificial intelligence, credit infrastructures, and test automation within the fintech ecosystem.

By offering end-to-end technology solutions to key players in the industry, we empower new entrants in the ecosystem to design their financial futures and achieve growth, while continuing to be a reliable technology partner for everyone.

As we strengthen our journey, we are looking for new team members to join our dynamic work environment and share their enthusiasm and expertise with us. If you are eager to work in an innovative setting, we look forward to your application!

Qualifications

• Graduated from a 4-year undergraduate program in Management Information Systems, Mathematics, Computer Engineering, or a related engineering discipline,
• Minimum of 5 years of experience in Information Security Governance, Risk, and Compliance (GRC),
• Actively involved in independent IT audit processes,
• Knowledge of IT regulations issued by local authorities, primarily BDDK, CBRT (TCMB), and CMB (SPK),
• Experience in IT risk management, control frameworks, and the creation and management of data and asset inventories,
• Experience in Third Party / Vendor Risk Management, including supplier risk assessments, due diligence processes, contractual security clauses, and periodic monitoring,
• Knowledge of information security and IT governance frameworks such as ISO/IEC 27001, ISO/IEC 27002, NIST CSF, and COBIT,
• Basic awareness of technical security domains including IAM, SIEM, DLP, and SOC processes, as well as fundamental principles of network, application, and cloud security,
• Familiarity with vulnerability management, logging, and incident management processes,
• Strong documentation and reporting skills, with the ability to prepare audit and senior management reports,
• Holder of at least one of the following certifications: CISA, CISM, or ISO 27001 Lead Auditor,
• Strong problem-solving and data analysis skills, with excellent communication abilities.

Job Description

• End-to-end management of the organization’s information security governance, risk, and compliance (GRC) processes,
• Conducting gap analyses, creating action plans, and monitoring remediation activities to ensure compliance with BDDK, CBRT (TCMB), SPK, and other relevant local regulations,
• Preparing for independent IT audits, managing audit processes, and ensuring the closure of audit findings,
• Performing IT risk assessments, control design, control effectiveness evaluations, and tracking risk mitigation actions,
• Preparing and updating policies, procedures, and control documentation in line with standards and frameworks such as ISO 27001, NIST, and COBIT,
• Managing data and asset inventory activities, including classification and ownership processes,
• Conducting vendor security assessments within the scope of Third Party / Vendor Risk Management, managing due diligence processes, defining contractual security requirements, and performing periodic monitoring,
• Ensuring the implementation of control requirements by working in coordination with technical security teams (SOC, IAM, infrastructure, application, and cloud teams),
• Contributing to vulnerability management, logging, and incident management processes from a GRC perspective,
• Preparing reports and presentations for senior management, auditors, and regulators,
• Managing stakeholder relationships and project tracking within GRC processes,
• Monitoring developments in information security and regulatory domains and adapting them to organizational processes.

For details

• Visit: https://www.paramtech.com.tr/tr/
• Follow us on LinkedIn: https://www.linkedin.com/company/paramtech/
• Follow us on Medium: https://medium.com/paramtech
• Follow us on Instagram: https://www.instagram.com/paramtech.com.tr/
• Follow us on X: https://x.com/paramteknoloji

"Perks Awaiting You at Param!"

🚗 Road Support

🍽️ Meal Support

🏥 Personalized Health Insurance

🎂 Birthday Leave

🎁 Welcome Kit

👋 Buddy Program

💻 Training via ParamHub

🍹 Fun Breaks

💳 Param Card Benefits

🏆 Param Advantages

🌟 Referral Bonus

📚 Report Card and First Day of School Leave

👶 Welcome Gift for New Family Members!

🎙️ Your Voice Matters

You can access detailed information about your personal data processed under the Personal Data Protection Law No. 6698 in our information text at

"https://hr.param.com.tr/tr/aydinlatma-metni"