Senior Information Security Specialist

Corex Holding B.V.

CoreX Holding is a highly diversified, vertically integrated, global industrial conglomerate established in 2024 by Robert Yüksel YILDIRIM after 35 years of his vast industrial, financial, and operational experience at YILDIRIM Group. With financial headquarters in Amsterdam, the Netherlands, and operational headquarters in Istanbul, Türkiye, CoreX is dedicated to creating new success stories through a visionary approach and exponential growth under the leadership and vision of its founder, Robert Yüksel YILDIRIM.

CoreX operates in 9 sectors, including metals & mining, ports & terminals, chemicals, shipping & logistics, green energy, infrastructure & construction, international trading, financial investments, and venture capital. The company is active in 55 countries across 5 continents, employing over 20,000 people globally. As a profit-driven company, CoreX intends to focus on its future growth, utilizing its deep experience and extensive business know-how.

We are looking for a Senior Information Security Specialist to be assigned at our headquarters in Maslak, Istanbul

Qualifications:

• Bachelor’s degree in a relevant field
• Minimum 5 years of experience in information security
• Experience in ISMS, risk management, and security architectures
• Knowledge of data security, IAM/PAM, and SOC processes
• Familiarity with ISO 27001, NIST, CIS, KVKK, and GDPR frameworks
• Relevant certifications (CISM, CISA, ISO 27001 Lead Auditor) are a plus
• Strong analytical thinking and problem-solving skills
• Knowledge of network security, TCP/IP, and operating systems (Windows/Linux)
• Strong communication and teamwork skills
• Proficient in English 

Requirements:

• Manage and improve Information Security Management System (ISMS) processes
• Develop and maintain information security policies, standards, and procedures
• Ensure compliance with ISO 27001 and related standards; manage audit processes
• Oversee implementation of KVKK, GDPR, and NIS2 controls
• Conduct risk assessments and manage mitigation actions
• Execute third-party and supplier risk management processes
• Manage security tools such as SIEM, DLP, PAM, XDR and related systems
• Monitor, analyze, and respond to security incidents
• Coordinate vulnerability management and penetration testing processes
• Plan and implement security projects
• Promote information security awareness across the organization 

We look forward to meeting you! 
Many thanks for your attention in advance.