Information Security Specialist

Key Responsibilities

• Work closely with teams across the organization (particularly Infra, Software, Compliance, and Legal) to implement proactive security measures.

• Developing and implementing a comprehensive plan to secure iyzico network.

• Documenting any security breaches and assessing their damage.

• Conduct routine phishing and Information Security campaigns to increase users’ awareness of social engineering attacks and provide periodic reporting to Information Security Manager.

• Monitoring iyzico assets for security breaches, vulnerabilities, and attacks with using related security solutions.

• Working with the Information Security Manager to roll out new or updated policies and procedures

• Assist in activities towards fulfilling various compliance regulations such as PCI DSS, EU GDPR, SOX etc.

• Assessing, planning, and coordinating patch management activities for internal and third-party hosted systems

• Providing and collecting evidence which points to information security for local, global and 3rd party audits

Qualifications & Experience

• Bachelor’s degree in Engineering / Information Systems / Information Security / Cyber Security

• Min. 3-4 years of relevant experience in a similar role

• Strong understanding of Information Security solutions, this will cover areas such as IDS&IPS, NDR, EDR, DAM, SIEM, IAM, DLP;

• Knowledge and experience on creation security controls (Use Cases, detection rules)

• Knowledge of coding/programming using Python.

• Knowledge of information security standards and legislation.

• Experience in the information security of the financial industry is a big plus

• Security certification (CEH, Comptia Sec+ etc.) is a plus

• Keen interest in pursuing an Information Security specialism

• Good knowledge of various information security frameworks.

• Excellent problem-solving and analytical skills.

• Good communication skills (both internally and with customers/prospects)

• Strong feedback and continuous learning mindset

What We Offer

• A culture of continuous development: conferences, in-house events & Tech Talks to stay up-to-date on current research and technology. P.S.:You do not need to wait to get on the stage and share your expertise with you teammates and the community

• Online Training Platform (Free access to Udemy, Harvard ManageMentor, Get abstract, etc.),

• Freedom under responsibility is our common mindset. That’s how we designed our flexible working model called,

• iyzico Homequarters. Our homequarters is in Altunizade,

• Meal & Internet Allowance,

• Transportation Allowance,

• A gift voucher to meet tech needs and ergonomic workspace at home,

• Macbook (and monitor if needed),

• Employee support program: free psychological counseling, legal advice, financial advice etc.

• Private health insurance,

• 1 day birth day leave,

• An iyzicoMate is assigned to help you with anything you may need on your onboarding,

• A detailed orientation program designed for you to fully grasp the iyzico culture.

Key Responsibilities

• Work closely with teams across the organization (particularly Infra, Software, Compliance, and Legal) to implement proactive security measures.

• Developing and implementing a comprehensive plan to secure iyzico network.

• Documenting any security breaches and assessing their damage.

• Conduct routine phishing and Information Security campaigns to increase users’ awareness of social engineering attacks and provide periodic reporting to Information Security Manager.

• Monitoring iyzico assets for security breaches, vulnerabilities, and attacks with using related security solutions.

• Working with the Information Security Manager to roll out new or updated policies and procedures

• Assist in activities towards fulfilling various compliance regulations such as PCI DSS, EU GDPR, SOX etc.

• Assessing, planning, and coordinating patch management activities for internal and third-party hosted systems

• Providing and collecting evidence which points to information security for local, global and 3rd party audits

Qualifications & Experience

• Bachelor’s degree in Engineering / Information Systems / Information Security / Cyber Security

• Min. 3-4 years of relevant experience in a similar role

• Strong understanding of Information Security solutions, this will cover areas such as IDS&IPS, NDR, EDR, DAM, SIEM, IAM, DLP;

• Knowledge and experience on creation security controls (Use Cases, detection rules)

• Knowledge of coding/programming using Python.

• Knowledge of information security standards and legislation.

• Experience in the information security of the financial industry is a big plus

• Security certification (CEH, Comptia Sec+ etc.) is a plus

• Keen interest in pursuing an Information Security specialism

• Good knowledge of various information security frameworks.

• Excellent problem-solving and analytical skills.

• Good communication skills (both internally and with customers/prospects)

• Strong feedback and continuous learning mindset

What We Offer

• A culture of continuous development: conferences, in-house events & Tech Talks to stay up-to-date on current research and technology. P.S.:You do not need to wait to get on the stage and share your expertise with you teammates and the community

• Online Training Platform (Free access to Udemy, Harvard ManageMentor, Get abstract, etc.),

• Freedom under responsibility is our common mindset. That’s how we designed our flexible working model called,

• iyzico Homequarters. Our homequarters is in Altunizade,

• Meal & Internet Allowance,

• Transportation Allowance,

• A gift voucher to meet tech needs and ergonomic workspace at home,

• Macbook (and monitor if needed),

• Employee support program: free psychological counseling, legal advice, financial advice etc.

• Private health insurance,

• 1 day birth day leave,

• An iyzicoMate is assigned to help you with anything you may need on your onboarding,

• A detailed orientation program designed for you to fully grasp the iyzico culture.