Inf. Sec., Risk and Compliance Process Leader

Enerjisa Enerji A.Ş.

• Bachelor degree preferably in Industrial Engineering, MIS Computer Engineering, Electronics Engineering or similar discipline,
• Min. 5 years of work experience in cyber security related area,
• Experience of ISO 27001, ISO 27019, ISO 20000, ISO 22301, COBIT, ITIL and PCI-DSS will be an asset
• CISSP, CISA, CISM, ISO 27001 LA, ISO 20000 LA, ISO 22301 LA, COBIT, ITIL certificates will be an asset,
• Knowledge of Risk Assessment and Risk Treatment methodology,
• Knowledge of Firewall, remote access, IPS/IDS, DLP, SIEM will be an asset,
• SAP Security Baseline experience will be an asset,
• Excellent command of both written and spoken English,
• Excellent communication and coordination skills,
• Energy, Telecommunication and Banking industry experience will be an asset,
• Enthusiasm for cyber security,
• Passion for quality and continuous improvement of processes,
• No military service obligation for male candidates,
• No restrictions to travel.

İŞ TANIMI

• Responsible for Information Security Management, IT Risk Management, IT Control Management, IT Audit, Information Security Incident Management, Business Continuity Management, privacy and compliance,
• Management and coordination of certification processes and compliance projects (ISO 27001, ISO 20000, KVKK etc.)
• Design the internal controls (DLP, URL Filtering, Data Classification etc.) to ensure compliance to security policies and procedures,
• Review the processes and systems to ensure adherence with corporate security policies and handle information and cyber security incidents,
• Provide consultancy on information security related topics,
• Analyze and response information security incidents, plan the required actions.
• Responsible for information security awareness campaigns and trainings.