Cyber Security Senior Expert

Description

Join our journey as we connect for a better future. Ready?
We are looking for a Cyber Security Senior Expert

#Vodafonespirit

Our purpose at Vodafone is to connect for a better future. As a Global Communications Technology company, we put the customer at the heart of everything we do. We are forever challenging, pushing boundaries and discovering innovative ways to connect our customers with their digital societies.

We connect people, businesses, and communities across the globe to create the future. We earn customer loyalty, experiment, learn fast and get it done, together. As you can imagine, this means that we have a vibrant and diverse mix of skills and people making Vodafone a great place to work.

ROLE PURPOSE

• Accountable for implementing and ensuring “Secure-by-Design” in all products and services that can be designed and developed internal resources , vendors and 3rd parties.
• Responsible for planning, managing and implementation for Information Security strategies
• Responsible of providing and presenting Information Security related subjects for Information Security Committee
• Accountable for analysing and improving existing solutions, streamline processes and recommend upgrades to Access Management services to improve end user experience and productivity
• Responsible of preparing, controlling, keeping up to date Information Security Policies, Standards, Procedures and guidelines according to Company and Government regulations
• Responsible for supporting information during compliance inspections
• Responsible of providing dedicated support to the Information Security Risk management processes for on boarding and oversight of all new and existing 3rd Party vendor relationships.
• Responsible of managing Information System Continuity Plan

Your place in the team

• Taking an active role in determining our company’s Information Security and Business Continuity strategies, establishing and implementing policies and procedures
• Providing consultancy to the business lines and business units of our company on information security issues and determining the security needs required in application projects
• Developing, implementing and ensuring the continuity of Information Security policies, procedures and standards
• Making the necessary arrangements by working with the relevant departments on the rules to be applied on Information Security or the risks that need to be controlled in accordance with the law or regulation and monitoring their performance
• Ensuring that processes and applications work effectively
• Supporting Information Security and Business Continuity training and awareness studies
• To follow, examine, report and take necessary actions for Information Security weaknesses and violations
• Taking part in certification processes and internal audits
• Creating and documenting Company Information Security plans,
• Preparing and submitting to the management the necessary studies on the planning, coordination and management of our company’s Information Security and Cyber security issues,
• Establishing, maintaining, monitoring and measuring the company’s information security governance framework,
• Determining the environment for Information Security incident management, protection, event detection, management of response and recovery processes,
• Working with subcontractors related to Information Security, controlling and auditing the services provided by the companies.
• Designing processes for testing and updating the existing security environment

We are looking for you if you have

• Graduated from the Computer Engineering or similar departments of the universities providing 4-year education
• At least 3 years of experience in information security, security compliance and risk analysis
• Following innovations in the field of Information Security, preferably knowledge of about ISO 27001, KVKK, ITIL, BDDK Information Systems Regulation
• Knowledge of Information Security policies and procedures
• Knowledge of security solutions such as Information Systems infrastructures, internet technologies, Anti-virus, DLP, Application Security, E-mail Security, url filtering, SSL VPN, IDS / IPS, DDOS, etc.
• Should make risk assessments from an information security perspective
• Knowledge of the legal requirements specific to information security and willing to learn
• Preferably have information security (ISO 27001 LA, ISO22301, ITIL, CISSP, CEH,CISA, etc.) certification
• Knowledge of IT application processes, technologies, development environments
• Ability to analyse, evaluate, and think analytically
• Knowledgeable about cyber security action plan and implementation
• Knowledge of compliance and audit processes
• Having information about Information Security Incident Management, examining Information Security Vulnerabilities and Violation Incidents in detail, Reporting and Performing the Required Investigation Activities
• Knowledge of international information security standards and practices
• Having an active role in making new rules that should be applied on security as required by legal compliance
• Prone to teamwork, high communication skills and sense of responsibility
• Good command of English
• Completed military service for male candidates.
• Familiar with working in an international environment

Get to know us

If you want to know more about us and what we do, then visit our website: www.vodafone.com.tr
Instagram: https://www.instagram.com/vodafonekariyer/
Youtube: https://www.youtube.com/user/VFTurkiye

Diversity and Inclusion

At Vodafone, we embrace and welcome everyone. We believe that we can operate more successfully and effectively with diverse teams. And we can only leverage this diversity by building an inclusive culture where everyone is respected, can be themselves and strive to be their best. That way we can create a better future for our employees, our partners, the communities we work in and our customers.