Beschreibung

An innovative and strategic IT, cybersecurity and business continuity executive with a dynamic background encompassing consulting&auditng, key positions in Big Four firms, and transformative impacts in the IT and financial services industry. My career is distinguished by exceptional problem-solving abilities, visionary leadership, and a track record of excellence, as highlighted by multiple prestigious awards like;

- 2022 - Second place at CIO Awards in Future of Work - Metrics & KPIs category - Strategy Execution with OKR (Objectives and Key Results) Framework and Application - IDC

- 2022 - Third place at CIO Awards in Future of Work - Automation category - Robotic Process Automation Framework - IDC

- 2021 - Third place at Finance Technology Awards in Security and Fraud Management category- Third Party Risk Management Program - IDC

- 2020 - First place at Future of Work - Metrics & KPIs category - Implementation of the Online KPI System - IDC

- 2018 - Best Security Team of the year in EMEA region – FireEye

- 2017- Second place at Finance Services Technology Awards in GRC category – Digital Transformation of the Enterprise Processes - IDC

Expert in IT Governance, Information Security, IT Risk Management, Enterprise Risk Management, Digital Transformation, IT Enterprise Architechture, AI, Big Data, Security Operation Center, ISO 27001, ISO 22301, ISO 20000,ISO14000, ISO 31000, IT Strategy, IT Audit, Business Process Management, (BPM) Sustainability, Business Continuity and ITIL and compliance frameworks like SOX, COBIT, ISAE 3402, SOC 2, and GRI.

Educationally grounded with a M.A in Management Information Systems from Bogazici University and an M.S in Economics from the State University of New York and Istanbul Technical University. An alumnus of the prestigious Robert College of Istanbul.

Holding professional certifications such as CISA, ISO27001 Lead Auditor, ISO22301 Lead Auditor, ISO20000, ISO31000 Implementer, ITIL, and TOGAF Foundation.

Sprachen

Englisch
Muttersprachlich oder zweisprachig

Arbeitsortpräferenzen

Vor Ort möglich

Cologne (bis zu 50 km)

Freelance,
Consultant
Juni 2024 - Heute (2 Jahre)
Strategic advisor to the CISOs of DenizBank and the Credit Bureau of Turkey, guiding enterprise-wide cybersecurity strategy, regulatory compliance, and operational resilience. Leading ISO 27001 design, implementation, and audit readiness for financial sector organizations. Delivering NIS2 and DORA compliance programs, including multi-country gap analysis, control mapping, and remediation planning in line with ECB/EBA guidelines. Acting as Interim / Fractional CISO, providing governance, cyber resilience oversight, and board-level reporting for regulated institutions. Enhancing IT Risk & Controls frameworks (ITGC, SOX, BAIT) to strengthen assurance and meet Basel-aligned supervisory expectations. Embedding Business Continuity & Crisis Management (ISO 22301) into strategic planning, integrating scenario-based testing and recovery exercises across geographies. Designing and aligning cybersecurity frameworks with NIST, ISO, and BSI standards to support secure, scalable global operations. Advising on GRC platform strategy (RSA Archer, ServiceNow) to improve risk visibility, KPI/KRI tracking, and executive-level decision-making.
SoSafe,
Senior Advisor
März 2024 - Heute (2 Jahre und 3 Monate)
Provided strategic advice on market entry and growth opportunities in the Middle East and Turkey. Collaborated with sales and marketing teams to tailor offerings to regional market needs. Establish and maintain relationships with key stakeholders and potential clients in the Middle East and Turkey. Developed and executed go-to-market strategies to increase SoSafe's presence and market share in these regions.
Credit Bureau of Turkey,
Chief Risk and Security Officer
HIGHTECH
April 2013 - September 2023 (10 Jahre und 5 Monate)
Istanbul, Türkei
In my progressive career at the Credit Bureau, I advanced from VP of IT to SVP, Director, and ultimately Chief Risk and Security Officer / Management Board Member. I led diverse teams covering Risk Management, Business Continuity, Information Security, IT Governance, IT Compliance, Cyber Defense Center, Sustainability, Enterprise & IT Process Management, RPA, and Strategic Planning. I built all these departments from the ground up, leading one of the largest HQ teams (50+) in Istanbul and overseeing Turkey’s biggest financial datacenter in Ankara.

I chaired the Risk Management, BCM, Information Security, Sustainability, and Strategic Planning Committees, implementing robust IT risk, compliance, and cybersecurity frameworks that earned awards from global institutions, including recognition as the “Best Security Team” by FireEye. I spearheaded the design and implementation of one of Turkey’s largest data centers, aligned with BCM and security standards, and founded one of the country’s first 24/7 Cyber Defense Centers.

I managed ISO 27001, 22301, 20000, 14000, and 31000 certifications, architected GRC infrastructures (ServiceNow, RSA Archer), and established third-party risk assurance structures. I led an IBM transformation project, implementing active-active architecture to enhance resilience. I oversaw internal and external audit readiness for ISO, ISAE 3402, COBIT, and ITGC audits.

I directed enterprise and IT transformation projects using Agile, ITSM, and Lean methodologies, implemented RPA frameworks, launched digital process transformation, and introduced OKR-based strategic management across business and IT. I also built a sustainability framework, leading the world’s first data center carbon footprint calculation.

As a recognized industry leader, I organized financial sector cybersecurity events, coordinated the BCM Community, and collaborated with Turkey’s Disaster Recovery Center to advance national crisis management capabilities.