Cyber Security Manager

İstanbul Sabiha Gökçen Uluslararası Havalimanı

As Istanbul Sabiha Gökçen International Airport, we are searching for a dynamic and experienced Cyber Security Manager to lead our comprehensive security initiatives. As a key member of our team, you'll have the opportunity to shape and execute strategies that ensure the integrity, confidentiality, and availability of our systems and data. If you thrive in a fast-paced environment, possess exceptional leadership skills, and have a deep understanding of cyber security best practices, we invite you to apply and become an integral part of our innovative organization.

Our expectations from the candidates who will work in this position;

·A bachelor's -or higher- degree in computer science, information technology, cyber security, or a related field.

·Several years of experience in cyber security, preferably in a managerial or leadership role.

·Certifications in cyber security, such as CISSP, CISM, CISA, CEH, etc.

·Strong knowledge of cyber security frameworks, standards, and regulations, such as NIST, ISO 27001, ISO 22301, PCI, HIPAA, KVKK, GDPR, and FISMA.

·Implementation and monitoring experience with cyber security solutions such as SIEM, DLP; OT, Endpoint Security, NW Security, Firewalls (NW, DB, Web), VPN, PAM, IPS,

·Good knowledge of Windows, NW, Virtual environment, Databases, AWS, Azure and Google.

·Understanding of regulatory requirements impacting security

·Excellent communication, collaboration, problem-solving, decision-making and presentation skills.

·Ability to work under pressure, manage multiple projects, and meet deadlines.

·High level of integrity, ethics, and professionalism.

·Excellent spoken and written English.

JOB DESCRIPTION

·In accordance with the objectives and principles determined by the IT and Automation Directorate;

·Ensure that the organization's data, networks, and systems are protected from cyber threats, such as hackers, malware, phishing, ransomware, and denial-of-service attacks.

·Oversee the design, implementation, and maintenance of the organisation’s cyber security policies, systems, and procedures.

·Develop and update the organization's cyber security strategy, standards, and best practices.

·Manage and lead a team of cyber security analysts, engineers, and specialists.

·Lead and supervise a team to enable prompt detection, investigation, and response to security incidents. Ensure the appropriate escalation procedures are followed when necessary and coordinate incident resolution efforts effectively.

·Improve and maintain an incident response plan, lead periodic exercises to test the response readiness of the team, and continually enhance the incident response process.

·Measure and report the maturity, effectiveness and efficiency of the incident-handling process

·Conduct risk assessments and audits to identify and mitigate cyber security vulnerabilities and incidents.

·Implement and monitor cyber security tools and solutions, such as SIEM, firewalls, antivirus software, encryption, authentication, backup, and recovery, OT security, DLP and IPS.

·Manage penetration testing activities.

·Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable.

·Provide cyber security training and awareness programs to the organization's staff and stakeholders.

·Coordinate with internal and external partners, such as IT, legal, compliance, law enforcement, external authorities and group companies to ensure cyber security compliance and response.

·Manage vendors, contracts and outsource services.