Information Security Manager / Professional

Founded in 1960 in the UK, REED has grown continuously and become a leading brand both in the UK and the international arena. Today REED has 350 offices with more than 3.000 employees and is providing services across 20 specialist sectors. We work closely with experienced and qualified professionals across a wide range of industry sectors, delivering bespoke recruitment solutions on a variety of roles for mid and senior level.

As Reed Turkey, we are seeking an Information Security Professional who will play a key role in shaping and implementing security strategies of our client which takes place in financial services industry. This position requires both technical expertise and governance capabilities, ensuring compliance with regulatory requirements (BDDK, KVKK, NIST, CIS) while managing security technologies, processes and audits. The role will collaborate closely with IT, software, legal and infrastructure teams to strengthen their security posture and support their digital transformation journey. This position reports directly to R&D Director and focuses on process management rather than direct team management.

Responsibilities

• Define, implement and maintain the company’s information security strategy and governance framework,
• Develop and manage security policies in line with regulatory and industry standards (BDDK, NIST, CIS, KVKK, GDPR),
• Lead security awareness initiatives, internal trainings and communication programs,
• Manage regulatory, internal and holding-level audits, including remediation and reporting,
• Coordinate Business Continuity and Disaster Recovery (DR) planning and testing,
• Oversee security operations, including endpoint, data, database and mobile security solutions,
• Ensure security of DevOps and containerized environments (Kubernetes),
• Manage vulnerability assessments, penetration testing and Red Team remediation activities,
• Monitor and manage SIEM/SOC operations and log management (QRadar),
• Support risk assessments, incident response and data protection processes,
• Manage security vendors, procurement, licensing and contract coordination with Legal

Qualifications

• Bachelor’s degree in Computer Science, Engineering or related field,
• Min. 3–5 years of experience in information security, IT risk and/or cybersecurity roles,
• Hands-on experience with SIEM, SOC monitoring and vulnerability management tools,
• Familiarity with endpoint and data security solutions (SIEM, EDR, DLP, MDM, MAM, Guardium, Titus, NAC, Nessus etc.),
• Understanding of DevSecOps concepts and security in containerized environments (Kubernetes, Twistlock, Fortify),
• Knowledge of regulatory frameworks and standards (NIST, BDDK, KVKK, GDPR, CIS),
• Strong communication, coordination, and problem-solving skills